Senior Cloud Security Engineer Permanent, 3 days in office in London Overview: The Company is a leading financial services firm. The technology is being transformed to a Cloud-First, Cloud-Native architectural model, utilizing DevSecOps processes and adoption of systems-thinking concepts to enhance productivity. The Cloud Security Engineer are responsible for delivering modern end user solutions that are fully automated through code, ensuring scalability and optimize availability and reliability 24/7. Responsibilities: Engineer and secure core Azure platform services across global footprint. Design, implement and maintain secure cloud architectures across Azure cloud platform. Develop and enforce cloud security policies, procedures and best practices. Implement and manage cloud security tools and services such as SIEM, IAM and DLP. Conduct regular security assessments, audits and penetration testing. Investigate and respond to security incidents and global frameworks. Provide guidance and training to team members on cloud security best practices. Stay up to date with latest cloud security threats, technologies. Run Infrastructure with Python/PowerShell, Ansible, Terraform, Azure DevOps, CI/CD, Kubernetes. Design, build and maintain core infrastructure. Debub production issues Requirements Strong experience in cybersecurity and protecting cloud based assets in Financial Services environment. Experience in identifying and addressing potential security risks. Attention to details and ability to think like an attacker. Continual learning and advancement of Azure technologies Experience in configuration management systems like Ansible Keen on Open Source development. Collaborative and able to communicate effectively and asynchronously.
14/05/2024
Full time
Senior Cloud Security Engineer Permanent, 3 days in office in London Overview: The Company is a leading financial services firm. The technology is being transformed to a Cloud-First, Cloud-Native architectural model, utilizing DevSecOps processes and adoption of systems-thinking concepts to enhance productivity. The Cloud Security Engineer are responsible for delivering modern end user solutions that are fully automated through code, ensuring scalability and optimize availability and reliability 24/7. Responsibilities: Engineer and secure core Azure platform services across global footprint. Design, implement and maintain secure cloud architectures across Azure cloud platform. Develop and enforce cloud security policies, procedures and best practices. Implement and manage cloud security tools and services such as SIEM, IAM and DLP. Conduct regular security assessments, audits and penetration testing. Investigate and respond to security incidents and global frameworks. Provide guidance and training to team members on cloud security best practices. Stay up to date with latest cloud security threats, technologies. Run Infrastructure with Python/PowerShell, Ansible, Terraform, Azure DevOps, CI/CD, Kubernetes. Design, build and maintain core infrastructure. Debub production issues Requirements Strong experience in cybersecurity and protecting cloud based assets in Financial Services environment. Experience in identifying and addressing potential security risks. Attention to details and ability to think like an attacker. Continual learning and advancement of Azure technologies Experience in configuration management systems like Ansible Keen on Open Source development. Collaborative and able to communicate effectively and asynchronously.
The Company is a leading financial services firm. The technology is being transformed to a Cloud-First, Cloud-Native architectural model, utilizing DevSecOps processes and adoption of systems-thinking concepts to enhance productivity. The Cloud Engineers are responsible for delivering Cloud-native solutions that are fully automated through code, ensuring scalability and optimize availability and reliability 24/7. Responsibilities: - Have broad responsibilities to engineer and secure core platform services across the global footprint. - Ensure compute infrastructure is continually optimized to match business demands. - Design and operate storage strategy to optimize data storage based on latency, redundancy, and cost. - Collaborate with Cloud Security Engineering to automate vulnerability patching processes. - Optimize global network to ensure latency and performance meet business expectations. - Automate operational aspects of the infrastructure and systems life cycle. - Maintain Azure tagging/naming taxonomies across all Cloud assets. - Respond to incidents and ensure availability across the global infrastructure, providing support for service analysts on customer incidents. - Build and infrastructure with automation tools like PowerShell, Ansible, Terraform, Azure DevOps CI/CD, and Kubernetes. - Document actions to turn findings into repeatable and automated processes. - Design, build, and maintain core infrastructure to enable scaling and support business growth. - Debug production issues across services and levels of the stack. Qualifications: - Strong knowledge of virtualization, containerization technologies on Azure. - Proficiency in object-oriented programming and developing automated solutions through code. - Passion for secure network design and protecting organizations from evolving cyber threats. - Continual learning and advancement of Microsoft Azure technologies like Compute, Storage, Networking. - Interest in Open-Source development and industry innovation. - Knowledge of configuration management systems like Ansible. - Collaborative and able to communicate effectively and asynchronously.
14/05/2024
Full time
The Company is a leading financial services firm. The technology is being transformed to a Cloud-First, Cloud-Native architectural model, utilizing DevSecOps processes and adoption of systems-thinking concepts to enhance productivity. The Cloud Engineers are responsible for delivering Cloud-native solutions that are fully automated through code, ensuring scalability and optimize availability and reliability 24/7. Responsibilities: - Have broad responsibilities to engineer and secure core platform services across the global footprint. - Ensure compute infrastructure is continually optimized to match business demands. - Design and operate storage strategy to optimize data storage based on latency, redundancy, and cost. - Collaborate with Cloud Security Engineering to automate vulnerability patching processes. - Optimize global network to ensure latency and performance meet business expectations. - Automate operational aspects of the infrastructure and systems life cycle. - Maintain Azure tagging/naming taxonomies across all Cloud assets. - Respond to incidents and ensure availability across the global infrastructure, providing support for service analysts on customer incidents. - Build and infrastructure with automation tools like PowerShell, Ansible, Terraform, Azure DevOps CI/CD, and Kubernetes. - Document actions to turn findings into repeatable and automated processes. - Design, build, and maintain core infrastructure to enable scaling and support business growth. - Debug production issues across services and levels of the stack. Qualifications: - Strong knowledge of virtualization, containerization technologies on Azure. - Proficiency in object-oriented programming and developing automated solutions through code. - Passion for secure network design and protecting organizations from evolving cyber threats. - Continual learning and advancement of Microsoft Azure technologies like Compute, Storage, Networking. - Interest in Open-Source development and industry innovation. - Knowledge of configuration management systems like Ansible. - Collaborative and able to communicate effectively and asynchronously.
Senior Security Engineer - Capellen, Luxembourg (Hybrid role) - €69K + Car allowance + Bonus An exciting opportunity to join a global IT solutions and services organisation currently seeking a Senior Security Engineer. By bringing together talented people, world-class technology partners and emerging innovators, we help our clients solve some of the world's most significant technological, business and societal challenges. As the Senior Security Engineer at NTT, you will be responsible for designing, implementing, and managing security solutions to safeguard the network, applications, and digital assets of our client. You will work with technologies, such as Palo Alto, Bluecoat, F5 (LTM, ASM, APM), ASA VPN, Mobile Iron, Infoblox, Splunk, Fireye or PKI, to ensure the highest level of security for our organization. Key Responsibilities: Being responsible to implement projects to replace/upgrade the current infrastructure with new versions or solutions, and you will analyze, recommend, and implement new cyber security technologies and solutions. Monitor operational infrastructure - leveraging standard tools & processes to respond & resolve incidents and requests in a timely manner. Incident Response - Monitor security events, investigate & respond to security incidents, and assist in post-incident analysis & remediation. Collaboration: Work closely with cross-functional teams, including IT, Network, and App Dev, ensuring integration of security measures. Research & Innovation: Staying up to dat with emerging tech threats. Qualifications : Relevant Bachelor's degree in Computer Science, Info Security, or a relevant field. 6+ years field experience in networking & security area with solutions. Proven experience in network and application security, with expertise in Palo Alto, Bluecoat, F5 (LTM, ASM, APM), ASA VPN or Splunk. Knowledge of Firewall management, intrusion detection, content filtering, web application security, and VPN technologies. Proficiency in PKI design and management, digital certificate issuance, and secure key management. A proactive approach to identifying & mitigating security vulnerabilities and risks. Skills Summary Automation Tools, Cloud Security, Firewalls, Local Area Network (LAN), Palo Alto Networks Prisma Access Secure Access Service Edge (SASE), Security Technologies, TCP/IP Networking, Threat Management Senior Security Engineer - Capellen, Luxembourg (Hybrid role) - €69K + Car allowance + Bonus
14/05/2024
Full time
Senior Security Engineer - Capellen, Luxembourg (Hybrid role) - €69K + Car allowance + Bonus An exciting opportunity to join a global IT solutions and services organisation currently seeking a Senior Security Engineer. By bringing together talented people, world-class technology partners and emerging innovators, we help our clients solve some of the world's most significant technological, business and societal challenges. As the Senior Security Engineer at NTT, you will be responsible for designing, implementing, and managing security solutions to safeguard the network, applications, and digital assets of our client. You will work with technologies, such as Palo Alto, Bluecoat, F5 (LTM, ASM, APM), ASA VPN, Mobile Iron, Infoblox, Splunk, Fireye or PKI, to ensure the highest level of security for our organization. Key Responsibilities: Being responsible to implement projects to replace/upgrade the current infrastructure with new versions or solutions, and you will analyze, recommend, and implement new cyber security technologies and solutions. Monitor operational infrastructure - leveraging standard tools & processes to respond & resolve incidents and requests in a timely manner. Incident Response - Monitor security events, investigate & respond to security incidents, and assist in post-incident analysis & remediation. Collaboration: Work closely with cross-functional teams, including IT, Network, and App Dev, ensuring integration of security measures. Research & Innovation: Staying up to dat with emerging tech threats. Qualifications : Relevant Bachelor's degree in Computer Science, Info Security, or a relevant field. 6+ years field experience in networking & security area with solutions. Proven experience in network and application security, with expertise in Palo Alto, Bluecoat, F5 (LTM, ASM, APM), ASA VPN or Splunk. Knowledge of Firewall management, intrusion detection, content filtering, web application security, and VPN technologies. Proficiency in PKI design and management, digital certificate issuance, and secure key management. A proactive approach to identifying & mitigating security vulnerabilities and risks. Skills Summary Automation Tools, Cloud Security, Firewalls, Local Area Network (LAN), Palo Alto Networks Prisma Access Secure Access Service Edge (SASE), Security Technologies, TCP/IP Networking, Threat Management Senior Security Engineer - Capellen, Luxembourg (Hybrid role) - €69K + Car allowance + Bonus
An NHS organisation in the North West are looking for an experienced Cyber Security Senior Specialist to join the team on a permanent basis . Must be an experienced Cyber Security Engineer , CISSP certified (or equivalent) with expertise across a range of areas including Cyber Essentials Plus CE+ , working knowledge of Desktop, Server and Network Security , NIS-D (Network Information and Informative Systems Directive) , work with SIEM and Vulnerability scanning solutions as well as have specialised knowledge in Cyber Security best practice and the ability to work within ITIL guidelines. Main duties can be seen below: Monitor the changes in global cyber security threats and continually react to those threats. Implement appropriate checks and controls to protect the Information Assets held and managed by the organisation Identify and address any potential and actual cyber security vulnerabilities in infrastructure and applications. Ensure all services are protected from malware and other emerging threats. Continually assess options for the ongoing improvements in Cyber Security services, controls and procedures to maintain effective Cyber Security defenses as the threat vector changes. Develop Cyber Security procedures based on best practice, advice, and guidelines Plan, organise and coordinate digital asset and system patching, in conjunction with critical health care services and other stakeholders
14/05/2024
Full time
An NHS organisation in the North West are looking for an experienced Cyber Security Senior Specialist to join the team on a permanent basis . Must be an experienced Cyber Security Engineer , CISSP certified (or equivalent) with expertise across a range of areas including Cyber Essentials Plus CE+ , working knowledge of Desktop, Server and Network Security , NIS-D (Network Information and Informative Systems Directive) , work with SIEM and Vulnerability scanning solutions as well as have specialised knowledge in Cyber Security best practice and the ability to work within ITIL guidelines. Main duties can be seen below: Monitor the changes in global cyber security threats and continually react to those threats. Implement appropriate checks and controls to protect the Information Assets held and managed by the organisation Identify and address any potential and actual cyber security vulnerabilities in infrastructure and applications. Ensure all services are protected from malware and other emerging threats. Continually assess options for the ongoing improvements in Cyber Security services, controls and procedures to maintain effective Cyber Security defenses as the threat vector changes. Develop Cyber Security procedures based on best practice, advice, and guidelines Plan, organise and coordinate digital asset and system patching, in conjunction with critical health care services and other stakeholders
DevSecOps Senior & Team Lead (Public Transport) 50% remote, 50% on-site in Brussels Do you want to lead a high-performing DevSecOps team and make a real impact in the public transport sector? We are looking for a talented and experienced DevSecOps Senior & Team Lead to join my client's team. In this role, you will be responsible for leading a team of technical professionals and driving innovation in our DevSecOps practices. About the role Lead and motivate a team of 6-10 engineers (junior, mid-level, and senior) Foster a collaborative and positive work environment Ensure efficient and timely delivery of projects Manage budgets and resources effectively Possess excellent communication and interpersonal skills Be able to work effectively under pressure and prioritize tasks Work with a customer-centric approach and maintain confidentiality Technical Skills and Experience Master's degree in engineering or computer science (or equivalent experience) Proven experience leading a technical team Experience with Agile methodologies Strong understanding of Linux operating systems (Red Hat) and Scripting (Bash, Python) Fluency in Dutch, French, and English Solid experience with cybersecurity for OT infrastructure Experience working in a production environment Basic knowledge of Javascript and Java Basic understanding of network administration (Routers, Switches, VPNs, Firewalls) A plus: Certifications: CISSP, CISM, ISO 27001 Experience with DevSecOps tools: Puppet (open source), Ansible Monitoring tools: Zabbix, Nagios Logging and analytics: Elastic Stack (including Kibana) Database technologies: MySQL, PostgreSQL Atlassian suite (Jira, Confluence, Git) VMWare (vCenter) Git version control Configuration Management Databases (CMDBs) like GLPI For immediate consideration, please forward your latest CV.
13/05/2024
Project-based
DevSecOps Senior & Team Lead (Public Transport) 50% remote, 50% on-site in Brussels Do you want to lead a high-performing DevSecOps team and make a real impact in the public transport sector? We are looking for a talented and experienced DevSecOps Senior & Team Lead to join my client's team. In this role, you will be responsible for leading a team of technical professionals and driving innovation in our DevSecOps practices. About the role Lead and motivate a team of 6-10 engineers (junior, mid-level, and senior) Foster a collaborative and positive work environment Ensure efficient and timely delivery of projects Manage budgets and resources effectively Possess excellent communication and interpersonal skills Be able to work effectively under pressure and prioritize tasks Work with a customer-centric approach and maintain confidentiality Technical Skills and Experience Master's degree in engineering or computer science (or equivalent experience) Proven experience leading a technical team Experience with Agile methodologies Strong understanding of Linux operating systems (Red Hat) and Scripting (Bash, Python) Fluency in Dutch, French, and English Solid experience with cybersecurity for OT infrastructure Experience working in a production environment Basic knowledge of Javascript and Java Basic understanding of network administration (Routers, Switches, VPNs, Firewalls) A plus: Certifications: CISSP, CISM, ISO 27001 Experience with DevSecOps tools: Puppet (open source), Ansible Monitoring tools: Zabbix, Nagios Logging and analytics: Elastic Stack (including Kibana) Database technologies: MySQL, PostgreSQL Atlassian suite (Jira, Confluence, Git) VMWare (vCenter) Git version control Configuration Management Databases (CMDBs) like GLPI For immediate consideration, please forward your latest CV.
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a Manager of Internal Audit and Information Security. Candidate will manage independent assessments of the Information Technology and Security environment, risk management, and other objectives as needed. The role is responsible for defining the proper scope, approach, and quality are integrated into each audit and that regulatory, operational, and strategic risks are sufficiently mitigated by Management. This role will also be required to present recommendations for improvements to the Internal Audit Leadership and finding owners. In addition, as a manager you will own the coaching of your direct reports, developing their skills and supporting their career development. Responsibilities: Aid in the development of the risk assessment and comprehensive audit plan on an annual basis. Lead multiple audits and validations simultaneously. Defining and leading the execution of audit projects in accordance with the annual audit plan. Owning the audit quality, accuracy of results, and delivery in a timely manner. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, changes to the supported business processes), engagement and alignment of change initiatives to business objectives. Ability to clearly articulate professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and controls. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Keeping current on leading practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Serving as a liaison with external parties and regulators to facilitate timely and efficient external reviews, knowledge transfer, and controls and process education. Supporting other department-wide activities such as but not limited to peer reviews of audit deliverables, policy and procedure development and refinement, etc. Lead and implement strategic initiatives related to new audit programs/processes, technology or other initiatives. Planning, leading and reporting for risk-based and special request audit assignments. Proactively identifying regulatory, operational, and/or strategic risks to the organization and deliver recommendations for improvements to senior leadership. Developing and maintaining effective relationships with business groups and leadership and partnering with management. Effectively lead audit staff, providing direction, clearly defined performance expectations, coaching and feedback, and recognition/motivation. Providing oversight and coaching to the team, both internal and/or co-sourced resources, confirming the delivery, quality and auditee experience. Qualifications: Ability to communicate clearly and effectively, both orally and in writing, including the ability to handle potentially sensitive situations and discussions. Strong problem solving and analytical capabilities. Demonstrated ability to gather, analyze, and evaluate facts, and prepare and present concise oral and written reports. Ability to work independently or as part of a team, prioritizing multiple audit assignments to simultaneously complete each in a timely fashion. Experience working in a complex, fast paced environment. Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). [Preferred] Consulting and/or accounting firm experience. [Preferred] Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). Technical Skills: [Required] Microsoft Office applications [Required] Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software [Required] Familiarity with security tools such as: CyberArk, Splunk, SailPoint [Required] Familiarity with change management tools such as: ServiceNow, Jira, Confluence, GitHub [Preferred] Familiarity with databases such as: Oracle, DB2, SQL [Preferred] Familiarity with cloud based solutions: AWS, Azure, Oracle Cloud, Workday Education and/or Experience: [Required] Bachelor's degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. [Required] 5+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Certificates or Licenses: [One of these required] Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent.
10/05/2024
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a Manager of Internal Audit and Information Security. Candidate will manage independent assessments of the Information Technology and Security environment, risk management, and other objectives as needed. The role is responsible for defining the proper scope, approach, and quality are integrated into each audit and that regulatory, operational, and strategic risks are sufficiently mitigated by Management. This role will also be required to present recommendations for improvements to the Internal Audit Leadership and finding owners. In addition, as a manager you will own the coaching of your direct reports, developing their skills and supporting their career development. Responsibilities: Aid in the development of the risk assessment and comprehensive audit plan on an annual basis. Lead multiple audits and validations simultaneously. Defining and leading the execution of audit projects in accordance with the annual audit plan. Owning the audit quality, accuracy of results, and delivery in a timely manner. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, changes to the supported business processes), engagement and alignment of change initiatives to business objectives. Ability to clearly articulate professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and controls. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Keeping current on leading practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Serving as a liaison with external parties and regulators to facilitate timely and efficient external reviews, knowledge transfer, and controls and process education. Supporting other department-wide activities such as but not limited to peer reviews of audit deliverables, policy and procedure development and refinement, etc. Lead and implement strategic initiatives related to new audit programs/processes, technology or other initiatives. Planning, leading and reporting for risk-based and special request audit assignments. Proactively identifying regulatory, operational, and/or strategic risks to the organization and deliver recommendations for improvements to senior leadership. Developing and maintaining effective relationships with business groups and leadership and partnering with management. Effectively lead audit staff, providing direction, clearly defined performance expectations, coaching and feedback, and recognition/motivation. Providing oversight and coaching to the team, both internal and/or co-sourced resources, confirming the delivery, quality and auditee experience. Qualifications: Ability to communicate clearly and effectively, both orally and in writing, including the ability to handle potentially sensitive situations and discussions. Strong problem solving and analytical capabilities. Demonstrated ability to gather, analyze, and evaluate facts, and prepare and present concise oral and written reports. Ability to work independently or as part of a team, prioritizing multiple audit assignments to simultaneously complete each in a timely fashion. Experience working in a complex, fast paced environment. Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). [Preferred] Consulting and/or accounting firm experience. [Preferred] Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). Technical Skills: [Required] Microsoft Office applications [Required] Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software [Required] Familiarity with security tools such as: CyberArk, Splunk, SailPoint [Required] Familiarity with change management tools such as: ServiceNow, Jira, Confluence, GitHub [Preferred] Familiarity with databases such as: Oracle, DB2, SQL [Preferred] Familiarity with cloud based solutions: AWS, Azure, Oracle Cloud, Workday Education and/or Experience: [Required] Bachelor's degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. [Required] 5+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Certificates or Licenses: [One of these required] Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent.
Request Technology - Craig Johnson
Chicago, Illinois
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a Manager of Internal Audit and Information Security. Candidate will manage independent assessments of the Information Technology and Security environment, risk management, and other objectives as needed. The role is responsible for defining the proper scope, approach, and quality are integrated into each audit and that regulatory, operational, and strategic risks are sufficiently mitigated by Management. This role will also be required to present recommendations for improvements to the Internal Audit Leadership and finding owners. In addition, as a manager you will own the coaching of your direct reports, developing their skills and supporting their career development. Responsibilities: Aid in the development of the risk assessment and comprehensive audit plan on an annual basis. Lead multiple audits and validations simultaneously. Defining and leading the execution of audit projects in accordance with the annual audit plan. Owning the audit quality, accuracy of results, and delivery in a timely manner. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, changes to the supported business processes), engagement and alignment of change initiatives to business objectives. Ability to clearly articulate professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and controls. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Keeping current on leading practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Serving as a liaison with external parties and regulators to facilitate timely and efficient external reviews, knowledge transfer, and controls and process education. Supporting other department-wide activities such as but not limited to peer reviews of audit deliverables, policy and procedure development and refinement, etc. Lead and implement strategic initiatives related to new audit programs/processes, technology or other initiatives. Planning, leading and reporting for risk-based and special request audit assignments. Proactively identifying regulatory, operational, and/or strategic risks to the organization and deliver recommendations for improvements to senior leadership. Developing and maintaining effective relationships with business groups and leadership and partnering with management. Effectively lead audit staff, providing direction, clearly defined performance expectations, coaching and feedback, and recognition/motivation. Providing oversight and coaching to the team, both internal and/or co-sourced resources, confirming the delivery, quality and auditee experience. Qualifications: Ability to communicate clearly and effectively, both orally and in writing, including the ability to handle potentially sensitive situations and discussions. Strong problem solving and analytical capabilities. Demonstrated ability to gather, analyze, and evaluate facts, and prepare and present concise oral and written reports. Ability to work independently or as part of a team, prioritizing multiple audit assignments to simultaneously complete each in a timely fashion. Experience working in a complex, fast paced environment. Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). [Preferred] Consulting and/or accounting firm experience. [Preferred] Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). Technical Skills: [Required] Microsoft Office applications [Required] Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software [Required] Familiarity with security tools such as: CyberArk, Splunk, SailPoint [Required] Familiarity with change management tools such as: ServiceNow, Jira, Confluence, GitHub [Preferred] Familiarity with databases such as: Oracle, DB2, SQL [Preferred] Familiarity with cloud based solutions: AWS, Azure, Oracle Cloud, Workday Education and/or Experience: [Required] Bachelor's degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. [Required] 5+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Certificates or Licenses: [One of these required] Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent.
10/05/2024
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a Manager of Internal Audit and Information Security. Candidate will manage independent assessments of the Information Technology and Security environment, risk management, and other objectives as needed. The role is responsible for defining the proper scope, approach, and quality are integrated into each audit and that regulatory, operational, and strategic risks are sufficiently mitigated by Management. This role will also be required to present recommendations for improvements to the Internal Audit Leadership and finding owners. In addition, as a manager you will own the coaching of your direct reports, developing their skills and supporting their career development. Responsibilities: Aid in the development of the risk assessment and comprehensive audit plan on an annual basis. Lead multiple audits and validations simultaneously. Defining and leading the execution of audit projects in accordance with the annual audit plan. Owning the audit quality, accuracy of results, and delivery in a timely manner. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, changes to the supported business processes), engagement and alignment of change initiatives to business objectives. Ability to clearly articulate professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and controls. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Keeping current on leading practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Serving as a liaison with external parties and regulators to facilitate timely and efficient external reviews, knowledge transfer, and controls and process education. Supporting other department-wide activities such as but not limited to peer reviews of audit deliverables, policy and procedure development and refinement, etc. Lead and implement strategic initiatives related to new audit programs/processes, technology or other initiatives. Planning, leading and reporting for risk-based and special request audit assignments. Proactively identifying regulatory, operational, and/or strategic risks to the organization and deliver recommendations for improvements to senior leadership. Developing and maintaining effective relationships with business groups and leadership and partnering with management. Effectively lead audit staff, providing direction, clearly defined performance expectations, coaching and feedback, and recognition/motivation. Providing oversight and coaching to the team, both internal and/or co-sourced resources, confirming the delivery, quality and auditee experience. Qualifications: Ability to communicate clearly and effectively, both orally and in writing, including the ability to handle potentially sensitive situations and discussions. Strong problem solving and analytical capabilities. Demonstrated ability to gather, analyze, and evaluate facts, and prepare and present concise oral and written reports. Ability to work independently or as part of a team, prioritizing multiple audit assignments to simultaneously complete each in a timely fashion. Experience working in a complex, fast paced environment. Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). [Preferred] Consulting and/or accounting firm experience. [Preferred] Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). Technical Skills: [Required] Microsoft Office applications [Required] Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software [Required] Familiarity with security tools such as: CyberArk, Splunk, SailPoint [Required] Familiarity with change management tools such as: ServiceNow, Jira, Confluence, GitHub [Preferred] Familiarity with databases such as: Oracle, DB2, SQL [Preferred] Familiarity with cloud based solutions: AWS, Azure, Oracle Cloud, Workday Education and/or Experience: [Required] Bachelor's degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. [Required] 5+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Certificates or Licenses: [One of these required] Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent.
Position: Senior Network Engineer - SC Cleared Location: Rugby, UK Duration: Permanent JOB DESCRIPTION: Technical Network Engineer role, responsible for supporting the Network Infrastructure and associated DC services. This includes operational and administrative tasks under an ITIL framework to deliver support for two Data Centre's. The role is to deliver Network Service Requests, Incident resolution, and Change execution for the Data Centre's network environments. Qualifications/Requirements: Candidate must have valid Security Clearance. Strong Network Data and Security knowledge. CCNA Level networking knowledge. Strong knowledge of configuring Router, Switches, and Firewalls. Prior experience of NoC/Incident Handling and supporting Network technologies such as routing/switching, Firewalls, load balancers, and proxies that underpin multiple data centres. Experience working with alerting and monitoring tools such as CISCO DNA-C, Prime, Nagios etc. Experience working with any ITSM tool such as Service Now. ITILv3/ITIL4 certified or recent relevant experience working in ITIL controlled environment. Strong verbal and written communication skills. Role includes P1 Operational on-call support, subject to scheduling. Essential Responsibilities Operational support of Network environments across two UK Data Centres. Support in-house ticket analysis, workgroup management and escalations. Support Service utilities that underpin regional IT operations, including Monitoring & Alerting products. Technically support any requirements across the Cyber Security, Application, and Infrastructure groups in region. Follow and promote change control processes to ensure compliance and protect service. Follow asset management processes in region and improve CMDB accuracy. Document and control Standard Operating Procedure (SOP's) for IT processes. Promote and demonstrate an Automation First thinking. Deliver best fit use cases for automation. Collaboration with other teams across Linux, Windows, and DB teams. Desired Characteristics Demonstrate technical understanding of DC Architecture, Infrastructure, and service management. Experience with Packet Analysis. Experience with Load Balancers and Proxy. Experience in network tools such as DNA Centre/Infoblox/Prime. SoC Experience and some understanding of WAF and Firewall logs etc. Quickly able to technically analyses, diagnose, and resolve technical operational incidents and requests. Customer first delivery. Resolve issues with a desire to maintain service uptime & performance
08/05/2024
Full time
Position: Senior Network Engineer - SC Cleared Location: Rugby, UK Duration: Permanent JOB DESCRIPTION: Technical Network Engineer role, responsible for supporting the Network Infrastructure and associated DC services. This includes operational and administrative tasks under an ITIL framework to deliver support for two Data Centre's. The role is to deliver Network Service Requests, Incident resolution, and Change execution for the Data Centre's network environments. Qualifications/Requirements: Candidate must have valid Security Clearance. Strong Network Data and Security knowledge. CCNA Level networking knowledge. Strong knowledge of configuring Router, Switches, and Firewalls. Prior experience of NoC/Incident Handling and supporting Network technologies such as routing/switching, Firewalls, load balancers, and proxies that underpin multiple data centres. Experience working with alerting and monitoring tools such as CISCO DNA-C, Prime, Nagios etc. Experience working with any ITSM tool such as Service Now. ITILv3/ITIL4 certified or recent relevant experience working in ITIL controlled environment. Strong verbal and written communication skills. Role includes P1 Operational on-call support, subject to scheduling. Essential Responsibilities Operational support of Network environments across two UK Data Centres. Support in-house ticket analysis, workgroup management and escalations. Support Service utilities that underpin regional IT operations, including Monitoring & Alerting products. Technically support any requirements across the Cyber Security, Application, and Infrastructure groups in region. Follow and promote change control processes to ensure compliance and protect service. Follow asset management processes in region and improve CMDB accuracy. Document and control Standard Operating Procedure (SOP's) for IT processes. Promote and demonstrate an Automation First thinking. Deliver best fit use cases for automation. Collaboration with other teams across Linux, Windows, and DB teams. Desired Characteristics Demonstrate technical understanding of DC Architecture, Infrastructure, and service management. Experience with Packet Analysis. Experience with Load Balancers and Proxy. Experience in network tools such as DNA Centre/Infoblox/Prime. SoC Experience and some understanding of WAF and Firewall logs etc. Quickly able to technically analyses, diagnose, and resolve technical operational incidents and requests. Customer first delivery. Resolve issues with a desire to maintain service uptime & performance
Spectrum IT Recruitment (South) Ltd
Fareham, Hampshire
Senior Developer | Software Engineer | PHP | GoLang Your digital identity is at risk! Malware, Ransomware, Cryptojacking, Trojan Viruses. In 2023, cybercrime cost UK businesses an estimated £21 billion. But don't think its the just the big corporates at risk, the average cybercrime value in the UK is just over £10,000 demonstrating that personal finance and small business cybercrime is rife. Would you like to be part of the solution? We are working with an award winning leader in the field of cyber security. They are on a mission to build a safer digital world for you and your future self! They have built a suite of innovative products designed to offer superior protection against a broad spectrum of online threats. The role of Senior PHP Developer is 1 of 3 new vacancies in the team demonstrating the success of the products and increasing demand for a robust cyber solution. Working with a talented software team managed by one of the UK's leading tech entrepreneurs, you will be helping to plan and develop security solutions, migration to improved cloud services and help with support and maintenance of security and storage services. The work is aimed at more Back End development with an emphasis on Agile processes, systems optimisation, TDD and embracing modern development practices. The company also uses PHPUnit/Selenium to ensure high standards of development. Essential Skills & Experience 5+ years experience of Object Oriented programming. Deep knowledge of PHP from version 5 upwards. MySQL Git Beneficial Skills: Kubernetes GCP Docker Load Balancing TDD Code Review If you would like to join this talented team and work from their stunning offices in Whiteley, Hampshire, please get in touch ASAP. On top of a competitive salary (approx £60k) the company offer some fantastic financial and lifestyle benefits including; free access to local gym and health spa, onsite chef (free cooked breakfast & lunch!), childcare vouchers, cycle to work scheme, pension, BUPA healthcare, invetment in training and personal development. To be considered for this position please send your CV to (see below) or call. Spectrum IT Recruitment (South) Limited is acting as an Employment Agency in relation to this vacancy.
07/05/2024
Full time
Senior Developer | Software Engineer | PHP | GoLang Your digital identity is at risk! Malware, Ransomware, Cryptojacking, Trojan Viruses. In 2023, cybercrime cost UK businesses an estimated £21 billion. But don't think its the just the big corporates at risk, the average cybercrime value in the UK is just over £10,000 demonstrating that personal finance and small business cybercrime is rife. Would you like to be part of the solution? We are working with an award winning leader in the field of cyber security. They are on a mission to build a safer digital world for you and your future self! They have built a suite of innovative products designed to offer superior protection against a broad spectrum of online threats. The role of Senior PHP Developer is 1 of 3 new vacancies in the team demonstrating the success of the products and increasing demand for a robust cyber solution. Working with a talented software team managed by one of the UK's leading tech entrepreneurs, you will be helping to plan and develop security solutions, migration to improved cloud services and help with support and maintenance of security and storage services. The work is aimed at more Back End development with an emphasis on Agile processes, systems optimisation, TDD and embracing modern development practices. The company also uses PHPUnit/Selenium to ensure high standards of development. Essential Skills & Experience 5+ years experience of Object Oriented programming. Deep knowledge of PHP from version 5 upwards. MySQL Git Beneficial Skills: Kubernetes GCP Docker Load Balancing TDD Code Review If you would like to join this talented team and work from their stunning offices in Whiteley, Hampshire, please get in touch ASAP. On top of a competitive salary (approx £60k) the company offer some fantastic financial and lifestyle benefits including; free access to local gym and health spa, onsite chef (free cooked breakfast & lunch!), childcare vouchers, cycle to work scheme, pension, BUPA healthcare, invetment in training and personal development. To be considered for this position please send your CV to (see below) or call. Spectrum IT Recruitment (South) Limited is acting as an Employment Agency in relation to this vacancy.
Rust Programmer - Brussels - English speaking (Rust, AWS, Lambda, Jenkins, Linux) One of our Blue Chip Clients is urgently looking for a Rust Programmer. Please find some details below: We are seeking a highly skilled Senior Rust Programmer with extensive experience in large-scale image data processing and automation. The ideal candidate will possess a strong background in Rust programming language, coupled with proficiency in machine learning, GPU acceleration, and cloud computing technologies, particularly AWS EMR. Additionally, expertise in Linux environments, web development using React.js, are essential for this role. The candidate should also demonstrate proficiency in AWS services, particularly AWS S3, AWS Lambda, networking, permissions management, and observability tools. The role involves not only developing robust, efficient code but also ensuring seamless deployment, maintenance, and support of production systems. Experience in database management, website authentication, HTTPS certificates, and adherence to best practices for data archiving are highly desirable. Key Responsibilities: 1. Collaborate in developing, improving, and maintaining high-performance Rust applications for large-scale image data processing and automation. 2. Implement best practices for data archiving, ensuring compliance with regulatory requirements and business needs. 3. Manage databases used in production systems, ensuring data integrity, performance, and security. 4. Implement website authentication mechanisms and manage HTTPS certificates for secure communication. 5. Utilize machine learning techniques and GPU acceleration to optimize image processing workflows. 6. Collaborate with cross-functional teams to integrate image processing modules into web applications using React.js. 7. Deploy, configure, and manage production systems on AWS, with a focus on AWS EMR for big data processing. 8. Implement continuous integration and deployment pipelines using Jenkins for efficient code deployment. 9. Ensure observability of systems through proper logging, monitoring, and alerting mechanisms. 10. Manage AWS resources including S3 buckets, Lambda functions, networking configurations, and permissions. 11. Document production code and architectural decisions to facilitate knowledge sharing and onboarding of new team members. 12. Provide support and maintenance for production systems, troubleshooting issues and implementing timely resolutions. Qualifications: - Bachelor's or Master's degree in Computer Science, Engineering, or related field. - Extensive experience in Rust programming language, with a focus on large-scale data processing applications. - Proficiency in machine learning techniques and GPU acceleration for image processing tasks. - Strong background in Linux environments and Shell Scripting. - Solid understanding of web development principles, with hands-on experience in React.js. - Experience with code deployment tools such as Jenkins and version control systems like Git. - In-depth knowledge of AWS services, particularly EMR, S3, Lambda, networking, and permissions management. - Familiarity with observability tools for monitoring and logging production systems. - Experience with database management systems and website authentication mechanisms. - Excellent problem-solving skills and ability to work effectively in a collaborative team environment. - Strong communication skills and ability to document technical solutions effectively. Preferred Qualifications: - Certification in AWS or relevant cloud computing technologies. - Familiarity with containerization technologies such as Docker and orchestration tools like Kubernetes. - Knowledge of DevOps practices and infrastructure as code tools like Terraform. - Understanding of cybersecurity principles and best practices for securing web applications. Please send CV for full details and immediate interviews. We are a preferred supplier to the client.
07/05/2024
Project-based
Rust Programmer - Brussels - English speaking (Rust, AWS, Lambda, Jenkins, Linux) One of our Blue Chip Clients is urgently looking for a Rust Programmer. Please find some details below: We are seeking a highly skilled Senior Rust Programmer with extensive experience in large-scale image data processing and automation. The ideal candidate will possess a strong background in Rust programming language, coupled with proficiency in machine learning, GPU acceleration, and cloud computing technologies, particularly AWS EMR. Additionally, expertise in Linux environments, web development using React.js, are essential for this role. The candidate should also demonstrate proficiency in AWS services, particularly AWS S3, AWS Lambda, networking, permissions management, and observability tools. The role involves not only developing robust, efficient code but also ensuring seamless deployment, maintenance, and support of production systems. Experience in database management, website authentication, HTTPS certificates, and adherence to best practices for data archiving are highly desirable. Key Responsibilities: 1. Collaborate in developing, improving, and maintaining high-performance Rust applications for large-scale image data processing and automation. 2. Implement best practices for data archiving, ensuring compliance with regulatory requirements and business needs. 3. Manage databases used in production systems, ensuring data integrity, performance, and security. 4. Implement website authentication mechanisms and manage HTTPS certificates for secure communication. 5. Utilize machine learning techniques and GPU acceleration to optimize image processing workflows. 6. Collaborate with cross-functional teams to integrate image processing modules into web applications using React.js. 7. Deploy, configure, and manage production systems on AWS, with a focus on AWS EMR for big data processing. 8. Implement continuous integration and deployment pipelines using Jenkins for efficient code deployment. 9. Ensure observability of systems through proper logging, monitoring, and alerting mechanisms. 10. Manage AWS resources including S3 buckets, Lambda functions, networking configurations, and permissions. 11. Document production code and architectural decisions to facilitate knowledge sharing and onboarding of new team members. 12. Provide support and maintenance for production systems, troubleshooting issues and implementing timely resolutions. Qualifications: - Bachelor's or Master's degree in Computer Science, Engineering, or related field. - Extensive experience in Rust programming language, with a focus on large-scale data processing applications. - Proficiency in machine learning techniques and GPU acceleration for image processing tasks. - Strong background in Linux environments and Shell Scripting. - Solid understanding of web development principles, with hands-on experience in React.js. - Experience with code deployment tools such as Jenkins and version control systems like Git. - In-depth knowledge of AWS services, particularly EMR, S3, Lambda, networking, and permissions management. - Familiarity with observability tools for monitoring and logging production systems. - Experience with database management systems and website authentication mechanisms. - Excellent problem-solving skills and ability to work effectively in a collaborative team environment. - Strong communication skills and ability to document technical solutions effectively. Preferred Qualifications: - Certification in AWS or relevant cloud computing technologies. - Familiarity with containerization technologies such as Docker and orchestration tools like Kubernetes. - Knowledge of DevOps practices and infrastructure as code tools like Terraform. - Understanding of cybersecurity principles and best practices for securing web applications. Please send CV for full details and immediate interviews. We are a preferred supplier to the client.