The Company is a leading financial services firm. The technology is being transformed to a Cloud-First, Cloud-Native architectural model, utilizing DevSecOps processes and adoption of systems-thinking concepts to enhance productivity. The Cloud Engineers are responsible for delivering Cloud-native solutions that are fully automated through code, ensuring scalability and optimize availability and reliability 24/7. Responsibilities: - Have broad responsibilities to engineer and secure core platform services across the global footprint. - Ensure compute infrastructure is continually optimized to match business demands. - Design and operate storage strategy to optimize data storage based on latency, redundancy, and cost. - Collaborate with Cloud Security Engineering to automate vulnerability patching processes. - Optimize global network to ensure latency and performance meet business expectations. - Automate operational aspects of the infrastructure and systems life cycle. - Maintain Azure tagging/naming taxonomies across all Cloud assets. - Respond to incidents and ensure availability across the global infrastructure, providing support for service analysts on customer incidents. - Build and infrastructure with automation tools like PowerShell, Ansible, Terraform, Azure DevOps CI/CD, and Kubernetes. - Document actions to turn findings into repeatable and automated processes. - Design, build, and maintain core infrastructure to enable scaling and support business growth. - Debug production issues across services and levels of the stack. Qualifications: - Strong knowledge of virtualization, containerization technologies on Azure. - Proficiency in object-oriented programming and developing automated solutions through code. - Passion for secure network design and protecting organizations from evolving cyber threats. - Continual learning and advancement of Microsoft Azure technologies like Compute, Storage, Networking. - Interest in Open-Source development and industry innovation. - Knowledge of configuration management systems like Ansible. - Collaborative and able to communicate effectively and asynchronously.
21/05/2024
Full time
The Company is a leading financial services firm. The technology is being transformed to a Cloud-First, Cloud-Native architectural model, utilizing DevSecOps processes and adoption of systems-thinking concepts to enhance productivity. The Cloud Engineers are responsible for delivering Cloud-native solutions that are fully automated through code, ensuring scalability and optimize availability and reliability 24/7. Responsibilities: - Have broad responsibilities to engineer and secure core platform services across the global footprint. - Ensure compute infrastructure is continually optimized to match business demands. - Design and operate storage strategy to optimize data storage based on latency, redundancy, and cost. - Collaborate with Cloud Security Engineering to automate vulnerability patching processes. - Optimize global network to ensure latency and performance meet business expectations. - Automate operational aspects of the infrastructure and systems life cycle. - Maintain Azure tagging/naming taxonomies across all Cloud assets. - Respond to incidents and ensure availability across the global infrastructure, providing support for service analysts on customer incidents. - Build and infrastructure with automation tools like PowerShell, Ansible, Terraform, Azure DevOps CI/CD, and Kubernetes. - Document actions to turn findings into repeatable and automated processes. - Design, build, and maintain core infrastructure to enable scaling and support business growth. - Debug production issues across services and levels of the stack. Qualifications: - Strong knowledge of virtualization, containerization technologies on Azure. - Proficiency in object-oriented programming and developing automated solutions through code. - Passion for secure network design and protecting organizations from evolving cyber threats. - Continual learning and advancement of Microsoft Azure technologies like Compute, Storage, Networking. - Interest in Open-Source development and industry innovation. - Knowledge of configuration management systems like Ansible. - Collaborative and able to communicate effectively and asynchronously.
Senior Cloud Security Engineer Permanent, 3 days in office in London Overview: The Company is a leading financial services firm. The technology is being transformed to a Cloud-First, Cloud-Native architectural model, utilizing DevSecOps processes and adoption of systems-thinking concepts to enhance productivity. The Cloud Security Engineer are responsible for delivering modern end user solutions that are fully automated through code, ensuring scalability and optimize availability and reliability 24/7. Responsibilities: Engineer and secure core Azure platform services across global footprint. Design, implement and maintain secure cloud architectures across Azure cloud platform. Develop and enforce cloud security policies, procedures and best practices. Implement and manage cloud security tools and services such as SIEM, IAM and DLP. Conduct regular security assessments, audits and penetration testing. Investigate and respond to security incidents and global frameworks. Provide guidance and training to team members on cloud security best practices. Stay up to date with latest cloud security threats, technologies. Run Infrastructure with Python/PowerShell, Ansible, Terraform, Azure DevOps, CI/CD, Kubernetes. Design, build and maintain core infrastructure. Debub production issues Requirements Strong experience in cybersecurity and protecting cloud based assets in Financial Services environment. Experience in identifying and addressing potential security risks. Attention to details and ability to think like an attacker. Continual learning and advancement of Azure technologies Experience in configuration management systems like Ansible Keen on Open Source development. Collaborative and able to communicate effectively and asynchronously.
21/05/2024
Full time
Senior Cloud Security Engineer Permanent, 3 days in office in London Overview: The Company is a leading financial services firm. The technology is being transformed to a Cloud-First, Cloud-Native architectural model, utilizing DevSecOps processes and adoption of systems-thinking concepts to enhance productivity. The Cloud Security Engineer are responsible for delivering modern end user solutions that are fully automated through code, ensuring scalability and optimize availability and reliability 24/7. Responsibilities: Engineer and secure core Azure platform services across global footprint. Design, implement and maintain secure cloud architectures across Azure cloud platform. Develop and enforce cloud security policies, procedures and best practices. Implement and manage cloud security tools and services such as SIEM, IAM and DLP. Conduct regular security assessments, audits and penetration testing. Investigate and respond to security incidents and global frameworks. Provide guidance and training to team members on cloud security best practices. Stay up to date with latest cloud security threats, technologies. Run Infrastructure with Python/PowerShell, Ansible, Terraform, Azure DevOps, CI/CD, Kubernetes. Design, build and maintain core infrastructure. Debub production issues Requirements Strong experience in cybersecurity and protecting cloud based assets in Financial Services environment. Experience in identifying and addressing potential security risks. Attention to details and ability to think like an attacker. Continual learning and advancement of Azure technologies Experience in configuration management systems like Ansible Keen on Open Source development. Collaborative and able to communicate effectively and asynchronously.
Eames are working with a reputable insurer on the hire of a Senior Security Operations Analyst. Responsibilities: Overseeing the security of the technical infrastructure provided by third-party suppliers, addressing any identified security risks to the organization. Managing the remediation of operational risks to their conclusion and taking ownership of these processes within the team. Leading the development and enhancement of detection engineering and associated technologies. Conducting operational and threat malware analysis for the organization. Offering security insights and maintaining relationships with the Service Management function concerning change management, problem management, and incident management. Handling level 2/3 operational cyber incident response. Promptly escalating any detected incidents and anomalies within the organization, providing expert guidance for operational challenges. Monitoring emerging threat patterns, vulnerabilities, and anomalies, escalating unknown threats to relevant areas within the company. Collecting metrics on the status of technical information security controls across the organization, identifying risk areas, and developing and managing remediation plans as necessary. Collaborating with all CISO teams to report and address operational issues at an architectural level. Participating in a shared, rotational 24/7 on-call requirement, acting as the single point of contact for all security-related response actions and decisions, including managing each incident from a security perspective, interacting with Incident Management/Major Incident Management teams, and recording key security decisions. Qualifications: Proficiency and experience in Firewalls, intrusion detection and prevention systems, anti-virus and content filtering, URL filtering, authentication solutions, Switches, Routers, and Voice Over IP (VoIP), as well as Firewall zoning. Ability to interpret system data, including security event logs, system logs, application logs, and device logs. Knowledge and experience with enterprise-grade technologies, including operating systems, databases, and web applications. Experience in network traffic analysis to identify developing patterns. Capability to mentor and upskill junior team members. Security analysis skills comparable to CompTIA CySA+ certification or similar. Preferred Qualifications: Experience with technologies such as Data Loss Prevention, Intrusion Prevention/Detection Systems, Firewalls, and SIEM. Knowledge of reporting suites such as Power BI. Strong understanding of Microsoft security suites and relevant qualifications. Expertise in threat identification. Security certifications such as CISM, CISSP, M.Inst.ISP, or CISA from a recognized professional body. Technical certifications in network or systems engineering from a recognized professional body. Understanding of fundamental cloud concepts, particularly for AWS. Familiarity with OWASP Top 10 and the API Security Playbook Eames Consulting is acting as an Employment Agency in relation to this vacancy.
21/05/2024
Full time
Eames are working with a reputable insurer on the hire of a Senior Security Operations Analyst. Responsibilities: Overseeing the security of the technical infrastructure provided by third-party suppliers, addressing any identified security risks to the organization. Managing the remediation of operational risks to their conclusion and taking ownership of these processes within the team. Leading the development and enhancement of detection engineering and associated technologies. Conducting operational and threat malware analysis for the organization. Offering security insights and maintaining relationships with the Service Management function concerning change management, problem management, and incident management. Handling level 2/3 operational cyber incident response. Promptly escalating any detected incidents and anomalies within the organization, providing expert guidance for operational challenges. Monitoring emerging threat patterns, vulnerabilities, and anomalies, escalating unknown threats to relevant areas within the company. Collecting metrics on the status of technical information security controls across the organization, identifying risk areas, and developing and managing remediation plans as necessary. Collaborating with all CISO teams to report and address operational issues at an architectural level. Participating in a shared, rotational 24/7 on-call requirement, acting as the single point of contact for all security-related response actions and decisions, including managing each incident from a security perspective, interacting with Incident Management/Major Incident Management teams, and recording key security decisions. Qualifications: Proficiency and experience in Firewalls, intrusion detection and prevention systems, anti-virus and content filtering, URL filtering, authentication solutions, Switches, Routers, and Voice Over IP (VoIP), as well as Firewall zoning. Ability to interpret system data, including security event logs, system logs, application logs, and device logs. Knowledge and experience with enterprise-grade technologies, including operating systems, databases, and web applications. Experience in network traffic analysis to identify developing patterns. Capability to mentor and upskill junior team members. Security analysis skills comparable to CompTIA CySA+ certification or similar. Preferred Qualifications: Experience with technologies such as Data Loss Prevention, Intrusion Prevention/Detection Systems, Firewalls, and SIEM. Knowledge of reporting suites such as Power BI. Strong understanding of Microsoft security suites and relevant qualifications. Expertise in threat identification. Security certifications such as CISM, CISSP, M.Inst.ISP, or CISA from a recognized professional body. Technical certifications in network or systems engineering from a recognized professional body. Understanding of fundamental cloud concepts, particularly for AWS. Familiarity with OWASP Top 10 and the API Security Playbook Eames Consulting is acting as an Employment Agency in relation to this vacancy.
CURRENT, ACTIVE SC CLEARANCE IS ESSENTIAL FOR THIS ROLE FROM THE OUTSET PLEASE ONLY APPLY IF YOU HAVE THIS IN PLACE Responsibilites Maintain and develop the organisation's virtual infrastructure, on premise applications and cloud services (SaaS) in line with current strategy. Ensure service availability, security, and performance drives the function's activities. Identify and implement opportunities for right-sizing, automation and cost optimisation through monitoring and resource usage. Colloborate with technical assurance and architecture teams to implement new services based on requirements. Recommend and implement changes to improve performance and security of products. Lead on IT Health Checks, vulnerabiltiy assessements and remediation activities. Adopt and implement best practiuce security configuration for virtual infrastructure, application suites and SaaS implementations. Provide effective second and third line support resolving incidents escalated from the Service desk. Creating and maintaining technical documentation for services and related processes. Collaborate with third party service partners and technical colleagues to implement and support PaaS/SaaS delivery in line with current strategy. Support in the delivery of the Cyber Security Strategy. Provide guidance and coaching to other members of the team. Resolving incidents in line with SLA and taking ownership of problem management related activities. Liaise with the Service Operations Manager to identify incident trends and problem management activities. Implement technical changes in line with the change management policy to support BAU and project led activities. Assist and enhance the Business Continuity and Disaster Recovery approach. Undertake any other reasonable duties as requested from time to time, within the job-holders capabilities. Communicate with stakeholders and provide updates on service incidents as needed whilst working to resolution. Relevant Knowledge, Skills and Experience Demonstrate strong understanding and experience of virtual machine management, configuration and deployment within an IaaS environment. Demonstrable knowledge and experience of cloud security policies, Firewalls, networking, encryption and working with SIEM/MDR solutions Implementation of technical governance for role-based access control and cost containment. Experience of total cost of ownership for services, including cost of egress traffic charges, zone to zone connectivity and cost of data replication. Demonstrable experience of change and configuration management. Demonstrable experience of using Azure Portal and Azure Powershell. Demonstrable knowledge of LAN, WAN and site-to-site connectivity. Demonstrable experience of working within an operations support role, supporting IaaS, SaaS and on premise applications. Demonstrable experience of working within AzureAD, Active Directory and Group Policy Management. Demonstrable experience of implementing compliance policies, configuration profiles & conditional access policies within M365. Experience of using technologies to improve the efficiency and effectiveness of an organisation. Experience of coaching and mentoring junior team members Ability to demonstrate initiative, prioritise urgent issues whilst achieving outcomes to agreed deadlines. Strong communication skills and a capacity to work with a wide range of people. Ability to persuade and influence the correct technical outcome for the business. Strong collaboration skills, including with technical development functions. Strong experience of configuring and administering M365, mail hygiene, and Internet content filtering solutions Demonstrable experience of Mobile Device Management and Mobile Application Management policies. Desirable Knowledge and awareness of the security tools available within the Microsoft E5 licencing suite. Azure Administrator AZ104 ITIL 4 Experience in liaising with, and monitoring the performance of external service provider.
21/05/2024
Project-based
CURRENT, ACTIVE SC CLEARANCE IS ESSENTIAL FOR THIS ROLE FROM THE OUTSET PLEASE ONLY APPLY IF YOU HAVE THIS IN PLACE Responsibilites Maintain and develop the organisation's virtual infrastructure, on premise applications and cloud services (SaaS) in line with current strategy. Ensure service availability, security, and performance drives the function's activities. Identify and implement opportunities for right-sizing, automation and cost optimisation through monitoring and resource usage. Colloborate with technical assurance and architecture teams to implement new services based on requirements. Recommend and implement changes to improve performance and security of products. Lead on IT Health Checks, vulnerabiltiy assessements and remediation activities. Adopt and implement best practiuce security configuration for virtual infrastructure, application suites and SaaS implementations. Provide effective second and third line support resolving incidents escalated from the Service desk. Creating and maintaining technical documentation for services and related processes. Collaborate with third party service partners and technical colleagues to implement and support PaaS/SaaS delivery in line with current strategy. Support in the delivery of the Cyber Security Strategy. Provide guidance and coaching to other members of the team. Resolving incidents in line with SLA and taking ownership of problem management related activities. Liaise with the Service Operations Manager to identify incident trends and problem management activities. Implement technical changes in line with the change management policy to support BAU and project led activities. Assist and enhance the Business Continuity and Disaster Recovery approach. Undertake any other reasonable duties as requested from time to time, within the job-holders capabilities. Communicate with stakeholders and provide updates on service incidents as needed whilst working to resolution. Relevant Knowledge, Skills and Experience Demonstrate strong understanding and experience of virtual machine management, configuration and deployment within an IaaS environment. Demonstrable knowledge and experience of cloud security policies, Firewalls, networking, encryption and working with SIEM/MDR solutions Implementation of technical governance for role-based access control and cost containment. Experience of total cost of ownership for services, including cost of egress traffic charges, zone to zone connectivity and cost of data replication. Demonstrable experience of change and configuration management. Demonstrable experience of using Azure Portal and Azure Powershell. Demonstrable knowledge of LAN, WAN and site-to-site connectivity. Demonstrable experience of working within an operations support role, supporting IaaS, SaaS and on premise applications. Demonstrable experience of working within AzureAD, Active Directory and Group Policy Management. Demonstrable experience of implementing compliance policies, configuration profiles & conditional access policies within M365. Experience of using technologies to improve the efficiency and effectiveness of an organisation. Experience of coaching and mentoring junior team members Ability to demonstrate initiative, prioritise urgent issues whilst achieving outcomes to agreed deadlines. Strong communication skills and a capacity to work with a wide range of people. Ability to persuade and influence the correct technical outcome for the business. Strong collaboration skills, including with technical development functions. Strong experience of configuring and administering M365, mail hygiene, and Internet content filtering solutions Demonstrable experience of Mobile Device Management and Mobile Application Management policies. Desirable Knowledge and awareness of the security tools available within the Microsoft E5 licencing suite. Azure Administrator AZ104 ITIL 4 Experience in liaising with, and monitoring the performance of external service provider.
We are IT Recruitment Specialists partnered with a prestigious Global Consultancy who required a Cyber Defence Engineer - Hereford Location fully onsite, the balance of time will be remote for one of their public sector Clients based in the UK. IR35: This role is inside of IR35 Initial duration: 6 months Clearance required: Must be DV cleared Role and tasks Cyber Defence Engineer Role Description: Cyber Defence Engineer will join a growing security team responsible for the testing, implementation, deployment, maintenance, configuration and troubleshooting of the SOC's technology stack (hardware and software). The engineer will also assist with the continued development and maintenance of data pipelines and signature updates and the professional development of the system engineering team. Tasks: Perform system administration on specific cyber defence applications and systems to include installation, configuration, maintenance, troubleshooting, backup and restoration. Manage system/server resources including performance, capacity, availability, serviceability, and recoverability. Diagnose and resolve customer reported system incidents, problems, and events to ensure continuing operability. Coordinate with SOC and CTI Analysts to assist in the development of signatures which can be implemented on cyber defence network tools in response to new or observed threats within the network environment or enclave. Manage the compilation, cataloguing, distribution, and retrieval of data from a range of enterprise networks and data sources. Implement data management standards, requirements, and specifications. Develop data standards, policies, and procedures. Analyse data sources to provide actionable recommendations and facilitate data-gathering methods. To share knowledge, skills and experience, create and improve documentation, and train new members of the data engineering team. Knowledge: Knowledge of big data technologies and ecosystems (eg, NiFi). Knowledge of current market and emerging leaders in data analytical and SIEM platforms. Knowledge of network security implementations (eg, host-based IDS, IPS), including their function and placement in a network. Knowledge of intrusion detection systems and signature development. Knowledge of Front End collection systems, including network traffic collection, filtering, and selection. Knowledge of system administration concepts for operating systems such as but not limited to Unix/Linux, IOS, Android, and Windows operating systems. Knowledge of cyber defence and information security policies, procedures and regulations. Knowledge of network security architecture concepts including topology, protocols, components and principles. Skills /Experience: Previous experience of Enterprise ICS/network architectures and technologies. Working with frameworks and technologies that support data-intensive distributed applications. Experience maintaining and administrating data analytical and SIEM platforms. Experience using host and network-based IDS/IPS Experience using packet capture solutions. Skill in developing and deploying signatures. Skill to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation). Ability to provide technical and service leadership to junior SOC Engineers (mentor/coach). Desirable Qualifications/Certifications Red Hat System Administration I & II (RH124/RH134). Baseline Cyber Courses eg Cyber Foundation Pathway, SANS SEC 301 Intro to Information Security, SANS 401 Security Essentials Bootcamp. Certified engineer in a market leading data analysis/SIEM platform. SANS SEC501 Advanced Security Essentials Enterprise Defender. SANS SEC 511 Continuous Monitoring & Security Operations. SANS SEC555: SIEM with Tactical Analytics If you are interested in this position and would like to learn more, please send through your CV and we will get in touch with you as soon as possible. Please note, candidates are often Shortlisted within 48 hours.
21/05/2024
Project-based
We are IT Recruitment Specialists partnered with a prestigious Global Consultancy who required a Cyber Defence Engineer - Hereford Location fully onsite, the balance of time will be remote for one of their public sector Clients based in the UK. IR35: This role is inside of IR35 Initial duration: 6 months Clearance required: Must be DV cleared Role and tasks Cyber Defence Engineer Role Description: Cyber Defence Engineer will join a growing security team responsible for the testing, implementation, deployment, maintenance, configuration and troubleshooting of the SOC's technology stack (hardware and software). The engineer will also assist with the continued development and maintenance of data pipelines and signature updates and the professional development of the system engineering team. Tasks: Perform system administration on specific cyber defence applications and systems to include installation, configuration, maintenance, troubleshooting, backup and restoration. Manage system/server resources including performance, capacity, availability, serviceability, and recoverability. Diagnose and resolve customer reported system incidents, problems, and events to ensure continuing operability. Coordinate with SOC and CTI Analysts to assist in the development of signatures which can be implemented on cyber defence network tools in response to new or observed threats within the network environment or enclave. Manage the compilation, cataloguing, distribution, and retrieval of data from a range of enterprise networks and data sources. Implement data management standards, requirements, and specifications. Develop data standards, policies, and procedures. Analyse data sources to provide actionable recommendations and facilitate data-gathering methods. To share knowledge, skills and experience, create and improve documentation, and train new members of the data engineering team. Knowledge: Knowledge of big data technologies and ecosystems (eg, NiFi). Knowledge of current market and emerging leaders in data analytical and SIEM platforms. Knowledge of network security implementations (eg, host-based IDS, IPS), including their function and placement in a network. Knowledge of intrusion detection systems and signature development. Knowledge of Front End collection systems, including network traffic collection, filtering, and selection. Knowledge of system administration concepts for operating systems such as but not limited to Unix/Linux, IOS, Android, and Windows operating systems. Knowledge of cyber defence and information security policies, procedures and regulations. Knowledge of network security architecture concepts including topology, protocols, components and principles. Skills /Experience: Previous experience of Enterprise ICS/network architectures and technologies. Working with frameworks and technologies that support data-intensive distributed applications. Experience maintaining and administrating data analytical and SIEM platforms. Experience using host and network-based IDS/IPS Experience using packet capture solutions. Skill in developing and deploying signatures. Skill to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation). Ability to provide technical and service leadership to junior SOC Engineers (mentor/coach). Desirable Qualifications/Certifications Red Hat System Administration I & II (RH124/RH134). Baseline Cyber Courses eg Cyber Foundation Pathway, SANS SEC 301 Intro to Information Security, SANS 401 Security Essentials Bootcamp. Certified engineer in a market leading data analysis/SIEM platform. SANS SEC501 Advanced Security Essentials Enterprise Defender. SANS SEC 511 Continuous Monitoring & Security Operations. SANS SEC555: SIEM with Tactical Analytics If you are interested in this position and would like to learn more, please send through your CV and we will get in touch with you as soon as possible. Please note, candidates are often Shortlisted within 48 hours.
We are currently looking on behalf of one of our important clients for an IAM Product Owner. This role is permanent position based in Zürich Canton & comes with good home office allowance. Your Role: Work closely with customers, lead a development team & prioritize & manage a product backlog. Create & communicate the long-term strategy & further development of the product. Collect, analyze & prioritize the requirements of customers & stakeholders & combine them into a comprehensive product backlog. Monitor product quality & commission troubleshooting measures. Evaluate existing & new technologies & tools regarding the selection of an IAM service offering. Plan & coordinate product releases & ensure the smooth introduction of new features. Your Skills: At least 3 years of professional experience as a Product Owner or Team Leader in IAM environments. Strong experience in Agile Development Methods including Scrum. A very good knowledge of IAM Concepts, Architectures & Technologies. A good understanding in the field of Identity Management (SSO, identity encouragement, role-based access control, etc.). Your Profile: Completed University Degree in the area of Computer Science or similar, ideally with focus on Cyber Security/IAM. High self-motivated, analytical, methodical, structured & quality, solution & goal-oriented. Fluent in English & very good German language skills (to at least B2 Level) are mandatory requirements.
20/05/2024
Full time
We are currently looking on behalf of one of our important clients for an IAM Product Owner. This role is permanent position based in Zürich Canton & comes with good home office allowance. Your Role: Work closely with customers, lead a development team & prioritize & manage a product backlog. Create & communicate the long-term strategy & further development of the product. Collect, analyze & prioritize the requirements of customers & stakeholders & combine them into a comprehensive product backlog. Monitor product quality & commission troubleshooting measures. Evaluate existing & new technologies & tools regarding the selection of an IAM service offering. Plan & coordinate product releases & ensure the smooth introduction of new features. Your Skills: At least 3 years of professional experience as a Product Owner or Team Leader in IAM environments. Strong experience in Agile Development Methods including Scrum. A very good knowledge of IAM Concepts, Architectures & Technologies. A good understanding in the field of Identity Management (SSO, identity encouragement, role-based access control, etc.). Your Profile: Completed University Degree in the area of Computer Science or similar, ideally with focus on Cyber Security/IAM. High self-motivated, analytical, methodical, structured & quality, solution & goal-oriented. Fluent in English & very good German language skills (to at least B2 Level) are mandatory requirements.
Role Title: SIEM/Incident SME Duration: 6 months Location: Hybrid/Corsham, Portsmouth or Northallerton - 2/3 days per week at ONE site Rate: £700/d - Umbrella only PLEASE NOTE: Applicants must hold active DV Clearance to be considered for this role Would you like to join a global leader in consulting, technology services and digital transformation? Our client is at the forefront of innovation to address the entire breadth of opportunities in the evolving world of cloud, digital and platforms. Role purpose/summary The Cyber role is to join a growing security team responsible for designing, delivering and maintaining operational cybersecurity capabilities. Conducting pro-active, risk-based, protective monitoring on priority C4IS/networks to identify internal and external cyber-threats/attacks. This position involves a broad range of skills, including the development and mentoring of Junior Analysts, monitoring networks to actively remediate unauthorised activities. Your role Develop and integrate security event monitoring and incident management services. Respond to security incidents as they occur as part of an incident response team. Implement metrics and dashboards to give visibility of the Enterprise infrastructure. Use of the SOAR platform to assist with playbook automation and case management capabilities to streamline team processes and tools. Produce documentation to ensure the repeatability and standardisation of security operating procedures. Develop additional investigative methods using the SOC's software toolsets to enhance recognition opportunities for specific analysis. Maintain a baseline of system security according to latest threat intelligence and evolving trends. Participate in root cause analysis of incidents in conjunction with engineers across the enterprise. Provide Subject Matter Expertise (SME) on a broad range of information security standards and best practices. Offer strategic and tactical security guidance including valuation requirement of technical controls. Be part of the CRM process Liaise with the SOC engineers to maintain up-to-date dashboards of security alerts, to allow the organisation to better respond to an incident. Document, validate and create operational processes and procedures to help develop the SOC. Assist in identifying, prioritising, and coordinating the protection of critical cyber defence infrastructure and key resources. Build, install, configure, and test dedicated cyber defence hardware. Support Junior Analysts to manage SOC systems. Previous experience of Enterprise ICS/network architectures and technologies Experience and knowledge of SIEM solutions; having the ability to identify use cases and their creation, their deployment and tuning. Experience as a mentor/coach to Junior Analysts Key Skills/requirements Previous experience of utilising the MITRE ATT&CK and Cyber Kill Chain frameworks Skilled in maintaining Microsoft directory services. Skilled in using virtualisation software. Knowledge of key security frameworks (eg ISO, NIST 800-53, 800-171, 800-172, C2M2) Excellent communication skills Experience of writing Defence/Government documentation Desirable Qualifications : Broad Spectrum Cyber Course (SANS SEC401 or SEC501 or equivalent) SIEM Design, Architecture and Analyst Course (SANS SEC455 or SEC555 or equivalent) Advanced Analyst Course (SANS SEC503 or equivalent) All profiles will be reviewed against the required skills and experience. Due to the high number of applications, we will only be able to respond to successful applicants in the first instance. We thank you for your interest and the time taken to apply!
20/05/2024
Project-based
Role Title: SIEM/Incident SME Duration: 6 months Location: Hybrid/Corsham, Portsmouth or Northallerton - 2/3 days per week at ONE site Rate: £700/d - Umbrella only PLEASE NOTE: Applicants must hold active DV Clearance to be considered for this role Would you like to join a global leader in consulting, technology services and digital transformation? Our client is at the forefront of innovation to address the entire breadth of opportunities in the evolving world of cloud, digital and platforms. Role purpose/summary The Cyber role is to join a growing security team responsible for designing, delivering and maintaining operational cybersecurity capabilities. Conducting pro-active, risk-based, protective monitoring on priority C4IS/networks to identify internal and external cyber-threats/attacks. This position involves a broad range of skills, including the development and mentoring of Junior Analysts, monitoring networks to actively remediate unauthorised activities. Your role Develop and integrate security event monitoring and incident management services. Respond to security incidents as they occur as part of an incident response team. Implement metrics and dashboards to give visibility of the Enterprise infrastructure. Use of the SOAR platform to assist with playbook automation and case management capabilities to streamline team processes and tools. Produce documentation to ensure the repeatability and standardisation of security operating procedures. Develop additional investigative methods using the SOC's software toolsets to enhance recognition opportunities for specific analysis. Maintain a baseline of system security according to latest threat intelligence and evolving trends. Participate in root cause analysis of incidents in conjunction with engineers across the enterprise. Provide Subject Matter Expertise (SME) on a broad range of information security standards and best practices. Offer strategic and tactical security guidance including valuation requirement of technical controls. Be part of the CRM process Liaise with the SOC engineers to maintain up-to-date dashboards of security alerts, to allow the organisation to better respond to an incident. Document, validate and create operational processes and procedures to help develop the SOC. Assist in identifying, prioritising, and coordinating the protection of critical cyber defence infrastructure and key resources. Build, install, configure, and test dedicated cyber defence hardware. Support Junior Analysts to manage SOC systems. Previous experience of Enterprise ICS/network architectures and technologies Experience and knowledge of SIEM solutions; having the ability to identify use cases and their creation, their deployment and tuning. Experience as a mentor/coach to Junior Analysts Key Skills/requirements Previous experience of utilising the MITRE ATT&CK and Cyber Kill Chain frameworks Skilled in maintaining Microsoft directory services. Skilled in using virtualisation software. Knowledge of key security frameworks (eg ISO, NIST 800-53, 800-171, 800-172, C2M2) Excellent communication skills Experience of writing Defence/Government documentation Desirable Qualifications : Broad Spectrum Cyber Course (SANS SEC401 or SEC501 or equivalent) SIEM Design, Architecture and Analyst Course (SANS SEC455 or SEC555 or equivalent) Advanced Analyst Course (SANS SEC503 or equivalent) All profiles will be reviewed against the required skills and experience. Due to the high number of applications, we will only be able to respond to successful applicants in the first instance. We thank you for your interest and the time taken to apply!
Senior Cloud Network Engineer Permanent, 3 days in office in London Overview: The Company is a leading financial services firm. The technology is being transformed to a Cloud-First, Cloud-Native architectural model, utilizing DevSecOps processes and adoption of systems-thinking concepts to enhance productivity. The Cloud Network Engineer are responsible for delivering modern end user solutions that are fully automated through code, ensuring scalability and optimize availability and reliability 24/7. Responsibilities: Engineer and secure core Azure platform services across global footprint. Go deep on Cloud Network Engineer, adopting Zero Trust Architecture principles. Engineer and maintain Cloud Secure Web Gateways, Next-Gen CASB solutions Advance branch/SD-WAN solution to optimise network performance and connectivity. Colloborate with other areas of engineering and Service operations to ensure the successful integration of SSE/SASE Automate every operational aspect of infrastructure and systems life cycle Respond to incidents. Run Infrastructure with Python/PowerShell, Ansible, Terraform, Azure DevOps, CI/CD, Kubernetes. Design, build and maintain core infrastructure. Debub production issues Requirements: Strong experience in Windows Servers, Virtulisation, Containerisation tech on Azure Proficiency in Object Oriented programming and developing automated solutions through code. Experience in configuration management systems like Ansible Passion for network security and desire to protect organisations from cyber threats. Keen on Open Source development. Collaborative and able to communicate effectively and asynchronously.
16/05/2024
Full time
Senior Cloud Network Engineer Permanent, 3 days in office in London Overview: The Company is a leading financial services firm. The technology is being transformed to a Cloud-First, Cloud-Native architectural model, utilizing DevSecOps processes and adoption of systems-thinking concepts to enhance productivity. The Cloud Network Engineer are responsible for delivering modern end user solutions that are fully automated through code, ensuring scalability and optimize availability and reliability 24/7. Responsibilities: Engineer and secure core Azure platform services across global footprint. Go deep on Cloud Network Engineer, adopting Zero Trust Architecture principles. Engineer and maintain Cloud Secure Web Gateways, Next-Gen CASB solutions Advance branch/SD-WAN solution to optimise network performance and connectivity. Colloborate with other areas of engineering and Service operations to ensure the successful integration of SSE/SASE Automate every operational aspect of infrastructure and systems life cycle Respond to incidents. Run Infrastructure with Python/PowerShell, Ansible, Terraform, Azure DevOps, CI/CD, Kubernetes. Design, build and maintain core infrastructure. Debub production issues Requirements: Strong experience in Windows Servers, Virtulisation, Containerisation tech on Azure Proficiency in Object Oriented programming and developing automated solutions through code. Experience in configuration management systems like Ansible Passion for network security and desire to protect organisations from cyber threats. Keen on Open Source development. Collaborative and able to communicate effectively and asynchronously.
Global Technology Solutions Ltd
Chippenham, Wiltshire
Cloud IT Solutions Technical Consultant - Service Desk Consultant Permanent - Chippenham Onsite/Hybrid Working £45,000 - £60,000 Must Drive - Happy to Travel as needed. You will be an experienced Technical Consultant with a methodical approach to problem-solving who has an enthusiastic "can do" attitude. You have ambition and a growth mindset so you will be keen to learn, progress and are willing to study to become an exceptional IT professional. MAIN DUTIES * Architect, Design, and Implement Modern Cloud IT Solutions * Completion of Infrastructure, Cyber Risk and Microsoft 365 Adoption Consultancy * Escalation Technical Resource for Project Engineers * Work as part of our dedicated Projects Team away from the Service Desk * Support and guide our customers on their Technical Roadmap * Work with the Projects Administrator to ensure projects are a success * Assist the commercial team with technical roadmaps and presales consultancy ESSENTIAL SKILLS & EXPERIENCE * At least 4 years' experience progressing through a service desk 1st/2nd/3rd line to Technical Consultant * Microsoft Azure (Migration, Deployment and Management of services) * Microsoft 365 including Modern Endpoint Management and Security * Hyper-V/VMware in both on-premises and hybrid deployments * Networking (TCP/IP, VLANs, routing, Firewalls, port forwarding and NAT etc.) * Comfortable communicating at all levels including Management, Senior Leadership Team and Board/Directors * Design and implementation of technical roadmaps, from start to finish. QUALIFICATIONS * Desirable Microsoft Certifications (MS-100/101, AZ-104, MS-500) * Desirable Security Certifications (Security+, CEH) WHAT WE OFFER People & Culture is the heartbeat. We believe success is built from within and is why we are incredibly proud of our team, our working environment and our fun, friendly and inclusive office culture. We live by our values. It is a fast paced, energetic and fun environment to be in. As an employee we will invest in you. We will invest in your training. We will invest our time and energy to help you develop your career and become the very best in your field of work. * Unlimited holiday * Performance and salary reviews * Enrolment into the Academy, aimed on your training and development needs with time available to complete during working hours * Access to online courses, work related plus more, all at your fingertips * Auto Enrolment pension scheme * Staff and Customer referral scheme * Great working atmosphere and balanced work environment - we are high performance and we take good care of each other * Employee socials and events run by our Social Committee * Lots of cake and fruit * And of course, you get to work for a fast-growing, modern, market leader like us! This is a fantastic opportunity to join a welcoming, dynamic company offering a great culture and the chance to build a successful career. NOTES 37.5 hours a week Mon-Fri, due to the nature of the job some occasional work at weekends and outside of normal hours may be required. Travel to customer sites may be required so the ability to travel as and when required is essential. This role requires a DBS and BPSS check as well as you to obtain SC clearance (fully funded). "In applying for this position, you consent to your personal data being shared with the specified employer and for your details to remain with GTS for as long as is necessary to process your application. See our Privacy Notice for full information Global Technology Solutions is acting as an Employment Agency in relation to this vacancy.
15/05/2024
Full time
Cloud IT Solutions Technical Consultant - Service Desk Consultant Permanent - Chippenham Onsite/Hybrid Working £45,000 - £60,000 Must Drive - Happy to Travel as needed. You will be an experienced Technical Consultant with a methodical approach to problem-solving who has an enthusiastic "can do" attitude. You have ambition and a growth mindset so you will be keen to learn, progress and are willing to study to become an exceptional IT professional. MAIN DUTIES * Architect, Design, and Implement Modern Cloud IT Solutions * Completion of Infrastructure, Cyber Risk and Microsoft 365 Adoption Consultancy * Escalation Technical Resource for Project Engineers * Work as part of our dedicated Projects Team away from the Service Desk * Support and guide our customers on their Technical Roadmap * Work with the Projects Administrator to ensure projects are a success * Assist the commercial team with technical roadmaps and presales consultancy ESSENTIAL SKILLS & EXPERIENCE * At least 4 years' experience progressing through a service desk 1st/2nd/3rd line to Technical Consultant * Microsoft Azure (Migration, Deployment and Management of services) * Microsoft 365 including Modern Endpoint Management and Security * Hyper-V/VMware in both on-premises and hybrid deployments * Networking (TCP/IP, VLANs, routing, Firewalls, port forwarding and NAT etc.) * Comfortable communicating at all levels including Management, Senior Leadership Team and Board/Directors * Design and implementation of technical roadmaps, from start to finish. QUALIFICATIONS * Desirable Microsoft Certifications (MS-100/101, AZ-104, MS-500) * Desirable Security Certifications (Security+, CEH) WHAT WE OFFER People & Culture is the heartbeat. We believe success is built from within and is why we are incredibly proud of our team, our working environment and our fun, friendly and inclusive office culture. We live by our values. It is a fast paced, energetic and fun environment to be in. As an employee we will invest in you. We will invest in your training. We will invest our time and energy to help you develop your career and become the very best in your field of work. * Unlimited holiday * Performance and salary reviews * Enrolment into the Academy, aimed on your training and development needs with time available to complete during working hours * Access to online courses, work related plus more, all at your fingertips * Auto Enrolment pension scheme * Staff and Customer referral scheme * Great working atmosphere and balanced work environment - we are high performance and we take good care of each other * Employee socials and events run by our Social Committee * Lots of cake and fruit * And of course, you get to work for a fast-growing, modern, market leader like us! This is a fantastic opportunity to join a welcoming, dynamic company offering a great culture and the chance to build a successful career. NOTES 37.5 hours a week Mon-Fri, due to the nature of the job some occasional work at weekends and outside of normal hours may be required. Travel to customer sites may be required so the ability to travel as and when required is essential. This role requires a DBS and BPSS check as well as you to obtain SC clearance (fully funded). "In applying for this position, you consent to your personal data being shared with the specified employer and for your details to remain with GTS for as long as is necessary to process your application. See our Privacy Notice for full information Global Technology Solutions is acting as an Employment Agency in relation to this vacancy.