Security Engineering Lead London up to £100K 3 days per week in the office This household name are undertaking a huge technology transformation in the MS Azure space and are looking to hire a hand's on Security Engineering Lead as part of this change. They have made an impressive dent in the E-commerce market of the past 10 years and are continuing to dominate this space. Security Engineering Lead: The Role As a Security Engineering Lead you will be the first hire into this growing team so your role will involve a mixture of hands-on security engineering including python Scripting as well as hiring and supporting a team. Some of your duties will include: Developing and implementing an overarching security technology strategy aligned with business objectives, industry best practices, and regulatory requirements. Collaborating with cross-functional teams, including information security, architecture, platform engineering, network engineering, and software development, to integrate security technologies into organisational systems and applications. Ensuring the proper planning, execution, and completion of security technology projects, ensuring that these are delivered on time and on budget Performing risk assessments and vulnerability assessments to identify potential security gaps or weaknesses in existing technologies and recommending appropriate remediations. Monitoring security technology function and respond to any errors and failures which may occur. Security Engineering Lead: Your profile Proven experience in security technology management, with at least 5 years in a technical leadership or managerial capacity. Strong technical background in security technologies, including Firewalls, IDS/IPS, SIEM, access control systems, DLP, encryption, etc. In-depth knowledge of security frameworks, standards, and best practices (eg, ISO 27001, NIST Cybersecurity Framework). Demonstrable experience in managing security technology projects, from initiation to completion, ensuring adherence to timelines. Professional certifications such as CISSP, CISM, CISA, or other relevant certifications. Experience working with Microsoft cloud security technologies, especially Sentinel, Defender and Purview Python programming knowledge - able to write scripts etc REST/Graph API experience Azure Kubernetes Service experience
18/04/2024
Full time
Security Engineering Lead London up to £100K 3 days per week in the office This household name are undertaking a huge technology transformation in the MS Azure space and are looking to hire a hand's on Security Engineering Lead as part of this change. They have made an impressive dent in the E-commerce market of the past 10 years and are continuing to dominate this space. Security Engineering Lead: The Role As a Security Engineering Lead you will be the first hire into this growing team so your role will involve a mixture of hands-on security engineering including python Scripting as well as hiring and supporting a team. Some of your duties will include: Developing and implementing an overarching security technology strategy aligned with business objectives, industry best practices, and regulatory requirements. Collaborating with cross-functional teams, including information security, architecture, platform engineering, network engineering, and software development, to integrate security technologies into organisational systems and applications. Ensuring the proper planning, execution, and completion of security technology projects, ensuring that these are delivered on time and on budget Performing risk assessments and vulnerability assessments to identify potential security gaps or weaknesses in existing technologies and recommending appropriate remediations. Monitoring security technology function and respond to any errors and failures which may occur. Security Engineering Lead: Your profile Proven experience in security technology management, with at least 5 years in a technical leadership or managerial capacity. Strong technical background in security technologies, including Firewalls, IDS/IPS, SIEM, access control systems, DLP, encryption, etc. In-depth knowledge of security frameworks, standards, and best practices (eg, ISO 27001, NIST Cybersecurity Framework). Demonstrable experience in managing security technology projects, from initiation to completion, ensuring adherence to timelines. Professional certifications such as CISSP, CISM, CISA, or other relevant certifications. Experience working with Microsoft cloud security technologies, especially Sentinel, Defender and Purview Python programming knowledge - able to write scripts etc REST/Graph API experience Azure Kubernetes Service experience
IT Cyber Security Analyst & Team Leader - CISSP or CySA+ or MSc Information Security Weymouth, Dorset, or London, South East UK or Stoke on Trent, Staffordshire £50,000pa + Hybrid & Flexi-Working & Training & Certifications Available Weymouth, Dorset, or London, South East UK, or Staffordshire + Hybrid and Flexible Working as Standard The Client: Are a well-known High St and Online retailer who are seeking a Senior IT Cyber Security Analyst who specialises in Microsoft/Wintel Servers and Virtualisation supporting a UK wide infrastructure. Objective: You will Lead 2 x Cyber Security Analysts, giving support to the Head of Cyber Security in delivering the Information Security service to the global business. You will lead all Cyber Security Operations function and be the first point of contact for technical information security related matters. Role Responsibilities: You will Lead 2 x Cyber Security Analysts, giving support to the Head of Cyber Security Act as the first point of action or escalation for the identification of security incidents and their investigation. Be responsible for the managed Security Operations Centre (SOC), Network Monitoring and Managed Detection and Response services and associated vendor relationships. Offer mentoring, advice and guidance to those in your Team Be the subject matter expert for technical security related queries, providing the Security Architect, IT Service and Delivery teams and business stakeholders with authoritative advice and defined security requirements. Be responsible for the Security Education and Awareness scheme. Ensure Cyber Security campaigns are conducted, and improvements implemented and ensure colleague queries around policies and requirements are appropriately answered in a timely manner. Be responsible for the Vulnerability Management process. Act on vulnerability information and conduct Cyber Security risk assessments and work with suppliers, partners, and internal teams to ensure security vulnerabilities are identified, assessed, and remediated in good time. Key Requirements you will need: In depth knowledge of Information Security concepts and principles, including cloud security capabilities. Experience with configuring and utilising security tooling, including SIEM, EDR, vulnerability scanners, CASB, network scanning, DLP. Hands-on IT experience with proven expertise in a previous Information Security role. Vendor management experience. A relevant intermediate or advanced Information Security based qualification (eg CISSP, CySA+, MSc Information Security) Ability to critically analyse information and make decisions based on judgement, knowledge, and experience. Business Knowledge: Knowledge of Retail and eCommerce is of great advantage but is not essential. Working knowledge of the Information Security elements of Data Protection regulations (eg GDPR, The Data Protection Act 2018) is essential. Knowledge of the NIST Cyber Security Framework is of advantage. Awareness of regulations that affect Retail, such as PCI DSS, is of great advantage but experience of maintaining compliance is not essential. CISSP or CySA+ or MSc Information Security Certifications will be advantageous. Call today!
18/04/2024
Full time
IT Cyber Security Analyst & Team Leader - CISSP or CySA+ or MSc Information Security Weymouth, Dorset, or London, South East UK or Stoke on Trent, Staffordshire £50,000pa + Hybrid & Flexi-Working & Training & Certifications Available Weymouth, Dorset, or London, South East UK, or Staffordshire + Hybrid and Flexible Working as Standard The Client: Are a well-known High St and Online retailer who are seeking a Senior IT Cyber Security Analyst who specialises in Microsoft/Wintel Servers and Virtualisation supporting a UK wide infrastructure. Objective: You will Lead 2 x Cyber Security Analysts, giving support to the Head of Cyber Security in delivering the Information Security service to the global business. You will lead all Cyber Security Operations function and be the first point of contact for technical information security related matters. Role Responsibilities: You will Lead 2 x Cyber Security Analysts, giving support to the Head of Cyber Security Act as the first point of action or escalation for the identification of security incidents and their investigation. Be responsible for the managed Security Operations Centre (SOC), Network Monitoring and Managed Detection and Response services and associated vendor relationships. Offer mentoring, advice and guidance to those in your Team Be the subject matter expert for technical security related queries, providing the Security Architect, IT Service and Delivery teams and business stakeholders with authoritative advice and defined security requirements. Be responsible for the Security Education and Awareness scheme. Ensure Cyber Security campaigns are conducted, and improvements implemented and ensure colleague queries around policies and requirements are appropriately answered in a timely manner. Be responsible for the Vulnerability Management process. Act on vulnerability information and conduct Cyber Security risk assessments and work with suppliers, partners, and internal teams to ensure security vulnerabilities are identified, assessed, and remediated in good time. Key Requirements you will need: In depth knowledge of Information Security concepts and principles, including cloud security capabilities. Experience with configuring and utilising security tooling, including SIEM, EDR, vulnerability scanners, CASB, network scanning, DLP. Hands-on IT experience with proven expertise in a previous Information Security role. Vendor management experience. A relevant intermediate or advanced Information Security based qualification (eg CISSP, CySA+, MSc Information Security) Ability to critically analyse information and make decisions based on judgement, knowledge, and experience. Business Knowledge: Knowledge of Retail and eCommerce is of great advantage but is not essential. Working knowledge of the Information Security elements of Data Protection regulations (eg GDPR, The Data Protection Act 2018) is essential. Knowledge of the NIST Cyber Security Framework is of advantage. Awareness of regulations that affect Retail, such as PCI DSS, is of great advantage but experience of maintaining compliance is not essential. CISSP or CySA+ or MSc Information Security Certifications will be advantageous. Call today!
DevSecOps - Upto £60,000 On-site 5 days (West - Midlands) We value discussion and debate as part of our approach. We will question assumptions, ambition and process - but do so with respect and humility. We relish difficult problems, and overcome them with innovation, creativity and technical freedom to help us design optimum solutions. Ethics, privacy and quality are at the heart of our work and we will not sacrifice these for outcomes. We treat data with respect and use it only for the right purpose. Our people are positive, dedicated and relentless. Data is a vast topic, but we strive for interactions that are engaging, informative and fun in equal measure. But maintain a steely focus on outcomes and delivering quality products for our customers. Requirements Specialised in cloud management of platforms, applications, data and supporting infrastructure in the capacity of a system administrator of either the AWS or Azure platform Developing automation to support continuous delivery of changes using technologies on the Azure platform. Developing infrastructure as a service configuration to automate the creation of infrastructure and platforms to host test and production systems Building and setting up new development tools and infrastructure Understanding the needs of stakeholders and conveying this to developers Working on ways to automate and improve development and release processes Testing and examining code written by others and analysing results Ensuring that systems are safe and secure against cybersecurity threats Familiar with the NCSC secure design principles Familiar with managing security of cloud platforms, including administration of secrets, tokens and certificates. Working with Architects, Data and Software Engineers to ensure that development follows established processes and works as intended Planning out projects and being involved in project management decisions Responsible for the design, security, and maintenance of cloud infrastructure Making and guiding effective decisions, explaining clearly how the decision has been reached with the ability to understand and resolve technical disputes across varying levels of complexity and risk. Communicating effectively across organisational, technical and political boundaries to understand the context and how to make complex and technical information and language simple and accessible for non-technical audiences. Understanding of how to expose data from systems (for example, through APIs), link data from multiple systems and deliver streaming services. Ensuring that risks associated with deployment are adequately understood and documented. Ideal Candidates will demonstrate: Experience working across cyber security teams would be beneficial Solid infrastructure design experience for both on-prem and cloud, to implement or migrate applications and databases to Azure. Solid experience in a range of technologies and be able to make assessments as to what is best to be used for the projects and the organisation. As well as suggest and develop innovative approaches within constrained projects and environments. Strong experience in software development, change/release management processes, and technical governance to fully understand the typical life cycle and maintenance of live systems. Ability to work with containerization platforms such as Kubernetes, PKS, Docker; cloud provisioning software, including Ansible, Terraform, Azure blueprints, ARM templates; and application performance analysis and monitoring Experience of functional and non-functional testing including automated deployment experience of applications and databases. Understanding of the government digital service manual and standards across Discovery/Alpha/Beta/Live phases. Understanding of SaaS, PaaS, IaaS technologies and the implications of their use compared with bespoke development. Being able to provide training, support and mentoring to the wider business Knowledge of how to ensure that risks associated with deployment are adequately understood and documented. Desirable Skills & Experience: Worked as part of a system support team, managing live systems and triaging & resolving incidents to resolution including management of known defects and issues. Worked as part of multi-disciplinary project team. Experience with Terraform to deploy cloud infrastructure in Azure Experience with Azure DevOps and GitHub Actions to automate the build and deploy of containerised applications Experience implementing effective instrumentation to monitor applications Experience implementing SAST and DAST tooling in deployment pipelines like Trivvy and SonarQube Experience of both AWS and Azure Dev Ops tooling. This role will require you to have or be willing to go through Security Clearance. As part of the onboarding process candidates will be asked to complete a Baseline Personnel Security Standard; details of the evidence required to apply may be found on the government website Gov.UK. If you are unable to meet this and any associated criteria, then your employment may be delayed, or rejected. Details of this will be discussed with you at interview. Benefits Methods is passionate about its people; we want our colleagues to develop the things they are good at and enjoy. By joining us you can expect Autonomy to develop and grow your skills and experience Be part of exciting project work that is making a difference in society Strong, inspiring and thought-provoking leadership A supportive and collaborative environment Development - access to LinkedIn Learning, a management development programme, and training Wellness - 24/7 confidential employee assistance programme Flexible Working - including home working and part time Social - office parties, breakfast Tuesdays, monthly pizza Thursdays, Thirsty Thursdays, and commitment to charitable causes Time Off - 25 days of annual leave a year, plus bank holidays, with the option to buy 5 extra days each year Volunteering - 2 paid days per year to volunteer in our local communities or within a charity organisation Pension - Salary Exchange Scheme with 4% employer contribution and 5% employee contribution Discretionary Company Bonus - based on company and individual performance Life Assurance - of 4 times base salary Private Medical Insurance - which is non-contributory (spouse and dependants included) Worldwide Travel Insurance - which is non-contributory (spouse and dependants included) Enhanced Maternity and Paternity Pay Travel - season ticket loan, cycle to work scheme For a full list of benefits please visit our website.
18/04/2024
Full time
DevSecOps - Upto £60,000 On-site 5 days (West - Midlands) We value discussion and debate as part of our approach. We will question assumptions, ambition and process - but do so with respect and humility. We relish difficult problems, and overcome them with innovation, creativity and technical freedom to help us design optimum solutions. Ethics, privacy and quality are at the heart of our work and we will not sacrifice these for outcomes. We treat data with respect and use it only for the right purpose. Our people are positive, dedicated and relentless. Data is a vast topic, but we strive for interactions that are engaging, informative and fun in equal measure. But maintain a steely focus on outcomes and delivering quality products for our customers. Requirements Specialised in cloud management of platforms, applications, data and supporting infrastructure in the capacity of a system administrator of either the AWS or Azure platform Developing automation to support continuous delivery of changes using technologies on the Azure platform. Developing infrastructure as a service configuration to automate the creation of infrastructure and platforms to host test and production systems Building and setting up new development tools and infrastructure Understanding the needs of stakeholders and conveying this to developers Working on ways to automate and improve development and release processes Testing and examining code written by others and analysing results Ensuring that systems are safe and secure against cybersecurity threats Familiar with the NCSC secure design principles Familiar with managing security of cloud platforms, including administration of secrets, tokens and certificates. Working with Architects, Data and Software Engineers to ensure that development follows established processes and works as intended Planning out projects and being involved in project management decisions Responsible for the design, security, and maintenance of cloud infrastructure Making and guiding effective decisions, explaining clearly how the decision has been reached with the ability to understand and resolve technical disputes across varying levels of complexity and risk. Communicating effectively across organisational, technical and political boundaries to understand the context and how to make complex and technical information and language simple and accessible for non-technical audiences. Understanding of how to expose data from systems (for example, through APIs), link data from multiple systems and deliver streaming services. Ensuring that risks associated with deployment are adequately understood and documented. Ideal Candidates will demonstrate: Experience working across cyber security teams would be beneficial Solid infrastructure design experience for both on-prem and cloud, to implement or migrate applications and databases to Azure. Solid experience in a range of technologies and be able to make assessments as to what is best to be used for the projects and the organisation. As well as suggest and develop innovative approaches within constrained projects and environments. Strong experience in software development, change/release management processes, and technical governance to fully understand the typical life cycle and maintenance of live systems. Ability to work with containerization platforms such as Kubernetes, PKS, Docker; cloud provisioning software, including Ansible, Terraform, Azure blueprints, ARM templates; and application performance analysis and monitoring Experience of functional and non-functional testing including automated deployment experience of applications and databases. Understanding of the government digital service manual and standards across Discovery/Alpha/Beta/Live phases. Understanding of SaaS, PaaS, IaaS technologies and the implications of their use compared with bespoke development. Being able to provide training, support and mentoring to the wider business Knowledge of how to ensure that risks associated with deployment are adequately understood and documented. Desirable Skills & Experience: Worked as part of a system support team, managing live systems and triaging & resolving incidents to resolution including management of known defects and issues. Worked as part of multi-disciplinary project team. Experience with Terraform to deploy cloud infrastructure in Azure Experience with Azure DevOps and GitHub Actions to automate the build and deploy of containerised applications Experience implementing effective instrumentation to monitor applications Experience implementing SAST and DAST tooling in deployment pipelines like Trivvy and SonarQube Experience of both AWS and Azure Dev Ops tooling. This role will require you to have or be willing to go through Security Clearance. As part of the onboarding process candidates will be asked to complete a Baseline Personnel Security Standard; details of the evidence required to apply may be found on the government website Gov.UK. If you are unable to meet this and any associated criteria, then your employment may be delayed, or rejected. Details of this will be discussed with you at interview. Benefits Methods is passionate about its people; we want our colleagues to develop the things they are good at and enjoy. By joining us you can expect Autonomy to develop and grow your skills and experience Be part of exciting project work that is making a difference in society Strong, inspiring and thought-provoking leadership A supportive and collaborative environment Development - access to LinkedIn Learning, a management development programme, and training Wellness - 24/7 confidential employee assistance programme Flexible Working - including home working and part time Social - office parties, breakfast Tuesdays, monthly pizza Thursdays, Thirsty Thursdays, and commitment to charitable causes Time Off - 25 days of annual leave a year, plus bank holidays, with the option to buy 5 extra days each year Volunteering - 2 paid days per year to volunteer in our local communities or within a charity organisation Pension - Salary Exchange Scheme with 4% employer contribution and 5% employee contribution Discretionary Company Bonus - based on company and individual performance Life Assurance - of 4 times base salary Private Medical Insurance - which is non-contributory (spouse and dependants included) Worldwide Travel Insurance - which is non-contributory (spouse and dependants included) Enhanced Maternity and Paternity Pay Travel - season ticket loan, cycle to work scheme For a full list of benefits please visit our website.
Senior Cyber Security Architect Salary upto £80,000 Description: Since our establishment in 1990, Methods has partnered with a range of central government departments and agencies to transform the way the public sector operates in the UK. Our mission is to improve and safeguard public-facing services. We apply digital thinking to ensure the future of our public services is centred around our citizens. Our human touch sets us apart from other consultancies, system integrators and software houses - we have a customer-centric value system whereby we focus on delivering what is right for our clients. We passionately support our clients in the success of their projects while working collaboratively to share skill sets and solve problems. At Methods we have fun while working hard; we are not afraid of making mistakes and learning from them. Methods are experts in delivering secure, resilient cyber and information services - keeping systems and data safe. We help reduce risk and vulnerabilities from cyber-attacks by developing a security road-map tailored to your unique needs. We help organisations improve processes such as threat management by building an identity management programme, and establishing prevention, detection and response capabilities to cyber-attacks. Requirements Ability to research, articulate, pitch complex and innovative security advice, at both business and technical levels, for new or existing problems, with the objective to justify and communicate decisions directly to key customer stakeholders including senior management. Able to understand and comprehend the impact of decisions, balancing requirements and deciding between approaches Develop vision, principles and strategy for security for multiple projects or technologies; working in a particular field as subject matter expert, to support a team in delivering engagements at scale, which may require subtle security needs and requirements, contributing to development of information security policy, standards, procedures and guidelines. Effective business acumen and an understanding of the cyber security challenges faced by client, with the objective to develop our cyber assurance practice, by supporting business development and practice management. Experience of identifying and applying security risk and familiarity with common control frameworks, with the ability investigating major breaches of security and recommending appropriate control improvements. Maintaining awareness of key business and industry trends and understanding how they impact responses to cyber risk, with the contribution of the development of our team through training and coaching. Managing, delivering, leading cyber security and cyber risk assignments, with the management of portfolio of clients, across a variety of sectors and locations, including producing documentation, presentation, reports, recommendations and quality assuring, for the work produced by team members and being the point of escalation for lower grade roles. Providing our clients with trusted advice, rooted in a pragmatic and agnostic understanding of their business situation and objectives, to help them navigate complex, risk-driven cyber decisions. Working as a subject matter expert in your particular field, owning and delivering initiatives to embed quality through learning and other activity, working seamlessly and collaboratively with colleagues and clients from other service lines, supporting a team or colleagues to deliver engagements at scale, with the appropriate reach and influence across the teams and communities. Managing diverse teams within an inclusive team culture where people are recognised and encouraged for their contribution. Essential Skills and Experience: An experienced consultant with a background in Cyber Security Minimum 5-7 years of experience in Information Security related positions Minimum 3-5 years of experience in security architecture Cyber Security Certification eg ISC2 CISSP, ISC2 CCSP, ISACA CISM or similar Certification in AWS or Azure for Architecture and Security or similar IASME/Cyber Essentials Plus Certified Expert knowledge of secure network architecture and technical design Experience in creating secure architecture in either AWS and/or Azure Experience providing expert strategy, risk and technical advice, guidance and support on cyber security, both in business-as-usual and for live and planned projects within our clients' business. Expected to be the point of escalation for architects in lower grade roles and lead technical design of systems and services Broad range of cyber and information security skills, knowledge and experience such as security threats and vulnerabilities that impact/and/or emanate from system hardware, software and other infrastructure components, and relevant strategies, controls and activities to prevent, mitigate, detect and resolve security incidents affecting system hardware, software and other infrastructure components. Experience in gap analysis for specific domains, identify gaps in existing capabilities, service maturity. Identify missing cybersecurity and cyber-resiliency capabilities in alignment with changing business needs, threat land scape and technical requirements to increase the quality of the selected solutions also including topics such as products' convergence over time and products decommissioning. Expert knowledge of identifying, developing and communicating threat modelling and understanding the impact of decisions, balancing requirements and deciding between approaches Research and apply innovative security architecture solutions to new or existing problems and be able to justify and communicate subtle design decisions Able to develop vision, principles and strategy for security architects for projects or technologies Demonstrably experienced in working as an effective member of a multi-disciplinary team and reach & influence a wide range of people across larger teams and communities. Excellent stakeholder management, presentation and communication skills, with the ability to interact with senior stakeholders across department and clients Pro-active approach to personal and professional development. Work closely with your peers in the security architecture group, service and solution architects, engineers, project teams. Must hold, or be able to hold, an HMG Security Check (SC) clearance. Ability to apply standards, practices, codes and assessment of certification programmes relevant to the IT industry and the specific organisation or business domain. Experience in writing and creating Cyber Security documents ie Risk Assessments, ESRM, DPIA etc and produce particular patterns and support quality assurance Knowledge of the IT/IS infrastructure (eg databases and LANs) and the IT applications and service processes used within own organisation, including those associated with sustainability and efficiency. Ability to use any tool or system which provides security access control (eg Active Directory) Showing proficiency in the principles and application of cloud/virtualisation (including ownership responsibilities and security implications) and be able to use tools and systems to manage virtualised environments eg Server/desktop virtualisation and SDDC (Software Defined Data Centre). Benefits Holiday: 25 days a year, plus bank holidays, with the option to buy 5 extra days each year Pension: 4% employer contribution and 5% employee contribution Discretionary bonus: based on company and individual performance Life assurance: 4 times base salary Private medical insurance: non-contributory (spouse and dependants included) Worldwide travel insurance: non-contributory (spouse and dependants included) Enhanced maternity and paternity leave after 18 months service Wellness: 24/7 confidential employee assistance programme, including counselling Social: Parties and social events, and commitment to charitable causes Professional development: access to LinkedIn Learning, and discretionary training budget Travel: season ticket loan, cycle to work scheme Development access to LinkedIn Learning, a management development programme and training Wellness 24/7 Confidential employee assistance programme
18/04/2024
Full time
Senior Cyber Security Architect Salary upto £80,000 Description: Since our establishment in 1990, Methods has partnered with a range of central government departments and agencies to transform the way the public sector operates in the UK. Our mission is to improve and safeguard public-facing services. We apply digital thinking to ensure the future of our public services is centred around our citizens. Our human touch sets us apart from other consultancies, system integrators and software houses - we have a customer-centric value system whereby we focus on delivering what is right for our clients. We passionately support our clients in the success of their projects while working collaboratively to share skill sets and solve problems. At Methods we have fun while working hard; we are not afraid of making mistakes and learning from them. Methods are experts in delivering secure, resilient cyber and information services - keeping systems and data safe. We help reduce risk and vulnerabilities from cyber-attacks by developing a security road-map tailored to your unique needs. We help organisations improve processes such as threat management by building an identity management programme, and establishing prevention, detection and response capabilities to cyber-attacks. Requirements Ability to research, articulate, pitch complex and innovative security advice, at both business and technical levels, for new or existing problems, with the objective to justify and communicate decisions directly to key customer stakeholders including senior management. Able to understand and comprehend the impact of decisions, balancing requirements and deciding between approaches Develop vision, principles and strategy for security for multiple projects or technologies; working in a particular field as subject matter expert, to support a team in delivering engagements at scale, which may require subtle security needs and requirements, contributing to development of information security policy, standards, procedures and guidelines. Effective business acumen and an understanding of the cyber security challenges faced by client, with the objective to develop our cyber assurance practice, by supporting business development and practice management. Experience of identifying and applying security risk and familiarity with common control frameworks, with the ability investigating major breaches of security and recommending appropriate control improvements. Maintaining awareness of key business and industry trends and understanding how they impact responses to cyber risk, with the contribution of the development of our team through training and coaching. Managing, delivering, leading cyber security and cyber risk assignments, with the management of portfolio of clients, across a variety of sectors and locations, including producing documentation, presentation, reports, recommendations and quality assuring, for the work produced by team members and being the point of escalation for lower grade roles. Providing our clients with trusted advice, rooted in a pragmatic and agnostic understanding of their business situation and objectives, to help them navigate complex, risk-driven cyber decisions. Working as a subject matter expert in your particular field, owning and delivering initiatives to embed quality through learning and other activity, working seamlessly and collaboratively with colleagues and clients from other service lines, supporting a team or colleagues to deliver engagements at scale, with the appropriate reach and influence across the teams and communities. Managing diverse teams within an inclusive team culture where people are recognised and encouraged for their contribution. Essential Skills and Experience: An experienced consultant with a background in Cyber Security Minimum 5-7 years of experience in Information Security related positions Minimum 3-5 years of experience in security architecture Cyber Security Certification eg ISC2 CISSP, ISC2 CCSP, ISACA CISM or similar Certification in AWS or Azure for Architecture and Security or similar IASME/Cyber Essentials Plus Certified Expert knowledge of secure network architecture and technical design Experience in creating secure architecture in either AWS and/or Azure Experience providing expert strategy, risk and technical advice, guidance and support on cyber security, both in business-as-usual and for live and planned projects within our clients' business. Expected to be the point of escalation for architects in lower grade roles and lead technical design of systems and services Broad range of cyber and information security skills, knowledge and experience such as security threats and vulnerabilities that impact/and/or emanate from system hardware, software and other infrastructure components, and relevant strategies, controls and activities to prevent, mitigate, detect and resolve security incidents affecting system hardware, software and other infrastructure components. Experience in gap analysis for specific domains, identify gaps in existing capabilities, service maturity. Identify missing cybersecurity and cyber-resiliency capabilities in alignment with changing business needs, threat land scape and technical requirements to increase the quality of the selected solutions also including topics such as products' convergence over time and products decommissioning. Expert knowledge of identifying, developing and communicating threat modelling and understanding the impact of decisions, balancing requirements and deciding between approaches Research and apply innovative security architecture solutions to new or existing problems and be able to justify and communicate subtle design decisions Able to develop vision, principles and strategy for security architects for projects or technologies Demonstrably experienced in working as an effective member of a multi-disciplinary team and reach & influence a wide range of people across larger teams and communities. Excellent stakeholder management, presentation and communication skills, with the ability to interact with senior stakeholders across department and clients Pro-active approach to personal and professional development. Work closely with your peers in the security architecture group, service and solution architects, engineers, project teams. Must hold, or be able to hold, an HMG Security Check (SC) clearance. Ability to apply standards, practices, codes and assessment of certification programmes relevant to the IT industry and the specific organisation or business domain. Experience in writing and creating Cyber Security documents ie Risk Assessments, ESRM, DPIA etc and produce particular patterns and support quality assurance Knowledge of the IT/IS infrastructure (eg databases and LANs) and the IT applications and service processes used within own organisation, including those associated with sustainability and efficiency. Ability to use any tool or system which provides security access control (eg Active Directory) Showing proficiency in the principles and application of cloud/virtualisation (including ownership responsibilities and security implications) and be able to use tools and systems to manage virtualised environments eg Server/desktop virtualisation and SDDC (Software Defined Data Centre). Benefits Holiday: 25 days a year, plus bank holidays, with the option to buy 5 extra days each year Pension: 4% employer contribution and 5% employee contribution Discretionary bonus: based on company and individual performance Life assurance: 4 times base salary Private medical insurance: non-contributory (spouse and dependants included) Worldwide travel insurance: non-contributory (spouse and dependants included) Enhanced maternity and paternity leave after 18 months service Wellness: 24/7 confidential employee assistance programme, including counselling Social: Parties and social events, and commitment to charitable causes Professional development: access to LinkedIn Learning, and discretionary training budget Travel: season ticket loan, cycle to work scheme Development access to LinkedIn Learning, a management development programme and training Wellness 24/7 Confidential employee assistance programme
Position: Senior Network Engineer - SC Cleared Location: Rugby, UK Duration: Permanent JOB DESCRIPTION: Technical Network Engineer role, responsible for supporting the Network Infrastructure and associated DC services. This includes operational and administrative tasks under an ITIL framework to deliver support for two Data Centre's. The role is to deliver Network Service Requests, Incident resolution, and Change execution for the Data Centre's network environments. Qualifications/Requirements: Candidate must have valid Security Clearance. Strong Network Data and Security knowledge. CCNA Level networking knowledge. Strong knowledge of configuring Router, Switches, and Firewalls. Prior experience of NoC/Incident Handling and supporting Network technologies such as routing/switching, Firewalls, load balancers, and proxies that underpin multiple data centres. Experience working with alerting and monitoring tools such as CISCO DNA-C, Prime, Nagios etc. Experience working with any ITSM tool such as Service Now. ITILv3/ITIL4 certified or recent relevant experience working in ITIL controlled environment. Strong verbal and written communication skills. Role includes P1 Operational on-call support, subject to scheduling. Essential Responsibilities Operational support of Network environments across two UK Data Centres. Support in-house ticket analysis, workgroup management and escalations. Support Service utilities that underpin regional IT operations, including Monitoring & Alerting products. Technically support any requirements across the Cyber Security, Application, and Infrastructure groups in region. Follow and promote change control processes to ensure compliance and protect service. Follow asset management processes in region and improve CMDB accuracy. Document and control Standard Operating Procedure (SOP's) for IT processes. Promote and demonstrate an Automation First thinking. Deliver best fit use cases for automation. Collaboration with other teams across Linux, Windows, and DB teams. Desired Characteristics Demonstrate technical understanding of DC Architecture, Infrastructure, and service management. Experience with Packet Analysis. Experience with Load Balancers and Proxy. Experience in network tools such as DNA Centre/Infoblox/Prime. SoC Experience and some understanding of WAF and Firewall logs etc. Quickly able to technically analyses, diagnose, and resolve technical operational incidents and requests. Customer first delivery. Resolve issues with a desire to maintain service uptime & performance
18/04/2024
Full time
Position: Senior Network Engineer - SC Cleared Location: Rugby, UK Duration: Permanent JOB DESCRIPTION: Technical Network Engineer role, responsible for supporting the Network Infrastructure and associated DC services. This includes operational and administrative tasks under an ITIL framework to deliver support for two Data Centre's. The role is to deliver Network Service Requests, Incident resolution, and Change execution for the Data Centre's network environments. Qualifications/Requirements: Candidate must have valid Security Clearance. Strong Network Data and Security knowledge. CCNA Level networking knowledge. Strong knowledge of configuring Router, Switches, and Firewalls. Prior experience of NoC/Incident Handling and supporting Network technologies such as routing/switching, Firewalls, load balancers, and proxies that underpin multiple data centres. Experience working with alerting and monitoring tools such as CISCO DNA-C, Prime, Nagios etc. Experience working with any ITSM tool such as Service Now. ITILv3/ITIL4 certified or recent relevant experience working in ITIL controlled environment. Strong verbal and written communication skills. Role includes P1 Operational on-call support, subject to scheduling. Essential Responsibilities Operational support of Network environments across two UK Data Centres. Support in-house ticket analysis, workgroup management and escalations. Support Service utilities that underpin regional IT operations, including Monitoring & Alerting products. Technically support any requirements across the Cyber Security, Application, and Infrastructure groups in region. Follow and promote change control processes to ensure compliance and protect service. Follow asset management processes in region and improve CMDB accuracy. Document and control Standard Operating Procedure (SOP's) for IT processes. Promote and demonstrate an Automation First thinking. Deliver best fit use cases for automation. Collaboration with other teams across Linux, Windows, and DB teams. Desired Characteristics Demonstrate technical understanding of DC Architecture, Infrastructure, and service management. Experience with Packet Analysis. Experience with Load Balancers and Proxy. Experience in network tools such as DNA Centre/Infoblox/Prime. SoC Experience and some understanding of WAF and Firewall logs etc. Quickly able to technically analyses, diagnose, and resolve technical operational incidents and requests. Customer first delivery. Resolve issues with a desire to maintain service uptime & performance
Cyber Security Architect/Solution Architect/Enterprise Architect with sound knowledge of core Cyber Security. You will be require to go into the office at least twice a week As a Cyber Security Architect, you will be responsible for designing and implementing comprehensive security solutions to protect an organisation's information systems. You will work closely with various stakeholders including IT teams, business leaders, and external partners to understand business requirements and develop strategies to mitigate cybersecurity risks. Your primary objective will be to create a robust security architecture that aligns with industry best practices and regulatory requirements while supporting the organization's objectives. Key Responsibilities: Develop and maintain a detailed security architecture that encompasses network, infrastructure, applications, and data security. Ensure that the architecture aligns with the organization's business goals and supports scalability and flexibility. Conduct thorough risk assessments to identify potential vulnerabilities and threats to the organization's information systems. Develop risk mitigation strategies and security controls to address identified risks effectively. Define security policies, standards, and procedures in alignment with industry regulations and best practices (such as ISO 27001, NIST, GDPR). Ensure compliance with relevant regulations and standards through regular audits and assessments. Evaluate new and emerging security technologies, tools, and methodologies. Recommend and implement appropriate security solutions to enhance the organization's security posture and resilience against cyber threats. Develop and maintain incident response plans and procedures to effectively respond to security incidents and breaches. Coordinate with internal teams and external stakeholders to contain incidents, minimize impact, and restore normal operations. Promote a culture of security awareness throughout the organization. Develop and deliver training programs to educate employees about cybersecurity best practices, policies, and procedures. Collaborate with cross-functional teams including IT, legal, compliance, and risk management to ensure alignment of security initiatives with business objectives. Communicate security risks, issues, and recommendations to senior management and stakeholders in a clear and concise manner. Qualifications and Skills: Bachelor's degree in Computer Science, Information Technology, or related field. Advanced degree or certifications (eg, CISSP, CISM, CEH) preferred. Proven experience (5+ years) in cybersecurity architecture, design, and implementation. Deep understanding of cybersecurity principles, technologies, and best practices. Experience with security frameworks and standards (eg, ISO 27001, NIST Cybersecurity Framework). Strong analytical and problem-solving skills with the ability to assess complex security challenges and develop innovative solutions. Excellent communication and interpersonal skills, with the ability to effectively engage with stakeholders at all levels of the organization. Strong project management skills with the ability to prioritize tasks, manage resources, and meet deadlines effectively.
18/04/2024
Full time
Cyber Security Architect/Solution Architect/Enterprise Architect with sound knowledge of core Cyber Security. You will be require to go into the office at least twice a week As a Cyber Security Architect, you will be responsible for designing and implementing comprehensive security solutions to protect an organisation's information systems. You will work closely with various stakeholders including IT teams, business leaders, and external partners to understand business requirements and develop strategies to mitigate cybersecurity risks. Your primary objective will be to create a robust security architecture that aligns with industry best practices and regulatory requirements while supporting the organization's objectives. Key Responsibilities: Develop and maintain a detailed security architecture that encompasses network, infrastructure, applications, and data security. Ensure that the architecture aligns with the organization's business goals and supports scalability and flexibility. Conduct thorough risk assessments to identify potential vulnerabilities and threats to the organization's information systems. Develop risk mitigation strategies and security controls to address identified risks effectively. Define security policies, standards, and procedures in alignment with industry regulations and best practices (such as ISO 27001, NIST, GDPR). Ensure compliance with relevant regulations and standards through regular audits and assessments. Evaluate new and emerging security technologies, tools, and methodologies. Recommend and implement appropriate security solutions to enhance the organization's security posture and resilience against cyber threats. Develop and maintain incident response plans and procedures to effectively respond to security incidents and breaches. Coordinate with internal teams and external stakeholders to contain incidents, minimize impact, and restore normal operations. Promote a culture of security awareness throughout the organization. Develop and deliver training programs to educate employees about cybersecurity best practices, policies, and procedures. Collaborate with cross-functional teams including IT, legal, compliance, and risk management to ensure alignment of security initiatives with business objectives. Communicate security risks, issues, and recommendations to senior management and stakeholders in a clear and concise manner. Qualifications and Skills: Bachelor's degree in Computer Science, Information Technology, or related field. Advanced degree or certifications (eg, CISSP, CISM, CEH) preferred. Proven experience (5+ years) in cybersecurity architecture, design, and implementation. Deep understanding of cybersecurity principles, technologies, and best practices. Experience with security frameworks and standards (eg, ISO 27001, NIST Cybersecurity Framework). Strong analytical and problem-solving skills with the ability to assess complex security challenges and develop innovative solutions. Excellent communication and interpersonal skills, with the ability to effectively engage with stakeholders at all levels of the organization. Strong project management skills with the ability to prioritize tasks, manage resources, and meet deadlines effectively.
Conexus are partnered with one of the most recognisable names when it comes to IT Consulting, this is a fantastic opportunity to join an industry leading company to establish best practices for Cloud and Infrastructure Security. We empower organisations to navigate their digital transformation with a security-first approach. In this role, you'll be responsible for designing and implementing secure solutions that align with clients' business needs, ensuring a smooth adoption process. Join a dynamic and rapidly expanding organisation at the forefront of business innovation in Switzerland. We are seeking talented individuals who are passionate about driving client success and are ready to make a lasting impact in the world of business solutions. Your Impact: Collaborate with clients to understand their security vulnerabilities and threats. Develop strategies and blueprints for secure cloud and network solutions. Lead a team to implement these solutions. Guide clients in adopting advanced security and networking technologies. Who You Are: 5+ years of experience in security consulting, professional services, or internal security consulting. Strong analytical and problem-solving skills with clear and concise communication abilities. Passionate about cybersecurity, cloud, networking, and zero-trust principles, with expertise in multiple security domains. Relevant background in IT security, cybersecurity, or a related field. In-depth understanding of secure cloud infrastructure (AWS, Azure, GCP), leading technology solutions, and experience with enterprise networking, security engineering (on-premise and cloud), and identity and access management (IAM). Familiarity with security tools like Cisco, Palo Alto, CrowdStrike, Zscaler, Netskope, or similar (advantageous). Additional Information: Fluency in English is required. German or French is a plus. Join a diverse and motivated team of cybersecurity professionals in Switzerland. We offer comprehensive development opportunities through training, mentoring, and cross-team collaboration. We foster a welcoming and inclusive environment where you can thrive and celebrate your achievements. Be bold, think big, and challenge the status quo. We'll support your career growth at every step. If this position is of interest, apply here or contact me directly for more details.
17/04/2024
Full time
Conexus are partnered with one of the most recognisable names when it comes to IT Consulting, this is a fantastic opportunity to join an industry leading company to establish best practices for Cloud and Infrastructure Security. We empower organisations to navigate their digital transformation with a security-first approach. In this role, you'll be responsible for designing and implementing secure solutions that align with clients' business needs, ensuring a smooth adoption process. Join a dynamic and rapidly expanding organisation at the forefront of business innovation in Switzerland. We are seeking talented individuals who are passionate about driving client success and are ready to make a lasting impact in the world of business solutions. Your Impact: Collaborate with clients to understand their security vulnerabilities and threats. Develop strategies and blueprints for secure cloud and network solutions. Lead a team to implement these solutions. Guide clients in adopting advanced security and networking technologies. Who You Are: 5+ years of experience in security consulting, professional services, or internal security consulting. Strong analytical and problem-solving skills with clear and concise communication abilities. Passionate about cybersecurity, cloud, networking, and zero-trust principles, with expertise in multiple security domains. Relevant background in IT security, cybersecurity, or a related field. In-depth understanding of secure cloud infrastructure (AWS, Azure, GCP), leading technology solutions, and experience with enterprise networking, security engineering (on-premise and cloud), and identity and access management (IAM). Familiarity with security tools like Cisco, Palo Alto, CrowdStrike, Zscaler, Netskope, or similar (advantageous). Additional Information: Fluency in English is required. German or French is a plus. Join a diverse and motivated team of cybersecurity professionals in Switzerland. We offer comprehensive development opportunities through training, mentoring, and cross-team collaboration. We foster a welcoming and inclusive environment where you can thrive and celebrate your achievements. Be bold, think big, and challenge the status quo. We'll support your career growth at every step. If this position is of interest, apply here or contact me directly for more details.
Head of IT Location: Knottingley, West Yorkshire Salary: £55,000 + Benefits Our client are a non for profit Charity who have a personal centred support approach helping and assisting people to live a fulfilled life. As a growing organisation they are now looking to fill the role of Head of IT to take the strategic lead with an entrepreneurial spirit for the operational improvements that involve technology which include; Lead on Data management and exploitation. Lead on technology aspects of digital transformation to support care and support including AI opportunities. Delivery of key strategic projects or programs of work that contribute to the overall RLO Group Strategic Plan ensuring clearly defined return on investment criteria. Support the IT leads to ensure operational service supports the introduction of new initiatives but also ensure business as usual operations remain effective. Escalation point for high priority IT issues. Identify opportunities for process or system efficiency. Provide assurance to the Board of compliance with all existing and new security or legislation developments that may affect data. Ensure that the risk of Cyber-attacks is minimised. Translation of all systems activity into a clearly defined, scalable IT systems strategy. Report at board level on delivery of IT Strategy. Main Duties and Responsibilities: Provides clear leadership consistent with our vision, mission and values Embed the organisational values of Respect, Honesty, Responsibility and Achieving Excellence in everything you do. With a person-centred approach, support the Leadership Team, in shaping the development of an optimal portfolio of systems and processes, to support RLO growth ambitions and maximise partnership opportunities both within the social care sector and private sector. Lead, build and learn from, a team of IT experts. Provide regular contribution to SLG team members and meetings. Mentor more junior SLG members and team members Qualifications Educated to first degree level or above (or evidence of significant professional experience in strategy, product, or care). (Essential) Hold an appropriate professional and/or management qualification eg, MSC in Business, Finance, IT Strategy. MBA on a desirable basis. (Desirable) Enterprise IT system management qualifications. (Essential) Expertise in SharePoint. (Essential) Expertise in Power BI. (Essential) Strong evidence of continuing professional development, especially in IT Strategy, Programme management and strategic development. (Desirable) Project Management qualification (Prince 2 or similar). (Desirable) Experience Experience of working at senior strategic level within a complex organisation. (Desirable) An excellent knowledge and understanding of the health and social care marketplace, understanding of key functions that support a large geographically spread company and knowledge of a number of operating models. (Desirable) Experience of defining strategic outcomes and proven ability to deliver. (Essential) Knowledge of managing large service outsource contracts. (Essential) Experience of managing an enterprise IT architecture including cloud solutions. (Essential) Experience of managing and implementing enterprise level systems. (Essential) Experience leading change in large organisations. (Desirable) Skills and Knowledge Proven entrepreneurial flair for social business. (Desirable) IT proficient. (Essential) Financially literate. (Desirable) Able to think and act strategically. (Essential) Natural innovator. (Essential) Strong networker and able to effectively build good working relationships with suppliers and partners. (Essential) Self-driven, results oriented with a positive outlook and a clear outlook on high quality service delivery. (Essential) A natural forward planner who critically assesses own performance. (Essential) Experience of project management and working to deadlines. (Essential) Able to prioritise competing demands and work flexibly. (Essential) A common sense, flexible and pragmatic approach to problem solving and decision making. (Essential) Strong commercial acumen. (Essential)
17/04/2024
Full time
Head of IT Location: Knottingley, West Yorkshire Salary: £55,000 + Benefits Our client are a non for profit Charity who have a personal centred support approach helping and assisting people to live a fulfilled life. As a growing organisation they are now looking to fill the role of Head of IT to take the strategic lead with an entrepreneurial spirit for the operational improvements that involve technology which include; Lead on Data management and exploitation. Lead on technology aspects of digital transformation to support care and support including AI opportunities. Delivery of key strategic projects or programs of work that contribute to the overall RLO Group Strategic Plan ensuring clearly defined return on investment criteria. Support the IT leads to ensure operational service supports the introduction of new initiatives but also ensure business as usual operations remain effective. Escalation point for high priority IT issues. Identify opportunities for process or system efficiency. Provide assurance to the Board of compliance with all existing and new security or legislation developments that may affect data. Ensure that the risk of Cyber-attacks is minimised. Translation of all systems activity into a clearly defined, scalable IT systems strategy. Report at board level on delivery of IT Strategy. Main Duties and Responsibilities: Provides clear leadership consistent with our vision, mission and values Embed the organisational values of Respect, Honesty, Responsibility and Achieving Excellence in everything you do. With a person-centred approach, support the Leadership Team, in shaping the development of an optimal portfolio of systems and processes, to support RLO growth ambitions and maximise partnership opportunities both within the social care sector and private sector. Lead, build and learn from, a team of IT experts. Provide regular contribution to SLG team members and meetings. Mentor more junior SLG members and team members Qualifications Educated to first degree level or above (or evidence of significant professional experience in strategy, product, or care). (Essential) Hold an appropriate professional and/or management qualification eg, MSC in Business, Finance, IT Strategy. MBA on a desirable basis. (Desirable) Enterprise IT system management qualifications. (Essential) Expertise in SharePoint. (Essential) Expertise in Power BI. (Essential) Strong evidence of continuing professional development, especially in IT Strategy, Programme management and strategic development. (Desirable) Project Management qualification (Prince 2 or similar). (Desirable) Experience Experience of working at senior strategic level within a complex organisation. (Desirable) An excellent knowledge and understanding of the health and social care marketplace, understanding of key functions that support a large geographically spread company and knowledge of a number of operating models. (Desirable) Experience of defining strategic outcomes and proven ability to deliver. (Essential) Knowledge of managing large service outsource contracts. (Essential) Experience of managing an enterprise IT architecture including cloud solutions. (Essential) Experience of managing and implementing enterprise level systems. (Essential) Experience leading change in large organisations. (Desirable) Skills and Knowledge Proven entrepreneurial flair for social business. (Desirable) IT proficient. (Essential) Financially literate. (Desirable) Able to think and act strategically. (Essential) Natural innovator. (Essential) Strong networker and able to effectively build good working relationships with suppliers and partners. (Essential) Self-driven, results oriented with a positive outlook and a clear outlook on high quality service delivery. (Essential) A natural forward planner who critically assesses own performance. (Essential) Experience of project management and working to deadlines. (Essential) Able to prioritise competing demands and work flexibly. (Essential) A common sense, flexible and pragmatic approach to problem solving and decision making. (Essential) Strong commercial acumen. (Essential)
LA International Computer Consultants Ltd
Hereford, Herefordshire
DV Cleared Onsite in Hereford Duration: 6 months initially Market Rates via Umbrella Role Description: Cyber Defence Engineer will join a growing security team responsible for the testing, implementation, deployment, maintenance, configuration and troubleshooting of the SOC's technology stack (hardware and software). The engineer will also assist with the continued development and maintenance of data pipelines and signature updates and the professional development of the system engineering team. Tasks: * Perform system administration on specific cyber defence applications and systems to include installation, configuration, maintenance, troubleshooting, backup and restoration. * Manage system/server resources including performance, capacity, availability, serviceability, and recoverability. * Diagnose and resolve customer reported system incidents, problems, and events to ensure continuing operability. * Coordinate with SOC and CTI Analysts to assist in the development of signatures which can be implemented on cyber defence network tools in response to new or observed threats within the network environment or enclave. * Manage the compilation, cataloguing, distribution, and retrieval of data from a range of enterprise networks and data sources. * Implement data management standards, requirements, and specifications. * Develop data standards, policies, and procedures. * Analyse data sources to provide actionable recommendations and facilitate data-gathering methods. * To share knowledge, skills and experience, create and improve documentation, and train new members of the data engineering team. Knowledge: * Knowledge of big data technologies and ecosystems (eg, NiFi). * Knowledge of current market and emerging leaders in data analytical and SIEM platforms. * Knowledge of network security implementations (eg, host-based IDS, IPS), including their function and placement in a network. * Knowledge of intrusion detection systems and signature development. * Knowledge of Front End collection systems, including network traffic collection, filtering, and selection. * Knowledge of system administration concepts for operating systems such as but not limited to Unix/Linux, IOS, Android, and Windows operating systems. * Knowledge of cyber defence and information security policies, procedures and regulations. * Knowledge of network security architecture concepts including topology, protocols, components and principles. Skills/Experience: * Previous experience of Enterprise ICS/network architectures and technologies. * Working with frameworks and technologies that support data-intensive distributed applications. * Experience maintaining and administrating data analytical and SIEM platforms. * Experience using host and network-based IDS/IPS. Experience using packet capture solutions. * Skill in developing and deploying signatures. * Skill to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation). * Ability to provide technical and service leadership to junior SOC Engineers (mentor/coach). Desirable Qualifications/Certifications * Red Hat System Administration I & II (RH124/RH134). * Baseline Cyber Courses eg Cyber Foundation Pathway, SANS SEC 301 Intro to Information Security, SANS 401 Security Essentials Bootcamp. * Certified engineer in a market leading data analysis/SIEM platform. * SANS SEC501 Advanced Security Essentials Enterprise Defender. * SANS SEC 511 Continuous Monitoring & Security Operations. * SANS SEC555: SIEM with Tactical Analytics Available locations: -Hereford -Northallerton -Corsham -Portsmouth Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take up to a minimum 18 weeks. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.
17/04/2024
Project-based
DV Cleared Onsite in Hereford Duration: 6 months initially Market Rates via Umbrella Role Description: Cyber Defence Engineer will join a growing security team responsible for the testing, implementation, deployment, maintenance, configuration and troubleshooting of the SOC's technology stack (hardware and software). The engineer will also assist with the continued development and maintenance of data pipelines and signature updates and the professional development of the system engineering team. Tasks: * Perform system administration on specific cyber defence applications and systems to include installation, configuration, maintenance, troubleshooting, backup and restoration. * Manage system/server resources including performance, capacity, availability, serviceability, and recoverability. * Diagnose and resolve customer reported system incidents, problems, and events to ensure continuing operability. * Coordinate with SOC and CTI Analysts to assist in the development of signatures which can be implemented on cyber defence network tools in response to new or observed threats within the network environment or enclave. * Manage the compilation, cataloguing, distribution, and retrieval of data from a range of enterprise networks and data sources. * Implement data management standards, requirements, and specifications. * Develop data standards, policies, and procedures. * Analyse data sources to provide actionable recommendations and facilitate data-gathering methods. * To share knowledge, skills and experience, create and improve documentation, and train new members of the data engineering team. Knowledge: * Knowledge of big data technologies and ecosystems (eg, NiFi). * Knowledge of current market and emerging leaders in data analytical and SIEM platforms. * Knowledge of network security implementations (eg, host-based IDS, IPS), including their function and placement in a network. * Knowledge of intrusion detection systems and signature development. * Knowledge of Front End collection systems, including network traffic collection, filtering, and selection. * Knowledge of system administration concepts for operating systems such as but not limited to Unix/Linux, IOS, Android, and Windows operating systems. * Knowledge of cyber defence and information security policies, procedures and regulations. * Knowledge of network security architecture concepts including topology, protocols, components and principles. Skills/Experience: * Previous experience of Enterprise ICS/network architectures and technologies. * Working with frameworks and technologies that support data-intensive distributed applications. * Experience maintaining and administrating data analytical and SIEM platforms. * Experience using host and network-based IDS/IPS. Experience using packet capture solutions. * Skill in developing and deploying signatures. * Skill to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation). * Ability to provide technical and service leadership to junior SOC Engineers (mentor/coach). Desirable Qualifications/Certifications * Red Hat System Administration I & II (RH124/RH134). * Baseline Cyber Courses eg Cyber Foundation Pathway, SANS SEC 301 Intro to Information Security, SANS 401 Security Essentials Bootcamp. * Certified engineer in a market leading data analysis/SIEM platform. * SANS SEC501 Advanced Security Essentials Enterprise Defender. * SANS SEC 511 Continuous Monitoring & Security Operations. * SANS SEC555: SIEM with Tactical Analytics Available locations: -Hereford -Northallerton -Corsham -Portsmouth Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take up to a minimum 18 weeks. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.
Job: Security Architect Location: Reading, UK, Hybrid Job Type: Permanent Job Description We are seeking a highly skilled and experienced Security Architect to join our team who will be responsible for development of the Security Architecture that ensures the appropriate protection of all aspects of security, (people, process, electronic, data, physical) in Spring Fibre. You will be a subject matter expert and provide security guidance and recommendations to technology/business teams and contribute toSpring's security policies, standards, and guidelines related to information and Network security. This is a technical role and suitable for someone who has hands on experience in Cybersecurity. Responsibilities Help develop an Enterprise Security Architecture Framework, including patterns for identity & authentication, authorization and access control, cryptographic key and certificate management, auditing and security monitoring, data leakage prevention, privacy enhancement & protection and other standards in alignment with Enterprise Architect platforms. Establish metrics and monitoring to report the effectiveness and efficiency of the Security Architecture function. Identify, register and maintain security risks throughout their lifetimes, including agreeing treatment of risks with their owners, and reporting &escalating to Internal Audit and the CIO, when necessary. Develop, review and update security & privacy policies & standards and provide awareness guidelines, implementation and exceptions advice. Engage with owners & custodians of BAU IT systems to understand the architecture, data flow and security controls in their systems. Conduct periodic security compliance assessments and ISO 27001/2 reviews of BAU IT applications, infrastructures & ISMS. Review the security posture of potential M&A acquisition targets. Requirement Mapping long term business requirements to security architecture frameworks such as NIST, CIS etc. Experience delivering Hybrid Cloud and Internet facing applications with a strong focus on cyber security. Broad hands-on knowledge of Firewalls, intrusion detection systems, data encryption, and other industry-standard techniques and practices. Strong knowledge of IT infrastructure, IP Networking, security best practices, and automation technologies. Application security: including but not limited to: authentication, identity and access management, auditing, use of cryptography, data security, privacy enhancing technologies, web services security, OWASP, threat & vulnerability management and secure code development methodologies. Infrastructure security: including but not limited to: network security, host security, database security, device security, VPNs & SSLs, secure file transfers, security event monitoring, malware security and cyber security. Operational security: including but not limited to: incident management, change & patch management, data centre & physical security, backups, DR & BCP, outsourcing, managed services, cloud computing, asset management, cryptographic keys & certificate management, PCI DSS and DPA compliance and ISO 27001/2. Analysing network security controls, including Firewall and Router security configuration. Preferred Delivering the security review processes and frameworks, with full audit trail. Managing multiple security assessments and changing priorities, simultaneously Ensuring Security Architecture Review is built into group wide and business specific processes for acquiring and developing new technology,including developing any needed processes. Aligning business requirements to complex security architecture frameworks. Skills Required: In depth knowledge of: Firewall: Juniper/Cisco/PaloAlto. Onion Security, Splunk, Suricata, Kali. Application Security. Identity and Access Management. Data Protection. Endpoint Security. Cyber Security Operations. Experienced with Threat Modelling. Pen testing and basic incident response. Scripting languages ( python, or PowerShell/building dashboards/au-tomating common tasks) Preferred: Experience in designing systems against a zero-trust architecture. Experience with designing SOC architectures (ie SIEM, SOAR and vulnerability management solutions). Expert-level certification in either AWS or Azure, with a Security specialization. Experience in working within regulated environments, such as PCI-DSS Experience in defining secure development life cycles. Qualifications Bachelor's Degree in either Computer Science, Computer Engineering, Software Engineering, Electrical Engineering, Math, Physics. CISSP, Certified Information Systems Security Professional, International Information Systems Security Certification Consortium (ISC2) Certification, Microsoft Azure Solutions Architect, or AWS Solutions Architect.
17/04/2024
Full time
Job: Security Architect Location: Reading, UK, Hybrid Job Type: Permanent Job Description We are seeking a highly skilled and experienced Security Architect to join our team who will be responsible for development of the Security Architecture that ensures the appropriate protection of all aspects of security, (people, process, electronic, data, physical) in Spring Fibre. You will be a subject matter expert and provide security guidance and recommendations to technology/business teams and contribute toSpring's security policies, standards, and guidelines related to information and Network security. This is a technical role and suitable for someone who has hands on experience in Cybersecurity. Responsibilities Help develop an Enterprise Security Architecture Framework, including patterns for identity & authentication, authorization and access control, cryptographic key and certificate management, auditing and security monitoring, data leakage prevention, privacy enhancement & protection and other standards in alignment with Enterprise Architect platforms. Establish metrics and monitoring to report the effectiveness and efficiency of the Security Architecture function. Identify, register and maintain security risks throughout their lifetimes, including agreeing treatment of risks with their owners, and reporting &escalating to Internal Audit and the CIO, when necessary. Develop, review and update security & privacy policies & standards and provide awareness guidelines, implementation and exceptions advice. Engage with owners & custodians of BAU IT systems to understand the architecture, data flow and security controls in their systems. Conduct periodic security compliance assessments and ISO 27001/2 reviews of BAU IT applications, infrastructures & ISMS. Review the security posture of potential M&A acquisition targets. Requirement Mapping long term business requirements to security architecture frameworks such as NIST, CIS etc. Experience delivering Hybrid Cloud and Internet facing applications with a strong focus on cyber security. Broad hands-on knowledge of Firewalls, intrusion detection systems, data encryption, and other industry-standard techniques and practices. Strong knowledge of IT infrastructure, IP Networking, security best practices, and automation technologies. Application security: including but not limited to: authentication, identity and access management, auditing, use of cryptography, data security, privacy enhancing technologies, web services security, OWASP, threat & vulnerability management and secure code development methodologies. Infrastructure security: including but not limited to: network security, host security, database security, device security, VPNs & SSLs, secure file transfers, security event monitoring, malware security and cyber security. Operational security: including but not limited to: incident management, change & patch management, data centre & physical security, backups, DR & BCP, outsourcing, managed services, cloud computing, asset management, cryptographic keys & certificate management, PCI DSS and DPA compliance and ISO 27001/2. Analysing network security controls, including Firewall and Router security configuration. Preferred Delivering the security review processes and frameworks, with full audit trail. Managing multiple security assessments and changing priorities, simultaneously Ensuring Security Architecture Review is built into group wide and business specific processes for acquiring and developing new technology,including developing any needed processes. Aligning business requirements to complex security architecture frameworks. Skills Required: In depth knowledge of: Firewall: Juniper/Cisco/PaloAlto. Onion Security, Splunk, Suricata, Kali. Application Security. Identity and Access Management. Data Protection. Endpoint Security. Cyber Security Operations. Experienced with Threat Modelling. Pen testing and basic incident response. Scripting languages ( python, or PowerShell/building dashboards/au-tomating common tasks) Preferred: Experience in designing systems against a zero-trust architecture. Experience with designing SOC architectures (ie SIEM, SOAR and vulnerability management solutions). Expert-level certification in either AWS or Azure, with a Security specialization. Experience in working within regulated environments, such as PCI-DSS Experience in defining secure development life cycles. Qualifications Bachelor's Degree in either Computer Science, Computer Engineering, Software Engineering, Electrical Engineering, Math, Physics. CISSP, Certified Information Systems Security Professional, International Information Systems Security Certification Consortium (ISC2) Certification, Microsoft Azure Solutions Architect, or AWS Solutions Architect.
Job description: Knowledge and awareness sharing within the security team regarding Security Architecture, Azure Security Components, Google Cloud and or Security Strategies such as Zero Trust. Manage and drive activities from the backlog based on identified needs from different levels of the organization e. g Initiatives, Value Streams or Tech Centers. Collaborate with and support teams in the organization to achieve objectives (eg: business continuity) and to continuously improve security Experience of security controls based on ISO 2700X, CIS, NIS2 or NIST Experience of supporting stakeholders to conduct the risk assessment for the products or solutions Experience of supporting stakeholders in DevSecOps Experience of support stakeholders to manage the security controls on 3rd party vendors or suppliers Experience with supporting stakeholders in GDPR & other Data Privacy laws Knowledge in AI, generative AI and ML Qualifying requirements: Experience of E-commerce technologies is a merit Experience of retail business is a merit Experience of other data privacy laws is a merit Experience of working in an agile organization Required cloud certification: MS-900 Hybrid working - Stockholm 12 months rolling contract Rate - Negotiable
16/04/2024
Project-based
Job description: Knowledge and awareness sharing within the security team regarding Security Architecture, Azure Security Components, Google Cloud and or Security Strategies such as Zero Trust. Manage and drive activities from the backlog based on identified needs from different levels of the organization e. g Initiatives, Value Streams or Tech Centers. Collaborate with and support teams in the organization to achieve objectives (eg: business continuity) and to continuously improve security Experience of security controls based on ISO 2700X, CIS, NIS2 or NIST Experience of supporting stakeholders to conduct the risk assessment for the products or solutions Experience of supporting stakeholders in DevSecOps Experience of support stakeholders to manage the security controls on 3rd party vendors or suppliers Experience with supporting stakeholders in GDPR & other Data Privacy laws Knowledge in AI, generative AI and ML Qualifying requirements: Experience of E-commerce technologies is a merit Experience of retail business is a merit Experience of other data privacy laws is a merit Experience of working in an agile organization Required cloud certification: MS-900 Hybrid working - Stockholm 12 months rolling contract Rate - Negotiable
Microsoft Senior/Principal Consultant - Hybrid - £90,000 - £120,000 + Bonus Key technical skills include: Expertise in Microsoft Technologies: Proficiency in Microsoft's suite of products and services, such as Azure, Office 365, and SQL Server, is essential. Cloud Computing: Knowledge of cloud services, particularly Microsoft Azure, including infrastructure, platform, and software as a service (IaaS, PaaS, SaaS). Programming and Scripting: Expertise with programming languages like C#, .NET, PowerShell, or others relevant to Microsoft technologies. Data Management and Analytics: Skills in SQL, data analysis, and Business Intelligence tools, especially those in the Microsoft ecosystem like Power BI. Cybersecurity Knowledge: Understanding of security principles and technologies, particularly as they apply to Microsoft products and cloud services. System Integration and Architecture: Ability to design and implement complex solutions that integrate systems and applications using Microsoft technologies including Azure Integration Services. Qualifications and education requirements Degree: Bachelor/Master Grade: Minimum 2.1 Subject: Computer Science/Technology/Business
16/04/2024
Full time
Microsoft Senior/Principal Consultant - Hybrid - £90,000 - £120,000 + Bonus Key technical skills include: Expertise in Microsoft Technologies: Proficiency in Microsoft's suite of products and services, such as Azure, Office 365, and SQL Server, is essential. Cloud Computing: Knowledge of cloud services, particularly Microsoft Azure, including infrastructure, platform, and software as a service (IaaS, PaaS, SaaS). Programming and Scripting: Expertise with programming languages like C#, .NET, PowerShell, or others relevant to Microsoft technologies. Data Management and Analytics: Skills in SQL, data analysis, and Business Intelligence tools, especially those in the Microsoft ecosystem like Power BI. Cybersecurity Knowledge: Understanding of security principles and technologies, particularly as they apply to Microsoft products and cloud services. System Integration and Architecture: Ability to design and implement complex solutions that integrate systems and applications using Microsoft technologies including Azure Integration Services. Qualifications and education requirements Degree: Bachelor/Master Grade: Minimum 2.1 Subject: Computer Science/Technology/Business
iO Associates seeks a Security Cleared Network Engineer to work with our client in Basingstoke Area. The client is a global leader in technology solutions and services, specializing in IT and communication products. Renowned for innovation in cloud computing, artificial intelligence, and cybersecurity solutions. Trusted by businesses worldwide for reliable and cutting-edge technology. Job Title: Network Engineer Location: Basingstoke, UK Job Type: Permanent Salary: Up to £55k per annum As a member of the delivery team, you will communicate as needed with the present SMEs on networking, infrastructure, applications, and security, also assist the Solution Architects in the creation and dissemination of frameworks that facilitate and direct the design and development of integrated solutions that satisfy present and future business requirements will be your responsibility. Required: Network design (high and low level) Configuring network devices Previous experience Cisco routing and switching devices Demonstrable understanding of OSPF, EIGRP and BGP routing protocols. Demonstrable understanding of NAT, GRE Tunnelling protocol, DMVPN Tunnelling Protocol, Subnetting & Supernetting. Benefits 25 days of annual leave along with public holidays (3 flexible) Double matching contributions up to 10% for pension Flexible benefits, including options for increased holidays, travel, dental coverage, critical illness, and more. This is the position for you if you want to work for a global company that values its employees' work life balance and invests in talent in terms of training. Please apply to the link below or get in touch with Rebecca Virk if you need more information on the role.
16/04/2024
Full time
iO Associates seeks a Security Cleared Network Engineer to work with our client in Basingstoke Area. The client is a global leader in technology solutions and services, specializing in IT and communication products. Renowned for innovation in cloud computing, artificial intelligence, and cybersecurity solutions. Trusted by businesses worldwide for reliable and cutting-edge technology. Job Title: Network Engineer Location: Basingstoke, UK Job Type: Permanent Salary: Up to £55k per annum As a member of the delivery team, you will communicate as needed with the present SMEs on networking, infrastructure, applications, and security, also assist the Solution Architects in the creation and dissemination of frameworks that facilitate and direct the design and development of integrated solutions that satisfy present and future business requirements will be your responsibility. Required: Network design (high and low level) Configuring network devices Previous experience Cisco routing and switching devices Demonstrable understanding of OSPF, EIGRP and BGP routing protocols. Demonstrable understanding of NAT, GRE Tunnelling protocol, DMVPN Tunnelling Protocol, Subnetting & Supernetting. Benefits 25 days of annual leave along with public holidays (3 flexible) Double matching contributions up to 10% for pension Flexible benefits, including options for increased holidays, travel, dental coverage, critical illness, and more. This is the position for you if you want to work for a global company that values its employees' work life balance and invests in talent in terms of training. Please apply to the link below or get in touch with Rebecca Virk if you need more information on the role.
Leading Global Manufacturer are seeking a Senior D365/Power Platform Developer to support on a global Digital transformation programme to drive the adoption of Power Apps/Power BI with integration and automation with D365. Client Details Leading Global Manufacturer Description Leading Global Manufacturer are seeking a Senior D365/Power Platform Developer to support on a global Digital transformation programme to drive the adoption of Power Apps/Power BI with integration and automation with D365. You will work with IT functions internationally around Solution Architecture and build the Power BI/Power Platform capability. Key Responsibilities Create visually compelling and interactive Power BI reports and dashboards that provide actionable insights. Utilize advanced Power BI features for Datamodelling, transformation, and performance optimization. Collaborate with cross-functional teams to gather reporting & analytics requirements and deliver solutions aligned with business needs. Design and develop custom business applications using Power Apps to streamline processes and enhance user experience. Build Canvas Apps for specific business functions, incorporating responsive design and user-friendly interfaces. Integrate Power Apps with various data sources/D365, ensuring data accuracy and Real Time updates. Identify opportunities for workflow automation and implement solutions using Power Automate. Develop automated workflows to streamline approval processes, data synchronization, and other routine tasks. Leverage Microsoft Dynamics 365 Business Central to enhance ERP processes and facilitate seamless data flow. Integrate Business Central with the Power Platform, ensuring data consistency and Real Time synchronization. Drive digital transformation efforts within the organization by identifying opportunities to enhance existing processes through digital solutions. Collaborate with cross-functional teams to develop and implement digital strategies aligned with business objectives. Skills and Experience: Demonstrable experience in a similar role, with a proven track record of success in implementing and optimizing solutions using the Microsoft Power Platform and integrating them with Microsoft Dynamics 365 Business Central. Experience in designing and developing Power BI dashboards, creating custom business applications using Power Apps, and automating workflows with Power Automate. Strong background in data analytics, including advanced skills in Datamodelling, transformation, and visualisation. Experience leading digital transformation initiatives, staying current with digital trends, and implementing emerging technologies to drive business improvements. Familiarity with artificial intelligence (AI) and machine learning (ML) concepts and their application within the Power Platform and optionally Business Central. Proven ability to collaborate with cross-functional teams, lead digital initiatives, and effectively communicate complex digital concepts to both technical and non-technical stakeholders. Experience in implementing cybersecurity best practices within digital solutions. Ability to build and maintain internal and external relationships. Strong organisational skills with the ability to multi-task and work in a fast-paced setting Proven team player skills with the ability to work independently under minimal supervision. Profile Demonstrable experience in a similar role, with a proven track record of success in implementing and optimizing solutions using the Microsoft Power Platform and integrating them with Microsoft Dynamics 365 Business Central. Experience in designing and developing Power BI dashboards, creating custom business applications using Power Apps, and automating workflows with Power Automate. Strong background in data analytics, including advanced skills in Datamodelling, transformation, and visualisation. Experience leading digital transformation initiatives, staying current with digital trends, and implementing emerging technologies to drive business improvements. Familiarity with artificial intelligence (AI) and machine learning (ML) concepts and their application within the Power Platform and optionally Business Central. Proven ability to collaborate with cross-functional teams, lead digital initiatives, and effectively communicate complex digital concepts to both technical and non-technical stakeholders. Experience in implementing cybersecurity best practices within digital solutions. Ability to build and maintain internal and external relationships. Strong organisational skills with the ability to multi-task and work in a fast-paced setting Proven team player skills with the ability to work independently under minimal supervision. Job Offer Opportunity to work on a major Data & Digital Transformation Programme Opportunity to lead on Power Platform adoption internationally
16/04/2024
Full time
Leading Global Manufacturer are seeking a Senior D365/Power Platform Developer to support on a global Digital transformation programme to drive the adoption of Power Apps/Power BI with integration and automation with D365. Client Details Leading Global Manufacturer Description Leading Global Manufacturer are seeking a Senior D365/Power Platform Developer to support on a global Digital transformation programme to drive the adoption of Power Apps/Power BI with integration and automation with D365. You will work with IT functions internationally around Solution Architecture and build the Power BI/Power Platform capability. Key Responsibilities Create visually compelling and interactive Power BI reports and dashboards that provide actionable insights. Utilize advanced Power BI features for Datamodelling, transformation, and performance optimization. Collaborate with cross-functional teams to gather reporting & analytics requirements and deliver solutions aligned with business needs. Design and develop custom business applications using Power Apps to streamline processes and enhance user experience. Build Canvas Apps for specific business functions, incorporating responsive design and user-friendly interfaces. Integrate Power Apps with various data sources/D365, ensuring data accuracy and Real Time updates. Identify opportunities for workflow automation and implement solutions using Power Automate. Develop automated workflows to streamline approval processes, data synchronization, and other routine tasks. Leverage Microsoft Dynamics 365 Business Central to enhance ERP processes and facilitate seamless data flow. Integrate Business Central with the Power Platform, ensuring data consistency and Real Time synchronization. Drive digital transformation efforts within the organization by identifying opportunities to enhance existing processes through digital solutions. Collaborate with cross-functional teams to develop and implement digital strategies aligned with business objectives. Skills and Experience: Demonstrable experience in a similar role, with a proven track record of success in implementing and optimizing solutions using the Microsoft Power Platform and integrating them with Microsoft Dynamics 365 Business Central. Experience in designing and developing Power BI dashboards, creating custom business applications using Power Apps, and automating workflows with Power Automate. Strong background in data analytics, including advanced skills in Datamodelling, transformation, and visualisation. Experience leading digital transformation initiatives, staying current with digital trends, and implementing emerging technologies to drive business improvements. Familiarity with artificial intelligence (AI) and machine learning (ML) concepts and their application within the Power Platform and optionally Business Central. Proven ability to collaborate with cross-functional teams, lead digital initiatives, and effectively communicate complex digital concepts to both technical and non-technical stakeholders. Experience in implementing cybersecurity best practices within digital solutions. Ability to build and maintain internal and external relationships. Strong organisational skills with the ability to multi-task and work in a fast-paced setting Proven team player skills with the ability to work independently under minimal supervision. Profile Demonstrable experience in a similar role, with a proven track record of success in implementing and optimizing solutions using the Microsoft Power Platform and integrating them with Microsoft Dynamics 365 Business Central. Experience in designing and developing Power BI dashboards, creating custom business applications using Power Apps, and automating workflows with Power Automate. Strong background in data analytics, including advanced skills in Datamodelling, transformation, and visualisation. Experience leading digital transformation initiatives, staying current with digital trends, and implementing emerging technologies to drive business improvements. Familiarity with artificial intelligence (AI) and machine learning (ML) concepts and their application within the Power Platform and optionally Business Central. Proven ability to collaborate with cross-functional teams, lead digital initiatives, and effectively communicate complex digital concepts to both technical and non-technical stakeholders. Experience in implementing cybersecurity best practices within digital solutions. Ability to build and maintain internal and external relationships. Strong organisational skills with the ability to multi-task and work in a fast-paced setting Proven team player skills with the ability to work independently under minimal supervision. Job Offer Opportunity to work on a major Data & Digital Transformation Programme Opportunity to lead on Power Platform adoption internationally
DV Cleared SIEM/Incident SME Location: Northallerton/Corsham/Portsmouth Duration: 6 - 12 Months Rate to SSC: Market Rate MUST BE PAYE THROUGH UMBRELLA Role Description: The Cyber Defence Analyst will join a growing security team responsible for designing, delivering and maintaining operational cybersecurity capabilities. Conducting pro-active, risk-based, protective monitoring on priority C4IS/networks to identify internal and external cyber-threats/attacks. This position involves a broad range of skills, including the development and mentoring of Junior Analysts, monitoring networks to actively remediate unauthorised activities. Your role Develop and integrate security event monitoring and incident management services. Respond to security incidents as they occur as part of an incident response team. Implement metrics and dashboards to give visibility of the Enterprise infrastructure. Use of the SOAR platform to assist with playbook automation and case management capabilities to streamline team processes and tools. Produce documentation to ensure the repeatability and standardisation of security operating procedures. Develop additional investigative methods using the SOC's software toolsets to enhance recognition opportunities for specific analysis. Maintain a baseline of system security according to latest threat intelligence and evolving trends. Participate in root cause analysis of incidents in conjunction with engineers across the enterprise. Provide Subject Matter Expertise (SME) on a broad range of information security standards and best practices. Offer strategic and tactical security guidance including valuation requirement of technical controls. Be part of the CRM process Liaise with the SOC engineers to maintain up-to-date dashboards of security alerts, to allow the organisation to better respond to an incident. Document, validate and create operational processes and procedures to help develop the SOC. Assist in identifying, prioritising, and coordinating the protection of critical cyber defence infrastructure and key resources. Build, install, configure, and test dedicated cyber defence hardware. Support Junior Analysts to manage SOC systems. Previous experience of Enterprise ICS/network architectures and technologies Experience and knowledge of SIEM solutions; having the ability to identify use cases and their creation, their deployment and tuning. Experience as a mentor/coach to Junior Analysts Your profile Previous experience of utilising the MITRE ATT&CK and Cyber Kill Chain frameworks Skilled in maintaining Microsoft directory services. Skilled in using virtualisation software. Knowledge of key security frameworks (eg ISO, NIST 800-53, 800-171, 800-172, C2M2) Excellent communication skills Experience of writing Defence/Government documentation Desirable Qualifications: Broad Spectrum Cyber Course (SANS SEC401 or SEC501 or equivalent) SIEM Design, Architecture and Analyst Course (SANS SEC455 or SEC555 or equivalent) Advanced Analyst Course (SANS SEC503 or equivalent)
15/04/2024
Project-based
DV Cleared SIEM/Incident SME Location: Northallerton/Corsham/Portsmouth Duration: 6 - 12 Months Rate to SSC: Market Rate MUST BE PAYE THROUGH UMBRELLA Role Description: The Cyber Defence Analyst will join a growing security team responsible for designing, delivering and maintaining operational cybersecurity capabilities. Conducting pro-active, risk-based, protective monitoring on priority C4IS/networks to identify internal and external cyber-threats/attacks. This position involves a broad range of skills, including the development and mentoring of Junior Analysts, monitoring networks to actively remediate unauthorised activities. Your role Develop and integrate security event monitoring and incident management services. Respond to security incidents as they occur as part of an incident response team. Implement metrics and dashboards to give visibility of the Enterprise infrastructure. Use of the SOAR platform to assist with playbook automation and case management capabilities to streamline team processes and tools. Produce documentation to ensure the repeatability and standardisation of security operating procedures. Develop additional investigative methods using the SOC's software toolsets to enhance recognition opportunities for specific analysis. Maintain a baseline of system security according to latest threat intelligence and evolving trends. Participate in root cause analysis of incidents in conjunction with engineers across the enterprise. Provide Subject Matter Expertise (SME) on a broad range of information security standards and best practices. Offer strategic and tactical security guidance including valuation requirement of technical controls. Be part of the CRM process Liaise with the SOC engineers to maintain up-to-date dashboards of security alerts, to allow the organisation to better respond to an incident. Document, validate and create operational processes and procedures to help develop the SOC. Assist in identifying, prioritising, and coordinating the protection of critical cyber defence infrastructure and key resources. Build, install, configure, and test dedicated cyber defence hardware. Support Junior Analysts to manage SOC systems. Previous experience of Enterprise ICS/network architectures and technologies Experience and knowledge of SIEM solutions; having the ability to identify use cases and their creation, their deployment and tuning. Experience as a mentor/coach to Junior Analysts Your profile Previous experience of utilising the MITRE ATT&CK and Cyber Kill Chain frameworks Skilled in maintaining Microsoft directory services. Skilled in using virtualisation software. Knowledge of key security frameworks (eg ISO, NIST 800-53, 800-171, 800-172, C2M2) Excellent communication skills Experience of writing Defence/Government documentation Desirable Qualifications: Broad Spectrum Cyber Course (SANS SEC401 or SEC501 or equivalent) SIEM Design, Architecture and Analyst Course (SANS SEC455 or SEC555 or equivalent) Advanced Analyst Course (SANS SEC503 or equivalent)
Cyber Defence Engineer Location: Full Time onsite in Hereford Duration: 6 months MUST BE PAYE THROUGH UMBRELLA We are heading up a recruitment drive on behalf of a leading IT consultancy that require a DV cleared Cyber Defence Engineer to join their team on a major defence project that is based in Hereford. Role Description: Role Description: Cyber Defence Engineer will join a growing security team responsible for the testing, implementation, deployment, maintenance, configuration and troubleshooting of the SOC's technology stack (hardware and software). The engineer will also assist with the continued development and maintenance of data pipelines and signature updates and the professional development of the system engineering team. Tasks: Perform system administration on specific cyber defence applications and systems to include installation, configuration, maintenance, troubleshooting, backup and restoration. Manage system/server resources including performance, capacity, availability, serviceability, and recoverability. Diagnose and resolve customer reported system incidents, problems, and events to ensure continuing operability. Coordinate with SOC and CTI Analysts to assist in the development of signatures which can be implemented on cyber defence network tools in response to new or observed threats within the network environment or enclave. Manage the compilation, cataloguing, distribution, and retrieval of data from a range of enterprise networks and data sources. Implement data management standards, requirements, and specifications. Develop data standards, policies, and procedures. Analyse data sources to provide actionable recommendations and facilitate data-gathering methods. To share knowledge, skills and experience, create and improve documentation, and train new members of the data engineering team. Knowledge: Knowledge of big data technologies and ecosystems (eg, NiFi). Knowledge of current market and emerging leaders in data analytical and SIEM platforms. Knowledge of network security implementations (eg, host-based IDS, IPS), including their function and placement in a network. Knowledge of intrusion detection systems and signature development. Knowledge of Front End collection systems, including network traffic collection, filtering, and selection. Knowledge of system administration concepts for operating systems such as but not limited to Unix/Linux, IOS, Android, and Windows operating systems. Knowledge of cyber defence and information security policies, procedures and regulations. Knowledge of network security architecture concepts including topology, protocols, components and principles. Skills/Experience: Previous experience of Enterprise ICS/network architectures and technologies. Working with frameworks and technologies that support data-intensive distributed applications. Experience maintaining and administrating data analytical and SIEM platforms. Experience using host and network-based IDS/IPS Experience using packet capture solutions. Skill in developing and deploying signatures. Skill to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation). Ability to provide technical and service leadership to junior SOC Engineers (mentor/coach). Desirable Qualifications/Certifications Red Hat System Administration I & II (RH124/RH134). Baseline Cyber Courses eg Cyber Foundation Pathway, SANS SEC 301 Intro to Information Security, SANS 401 Security Essentials Bootcamp. Certified engineer in a market leading data analysis/SIEM platform. SANS SEC501 Advanced Security Essentials Enterprise Defender. SANS SEC 511 Continuous Monitoring & Security Operations. SANS SEC555: SIEM with Tactical Analytics
15/04/2024
Project-based
Cyber Defence Engineer Location: Full Time onsite in Hereford Duration: 6 months MUST BE PAYE THROUGH UMBRELLA We are heading up a recruitment drive on behalf of a leading IT consultancy that require a DV cleared Cyber Defence Engineer to join their team on a major defence project that is based in Hereford. Role Description: Role Description: Cyber Defence Engineer will join a growing security team responsible for the testing, implementation, deployment, maintenance, configuration and troubleshooting of the SOC's technology stack (hardware and software). The engineer will also assist with the continued development and maintenance of data pipelines and signature updates and the professional development of the system engineering team. Tasks: Perform system administration on specific cyber defence applications and systems to include installation, configuration, maintenance, troubleshooting, backup and restoration. Manage system/server resources including performance, capacity, availability, serviceability, and recoverability. Diagnose and resolve customer reported system incidents, problems, and events to ensure continuing operability. Coordinate with SOC and CTI Analysts to assist in the development of signatures which can be implemented on cyber defence network tools in response to new or observed threats within the network environment or enclave. Manage the compilation, cataloguing, distribution, and retrieval of data from a range of enterprise networks and data sources. Implement data management standards, requirements, and specifications. Develop data standards, policies, and procedures. Analyse data sources to provide actionable recommendations and facilitate data-gathering methods. To share knowledge, skills and experience, create and improve documentation, and train new members of the data engineering team. Knowledge: Knowledge of big data technologies and ecosystems (eg, NiFi). Knowledge of current market and emerging leaders in data analytical and SIEM platforms. Knowledge of network security implementations (eg, host-based IDS, IPS), including their function and placement in a network. Knowledge of intrusion detection systems and signature development. Knowledge of Front End collection systems, including network traffic collection, filtering, and selection. Knowledge of system administration concepts for operating systems such as but not limited to Unix/Linux, IOS, Android, and Windows operating systems. Knowledge of cyber defence and information security policies, procedures and regulations. Knowledge of network security architecture concepts including topology, protocols, components and principles. Skills/Experience: Previous experience of Enterprise ICS/network architectures and technologies. Working with frameworks and technologies that support data-intensive distributed applications. Experience maintaining and administrating data analytical and SIEM platforms. Experience using host and network-based IDS/IPS Experience using packet capture solutions. Skill in developing and deploying signatures. Skill to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation). Ability to provide technical and service leadership to junior SOC Engineers (mentor/coach). Desirable Qualifications/Certifications Red Hat System Administration I & II (RH124/RH134). Baseline Cyber Courses eg Cyber Foundation Pathway, SANS SEC 301 Intro to Information Security, SANS 401 Security Essentials Bootcamp. Certified engineer in a market leading data analysis/SIEM platform. SANS SEC501 Advanced Security Essentials Enterprise Defender. SANS SEC 511 Continuous Monitoring & Security Operations. SANS SEC555: SIEM with Tactical Analytics
IoT Engineer/Budapest 3 days per week onsite/6 months +/Start ASAP * Design and Architecture: Lead the design and architecture of IoT networks, including sensor selection, connectivity options, data acquisition, storage, and analytics infrastructure. * Implementation: Implement end-to-end IoT solutions, including device provisioning, integration with cloud platforms, and development of custom applications and dashboards. * Prototyping: Rapidly prototype and iterate on IoT concepts to validate technical feasibility and demonstrate proof of concept to stakeholders. * Security: Implement security best practices to safeguard IoT devices, data, and communications against cyber threats and vulnerabilities. * Scalability: Design IoT solutions that are scalable and can accommodate future growth in terms of device volume, data volume, and system complexity. * Performance Optimisation: Optimise IoT systems for performance, reliability, and resource efficiency to ensure smooth operation under varying conditions. * Testing and Validation: Develop test plans and conduct thorough testing and validation of IoT systems to ensure functionality, interoperability, and compliance with specifications. * Documentation: Create comprehensive documentation, including system architecture diagrams, technical specifications, and user manuals, to facilitate system maintenance and knowledge transfer. * Collaboration: Collaborate closely with cross-functional teams, including hardware engineers, software developers, data scientists, and product managers, to deliver integrated IoT solutions that meet customer requirements. * Continuous Learning: Stay updated on emerging trends, technologies, and best practices in the field of IoT, and apply new knowledge to enhance the capabilities of our IoT offerings. Qualifications: * Bachelor's or Master's degree in Electrical Engineering, Computer Science, or a related field. * Proven experience in designing and implementing IoT networks, preferably in an industrial or commercial environment. * Proficiency in IoT protocols and standards, such as MQTT, CoAP, LoRaWAN, and Bluetooth Low Energy. * Hands-on experience with IoT hardware platforms, sensors, actuators, and Embedded systems. * Strong programming skills in languages such as C/C++, Python, Java, or JavaScript. * Experience with IoT cloud platforms, such as AWS IoT, Azure IoT, or Google Cloud IoT Core. * Familiarity with data management and analytics technologies, such as SQL databases, NoSQL databases, and big data platforms. * Excellent problem-solving skills and the ability to troubleshoot complex technical issues. * Effective communication skills and the ability to work collaboratively in a fast-paced, cross-functional team environment.
15/04/2024
Project-based
IoT Engineer/Budapest 3 days per week onsite/6 months +/Start ASAP * Design and Architecture: Lead the design and architecture of IoT networks, including sensor selection, connectivity options, data acquisition, storage, and analytics infrastructure. * Implementation: Implement end-to-end IoT solutions, including device provisioning, integration with cloud platforms, and development of custom applications and dashboards. * Prototyping: Rapidly prototype and iterate on IoT concepts to validate technical feasibility and demonstrate proof of concept to stakeholders. * Security: Implement security best practices to safeguard IoT devices, data, and communications against cyber threats and vulnerabilities. * Scalability: Design IoT solutions that are scalable and can accommodate future growth in terms of device volume, data volume, and system complexity. * Performance Optimisation: Optimise IoT systems for performance, reliability, and resource efficiency to ensure smooth operation under varying conditions. * Testing and Validation: Develop test plans and conduct thorough testing and validation of IoT systems to ensure functionality, interoperability, and compliance with specifications. * Documentation: Create comprehensive documentation, including system architecture diagrams, technical specifications, and user manuals, to facilitate system maintenance and knowledge transfer. * Collaboration: Collaborate closely with cross-functional teams, including hardware engineers, software developers, data scientists, and product managers, to deliver integrated IoT solutions that meet customer requirements. * Continuous Learning: Stay updated on emerging trends, technologies, and best practices in the field of IoT, and apply new knowledge to enhance the capabilities of our IoT offerings. Qualifications: * Bachelor's or Master's degree in Electrical Engineering, Computer Science, or a related field. * Proven experience in designing and implementing IoT networks, preferably in an industrial or commercial environment. * Proficiency in IoT protocols and standards, such as MQTT, CoAP, LoRaWAN, and Bluetooth Low Energy. * Hands-on experience with IoT hardware platforms, sensors, actuators, and Embedded systems. * Strong programming skills in languages such as C/C++, Python, Java, or JavaScript. * Experience with IoT cloud platforms, such as AWS IoT, Azure IoT, or Google Cloud IoT Core. * Familiarity with data management and analytics technologies, such as SQL databases, NoSQL databases, and big data platforms. * Excellent problem-solving skills and the ability to troubleshoot complex technical issues. * Effective communication skills and the ability to work collaboratively in a fast-paced, cross-functional team environment.
Junior SOC Analyst - Hybrid - 3 days on site - Nottinghamshire Main Responsibilities: - Triage, analyse and investigate alerts, log data and network traffic using security tools to identify cyber-attacks/security incidents. This includes the investigation and root cause analysis of potential security incidents. - Proactively investigate potential security breaches by utilising threat intelligence and internal and external security systems and provide subject matter expertise for technical responses to confirmed cyber security incidents. - Create and maintain the clients target cyber security architecture. - Deliver subject matter expertise to key stakeholders to drive the implementation of security controls to meet the target architecture. - Accountable for vulnerability scanning, including the prioritisation of unpatched vulnerabilities and reporting against agreed KPIs and KRIs. - Support the annual penetration testing schedule by arranging penetration testing, including tracking, and communicating penetration testing results. - Perform supplementary testing of clients detection and response controls by procuring, installing, and running penetration testing tooling. - Participate in process improvement work to automate and improve critical cyber security processes such as monitoring, patching, and hardening. - Develop and maintain process documentation for security architecture, vulnerability management, cyber incident response, and playbooks. - Provide security representation across multiple geographies, business units and teams to achieve objectives, including engagement with the Information Security Enhancement Office. Skills, Knowledge and Experience - Has obtained one or more of the following qualifications: CEH, CRTSA, and OSCP. - Qualifications such as CISSP and CISM would be advantageous. - Problem solving skills, and the ability to come up with new solutions to existing challenges. - Strengths in key 'soft skill' areas such as relationship management, communication, and presentation of technical security information to a variety of audiences. - Technical skills to investigate potential breaches through existing tools, packet capture and log file analysis. - A logical mindset, the ability to identify proportionate, appropriate mitigations to identified security incidents, and to prioritise incidents based on risk. - Capable of working independently/without ongoing supervision on projects and day to day tasks. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
12/04/2024
Full time
Junior SOC Analyst - Hybrid - 3 days on site - Nottinghamshire Main Responsibilities: - Triage, analyse and investigate alerts, log data and network traffic using security tools to identify cyber-attacks/security incidents. This includes the investigation and root cause analysis of potential security incidents. - Proactively investigate potential security breaches by utilising threat intelligence and internal and external security systems and provide subject matter expertise for technical responses to confirmed cyber security incidents. - Create and maintain the clients target cyber security architecture. - Deliver subject matter expertise to key stakeholders to drive the implementation of security controls to meet the target architecture. - Accountable for vulnerability scanning, including the prioritisation of unpatched vulnerabilities and reporting against agreed KPIs and KRIs. - Support the annual penetration testing schedule by arranging penetration testing, including tracking, and communicating penetration testing results. - Perform supplementary testing of clients detection and response controls by procuring, installing, and running penetration testing tooling. - Participate in process improvement work to automate and improve critical cyber security processes such as monitoring, patching, and hardening. - Develop and maintain process documentation for security architecture, vulnerability management, cyber incident response, and playbooks. - Provide security representation across multiple geographies, business units and teams to achieve objectives, including engagement with the Information Security Enhancement Office. Skills, Knowledge and Experience - Has obtained one or more of the following qualifications: CEH, CRTSA, and OSCP. - Qualifications such as CISSP and CISM would be advantageous. - Problem solving skills, and the ability to come up with new solutions to existing challenges. - Strengths in key 'soft skill' areas such as relationship management, communication, and presentation of technical security information to a variety of audiences. - Technical skills to investigate potential breaches through existing tools, packet capture and log file analysis. - A logical mindset, the ability to identify proportionate, appropriate mitigations to identified security incidents, and to prioritise incidents based on risk. - Capable of working independently/without ongoing supervision on projects and day to day tasks. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
Security Architect | Long-Term Project | Financial Enterprise We are seeking a dynamic security architect to play a pivotal role in our cyber security crisis management team. You will be responsible for identifying the most effective approach to enforce containment actions in case of a cyber security crisis within our infrastructural landscape. This will involve conducting feasibility studies, identifying prerequisites, stakeholders, and designing both technical and procedural implementations for manual execution. Additionally, you will develop processes and procedures for containment action execution, ensuring alignment with major stakeholders. You will also be tasked with conducting simulated testing of developed processes and procedures to guarantee effective execution during a cyber security crisis. Furthermore, the role entails creating procedures for writing queries related to manual and written containment actions and incidents. Relevant Knoweldge & Skills: Good general knowledge of enterprise architecture across various domains (Networks, Network Security, Identity and Access Management, Virtualized and Baremetal Infrastructures, etc.) - IT Generalist. Practical knowledge and experience in managing and administering infrastructure components such as Firewalls, Proxies, Active Directory, VMWare ESXi, etc. Knowledge of Python programming Practical experience of operational process/procedures development/documentation. Analytical thinking and a structural approach to problem-solving. Strong stakeholder management and communication skills. Cybersecurity knowledge. Problem-solving and critical mindset. Fast adaptation to changing environments and input requirements. Ability to work autonomously without step-by-step guidance. Cybersecurity minded. Fluent in English. About Levy: Since 2000 Levy provides professional Solutions to organizations ranging from tech start-ups to global players. From our offices in the UK and Amsterdam we have built an international local network of skilled employed professionals and contractors fueled by our passion for connecting skills with projects. Over the years we have fulfilled over 1700 requirements and nowadays we consistently have 250+ professionals recruited and relocated from 14 countries allocated to various projects. Our strength is the way that we see and treat people. This will always be a key factor in our strategy for many years to come multiplying by unity!
12/04/2024
Full time
Security Architect | Long-Term Project | Financial Enterprise We are seeking a dynamic security architect to play a pivotal role in our cyber security crisis management team. You will be responsible for identifying the most effective approach to enforce containment actions in case of a cyber security crisis within our infrastructural landscape. This will involve conducting feasibility studies, identifying prerequisites, stakeholders, and designing both technical and procedural implementations for manual execution. Additionally, you will develop processes and procedures for containment action execution, ensuring alignment with major stakeholders. You will also be tasked with conducting simulated testing of developed processes and procedures to guarantee effective execution during a cyber security crisis. Furthermore, the role entails creating procedures for writing queries related to manual and written containment actions and incidents. Relevant Knoweldge & Skills: Good general knowledge of enterprise architecture across various domains (Networks, Network Security, Identity and Access Management, Virtualized and Baremetal Infrastructures, etc.) - IT Generalist. Practical knowledge and experience in managing and administering infrastructure components such as Firewalls, Proxies, Active Directory, VMWare ESXi, etc. Knowledge of Python programming Practical experience of operational process/procedures development/documentation. Analytical thinking and a structural approach to problem-solving. Strong stakeholder management and communication skills. Cybersecurity knowledge. Problem-solving and critical mindset. Fast adaptation to changing environments and input requirements. Ability to work autonomously without step-by-step guidance. Cybersecurity minded. Fluent in English. About Levy: Since 2000 Levy provides professional Solutions to organizations ranging from tech start-ups to global players. From our offices in the UK and Amsterdam we have built an international local network of skilled employed professionals and contractors fueled by our passion for connecting skills with projects. Over the years we have fulfilled over 1700 requirements and nowadays we consistently have 250+ professionals recruited and relocated from 14 countries allocated to various projects. Our strength is the way that we see and treat people. This will always be a key factor in our strategy for many years to come multiplying by unity!
Digital Research Infrastructure Engineer - Linux Specialist PML operations grade 4 £30000 - £45000 DOE Full Time Open Ended Appointment The Role We have an exciting opportunity at PML for an individual with skills in Linux system administration to join the PML s Digital Innovation and Marine Autonomy (DIMA) group. The role provides a business critical link between scientists, PML Applications (commercial work) and our IT Group to support the Linux computing infrastructure as it continues to evolve, underpinning PML science in multiple areas and across all levels. This ranges from data generation, (storage technologies and data management), processing and analysis (high performance computing and technologies such as JupyterHub), to making visual outputs for end users (web technologies and virtualisation) to increase the reach and impact of PML science. About You You will enjoy working with others to help deliver a modern and reliable digital infrastructure to underpin the world leading research carried out at PML. You will understand the importance of stability from existing infrastructure but will also be keen to learn and try new technologies. You will have experience of administering Linux systems, ideally using Ubuntu, and will be able to make use of scripts and common tools such as ansible to manage this. You will understand the importance of taking a proactive approach to identify and resolve and problems and will be able to make use of monitoring software (e.g., Nagios, Grafana) to accomplish this. You will understand best practices in cybersecurity and be able to apply these. Skills Required Linux systems administration and monitoring Linux scripting (e.g., bash and Python) Experience in management of data at the Terrabyte to Petabyte scale and storage technologies such as NFS and S3. Cybersecurity (Understand and apply best practices) Container technologies (Docker and Kubernetes) High performance Computing (Slurm) Virtualisation (VMWare) Key Deliverables Maintain our storage infrastructure to ensure data is distributed across servers based on existing capacity and projected changes in data volumes. This includes regular data moves and liaising with stakeholders to ensure data is backed up and archiving projects are completes as needed. Monitor high performance computing infrastructure to identify and resolve problems either on their own or by working with IT (depending on the nature of the problem). Act of a point of contact between scientists and IT to answer questions, help identify solutions and provide training. Work with the data architect to maintain and develop web infrastructure used to provide existing and planned data search and visualisation services. Manage the NEODAAS GPU cluster (MAGEO), including liaising with IT, vendors and system users. About PML As a marine-focused charity we develop and apply innovative science with a view to ensuring ocean sustainability. With over 40 years of experience, we offer evidence-based solutions to societal challenges. Our impact spans from research publications to informing policies and training future scientists. The science undertaken at PML contributes to UN Sustainable Development Goals by promoting healthy, productive and resilient oceans and seas. To support PML s science it operates in house Linux infrastructure used for processing satellite data, running models and making outputs accessible through web visualisation tools. This infrastructure includes a large amount of storage (6 PB), a High-Performance Computing cluster with over 1500 cores, a 40 GPU cluster (the MAssive GPU cluster for Earth Observation; MAGEO) and a virtual machine cluster. The role will be part of the Digital Innovation and Marine Autonomy (DIMA) group within PML. DIMA is a pioneering digital science group dedicated to advancing PML s world-class and cutting-edge environmental research through the utilisation of state-of-the-art digital and autonomous technologies. The team comprises research software engineers, research infrastructure engineers, marine technologists and scientists who work on a variety of projects using autonomous vessels, satellite data, drones, Artificial Intelligence, High Performance Computing and data visualisation tools to help deliver PML s goals. The team have an enthusiasm for solving problems through collaboration and shared learning.
12/04/2024
Full time
Digital Research Infrastructure Engineer - Linux Specialist PML operations grade 4 £30000 - £45000 DOE Full Time Open Ended Appointment The Role We have an exciting opportunity at PML for an individual with skills in Linux system administration to join the PML s Digital Innovation and Marine Autonomy (DIMA) group. The role provides a business critical link between scientists, PML Applications (commercial work) and our IT Group to support the Linux computing infrastructure as it continues to evolve, underpinning PML science in multiple areas and across all levels. This ranges from data generation, (storage technologies and data management), processing and analysis (high performance computing and technologies such as JupyterHub), to making visual outputs for end users (web technologies and virtualisation) to increase the reach and impact of PML science. About You You will enjoy working with others to help deliver a modern and reliable digital infrastructure to underpin the world leading research carried out at PML. You will understand the importance of stability from existing infrastructure but will also be keen to learn and try new technologies. You will have experience of administering Linux systems, ideally using Ubuntu, and will be able to make use of scripts and common tools such as ansible to manage this. You will understand the importance of taking a proactive approach to identify and resolve and problems and will be able to make use of monitoring software (e.g., Nagios, Grafana) to accomplish this. You will understand best practices in cybersecurity and be able to apply these. Skills Required Linux systems administration and monitoring Linux scripting (e.g., bash and Python) Experience in management of data at the Terrabyte to Petabyte scale and storage technologies such as NFS and S3. Cybersecurity (Understand and apply best practices) Container technologies (Docker and Kubernetes) High performance Computing (Slurm) Virtualisation (VMWare) Key Deliverables Maintain our storage infrastructure to ensure data is distributed across servers based on existing capacity and projected changes in data volumes. This includes regular data moves and liaising with stakeholders to ensure data is backed up and archiving projects are completes as needed. Monitor high performance computing infrastructure to identify and resolve problems either on their own or by working with IT (depending on the nature of the problem). Act of a point of contact between scientists and IT to answer questions, help identify solutions and provide training. Work with the data architect to maintain and develop web infrastructure used to provide existing and planned data search and visualisation services. Manage the NEODAAS GPU cluster (MAGEO), including liaising with IT, vendors and system users. About PML As a marine-focused charity we develop and apply innovative science with a view to ensuring ocean sustainability. With over 40 years of experience, we offer evidence-based solutions to societal challenges. Our impact spans from research publications to informing policies and training future scientists. The science undertaken at PML contributes to UN Sustainable Development Goals by promoting healthy, productive and resilient oceans and seas. To support PML s science it operates in house Linux infrastructure used for processing satellite data, running models and making outputs accessible through web visualisation tools. This infrastructure includes a large amount of storage (6 PB), a High-Performance Computing cluster with over 1500 cores, a 40 GPU cluster (the MAssive GPU cluster for Earth Observation; MAGEO) and a virtual machine cluster. The role will be part of the Digital Innovation and Marine Autonomy (DIMA) group within PML. DIMA is a pioneering digital science group dedicated to advancing PML s world-class and cutting-edge environmental research through the utilisation of state-of-the-art digital and autonomous technologies. The team comprises research software engineers, research infrastructure engineers, marine technologists and scientists who work on a variety of projects using autonomous vessels, satellite data, drones, Artificial Intelligence, High Performance Computing and data visualisation tools to help deliver PML s goals. The team have an enthusiasm for solving problems through collaboration and shared learning.