Head of Information Security - Midlands (Hybrid) - £100k + Car Allowance + Bonus Information Security | Strategy | Governance | Stakeholder Management | Risk | ISO27001 Salary: £100k + Car Allowance + Bonus Location: Midlands (Hybrid) Are you an Information Security leader looking for the next challenge in your career? Do you have demonstrable experience in defining and maintaining a Security vision and strategy? Have you previously been responsible for InfoSec policies and standards? Interested in working for an organisation who will support the development of your career? If so, I have a fantastic opportunity for you! I'm looking to speak with experienced Security leaders who have previously influenced senior stakeholders as part of steering committees and councils. You will need to have an excellent understanding of the various security frameworks. Any previous experience of leading a team in an international organisation would be highly beneficial. Key Responsibilities Assist the CISO in managing InfoSec Governance Boards Provide leadership and guidance to the 4 team members in the CISO office Maintain and enhance the IT security strategy Oversee change activities within the Information Security program Manage the Information Security budget Ensure awareness of Information Security across the organisation through targeted group-oriented communication Take responsibility for Information Security policies and standards Assist in projects across the organisation, ensuring security is considered at all stages Participate in a number of steering committees across the organisation, ensuring security is suitably represented Work closely with the InfoSec Architecture Council to understand their requirements Act as a second in command to the CISO and fill in when they are unavailable The Ideal Candidate Strong project management skills to support the Information Security program Ability to engage stakeholders at all levels of an organisation Excellent leadership skills Desired experience with: Security frameworks Utilities, critical infrastructure or engineering environments Influencing senior stakeholders as part of steering committees and councils Security strategies Governance, risk and compliance If you would like to be considered for this role, apply below or get in contact with Andrew Rose for further details. Xpertise are acting as an employment agency and business
19/04/2024
Full time
Head of Information Security - Midlands (Hybrid) - £100k + Car Allowance + Bonus Information Security | Strategy | Governance | Stakeholder Management | Risk | ISO27001 Salary: £100k + Car Allowance + Bonus Location: Midlands (Hybrid) Are you an Information Security leader looking for the next challenge in your career? Do you have demonstrable experience in defining and maintaining a Security vision and strategy? Have you previously been responsible for InfoSec policies and standards? Interested in working for an organisation who will support the development of your career? If so, I have a fantastic opportunity for you! I'm looking to speak with experienced Security leaders who have previously influenced senior stakeholders as part of steering committees and councils. You will need to have an excellent understanding of the various security frameworks. Any previous experience of leading a team in an international organisation would be highly beneficial. Key Responsibilities Assist the CISO in managing InfoSec Governance Boards Provide leadership and guidance to the 4 team members in the CISO office Maintain and enhance the IT security strategy Oversee change activities within the Information Security program Manage the Information Security budget Ensure awareness of Information Security across the organisation through targeted group-oriented communication Take responsibility for Information Security policies and standards Assist in projects across the organisation, ensuring security is considered at all stages Participate in a number of steering committees across the organisation, ensuring security is suitably represented Work closely with the InfoSec Architecture Council to understand their requirements Act as a second in command to the CISO and fill in when they are unavailable The Ideal Candidate Strong project management skills to support the Information Security program Ability to engage stakeholders at all levels of an organisation Excellent leadership skills Desired experience with: Security frameworks Utilities, critical infrastructure or engineering environments Influencing senior stakeholders as part of steering committees and councils Security strategies Governance, risk and compliance If you would like to be considered for this role, apply below or get in contact with Andrew Rose for further details. Xpertise are acting as an employment agency and business
Title : Sailpoint Engineer Location : Brussels - (1x or 2x days a week onsite is mandatory) Duration : 6 months ROLLING contract Budget : €500 - €550 per day, all inclusive Language : English THIS PROJECT IS OUTSIDE IR35 Role As a SailPoint Engineer, you will contribute to the delivery of the SailPoint infrastructure OS Upgrade. You will join the Logical Access Management project team. This role includes the analysis, design, build, test and deployment of the new infrastructure aligned to the established project governance. Your role involves working closely with colleagues in different domains (and may include external suppliers) to obtain the requirements so that you can design the optimal, secure solutions. A security focus with an understanding of the challenges our internal customers face, as well as a positive problem solving, and an analytical mindset are your strongest skills. You will be expected to document the solutions you design in clients standard templates such as a High-Level Technical Design; Detailed Functional Design; Detailed Technical Design, where you will need to obtain sign-off from reviewers while addressing all the concerns. You will build the solution in our test environment and ensure the solution goes through all the formal testing stages with our internal customers to obtain signoffs. Once tested and signed-off, you will perform handovers with the Operations Team, which may include performing training, knowledge sharing, provision of a cookbook to enable them to run and operate the solution you have designed. This will also include providing warranty support. In addition to the role you are expected to: Identify security risks and exposures during the analysis and how the design mitigate these risks. It maybe possible you identify security risks which are not in-scope, however you will be expected to call these out to ensure they are recognised to senior stakeholders who can then take action. Consider the impact on processes and controls based on the solution designed. Makes recommendations for changes and may implement agreed enhancements. Always look for solutions, rather than just call out the problems. Recognise that client is a regulated financial institution and as such your conduct must align with the compliance needs. Skills and experience A combination of several of the below should be covered: Sailpoint IIQ (Identity IQ), at least 5 to 8 years of experience implementing Sailpoint solution Identity & Access Management (IAM) Expert knowledge on one or more of following technology platforms: Windows, Unix, Network, Office/End User technologies, Mainframe, Tandem or Middleware Professional certification in CISSP, CISM and CISA, or equivalent is a plus Design, Development & Implementation of SailPoint Infrastructure Is creative and sees the bigger picture when designing solutions Works proactively, thereby keeping possible problems from affecting the overall functioning of the team Interpersonal/Soft Skills Embraces the belief that teamwork is essential for achieving results Leverages influence and negotiates to achieve the defined goals. Uses a diplomatic attitude to reach goals. Is a good communicator (verbal and written), structured and focuses on the requirements of the customer. Is capable of working in an environment with continuous change on the related services; can adapt to ever changing service needs in a spirit of continuous improvements. You are self-motivated, autonomous, problem oriented and able to make high-quality solutions considering the available means Languages: Mandatory: English excellent both speaking and writing
17/04/2024
Project-based
Title : Sailpoint Engineer Location : Brussels - (1x or 2x days a week onsite is mandatory) Duration : 6 months ROLLING contract Budget : €500 - €550 per day, all inclusive Language : English THIS PROJECT IS OUTSIDE IR35 Role As a SailPoint Engineer, you will contribute to the delivery of the SailPoint infrastructure OS Upgrade. You will join the Logical Access Management project team. This role includes the analysis, design, build, test and deployment of the new infrastructure aligned to the established project governance. Your role involves working closely with colleagues in different domains (and may include external suppliers) to obtain the requirements so that you can design the optimal, secure solutions. A security focus with an understanding of the challenges our internal customers face, as well as a positive problem solving, and an analytical mindset are your strongest skills. You will be expected to document the solutions you design in clients standard templates such as a High-Level Technical Design; Detailed Functional Design; Detailed Technical Design, where you will need to obtain sign-off from reviewers while addressing all the concerns. You will build the solution in our test environment and ensure the solution goes through all the formal testing stages with our internal customers to obtain signoffs. Once tested and signed-off, you will perform handovers with the Operations Team, which may include performing training, knowledge sharing, provision of a cookbook to enable them to run and operate the solution you have designed. This will also include providing warranty support. In addition to the role you are expected to: Identify security risks and exposures during the analysis and how the design mitigate these risks. It maybe possible you identify security risks which are not in-scope, however you will be expected to call these out to ensure they are recognised to senior stakeholders who can then take action. Consider the impact on processes and controls based on the solution designed. Makes recommendations for changes and may implement agreed enhancements. Always look for solutions, rather than just call out the problems. Recognise that client is a regulated financial institution and as such your conduct must align with the compliance needs. Skills and experience A combination of several of the below should be covered: Sailpoint IIQ (Identity IQ), at least 5 to 8 years of experience implementing Sailpoint solution Identity & Access Management (IAM) Expert knowledge on one or more of following technology platforms: Windows, Unix, Network, Office/End User technologies, Mainframe, Tandem or Middleware Professional certification in CISSP, CISM and CISA, or equivalent is a plus Design, Development & Implementation of SailPoint Infrastructure Is creative and sees the bigger picture when designing solutions Works proactively, thereby keeping possible problems from affecting the overall functioning of the team Interpersonal/Soft Skills Embraces the belief that teamwork is essential for achieving results Leverages influence and negotiates to achieve the defined goals. Uses a diplomatic attitude to reach goals. Is a good communicator (verbal and written), structured and focuses on the requirements of the customer. Is capable of working in an environment with continuous change on the related services; can adapt to ever changing service needs in a spirit of continuous improvements. You are self-motivated, autonomous, problem oriented and able to make high-quality solutions considering the available means Languages: Mandatory: English excellent both speaking and writing
Cyber Security Engineer - Luxemburg - 60-77k + Bonus Global IT Services provider are recruiting for multiple mid level and senior security engineers to work on a security cleared project based in Luxemburg. The client is happy to consider people relocating from anywhere in the UK, EU or US. you will be responsible for designing, implementing, and managing security solutions to safeguard the network, applications, and digital assets. Key Responsibilities Replace/upgrade the current infrastructure with new versions or solutions. Recommend and implement new cyber security technologies and solutions. Monitor operational infrastructure - you will leverage standard tools and processes to respond and resolve incidents and requests. Incident Response - Monitor security events, investigate and respond to security incidents, and assist in post-incident analysis and remediation. Documentation: Create and maintain comprehensive documentation related to security configurations, policies, procedures, and incidents. Collaboration: Work closely with cross-functional teams, including IT, Network, and Application Development, to ensure the integration of security measures across the organization. Research and Innovation: Stay up-to-date with emerging security threats, technologies, and best practices, and provide recommendations where appropriate. Qualifications Bachelor's degree in Computer Science, Information Security, or a related field. At least 6 years of field experience in the networking and security area with solutions. Proven experience in network and application security, with expertise in Palo Alto, Bluecoat, F5 (LTM, ASM, APM), ASA VPN or Splunk. Knowledge of Firewall management, intrusion detection, content filtering, web application security, and VPN technologies. Proficiency in PKI design and management, digital certificate issuance, and secure key management. Strong communication skills and the ability to collaborate with diverse teams. A proactive approach to identifying and mitigating security vulnerabilities and risks. Demonstrated ability to work in a fast-paced and dynamic environment. Fluent in English Key Skills Automation Tools, Cloud Security, Firewalls, Local Area Network (LAN), Palo Alto Networks Prisma Access Secure Access Service Edge (SASE), Security Technologies, TCP/IP Networking, Threat Management Cyber Security Engineer - Luxemburg - 60-77k + Bonus Desired Skills and Experience Palo Alto/Blue Coat/F5/Splunk/Fireye/Network Security
17/04/2024
Full time
Cyber Security Engineer - Luxemburg - 60-77k + Bonus Global IT Services provider are recruiting for multiple mid level and senior security engineers to work on a security cleared project based in Luxemburg. The client is happy to consider people relocating from anywhere in the UK, EU or US. you will be responsible for designing, implementing, and managing security solutions to safeguard the network, applications, and digital assets. Key Responsibilities Replace/upgrade the current infrastructure with new versions or solutions. Recommend and implement new cyber security technologies and solutions. Monitor operational infrastructure - you will leverage standard tools and processes to respond and resolve incidents and requests. Incident Response - Monitor security events, investigate and respond to security incidents, and assist in post-incident analysis and remediation. Documentation: Create and maintain comprehensive documentation related to security configurations, policies, procedures, and incidents. Collaboration: Work closely with cross-functional teams, including IT, Network, and Application Development, to ensure the integration of security measures across the organization. Research and Innovation: Stay up-to-date with emerging security threats, technologies, and best practices, and provide recommendations where appropriate. Qualifications Bachelor's degree in Computer Science, Information Security, or a related field. At least 6 years of field experience in the networking and security area with solutions. Proven experience in network and application security, with expertise in Palo Alto, Bluecoat, F5 (LTM, ASM, APM), ASA VPN or Splunk. Knowledge of Firewall management, intrusion detection, content filtering, web application security, and VPN technologies. Proficiency in PKI design and management, digital certificate issuance, and secure key management. Strong communication skills and the ability to collaborate with diverse teams. A proactive approach to identifying and mitigating security vulnerabilities and risks. Demonstrated ability to work in a fast-paced and dynamic environment. Fluent in English Key Skills Automation Tools, Cloud Security, Firewalls, Local Area Network (LAN), Palo Alto Networks Prisma Access Secure Access Service Edge (SASE), Security Technologies, TCP/IP Networking, Threat Management Cyber Security Engineer - Luxemburg - 60-77k + Bonus Desired Skills and Experience Palo Alto/Blue Coat/F5/Splunk/Fireye/Network Security
Senior ServiceNow Engineer/Architect Salary: $140k-$145k + 15% bonus Location: Dallas, TX or Chicago, IL Hybrid: 3 days on-site, 2 days remote *We are unable to provide sponsorship for this role* Qualifications BS degree required. 5+ years of experience in implementing ServiceNow for ITSM, ITOM, SecOps and/or GRC/IRM modules. 3+ years of experience with JavaScript Experience with RESTful APIs and JSON Ability to write clean, bug-free code that is easy to understand and easily maintainable. Strong understanding of CMDB, including importing customer data Experience with Scaled Agile Framework (SAFe), Agile/Scrum, and DevSecOps methodologies Responsibilities Contribute to design, technical direction, and architecture with various teams to build fit for purpose solutions. Participates in code reviews, proactively identifying and mitigating potential issues and defects as well as assisting with continuous improvement. Follows agreed upon SDLC procedures to ensure that all information system products and services meet both explicit and implicit quality standards, end-user functional requirements, architectural standards, performance requirements, audit requirements, security rules are upheld, and external facing reporting is represented. Writes unit and integration tests to maintain quality technology improvements. Performs application and project risk analysis and recommends quality improvements. Manage Production Support on system functionality and provide fixes as required.
16/04/2024
Full time
Senior ServiceNow Engineer/Architect Salary: $140k-$145k + 15% bonus Location: Dallas, TX or Chicago, IL Hybrid: 3 days on-site, 2 days remote *We are unable to provide sponsorship for this role* Qualifications BS degree required. 5+ years of experience in implementing ServiceNow for ITSM, ITOM, SecOps and/or GRC/IRM modules. 3+ years of experience with JavaScript Experience with RESTful APIs and JSON Ability to write clean, bug-free code that is easy to understand and easily maintainable. Strong understanding of CMDB, including importing customer data Experience with Scaled Agile Framework (SAFe), Agile/Scrum, and DevSecOps methodologies Responsibilities Contribute to design, technical direction, and architecture with various teams to build fit for purpose solutions. Participates in code reviews, proactively identifying and mitigating potential issues and defects as well as assisting with continuous improvement. Follows agreed upon SDLC procedures to ensure that all information system products and services meet both explicit and implicit quality standards, end-user functional requirements, architectural standards, performance requirements, audit requirements, security rules are upheld, and external facing reporting is represented. Writes unit and integration tests to maintain quality technology improvements. Performs application and project risk analysis and recommends quality improvements. Manage Production Support on system functionality and provide fixes as required.
Senior ServiceNow Engineer/Architect Salary: $140k-$145k + 15% bonus Location: Dallas, TX Hybrid: 3 days on-site, 2 days remote *We are unable to provide sponsorship for this role* Qualifications BS degree required. 10+ years of working experience in IT 5+ years of experience in implementing ServiceNow or similar platforms for ITSM, SecOps and/or GRC/IRM modules. 3+ years of experience with JavaScript Experience with RESTful APIs and JSON Ability to write clean, bug-free code that is easy to understand and easily maintainable. Strong understanding of CMDB, including importing customer data Experience with Scaled Agile Framework (SAFe), Agile/Scrum, and DevSecOps methodologies Responsibilities Contribute to design, technical direction, and architecture with various teams to build fit for purpose solutions. Participates in code reviews, proactively identifying and mitigating potential issues and defects as well as assisting with continuous improvement. Follows agreed upon SDLC procedures to ensure that all information system products and services meet both explicit and implicit quality standards, end-user functional requirements, architectural standards, performance requirements, audit requirements, security rules are upheld, and external facing reporting is represented. Writes unit and integration tests to maintain quality technology improvements. Performs application and project risk analysis and recommends quality improvements. Manage Production Support on system functionality and provide fixes as required.
15/04/2024
Full time
Senior ServiceNow Engineer/Architect Salary: $140k-$145k + 15% bonus Location: Dallas, TX Hybrid: 3 days on-site, 2 days remote *We are unable to provide sponsorship for this role* Qualifications BS degree required. 10+ years of working experience in IT 5+ years of experience in implementing ServiceNow or similar platforms for ITSM, SecOps and/or GRC/IRM modules. 3+ years of experience with JavaScript Experience with RESTful APIs and JSON Ability to write clean, bug-free code that is easy to understand and easily maintainable. Strong understanding of CMDB, including importing customer data Experience with Scaled Agile Framework (SAFe), Agile/Scrum, and DevSecOps methodologies Responsibilities Contribute to design, technical direction, and architecture with various teams to build fit for purpose solutions. Participates in code reviews, proactively identifying and mitigating potential issues and defects as well as assisting with continuous improvement. Follows agreed upon SDLC procedures to ensure that all information system products and services meet both explicit and implicit quality standards, end-user functional requirements, architectural standards, performance requirements, audit requirements, security rules are upheld, and external facing reporting is represented. Writes unit and integration tests to maintain quality technology improvements. Performs application and project risk analysis and recommends quality improvements. Manage Production Support on system functionality and provide fixes as required.