Security Engineering Lead London up to £100K 3 days per week in the office This household name are undertaking a huge technology transformation in the MS Azure space and are looking to hire a hand's on Security Engineering Lead as part of this change. They have made an impressive dent in the E-commerce market of the past 10 years and are continuing to dominate this space. Security Engineering Lead: The Role As a Security Engineering Lead you will be the first hire into this growing team so your role will involve a mixture of hands-on security engineering including python Scripting as well as hiring and supporting a team. Some of your duties will include: Developing and implementing an overarching security technology strategy aligned with business objectives, industry best practices, and regulatory requirements. Collaborating with cross-functional teams, including information security, architecture, platform engineering, network engineering, and software development, to integrate security technologies into organisational systems and applications. Ensuring the proper planning, execution, and completion of security technology projects, ensuring that these are delivered on time and on budget Performing risk assessments and vulnerability assessments to identify potential security gaps or weaknesses in existing technologies and recommending appropriate remediations. Monitoring security technology function and respond to any errors and failures which may occur. Security Engineering Lead: Your profile Proven experience in security technology management, with at least 5 years in a technical leadership or managerial capacity. Strong technical background in security technologies, including Firewalls, IDS/IPS, SIEM, access control systems, DLP, encryption, etc. In-depth knowledge of security frameworks, standards, and best practices (eg, ISO 27001, NIST Cybersecurity Framework). Demonstrable experience in managing security technology projects, from initiation to completion, ensuring adherence to timelines. Professional certifications such as CISSP, CISM, CISA, or other relevant certifications. Experience working with Microsoft cloud security technologies, especially Sentinel, Defender and Purview Python programming knowledge - able to write scripts etc REST/Graph API experience Azure Kubernetes Service experience
18/04/2024
Full time
Security Engineering Lead London up to £100K 3 days per week in the office This household name are undertaking a huge technology transformation in the MS Azure space and are looking to hire a hand's on Security Engineering Lead as part of this change. They have made an impressive dent in the E-commerce market of the past 10 years and are continuing to dominate this space. Security Engineering Lead: The Role As a Security Engineering Lead you will be the first hire into this growing team so your role will involve a mixture of hands-on security engineering including python Scripting as well as hiring and supporting a team. Some of your duties will include: Developing and implementing an overarching security technology strategy aligned with business objectives, industry best practices, and regulatory requirements. Collaborating with cross-functional teams, including information security, architecture, platform engineering, network engineering, and software development, to integrate security technologies into organisational systems and applications. Ensuring the proper planning, execution, and completion of security technology projects, ensuring that these are delivered on time and on budget Performing risk assessments and vulnerability assessments to identify potential security gaps or weaknesses in existing technologies and recommending appropriate remediations. Monitoring security technology function and respond to any errors and failures which may occur. Security Engineering Lead: Your profile Proven experience in security technology management, with at least 5 years in a technical leadership or managerial capacity. Strong technical background in security technologies, including Firewalls, IDS/IPS, SIEM, access control systems, DLP, encryption, etc. In-depth knowledge of security frameworks, standards, and best practices (eg, ISO 27001, NIST Cybersecurity Framework). Demonstrable experience in managing security technology projects, from initiation to completion, ensuring adherence to timelines. Professional certifications such as CISSP, CISM, CISA, or other relevant certifications. Experience working with Microsoft cloud security technologies, especially Sentinel, Defender and Purview Python programming knowledge - able to write scripts etc REST/Graph API experience Azure Kubernetes Service experience
DevSecOps - Upto £60,000 On-site 5 days (West - Midlands) We value discussion and debate as part of our approach. We will question assumptions, ambition and process - but do so with respect and humility. We relish difficult problems, and overcome them with innovation, creativity and technical freedom to help us design optimum solutions. Ethics, privacy and quality are at the heart of our work and we will not sacrifice these for outcomes. We treat data with respect and use it only for the right purpose. Our people are positive, dedicated and relentless. Data is a vast topic, but we strive for interactions that are engaging, informative and fun in equal measure. But maintain a steely focus on outcomes and delivering quality products for our customers. Requirements Specialised in cloud management of platforms, applications, data and supporting infrastructure in the capacity of a system administrator of either the AWS or Azure platform Developing automation to support continuous delivery of changes using technologies on the Azure platform. Developing infrastructure as a service configuration to automate the creation of infrastructure and platforms to host test and production systems Building and setting up new development tools and infrastructure Understanding the needs of stakeholders and conveying this to developers Working on ways to automate and improve development and release processes Testing and examining code written by others and analysing results Ensuring that systems are safe and secure against cybersecurity threats Familiar with the NCSC secure design principles Familiar with managing security of cloud platforms, including administration of secrets, tokens and certificates. Working with Architects, Data and Software Engineers to ensure that development follows established processes and works as intended Planning out projects and being involved in project management decisions Responsible for the design, security, and maintenance of cloud infrastructure Making and guiding effective decisions, explaining clearly how the decision has been reached with the ability to understand and resolve technical disputes across varying levels of complexity and risk. Communicating effectively across organisational, technical and political boundaries to understand the context and how to make complex and technical information and language simple and accessible for non-technical audiences. Understanding of how to expose data from systems (for example, through APIs), link data from multiple systems and deliver streaming services. Ensuring that risks associated with deployment are adequately understood and documented. Ideal Candidates will demonstrate: Experience working across cyber security teams would be beneficial Solid infrastructure design experience for both on-prem and cloud, to implement or migrate applications and databases to Azure. Solid experience in a range of technologies and be able to make assessments as to what is best to be used for the projects and the organisation. As well as suggest and develop innovative approaches within constrained projects and environments. Strong experience in software development, change/release management processes, and technical governance to fully understand the typical life cycle and maintenance of live systems. Ability to work with containerization platforms such as Kubernetes, PKS, Docker; cloud provisioning software, including Ansible, Terraform, Azure blueprints, ARM templates; and application performance analysis and monitoring Experience of functional and non-functional testing including automated deployment experience of applications and databases. Understanding of the government digital service manual and standards across Discovery/Alpha/Beta/Live phases. Understanding of SaaS, PaaS, IaaS technologies and the implications of their use compared with bespoke development. Being able to provide training, support and mentoring to the wider business Knowledge of how to ensure that risks associated with deployment are adequately understood and documented. Desirable Skills & Experience: Worked as part of a system support team, managing live systems and triaging & resolving incidents to resolution including management of known defects and issues. Worked as part of multi-disciplinary project team. Experience with Terraform to deploy cloud infrastructure in Azure Experience with Azure DevOps and GitHub Actions to automate the build and deploy of containerised applications Experience implementing effective instrumentation to monitor applications Experience implementing SAST and DAST tooling in deployment pipelines like Trivvy and SonarQube Experience of both AWS and Azure Dev Ops tooling. This role will require you to have or be willing to go through Security Clearance. As part of the onboarding process candidates will be asked to complete a Baseline Personnel Security Standard; details of the evidence required to apply may be found on the government website Gov.UK. If you are unable to meet this and any associated criteria, then your employment may be delayed, or rejected. Details of this will be discussed with you at interview. Benefits Methods is passionate about its people; we want our colleagues to develop the things they are good at and enjoy. By joining us you can expect Autonomy to develop and grow your skills and experience Be part of exciting project work that is making a difference in society Strong, inspiring and thought-provoking leadership A supportive and collaborative environment Development - access to LinkedIn Learning, a management development programme, and training Wellness - 24/7 confidential employee assistance programme Flexible Working - including home working and part time Social - office parties, breakfast Tuesdays, monthly pizza Thursdays, Thirsty Thursdays, and commitment to charitable causes Time Off - 25 days of annual leave a year, plus bank holidays, with the option to buy 5 extra days each year Volunteering - 2 paid days per year to volunteer in our local communities or within a charity organisation Pension - Salary Exchange Scheme with 4% employer contribution and 5% employee contribution Discretionary Company Bonus - based on company and individual performance Life Assurance - of 4 times base salary Private Medical Insurance - which is non-contributory (spouse and dependants included) Worldwide Travel Insurance - which is non-contributory (spouse and dependants included) Enhanced Maternity and Paternity Pay Travel - season ticket loan, cycle to work scheme For a full list of benefits please visit our website.
18/04/2024
Full time
DevSecOps - Upto £60,000 On-site 5 days (West - Midlands) We value discussion and debate as part of our approach. We will question assumptions, ambition and process - but do so with respect and humility. We relish difficult problems, and overcome them with innovation, creativity and technical freedom to help us design optimum solutions. Ethics, privacy and quality are at the heart of our work and we will not sacrifice these for outcomes. We treat data with respect and use it only for the right purpose. Our people are positive, dedicated and relentless. Data is a vast topic, but we strive for interactions that are engaging, informative and fun in equal measure. But maintain a steely focus on outcomes and delivering quality products for our customers. Requirements Specialised in cloud management of platforms, applications, data and supporting infrastructure in the capacity of a system administrator of either the AWS or Azure platform Developing automation to support continuous delivery of changes using technologies on the Azure platform. Developing infrastructure as a service configuration to automate the creation of infrastructure and platforms to host test and production systems Building and setting up new development tools and infrastructure Understanding the needs of stakeholders and conveying this to developers Working on ways to automate and improve development and release processes Testing and examining code written by others and analysing results Ensuring that systems are safe and secure against cybersecurity threats Familiar with the NCSC secure design principles Familiar with managing security of cloud platforms, including administration of secrets, tokens and certificates. Working with Architects, Data and Software Engineers to ensure that development follows established processes and works as intended Planning out projects and being involved in project management decisions Responsible for the design, security, and maintenance of cloud infrastructure Making and guiding effective decisions, explaining clearly how the decision has been reached with the ability to understand and resolve technical disputes across varying levels of complexity and risk. Communicating effectively across organisational, technical and political boundaries to understand the context and how to make complex and technical information and language simple and accessible for non-technical audiences. Understanding of how to expose data from systems (for example, through APIs), link data from multiple systems and deliver streaming services. Ensuring that risks associated with deployment are adequately understood and documented. Ideal Candidates will demonstrate: Experience working across cyber security teams would be beneficial Solid infrastructure design experience for both on-prem and cloud, to implement or migrate applications and databases to Azure. Solid experience in a range of technologies and be able to make assessments as to what is best to be used for the projects and the organisation. As well as suggest and develop innovative approaches within constrained projects and environments. Strong experience in software development, change/release management processes, and technical governance to fully understand the typical life cycle and maintenance of live systems. Ability to work with containerization platforms such as Kubernetes, PKS, Docker; cloud provisioning software, including Ansible, Terraform, Azure blueprints, ARM templates; and application performance analysis and monitoring Experience of functional and non-functional testing including automated deployment experience of applications and databases. Understanding of the government digital service manual and standards across Discovery/Alpha/Beta/Live phases. Understanding of SaaS, PaaS, IaaS technologies and the implications of their use compared with bespoke development. Being able to provide training, support and mentoring to the wider business Knowledge of how to ensure that risks associated with deployment are adequately understood and documented. Desirable Skills & Experience: Worked as part of a system support team, managing live systems and triaging & resolving incidents to resolution including management of known defects and issues. Worked as part of multi-disciplinary project team. Experience with Terraform to deploy cloud infrastructure in Azure Experience with Azure DevOps and GitHub Actions to automate the build and deploy of containerised applications Experience implementing effective instrumentation to monitor applications Experience implementing SAST and DAST tooling in deployment pipelines like Trivvy and SonarQube Experience of both AWS and Azure Dev Ops tooling. This role will require you to have or be willing to go through Security Clearance. As part of the onboarding process candidates will be asked to complete a Baseline Personnel Security Standard; details of the evidence required to apply may be found on the government website Gov.UK. If you are unable to meet this and any associated criteria, then your employment may be delayed, or rejected. Details of this will be discussed with you at interview. Benefits Methods is passionate about its people; we want our colleagues to develop the things they are good at and enjoy. By joining us you can expect Autonomy to develop and grow your skills and experience Be part of exciting project work that is making a difference in society Strong, inspiring and thought-provoking leadership A supportive and collaborative environment Development - access to LinkedIn Learning, a management development programme, and training Wellness - 24/7 confidential employee assistance programme Flexible Working - including home working and part time Social - office parties, breakfast Tuesdays, monthly pizza Thursdays, Thirsty Thursdays, and commitment to charitable causes Time Off - 25 days of annual leave a year, plus bank holidays, with the option to buy 5 extra days each year Volunteering - 2 paid days per year to volunteer in our local communities or within a charity organisation Pension - Salary Exchange Scheme with 4% employer contribution and 5% employee contribution Discretionary Company Bonus - based on company and individual performance Life Assurance - of 4 times base salary Private Medical Insurance - which is non-contributory (spouse and dependants included) Worldwide Travel Insurance - which is non-contributory (spouse and dependants included) Enhanced Maternity and Paternity Pay Travel - season ticket loan, cycle to work scheme For a full list of benefits please visit our website.
Senior Cyber Security Architect Salary upto £80,000 Description: Since our establishment in 1990, Methods has partnered with a range of central government departments and agencies to transform the way the public sector operates in the UK. Our mission is to improve and safeguard public-facing services. We apply digital thinking to ensure the future of our public services is centred around our citizens. Our human touch sets us apart from other consultancies, system integrators and software houses - we have a customer-centric value system whereby we focus on delivering what is right for our clients. We passionately support our clients in the success of their projects while working collaboratively to share skill sets and solve problems. At Methods we have fun while working hard; we are not afraid of making mistakes and learning from them. Methods are experts in delivering secure, resilient cyber and information services - keeping systems and data safe. We help reduce risk and vulnerabilities from cyber-attacks by developing a security road-map tailored to your unique needs. We help organisations improve processes such as threat management by building an identity management programme, and establishing prevention, detection and response capabilities to cyber-attacks. Requirements Ability to research, articulate, pitch complex and innovative security advice, at both business and technical levels, for new or existing problems, with the objective to justify and communicate decisions directly to key customer stakeholders including senior management. Able to understand and comprehend the impact of decisions, balancing requirements and deciding between approaches Develop vision, principles and strategy for security for multiple projects or technologies; working in a particular field as subject matter expert, to support a team in delivering engagements at scale, which may require subtle security needs and requirements, contributing to development of information security policy, standards, procedures and guidelines. Effective business acumen and an understanding of the cyber security challenges faced by client, with the objective to develop our cyber assurance practice, by supporting business development and practice management. Experience of identifying and applying security risk and familiarity with common control frameworks, with the ability investigating major breaches of security and recommending appropriate control improvements. Maintaining awareness of key business and industry trends and understanding how they impact responses to cyber risk, with the contribution of the development of our team through training and coaching. Managing, delivering, leading cyber security and cyber risk assignments, with the management of portfolio of clients, across a variety of sectors and locations, including producing documentation, presentation, reports, recommendations and quality assuring, for the work produced by team members and being the point of escalation for lower grade roles. Providing our clients with trusted advice, rooted in a pragmatic and agnostic understanding of their business situation and objectives, to help them navigate complex, risk-driven cyber decisions. Working as a subject matter expert in your particular field, owning and delivering initiatives to embed quality through learning and other activity, working seamlessly and collaboratively with colleagues and clients from other service lines, supporting a team or colleagues to deliver engagements at scale, with the appropriate reach and influence across the teams and communities. Managing diverse teams within an inclusive team culture where people are recognised and encouraged for their contribution. Essential Skills and Experience: An experienced consultant with a background in Cyber Security Minimum 5-7 years of experience in Information Security related positions Minimum 3-5 years of experience in security architecture Cyber Security Certification eg ISC2 CISSP, ISC2 CCSP, ISACA CISM or similar Certification in AWS or Azure for Architecture and Security or similar IASME/Cyber Essentials Plus Certified Expert knowledge of secure network architecture and technical design Experience in creating secure architecture in either AWS and/or Azure Experience providing expert strategy, risk and technical advice, guidance and support on cyber security, both in business-as-usual and for live and planned projects within our clients' business. Expected to be the point of escalation for architects in lower grade roles and lead technical design of systems and services Broad range of cyber and information security skills, knowledge and experience such as security threats and vulnerabilities that impact/and/or emanate from system hardware, software and other infrastructure components, and relevant strategies, controls and activities to prevent, mitigate, detect and resolve security incidents affecting system hardware, software and other infrastructure components. Experience in gap analysis for specific domains, identify gaps in existing capabilities, service maturity. Identify missing cybersecurity and cyber-resiliency capabilities in alignment with changing business needs, threat land scape and technical requirements to increase the quality of the selected solutions also including topics such as products' convergence over time and products decommissioning. Expert knowledge of identifying, developing and communicating threat modelling and understanding the impact of decisions, balancing requirements and deciding between approaches Research and apply innovative security architecture solutions to new or existing problems and be able to justify and communicate subtle design decisions Able to develop vision, principles and strategy for security architects for projects or technologies Demonstrably experienced in working as an effective member of a multi-disciplinary team and reach & influence a wide range of people across larger teams and communities. Excellent stakeholder management, presentation and communication skills, with the ability to interact with senior stakeholders across department and clients Pro-active approach to personal and professional development. Work closely with your peers in the security architecture group, service and solution architects, engineers, project teams. Must hold, or be able to hold, an HMG Security Check (SC) clearance. Ability to apply standards, practices, codes and assessment of certification programmes relevant to the IT industry and the specific organisation or business domain. Experience in writing and creating Cyber Security documents ie Risk Assessments, ESRM, DPIA etc and produce particular patterns and support quality assurance Knowledge of the IT/IS infrastructure (eg databases and LANs) and the IT applications and service processes used within own organisation, including those associated with sustainability and efficiency. Ability to use any tool or system which provides security access control (eg Active Directory) Showing proficiency in the principles and application of cloud/virtualisation (including ownership responsibilities and security implications) and be able to use tools and systems to manage virtualised environments eg Server/desktop virtualisation and SDDC (Software Defined Data Centre). Benefits Holiday: 25 days a year, plus bank holidays, with the option to buy 5 extra days each year Pension: 4% employer contribution and 5% employee contribution Discretionary bonus: based on company and individual performance Life assurance: 4 times base salary Private medical insurance: non-contributory (spouse and dependants included) Worldwide travel insurance: non-contributory (spouse and dependants included) Enhanced maternity and paternity leave after 18 months service Wellness: 24/7 confidential employee assistance programme, including counselling Social: Parties and social events, and commitment to charitable causes Professional development: access to LinkedIn Learning, and discretionary training budget Travel: season ticket loan, cycle to work scheme Development access to LinkedIn Learning, a management development programme and training Wellness 24/7 Confidential employee assistance programme
18/04/2024
Full time
Senior Cyber Security Architect Salary upto £80,000 Description: Since our establishment in 1990, Methods has partnered with a range of central government departments and agencies to transform the way the public sector operates in the UK. Our mission is to improve and safeguard public-facing services. We apply digital thinking to ensure the future of our public services is centred around our citizens. Our human touch sets us apart from other consultancies, system integrators and software houses - we have a customer-centric value system whereby we focus on delivering what is right for our clients. We passionately support our clients in the success of their projects while working collaboratively to share skill sets and solve problems. At Methods we have fun while working hard; we are not afraid of making mistakes and learning from them. Methods are experts in delivering secure, resilient cyber and information services - keeping systems and data safe. We help reduce risk and vulnerabilities from cyber-attacks by developing a security road-map tailored to your unique needs. We help organisations improve processes such as threat management by building an identity management programme, and establishing prevention, detection and response capabilities to cyber-attacks. Requirements Ability to research, articulate, pitch complex and innovative security advice, at both business and technical levels, for new or existing problems, with the objective to justify and communicate decisions directly to key customer stakeholders including senior management. Able to understand and comprehend the impact of decisions, balancing requirements and deciding between approaches Develop vision, principles and strategy for security for multiple projects or technologies; working in a particular field as subject matter expert, to support a team in delivering engagements at scale, which may require subtle security needs and requirements, contributing to development of information security policy, standards, procedures and guidelines. Effective business acumen and an understanding of the cyber security challenges faced by client, with the objective to develop our cyber assurance practice, by supporting business development and practice management. Experience of identifying and applying security risk and familiarity with common control frameworks, with the ability investigating major breaches of security and recommending appropriate control improvements. Maintaining awareness of key business and industry trends and understanding how they impact responses to cyber risk, with the contribution of the development of our team through training and coaching. Managing, delivering, leading cyber security and cyber risk assignments, with the management of portfolio of clients, across a variety of sectors and locations, including producing documentation, presentation, reports, recommendations and quality assuring, for the work produced by team members and being the point of escalation for lower grade roles. Providing our clients with trusted advice, rooted in a pragmatic and agnostic understanding of their business situation and objectives, to help them navigate complex, risk-driven cyber decisions. Working as a subject matter expert in your particular field, owning and delivering initiatives to embed quality through learning and other activity, working seamlessly and collaboratively with colleagues and clients from other service lines, supporting a team or colleagues to deliver engagements at scale, with the appropriate reach and influence across the teams and communities. Managing diverse teams within an inclusive team culture where people are recognised and encouraged for their contribution. Essential Skills and Experience: An experienced consultant with a background in Cyber Security Minimum 5-7 years of experience in Information Security related positions Minimum 3-5 years of experience in security architecture Cyber Security Certification eg ISC2 CISSP, ISC2 CCSP, ISACA CISM or similar Certification in AWS or Azure for Architecture and Security or similar IASME/Cyber Essentials Plus Certified Expert knowledge of secure network architecture and technical design Experience in creating secure architecture in either AWS and/or Azure Experience providing expert strategy, risk and technical advice, guidance and support on cyber security, both in business-as-usual and for live and planned projects within our clients' business. Expected to be the point of escalation for architects in lower grade roles and lead technical design of systems and services Broad range of cyber and information security skills, knowledge and experience such as security threats and vulnerabilities that impact/and/or emanate from system hardware, software and other infrastructure components, and relevant strategies, controls and activities to prevent, mitigate, detect and resolve security incidents affecting system hardware, software and other infrastructure components. Experience in gap analysis for specific domains, identify gaps in existing capabilities, service maturity. Identify missing cybersecurity and cyber-resiliency capabilities in alignment with changing business needs, threat land scape and technical requirements to increase the quality of the selected solutions also including topics such as products' convergence over time and products decommissioning. Expert knowledge of identifying, developing and communicating threat modelling and understanding the impact of decisions, balancing requirements and deciding between approaches Research and apply innovative security architecture solutions to new or existing problems and be able to justify and communicate subtle design decisions Able to develop vision, principles and strategy for security architects for projects or technologies Demonstrably experienced in working as an effective member of a multi-disciplinary team and reach & influence a wide range of people across larger teams and communities. Excellent stakeholder management, presentation and communication skills, with the ability to interact with senior stakeholders across department and clients Pro-active approach to personal and professional development. Work closely with your peers in the security architecture group, service and solution architects, engineers, project teams. Must hold, or be able to hold, an HMG Security Check (SC) clearance. Ability to apply standards, practices, codes and assessment of certification programmes relevant to the IT industry and the specific organisation or business domain. Experience in writing and creating Cyber Security documents ie Risk Assessments, ESRM, DPIA etc and produce particular patterns and support quality assurance Knowledge of the IT/IS infrastructure (eg databases and LANs) and the IT applications and service processes used within own organisation, including those associated with sustainability and efficiency. Ability to use any tool or system which provides security access control (eg Active Directory) Showing proficiency in the principles and application of cloud/virtualisation (including ownership responsibilities and security implications) and be able to use tools and systems to manage virtualised environments eg Server/desktop virtualisation and SDDC (Software Defined Data Centre). Benefits Holiday: 25 days a year, plus bank holidays, with the option to buy 5 extra days each year Pension: 4% employer contribution and 5% employee contribution Discretionary bonus: based on company and individual performance Life assurance: 4 times base salary Private medical insurance: non-contributory (spouse and dependants included) Worldwide travel insurance: non-contributory (spouse and dependants included) Enhanced maternity and paternity leave after 18 months service Wellness: 24/7 confidential employee assistance programme, including counselling Social: Parties and social events, and commitment to charitable causes Professional development: access to LinkedIn Learning, and discretionary training budget Travel: season ticket loan, cycle to work scheme Development access to LinkedIn Learning, a management development programme and training Wellness 24/7 Confidential employee assistance programme
Cyber Security Architect/Solution Architect/Enterprise Architect with sound knowledge of core Cyber Security. You will be require to go into the office at least twice a week As a Cyber Security Architect, you will be responsible for designing and implementing comprehensive security solutions to protect an organisation's information systems. You will work closely with various stakeholders including IT teams, business leaders, and external partners to understand business requirements and develop strategies to mitigate cybersecurity risks. Your primary objective will be to create a robust security architecture that aligns with industry best practices and regulatory requirements while supporting the organization's objectives. Key Responsibilities: Develop and maintain a detailed security architecture that encompasses network, infrastructure, applications, and data security. Ensure that the architecture aligns with the organization's business goals and supports scalability and flexibility. Conduct thorough risk assessments to identify potential vulnerabilities and threats to the organization's information systems. Develop risk mitigation strategies and security controls to address identified risks effectively. Define security policies, standards, and procedures in alignment with industry regulations and best practices (such as ISO 27001, NIST, GDPR). Ensure compliance with relevant regulations and standards through regular audits and assessments. Evaluate new and emerging security technologies, tools, and methodologies. Recommend and implement appropriate security solutions to enhance the organization's security posture and resilience against cyber threats. Develop and maintain incident response plans and procedures to effectively respond to security incidents and breaches. Coordinate with internal teams and external stakeholders to contain incidents, minimize impact, and restore normal operations. Promote a culture of security awareness throughout the organization. Develop and deliver training programs to educate employees about cybersecurity best practices, policies, and procedures. Collaborate with cross-functional teams including IT, legal, compliance, and risk management to ensure alignment of security initiatives with business objectives. Communicate security risks, issues, and recommendations to senior management and stakeholders in a clear and concise manner. Qualifications and Skills: Bachelor's degree in Computer Science, Information Technology, or related field. Advanced degree or certifications (eg, CISSP, CISM, CEH) preferred. Proven experience (5+ years) in cybersecurity architecture, design, and implementation. Deep understanding of cybersecurity principles, technologies, and best practices. Experience with security frameworks and standards (eg, ISO 27001, NIST Cybersecurity Framework). Strong analytical and problem-solving skills with the ability to assess complex security challenges and develop innovative solutions. Excellent communication and interpersonal skills, with the ability to effectively engage with stakeholders at all levels of the organization. Strong project management skills with the ability to prioritize tasks, manage resources, and meet deadlines effectively.
18/04/2024
Full time
Cyber Security Architect/Solution Architect/Enterprise Architect with sound knowledge of core Cyber Security. You will be require to go into the office at least twice a week As a Cyber Security Architect, you will be responsible for designing and implementing comprehensive security solutions to protect an organisation's information systems. You will work closely with various stakeholders including IT teams, business leaders, and external partners to understand business requirements and develop strategies to mitigate cybersecurity risks. Your primary objective will be to create a robust security architecture that aligns with industry best practices and regulatory requirements while supporting the organization's objectives. Key Responsibilities: Develop and maintain a detailed security architecture that encompasses network, infrastructure, applications, and data security. Ensure that the architecture aligns with the organization's business goals and supports scalability and flexibility. Conduct thorough risk assessments to identify potential vulnerabilities and threats to the organization's information systems. Develop risk mitigation strategies and security controls to address identified risks effectively. Define security policies, standards, and procedures in alignment with industry regulations and best practices (such as ISO 27001, NIST, GDPR). Ensure compliance with relevant regulations and standards through regular audits and assessments. Evaluate new and emerging security technologies, tools, and methodologies. Recommend and implement appropriate security solutions to enhance the organization's security posture and resilience against cyber threats. Develop and maintain incident response plans and procedures to effectively respond to security incidents and breaches. Coordinate with internal teams and external stakeholders to contain incidents, minimize impact, and restore normal operations. Promote a culture of security awareness throughout the organization. Develop and deliver training programs to educate employees about cybersecurity best practices, policies, and procedures. Collaborate with cross-functional teams including IT, legal, compliance, and risk management to ensure alignment of security initiatives with business objectives. Communicate security risks, issues, and recommendations to senior management and stakeholders in a clear and concise manner. Qualifications and Skills: Bachelor's degree in Computer Science, Information Technology, or related field. Advanced degree or certifications (eg, CISSP, CISM, CEH) preferred. Proven experience (5+ years) in cybersecurity architecture, design, and implementation. Deep understanding of cybersecurity principles, technologies, and best practices. Experience with security frameworks and standards (eg, ISO 27001, NIST Cybersecurity Framework). Strong analytical and problem-solving skills with the ability to assess complex security challenges and develop innovative solutions. Excellent communication and interpersonal skills, with the ability to effectively engage with stakeholders at all levels of the organization. Strong project management skills with the ability to prioritize tasks, manage resources, and meet deadlines effectively.
Conexus are partnered with one of the most recognisable names when it comes to IT Consulting, this is a fantastic opportunity to join an industry leading company to establish best practices for Cloud and Infrastructure Security. We empower organisations to navigate their digital transformation with a security-first approach. In this role, you'll be responsible for designing and implementing secure solutions that align with clients' business needs, ensuring a smooth adoption process. Join a dynamic and rapidly expanding organisation at the forefront of business innovation in Switzerland. We are seeking talented individuals who are passionate about driving client success and are ready to make a lasting impact in the world of business solutions. Your Impact: Collaborate with clients to understand their security vulnerabilities and threats. Develop strategies and blueprints for secure cloud and network solutions. Lead a team to implement these solutions. Guide clients in adopting advanced security and networking technologies. Who You Are: 5+ years of experience in security consulting, professional services, or internal security consulting. Strong analytical and problem-solving skills with clear and concise communication abilities. Passionate about cybersecurity, cloud, networking, and zero-trust principles, with expertise in multiple security domains. Relevant background in IT security, cybersecurity, or a related field. In-depth understanding of secure cloud infrastructure (AWS, Azure, GCP), leading technology solutions, and experience with enterprise networking, security engineering (on-premise and cloud), and identity and access management (IAM). Familiarity with security tools like Cisco, Palo Alto, CrowdStrike, Zscaler, Netskope, or similar (advantageous). Additional Information: Fluency in English is required. German or French is a plus. Join a diverse and motivated team of cybersecurity professionals in Switzerland. We offer comprehensive development opportunities through training, mentoring, and cross-team collaboration. We foster a welcoming and inclusive environment where you can thrive and celebrate your achievements. Be bold, think big, and challenge the status quo. We'll support your career growth at every step. If this position is of interest, apply here or contact me directly for more details.
17/04/2024
Full time
Conexus are partnered with one of the most recognisable names when it comes to IT Consulting, this is a fantastic opportunity to join an industry leading company to establish best practices for Cloud and Infrastructure Security. We empower organisations to navigate their digital transformation with a security-first approach. In this role, you'll be responsible for designing and implementing secure solutions that align with clients' business needs, ensuring a smooth adoption process. Join a dynamic and rapidly expanding organisation at the forefront of business innovation in Switzerland. We are seeking talented individuals who are passionate about driving client success and are ready to make a lasting impact in the world of business solutions. Your Impact: Collaborate with clients to understand their security vulnerabilities and threats. Develop strategies and blueprints for secure cloud and network solutions. Lead a team to implement these solutions. Guide clients in adopting advanced security and networking technologies. Who You Are: 5+ years of experience in security consulting, professional services, or internal security consulting. Strong analytical and problem-solving skills with clear and concise communication abilities. Passionate about cybersecurity, cloud, networking, and zero-trust principles, with expertise in multiple security domains. Relevant background in IT security, cybersecurity, or a related field. In-depth understanding of secure cloud infrastructure (AWS, Azure, GCP), leading technology solutions, and experience with enterprise networking, security engineering (on-premise and cloud), and identity and access management (IAM). Familiarity with security tools like Cisco, Palo Alto, CrowdStrike, Zscaler, Netskope, or similar (advantageous). Additional Information: Fluency in English is required. German or French is a plus. Join a diverse and motivated team of cybersecurity professionals in Switzerland. We offer comprehensive development opportunities through training, mentoring, and cross-team collaboration. We foster a welcoming and inclusive environment where you can thrive and celebrate your achievements. Be bold, think big, and challenge the status quo. We'll support your career growth at every step. If this position is of interest, apply here or contact me directly for more details.
LA International Computer Consultants Ltd
Hereford, Herefordshire
DV Cleared Onsite in Hereford Duration: 6 months initially Market Rates via Umbrella Role Description: Cyber Defence Engineer will join a growing security team responsible for the testing, implementation, deployment, maintenance, configuration and troubleshooting of the SOC's technology stack (hardware and software). The engineer will also assist with the continued development and maintenance of data pipelines and signature updates and the professional development of the system engineering team. Tasks: * Perform system administration on specific cyber defence applications and systems to include installation, configuration, maintenance, troubleshooting, backup and restoration. * Manage system/server resources including performance, capacity, availability, serviceability, and recoverability. * Diagnose and resolve customer reported system incidents, problems, and events to ensure continuing operability. * Coordinate with SOC and CTI Analysts to assist in the development of signatures which can be implemented on cyber defence network tools in response to new or observed threats within the network environment or enclave. * Manage the compilation, cataloguing, distribution, and retrieval of data from a range of enterprise networks and data sources. * Implement data management standards, requirements, and specifications. * Develop data standards, policies, and procedures. * Analyse data sources to provide actionable recommendations and facilitate data-gathering methods. * To share knowledge, skills and experience, create and improve documentation, and train new members of the data engineering team. Knowledge: * Knowledge of big data technologies and ecosystems (eg, NiFi). * Knowledge of current market and emerging leaders in data analytical and SIEM platforms. * Knowledge of network security implementations (eg, host-based IDS, IPS), including their function and placement in a network. * Knowledge of intrusion detection systems and signature development. * Knowledge of Front End collection systems, including network traffic collection, filtering, and selection. * Knowledge of system administration concepts for operating systems such as but not limited to Unix/Linux, IOS, Android, and Windows operating systems. * Knowledge of cyber defence and information security policies, procedures and regulations. * Knowledge of network security architecture concepts including topology, protocols, components and principles. Skills/Experience: * Previous experience of Enterprise ICS/network architectures and technologies. * Working with frameworks and technologies that support data-intensive distributed applications. * Experience maintaining and administrating data analytical and SIEM platforms. * Experience using host and network-based IDS/IPS. Experience using packet capture solutions. * Skill in developing and deploying signatures. * Skill to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation). * Ability to provide technical and service leadership to junior SOC Engineers (mentor/coach). Desirable Qualifications/Certifications * Red Hat System Administration I & II (RH124/RH134). * Baseline Cyber Courses eg Cyber Foundation Pathway, SANS SEC 301 Intro to Information Security, SANS 401 Security Essentials Bootcamp. * Certified engineer in a market leading data analysis/SIEM platform. * SANS SEC501 Advanced Security Essentials Enterprise Defender. * SANS SEC 511 Continuous Monitoring & Security Operations. * SANS SEC555: SIEM with Tactical Analytics Available locations: -Hereford -Northallerton -Corsham -Portsmouth Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take up to a minimum 18 weeks. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.
17/04/2024
Project-based
DV Cleared Onsite in Hereford Duration: 6 months initially Market Rates via Umbrella Role Description: Cyber Defence Engineer will join a growing security team responsible for the testing, implementation, deployment, maintenance, configuration and troubleshooting of the SOC's technology stack (hardware and software). The engineer will also assist with the continued development and maintenance of data pipelines and signature updates and the professional development of the system engineering team. Tasks: * Perform system administration on specific cyber defence applications and systems to include installation, configuration, maintenance, troubleshooting, backup and restoration. * Manage system/server resources including performance, capacity, availability, serviceability, and recoverability. * Diagnose and resolve customer reported system incidents, problems, and events to ensure continuing operability. * Coordinate with SOC and CTI Analysts to assist in the development of signatures which can be implemented on cyber defence network tools in response to new or observed threats within the network environment or enclave. * Manage the compilation, cataloguing, distribution, and retrieval of data from a range of enterprise networks and data sources. * Implement data management standards, requirements, and specifications. * Develop data standards, policies, and procedures. * Analyse data sources to provide actionable recommendations and facilitate data-gathering methods. * To share knowledge, skills and experience, create and improve documentation, and train new members of the data engineering team. Knowledge: * Knowledge of big data technologies and ecosystems (eg, NiFi). * Knowledge of current market and emerging leaders in data analytical and SIEM platforms. * Knowledge of network security implementations (eg, host-based IDS, IPS), including their function and placement in a network. * Knowledge of intrusion detection systems and signature development. * Knowledge of Front End collection systems, including network traffic collection, filtering, and selection. * Knowledge of system administration concepts for operating systems such as but not limited to Unix/Linux, IOS, Android, and Windows operating systems. * Knowledge of cyber defence and information security policies, procedures and regulations. * Knowledge of network security architecture concepts including topology, protocols, components and principles. Skills/Experience: * Previous experience of Enterprise ICS/network architectures and technologies. * Working with frameworks and technologies that support data-intensive distributed applications. * Experience maintaining and administrating data analytical and SIEM platforms. * Experience using host and network-based IDS/IPS. Experience using packet capture solutions. * Skill in developing and deploying signatures. * Skill to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation). * Ability to provide technical and service leadership to junior SOC Engineers (mentor/coach). Desirable Qualifications/Certifications * Red Hat System Administration I & II (RH124/RH134). * Baseline Cyber Courses eg Cyber Foundation Pathway, SANS SEC 301 Intro to Information Security, SANS 401 Security Essentials Bootcamp. * Certified engineer in a market leading data analysis/SIEM platform. * SANS SEC501 Advanced Security Essentials Enterprise Defender. * SANS SEC 511 Continuous Monitoring & Security Operations. * SANS SEC555: SIEM with Tactical Analytics Available locations: -Hereford -Northallerton -Corsham -Portsmouth Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take up to a minimum 18 weeks. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.
iO Associates seeks a Security Cleared Network Engineer to work with our client in Basingstoke Area. The client is a global leader in technology solutions and services, specializing in IT and communication products. Renowned for innovation in cloud computing, artificial intelligence, and cybersecurity solutions. Trusted by businesses worldwide for reliable and cutting-edge technology. Job Title: Network Engineer Location: Basingstoke, UK Job Type: Permanent Salary: Up to £55k per annum As a member of the delivery team, you will communicate as needed with the present SMEs on networking, infrastructure, applications, and security, also assist the Solution Architects in the creation and dissemination of frameworks that facilitate and direct the design and development of integrated solutions that satisfy present and future business requirements will be your responsibility. Required: Network design (high and low level) Configuring network devices Previous experience Cisco routing and switching devices Demonstrable understanding of OSPF, EIGRP and BGP routing protocols. Demonstrable understanding of NAT, GRE Tunnelling protocol, DMVPN Tunnelling Protocol, Subnetting & Supernetting. Benefits 25 days of annual leave along with public holidays (3 flexible) Double matching contributions up to 10% for pension Flexible benefits, including options for increased holidays, travel, dental coverage, critical illness, and more. This is the position for you if you want to work for a global company that values its employees' work life balance and invests in talent in terms of training. Please apply to the link below or get in touch with Rebecca Virk if you need more information on the role.
16/04/2024
Full time
iO Associates seeks a Security Cleared Network Engineer to work with our client in Basingstoke Area. The client is a global leader in technology solutions and services, specializing in IT and communication products. Renowned for innovation in cloud computing, artificial intelligence, and cybersecurity solutions. Trusted by businesses worldwide for reliable and cutting-edge technology. Job Title: Network Engineer Location: Basingstoke, UK Job Type: Permanent Salary: Up to £55k per annum As a member of the delivery team, you will communicate as needed with the present SMEs on networking, infrastructure, applications, and security, also assist the Solution Architects in the creation and dissemination of frameworks that facilitate and direct the design and development of integrated solutions that satisfy present and future business requirements will be your responsibility. Required: Network design (high and low level) Configuring network devices Previous experience Cisco routing and switching devices Demonstrable understanding of OSPF, EIGRP and BGP routing protocols. Demonstrable understanding of NAT, GRE Tunnelling protocol, DMVPN Tunnelling Protocol, Subnetting & Supernetting. Benefits 25 days of annual leave along with public holidays (3 flexible) Double matching contributions up to 10% for pension Flexible benefits, including options for increased holidays, travel, dental coverage, critical illness, and more. This is the position for you if you want to work for a global company that values its employees' work life balance and invests in talent in terms of training. Please apply to the link below or get in touch with Rebecca Virk if you need more information on the role.
Leading Global Manufacturer are seeking a Senior D365/Power Platform Developer to support on a global Digital transformation programme to drive the adoption of Power Apps/Power BI with integration and automation with D365. Client Details Leading Global Manufacturer Description Leading Global Manufacturer are seeking a Senior D365/Power Platform Developer to support on a global Digital transformation programme to drive the adoption of Power Apps/Power BI with integration and automation with D365. You will work with IT functions internationally around Solution Architecture and build the Power BI/Power Platform capability. Key Responsibilities Create visually compelling and interactive Power BI reports and dashboards that provide actionable insights. Utilize advanced Power BI features for Datamodelling, transformation, and performance optimization. Collaborate with cross-functional teams to gather reporting & analytics requirements and deliver solutions aligned with business needs. Design and develop custom business applications using Power Apps to streamline processes and enhance user experience. Build Canvas Apps for specific business functions, incorporating responsive design and user-friendly interfaces. Integrate Power Apps with various data sources/D365, ensuring data accuracy and Real Time updates. Identify opportunities for workflow automation and implement solutions using Power Automate. Develop automated workflows to streamline approval processes, data synchronization, and other routine tasks. Leverage Microsoft Dynamics 365 Business Central to enhance ERP processes and facilitate seamless data flow. Integrate Business Central with the Power Platform, ensuring data consistency and Real Time synchronization. Drive digital transformation efforts within the organization by identifying opportunities to enhance existing processes through digital solutions. Collaborate with cross-functional teams to develop and implement digital strategies aligned with business objectives. Skills and Experience: Demonstrable experience in a similar role, with a proven track record of success in implementing and optimizing solutions using the Microsoft Power Platform and integrating them with Microsoft Dynamics 365 Business Central. Experience in designing and developing Power BI dashboards, creating custom business applications using Power Apps, and automating workflows with Power Automate. Strong background in data analytics, including advanced skills in Datamodelling, transformation, and visualisation. Experience leading digital transformation initiatives, staying current with digital trends, and implementing emerging technologies to drive business improvements. Familiarity with artificial intelligence (AI) and machine learning (ML) concepts and their application within the Power Platform and optionally Business Central. Proven ability to collaborate with cross-functional teams, lead digital initiatives, and effectively communicate complex digital concepts to both technical and non-technical stakeholders. Experience in implementing cybersecurity best practices within digital solutions. Ability to build and maintain internal and external relationships. Strong organisational skills with the ability to multi-task and work in a fast-paced setting Proven team player skills with the ability to work independently under minimal supervision. Profile Demonstrable experience in a similar role, with a proven track record of success in implementing and optimizing solutions using the Microsoft Power Platform and integrating them with Microsoft Dynamics 365 Business Central. Experience in designing and developing Power BI dashboards, creating custom business applications using Power Apps, and automating workflows with Power Automate. Strong background in data analytics, including advanced skills in Datamodelling, transformation, and visualisation. Experience leading digital transformation initiatives, staying current with digital trends, and implementing emerging technologies to drive business improvements. Familiarity with artificial intelligence (AI) and machine learning (ML) concepts and their application within the Power Platform and optionally Business Central. Proven ability to collaborate with cross-functional teams, lead digital initiatives, and effectively communicate complex digital concepts to both technical and non-technical stakeholders. Experience in implementing cybersecurity best practices within digital solutions. Ability to build and maintain internal and external relationships. Strong organisational skills with the ability to multi-task and work in a fast-paced setting Proven team player skills with the ability to work independently under minimal supervision. Job Offer Opportunity to work on a major Data & Digital Transformation Programme Opportunity to lead on Power Platform adoption internationally
16/04/2024
Full time
Leading Global Manufacturer are seeking a Senior D365/Power Platform Developer to support on a global Digital transformation programme to drive the adoption of Power Apps/Power BI with integration and automation with D365. Client Details Leading Global Manufacturer Description Leading Global Manufacturer are seeking a Senior D365/Power Platform Developer to support on a global Digital transformation programme to drive the adoption of Power Apps/Power BI with integration and automation with D365. You will work with IT functions internationally around Solution Architecture and build the Power BI/Power Platform capability. Key Responsibilities Create visually compelling and interactive Power BI reports and dashboards that provide actionable insights. Utilize advanced Power BI features for Datamodelling, transformation, and performance optimization. Collaborate with cross-functional teams to gather reporting & analytics requirements and deliver solutions aligned with business needs. Design and develop custom business applications using Power Apps to streamline processes and enhance user experience. Build Canvas Apps for specific business functions, incorporating responsive design and user-friendly interfaces. Integrate Power Apps with various data sources/D365, ensuring data accuracy and Real Time updates. Identify opportunities for workflow automation and implement solutions using Power Automate. Develop automated workflows to streamline approval processes, data synchronization, and other routine tasks. Leverage Microsoft Dynamics 365 Business Central to enhance ERP processes and facilitate seamless data flow. Integrate Business Central with the Power Platform, ensuring data consistency and Real Time synchronization. Drive digital transformation efforts within the organization by identifying opportunities to enhance existing processes through digital solutions. Collaborate with cross-functional teams to develop and implement digital strategies aligned with business objectives. Skills and Experience: Demonstrable experience in a similar role, with a proven track record of success in implementing and optimizing solutions using the Microsoft Power Platform and integrating them with Microsoft Dynamics 365 Business Central. Experience in designing and developing Power BI dashboards, creating custom business applications using Power Apps, and automating workflows with Power Automate. Strong background in data analytics, including advanced skills in Datamodelling, transformation, and visualisation. Experience leading digital transformation initiatives, staying current with digital trends, and implementing emerging technologies to drive business improvements. Familiarity with artificial intelligence (AI) and machine learning (ML) concepts and their application within the Power Platform and optionally Business Central. Proven ability to collaborate with cross-functional teams, lead digital initiatives, and effectively communicate complex digital concepts to both technical and non-technical stakeholders. Experience in implementing cybersecurity best practices within digital solutions. Ability to build and maintain internal and external relationships. Strong organisational skills with the ability to multi-task and work in a fast-paced setting Proven team player skills with the ability to work independently under minimal supervision. Profile Demonstrable experience in a similar role, with a proven track record of success in implementing and optimizing solutions using the Microsoft Power Platform and integrating them with Microsoft Dynamics 365 Business Central. Experience in designing and developing Power BI dashboards, creating custom business applications using Power Apps, and automating workflows with Power Automate. Strong background in data analytics, including advanced skills in Datamodelling, transformation, and visualisation. Experience leading digital transformation initiatives, staying current with digital trends, and implementing emerging technologies to drive business improvements. Familiarity with artificial intelligence (AI) and machine learning (ML) concepts and their application within the Power Platform and optionally Business Central. Proven ability to collaborate with cross-functional teams, lead digital initiatives, and effectively communicate complex digital concepts to both technical and non-technical stakeholders. Experience in implementing cybersecurity best practices within digital solutions. Ability to build and maintain internal and external relationships. Strong organisational skills with the ability to multi-task and work in a fast-paced setting Proven team player skills with the ability to work independently under minimal supervision. Job Offer Opportunity to work on a major Data & Digital Transformation Programme Opportunity to lead on Power Platform adoption internationally
Cyber Defence Engineer Location: Full Time onsite in Hereford Duration: 6 months MUST BE PAYE THROUGH UMBRELLA We are heading up a recruitment drive on behalf of a leading IT consultancy that require a DV cleared Cyber Defence Engineer to join their team on a major defence project that is based in Hereford. Role Description: Role Description: Cyber Defence Engineer will join a growing security team responsible for the testing, implementation, deployment, maintenance, configuration and troubleshooting of the SOC's technology stack (hardware and software). The engineer will also assist with the continued development and maintenance of data pipelines and signature updates and the professional development of the system engineering team. Tasks: Perform system administration on specific cyber defence applications and systems to include installation, configuration, maintenance, troubleshooting, backup and restoration. Manage system/server resources including performance, capacity, availability, serviceability, and recoverability. Diagnose and resolve customer reported system incidents, problems, and events to ensure continuing operability. Coordinate with SOC and CTI Analysts to assist in the development of signatures which can be implemented on cyber defence network tools in response to new or observed threats within the network environment or enclave. Manage the compilation, cataloguing, distribution, and retrieval of data from a range of enterprise networks and data sources. Implement data management standards, requirements, and specifications. Develop data standards, policies, and procedures. Analyse data sources to provide actionable recommendations and facilitate data-gathering methods. To share knowledge, skills and experience, create and improve documentation, and train new members of the data engineering team. Knowledge: Knowledge of big data technologies and ecosystems (eg, NiFi). Knowledge of current market and emerging leaders in data analytical and SIEM platforms. Knowledge of network security implementations (eg, host-based IDS, IPS), including their function and placement in a network. Knowledge of intrusion detection systems and signature development. Knowledge of Front End collection systems, including network traffic collection, filtering, and selection. Knowledge of system administration concepts for operating systems such as but not limited to Unix/Linux, IOS, Android, and Windows operating systems. Knowledge of cyber defence and information security policies, procedures and regulations. Knowledge of network security architecture concepts including topology, protocols, components and principles. Skills/Experience: Previous experience of Enterprise ICS/network architectures and technologies. Working with frameworks and technologies that support data-intensive distributed applications. Experience maintaining and administrating data analytical and SIEM platforms. Experience using host and network-based IDS/IPS Experience using packet capture solutions. Skill in developing and deploying signatures. Skill to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation). Ability to provide technical and service leadership to junior SOC Engineers (mentor/coach). Desirable Qualifications/Certifications Red Hat System Administration I & II (RH124/RH134). Baseline Cyber Courses eg Cyber Foundation Pathway, SANS SEC 301 Intro to Information Security, SANS 401 Security Essentials Bootcamp. Certified engineer in a market leading data analysis/SIEM platform. SANS SEC501 Advanced Security Essentials Enterprise Defender. SANS SEC 511 Continuous Monitoring & Security Operations. SANS SEC555: SIEM with Tactical Analytics
15/04/2024
Project-based
Cyber Defence Engineer Location: Full Time onsite in Hereford Duration: 6 months MUST BE PAYE THROUGH UMBRELLA We are heading up a recruitment drive on behalf of a leading IT consultancy that require a DV cleared Cyber Defence Engineer to join their team on a major defence project that is based in Hereford. Role Description: Role Description: Cyber Defence Engineer will join a growing security team responsible for the testing, implementation, deployment, maintenance, configuration and troubleshooting of the SOC's technology stack (hardware and software). The engineer will also assist with the continued development and maintenance of data pipelines and signature updates and the professional development of the system engineering team. Tasks: Perform system administration on specific cyber defence applications and systems to include installation, configuration, maintenance, troubleshooting, backup and restoration. Manage system/server resources including performance, capacity, availability, serviceability, and recoverability. Diagnose and resolve customer reported system incidents, problems, and events to ensure continuing operability. Coordinate with SOC and CTI Analysts to assist in the development of signatures which can be implemented on cyber defence network tools in response to new or observed threats within the network environment or enclave. Manage the compilation, cataloguing, distribution, and retrieval of data from a range of enterprise networks and data sources. Implement data management standards, requirements, and specifications. Develop data standards, policies, and procedures. Analyse data sources to provide actionable recommendations and facilitate data-gathering methods. To share knowledge, skills and experience, create and improve documentation, and train new members of the data engineering team. Knowledge: Knowledge of big data technologies and ecosystems (eg, NiFi). Knowledge of current market and emerging leaders in data analytical and SIEM platforms. Knowledge of network security implementations (eg, host-based IDS, IPS), including their function and placement in a network. Knowledge of intrusion detection systems and signature development. Knowledge of Front End collection systems, including network traffic collection, filtering, and selection. Knowledge of system administration concepts for operating systems such as but not limited to Unix/Linux, IOS, Android, and Windows operating systems. Knowledge of cyber defence and information security policies, procedures and regulations. Knowledge of network security architecture concepts including topology, protocols, components and principles. Skills/Experience: Previous experience of Enterprise ICS/network architectures and technologies. Working with frameworks and technologies that support data-intensive distributed applications. Experience maintaining and administrating data analytical and SIEM platforms. Experience using host and network-based IDS/IPS Experience using packet capture solutions. Skill in developing and deploying signatures. Skill to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation). Ability to provide technical and service leadership to junior SOC Engineers (mentor/coach). Desirable Qualifications/Certifications Red Hat System Administration I & II (RH124/RH134). Baseline Cyber Courses eg Cyber Foundation Pathway, SANS SEC 301 Intro to Information Security, SANS 401 Security Essentials Bootcamp. Certified engineer in a market leading data analysis/SIEM platform. SANS SEC501 Advanced Security Essentials Enterprise Defender. SANS SEC 511 Continuous Monitoring & Security Operations. SANS SEC555: SIEM with Tactical Analytics
Digital Research Infrastructure Engineer - Linux Specialist PML operations grade 4 £30000 - £45000 DOE Full Time Open Ended Appointment The Role We have an exciting opportunity at PML for an individual with skills in Linux system administration to join the PML s Digital Innovation and Marine Autonomy (DIMA) group. The role provides a business critical link between scientists, PML Applications (commercial work) and our IT Group to support the Linux computing infrastructure as it continues to evolve, underpinning PML science in multiple areas and across all levels. This ranges from data generation, (storage technologies and data management), processing and analysis (high performance computing and technologies such as JupyterHub), to making visual outputs for end users (web technologies and virtualisation) to increase the reach and impact of PML science. About You You will enjoy working with others to help deliver a modern and reliable digital infrastructure to underpin the world leading research carried out at PML. You will understand the importance of stability from existing infrastructure but will also be keen to learn and try new technologies. You will have experience of administering Linux systems, ideally using Ubuntu, and will be able to make use of scripts and common tools such as ansible to manage this. You will understand the importance of taking a proactive approach to identify and resolve and problems and will be able to make use of monitoring software (e.g., Nagios, Grafana) to accomplish this. You will understand best practices in cybersecurity and be able to apply these. Skills Required Linux systems administration and monitoring Linux scripting (e.g., bash and Python) Experience in management of data at the Terrabyte to Petabyte scale and storage technologies such as NFS and S3. Cybersecurity (Understand and apply best practices) Container technologies (Docker and Kubernetes) High performance Computing (Slurm) Virtualisation (VMWare) Key Deliverables Maintain our storage infrastructure to ensure data is distributed across servers based on existing capacity and projected changes in data volumes. This includes regular data moves and liaising with stakeholders to ensure data is backed up and archiving projects are completes as needed. Monitor high performance computing infrastructure to identify and resolve problems either on their own or by working with IT (depending on the nature of the problem). Act of a point of contact between scientists and IT to answer questions, help identify solutions and provide training. Work with the data architect to maintain and develop web infrastructure used to provide existing and planned data search and visualisation services. Manage the NEODAAS GPU cluster (MAGEO), including liaising with IT, vendors and system users. About PML As a marine-focused charity we develop and apply innovative science with a view to ensuring ocean sustainability. With over 40 years of experience, we offer evidence-based solutions to societal challenges. Our impact spans from research publications to informing policies and training future scientists. The science undertaken at PML contributes to UN Sustainable Development Goals by promoting healthy, productive and resilient oceans and seas. To support PML s science it operates in house Linux infrastructure used for processing satellite data, running models and making outputs accessible through web visualisation tools. This infrastructure includes a large amount of storage (6 PB), a High-Performance Computing cluster with over 1500 cores, a 40 GPU cluster (the MAssive GPU cluster for Earth Observation; MAGEO) and a virtual machine cluster. The role will be part of the Digital Innovation and Marine Autonomy (DIMA) group within PML. DIMA is a pioneering digital science group dedicated to advancing PML s world-class and cutting-edge environmental research through the utilisation of state-of-the-art digital and autonomous technologies. The team comprises research software engineers, research infrastructure engineers, marine technologists and scientists who work on a variety of projects using autonomous vessels, satellite data, drones, Artificial Intelligence, High Performance Computing and data visualisation tools to help deliver PML s goals. The team have an enthusiasm for solving problems through collaboration and shared learning.
12/04/2024
Full time
Digital Research Infrastructure Engineer - Linux Specialist PML operations grade 4 £30000 - £45000 DOE Full Time Open Ended Appointment The Role We have an exciting opportunity at PML for an individual with skills in Linux system administration to join the PML s Digital Innovation and Marine Autonomy (DIMA) group. The role provides a business critical link between scientists, PML Applications (commercial work) and our IT Group to support the Linux computing infrastructure as it continues to evolve, underpinning PML science in multiple areas and across all levels. This ranges from data generation, (storage technologies and data management), processing and analysis (high performance computing and technologies such as JupyterHub), to making visual outputs for end users (web technologies and virtualisation) to increase the reach and impact of PML science. About You You will enjoy working with others to help deliver a modern and reliable digital infrastructure to underpin the world leading research carried out at PML. You will understand the importance of stability from existing infrastructure but will also be keen to learn and try new technologies. You will have experience of administering Linux systems, ideally using Ubuntu, and will be able to make use of scripts and common tools such as ansible to manage this. You will understand the importance of taking a proactive approach to identify and resolve and problems and will be able to make use of monitoring software (e.g., Nagios, Grafana) to accomplish this. You will understand best practices in cybersecurity and be able to apply these. Skills Required Linux systems administration and monitoring Linux scripting (e.g., bash and Python) Experience in management of data at the Terrabyte to Petabyte scale and storage technologies such as NFS and S3. Cybersecurity (Understand and apply best practices) Container technologies (Docker and Kubernetes) High performance Computing (Slurm) Virtualisation (VMWare) Key Deliverables Maintain our storage infrastructure to ensure data is distributed across servers based on existing capacity and projected changes in data volumes. This includes regular data moves and liaising with stakeholders to ensure data is backed up and archiving projects are completes as needed. Monitor high performance computing infrastructure to identify and resolve problems either on their own or by working with IT (depending on the nature of the problem). Act of a point of contact between scientists and IT to answer questions, help identify solutions and provide training. Work with the data architect to maintain and develop web infrastructure used to provide existing and planned data search and visualisation services. Manage the NEODAAS GPU cluster (MAGEO), including liaising with IT, vendors and system users. About PML As a marine-focused charity we develop and apply innovative science with a view to ensuring ocean sustainability. With over 40 years of experience, we offer evidence-based solutions to societal challenges. Our impact spans from research publications to informing policies and training future scientists. The science undertaken at PML contributes to UN Sustainable Development Goals by promoting healthy, productive and resilient oceans and seas. To support PML s science it operates in house Linux infrastructure used for processing satellite data, running models and making outputs accessible through web visualisation tools. This infrastructure includes a large amount of storage (6 PB), a High-Performance Computing cluster with over 1500 cores, a 40 GPU cluster (the MAssive GPU cluster for Earth Observation; MAGEO) and a virtual machine cluster. The role will be part of the Digital Innovation and Marine Autonomy (DIMA) group within PML. DIMA is a pioneering digital science group dedicated to advancing PML s world-class and cutting-edge environmental research through the utilisation of state-of-the-art digital and autonomous technologies. The team comprises research software engineers, research infrastructure engineers, marine technologists and scientists who work on a variety of projects using autonomous vessels, satellite data, drones, Artificial Intelligence, High Performance Computing and data visualisation tools to help deliver PML s goals. The team have an enthusiasm for solving problems through collaboration and shared learning.