Global Technology Solutions Ltd
Aldermaston, Berkshire
Job Title: SC/DV cleared ON-PREM AD/Azure support specialist Location: Aldermaston, Reading. Potential hybrid agreements Rate: £600-610 per day Working hours: standard office hours Inside IR35 - Umbrella contractors only *This role is not suitable for consultants or architects* Holding SC or DV clearance We are looking for customer-focused and enthusiastic Azure and Active Directory Specialist to join the company. You should have a genuine interest in solving IT issues and empathetic to customer needs and requirements. Day to day tasks include expert management and troubleshooting of Azure, Dev environments and Active Directory services and issues within a complex locked down System structure. You should possess good written and verbal communication skills, be willing to collaborate with the wider IT support teams and help us develop a strong partnership with our customers' IT Leadership. The successful candidate will be responsible in supporting a strategic change to the service model and implementing design documents and processes along with new statements of work. This will require working closely with the Operations Manager and Account Project Lead to define and implement a more agile and collaborative structure which is capable of blending BAU support with short term projects and ad-hoc requests, where scoped and agreed. This will be achieved by following Agile and ITIL Continuous Service Improvement methodologies. ESSENTIALS SKILLS/QUALIFICATIONS: * 5 years plus Azure Active Directory experience (Essential) * Working Knowledge and implementation experience of Azure Dev Ops and Dev Test Labs * Azure Virtual Desktop knowledge and implementation experience (Nerdio) * Azure Cloud Infrastructure Knowledge * Infrastructure as a Code (knowledge and implementation experience) (IaC) * CI/CD pipelines knowledge and understanding * ARM templates/Bicep (knowledge and implementation experience) * Microsoft Tiered Model Knowledge and how this impacts different tiered environments * Azure Role & Functional based Security Delegation and Layers and Role Based Access Control * Azure Networking Experience * Azure Firewalls Experience * Azure Security including Conditional Access Policies and Multi Factor Authentication and Privileged Identity Management * Azure Virtual Machine Management * Azure Storage Experience * Azure Monitoring and log analytics * Azure Enterprise and ADFS Application Provisioning * Active Directory Connect/sync and Active Directory Federation Services * Azure PowerShell Scripting * Microsoft Windows Server 2016, 2019 and 2022 experience * Comfortable working with a Hybrid Joined Active Directory environment * Group Policy Management and Conditional Access Policy Management Experience * DNS, DHCP Experience * Working knowledge and understand of PKI Services * Scripting experience using BAT, PowerShell, C# and VB Scripts * Awareness of Change and Release Management * Strong communication skills both written and verbal * Self-motivated with a positive attitude and comfortable working with ambiguity * Good knowledge of MS Endpoint Management * Good knowledge of Office 365 and Exchange Online DESIRABLE SKILLS/QUALIFICATIONS: * Infrastructure Support experience/background inc patching, backups and restores, Windows/Linux * AD Sync and AD Connect Experience beneficial * Azure Containers * Azure Kubernetes * Azure Endpoint Management/Intune * Good knowledge across SCCM; WSUS; SCOM 2019; AGPM; Lumensions. * ITIL Foundation certified with a broad experience across Service Management disciplines and Agile delivery Benefits: * Development through Training/Certification * Put through DV clearance (including tax allowance) * potential hybrid working (home and onsite) * Joining a strong team with a wealth of knowledge and experience If you have the skill required, apply now! "In applying for this position, you consent to your personal data being shared with the specified employer and for your details to remain with GTS for as long as is necessary to process your application. See our Privacy Notice for full information Global Technology Solutions is acting as an Employment Business in relation to this vacancy
26/04/2024
Project-based
Job Title: SC/DV cleared ON-PREM AD/Azure support specialist Location: Aldermaston, Reading. Potential hybrid agreements Rate: £600-610 per day Working hours: standard office hours Inside IR35 - Umbrella contractors only *This role is not suitable for consultants or architects* Holding SC or DV clearance We are looking for customer-focused and enthusiastic Azure and Active Directory Specialist to join the company. You should have a genuine interest in solving IT issues and empathetic to customer needs and requirements. Day to day tasks include expert management and troubleshooting of Azure, Dev environments and Active Directory services and issues within a complex locked down System structure. You should possess good written and verbal communication skills, be willing to collaborate with the wider IT support teams and help us develop a strong partnership with our customers' IT Leadership. The successful candidate will be responsible in supporting a strategic change to the service model and implementing design documents and processes along with new statements of work. This will require working closely with the Operations Manager and Account Project Lead to define and implement a more agile and collaborative structure which is capable of blending BAU support with short term projects and ad-hoc requests, where scoped and agreed. This will be achieved by following Agile and ITIL Continuous Service Improvement methodologies. ESSENTIALS SKILLS/QUALIFICATIONS: * 5 years plus Azure Active Directory experience (Essential) * Working Knowledge and implementation experience of Azure Dev Ops and Dev Test Labs * Azure Virtual Desktop knowledge and implementation experience (Nerdio) * Azure Cloud Infrastructure Knowledge * Infrastructure as a Code (knowledge and implementation experience) (IaC) * CI/CD pipelines knowledge and understanding * ARM templates/Bicep (knowledge and implementation experience) * Microsoft Tiered Model Knowledge and how this impacts different tiered environments * Azure Role & Functional based Security Delegation and Layers and Role Based Access Control * Azure Networking Experience * Azure Firewalls Experience * Azure Security including Conditional Access Policies and Multi Factor Authentication and Privileged Identity Management * Azure Virtual Machine Management * Azure Storage Experience * Azure Monitoring and log analytics * Azure Enterprise and ADFS Application Provisioning * Active Directory Connect/sync and Active Directory Federation Services * Azure PowerShell Scripting * Microsoft Windows Server 2016, 2019 and 2022 experience * Comfortable working with a Hybrid Joined Active Directory environment * Group Policy Management and Conditional Access Policy Management Experience * DNS, DHCP Experience * Working knowledge and understand of PKI Services * Scripting experience using BAT, PowerShell, C# and VB Scripts * Awareness of Change and Release Management * Strong communication skills both written and verbal * Self-motivated with a positive attitude and comfortable working with ambiguity * Good knowledge of MS Endpoint Management * Good knowledge of Office 365 and Exchange Online DESIRABLE SKILLS/QUALIFICATIONS: * Infrastructure Support experience/background inc patching, backups and restores, Windows/Linux * AD Sync and AD Connect Experience beneficial * Azure Containers * Azure Kubernetes * Azure Endpoint Management/Intune * Good knowledge across SCCM; WSUS; SCOM 2019; AGPM; Lumensions. * ITIL Foundation certified with a broad experience across Service Management disciplines and Agile delivery Benefits: * Development through Training/Certification * Put through DV clearance (including tax allowance) * potential hybrid working (home and onsite) * Joining a strong team with a wealth of knowledge and experience If you have the skill required, apply now! "In applying for this position, you consent to your personal data being shared with the specified employer and for your details to remain with GTS for as long as is necessary to process your application. See our Privacy Notice for full information Global Technology Solutions is acting as an Employment Business in relation to this vacancy
Title: Software Engineer Location: Adliswil, Zurich Type of contract: Permanent Start date: TBC We are a leading international private bank and independent family-owned business. Our thinking is long-term, and we strive to innovate. In recent years, we have grown strongly - in Europe and in Asia. To ensure we remain successful, one factor is crucial: digitalization. It is a key strategic priority in the coming years. We want to combine the best of the analog and digital worlds, in interdisciplinary and agile teams. Our goal: to create a truly personal customer experience thanks to state-of-the-art services. Main responsibilities: Take responsibility of the rebuilding of a complex Portfolio Management application, taking over an existing application based in C#.NET, VBA and MS SQL database, which will be migrated into Java Support on the software design, together with the architect Requirements: Experience in Portfolio Management or similar environment Java, Microservices, Openshift, Kafka Streams, REST API, JSON, CI/CD Frontend experience in Angular or React frameworks Fluent English, German very beneficial Skills: Java Microservices VBA REST API Finance Openshift Portfolio Management CI/CD JSON Kafka Angular React Job Title: Software Engineer Location: Adliswil, Switzerland Job Type: Permanent TEKsystems, an Allegis Group company. Allegis Group AG, Aeschengraben 20, CH-4051 Basel, Switzerland. Registration No. CHE-101.865.121. TEKsystems is a company within the Allegis Group network of companies (collectively referred to as "Allegis Group"). Aerotek, Aston Carter, EASi, TEKsystems, Stamford Consultants and The Stamford Group are Allegis Group brands. If you apply, your personal data will be processed as described in the Allegis Group Online Privacy Notice available at our website. To access our Online Privacy Notice, which explains what information we may collect, use, share, and store about you, and describes your rights and choices about this, please go our website. We are part of a global network of companies and as a result, the personal data you provide will be shared within Allegis Group and transferred and processed outside the UK, Switzerland and European Economic Area subject to the protections described in the Allegis Group Online Privacy Notice. We store personal data in the UK, EEA, Switzerland and the USA. If you would like to exercise your privacy rights, please visit the "Contacting Us" section of our Online Privacy Notice on our website for details on how to contact us. To protect your privacy and security, we may take steps to verify your identity, such as a password and user ID if there is an account associated with your request, or identifying information such as your address or date of birth, before proceeding with your request. commitments under the UK Data Protection Act, EU-U.S. Privacy Shield or the Swiss-U.S. Privacy Shield.
26/04/2024
Full time
Title: Software Engineer Location: Adliswil, Zurich Type of contract: Permanent Start date: TBC We are a leading international private bank and independent family-owned business. Our thinking is long-term, and we strive to innovate. In recent years, we have grown strongly - in Europe and in Asia. To ensure we remain successful, one factor is crucial: digitalization. It is a key strategic priority in the coming years. We want to combine the best of the analog and digital worlds, in interdisciplinary and agile teams. Our goal: to create a truly personal customer experience thanks to state-of-the-art services. Main responsibilities: Take responsibility of the rebuilding of a complex Portfolio Management application, taking over an existing application based in C#.NET, VBA and MS SQL database, which will be migrated into Java Support on the software design, together with the architect Requirements: Experience in Portfolio Management or similar environment Java, Microservices, Openshift, Kafka Streams, REST API, JSON, CI/CD Frontend experience in Angular or React frameworks Fluent English, German very beneficial Skills: Java Microservices VBA REST API Finance Openshift Portfolio Management CI/CD JSON Kafka Angular React Job Title: Software Engineer Location: Adliswil, Switzerland Job Type: Permanent TEKsystems, an Allegis Group company. Allegis Group AG, Aeschengraben 20, CH-4051 Basel, Switzerland. Registration No. CHE-101.865.121. TEKsystems is a company within the Allegis Group network of companies (collectively referred to as "Allegis Group"). Aerotek, Aston Carter, EASi, TEKsystems, Stamford Consultants and The Stamford Group are Allegis Group brands. If you apply, your personal data will be processed as described in the Allegis Group Online Privacy Notice available at our website. To access our Online Privacy Notice, which explains what information we may collect, use, share, and store about you, and describes your rights and choices about this, please go our website. We are part of a global network of companies and as a result, the personal data you provide will be shared within Allegis Group and transferred and processed outside the UK, Switzerland and European Economic Area subject to the protections described in the Allegis Group Online Privacy Notice. We store personal data in the UK, EEA, Switzerland and the USA. If you would like to exercise your privacy rights, please visit the "Contacting Us" section of our Online Privacy Notice on our website for details on how to contact us. To protect your privacy and security, we may take steps to verify your identity, such as a password and user ID if there is an account associated with your request, or identifying information such as your address or date of birth, before proceeding with your request. commitments under the UK Data Protection Act, EU-U.S. Privacy Shield or the Swiss-U.S. Privacy Shield.
Role: IdAM/NetIQ Senior Engineer Location: Onsite in Farnborough Rate: circa £750 per day inside ir35 We are looking for an experienced DV cleared IdAM/NetIQ Senior Engineer to join our client replacing a large complex Enterprise infrastructure. You will possess strong technical skills as well as being able to demonstrate the ability to design, implement, and maintain identity, access, and privilege management. Role and Responsibilities + Develop and maintain identity and access management (IAM) architectural standards, guidelines, and best practices. + Design and implement NetIQ Identity Manager (IDM) solutions to manage user identities, access rights, and provisioning processes. + Lead the deployment and configuration of NetIQ Identity Manager (IDM) to automate user provisioning, de-provisioning, and synchronization processes. Key Skills + NetIQ Identity Manager + Privileged Access Management (PAM) + Identity Governance and Administration If you are interested in discussing this IdAM/NetIQ Senior Engineerrole further, please send your updated CV to (see below) CBSbutler is acting as an employment business for this role.
26/04/2024
Project-based
Role: IdAM/NetIQ Senior Engineer Location: Onsite in Farnborough Rate: circa £750 per day inside ir35 We are looking for an experienced DV cleared IdAM/NetIQ Senior Engineer to join our client replacing a large complex Enterprise infrastructure. You will possess strong technical skills as well as being able to demonstrate the ability to design, implement, and maintain identity, access, and privilege management. Role and Responsibilities + Develop and maintain identity and access management (IAM) architectural standards, guidelines, and best practices. + Design and implement NetIQ Identity Manager (IDM) solutions to manage user identities, access rights, and provisioning processes. + Lead the deployment and configuration of NetIQ Identity Manager (IDM) to automate user provisioning, de-provisioning, and synchronization processes. Key Skills + NetIQ Identity Manager + Privileged Access Management (PAM) + Identity Governance and Administration If you are interested in discussing this IdAM/NetIQ Senior Engineerrole further, please send your updated CV to (see below) CBSbutler is acting as an employment business for this role.
Job: Security Architect Location: Reading, UK, Hybrid Job Type: Permanent Job Description We are seeking a highly skilled and experienced Security Architect to join our team who will be responsible for development of the Security Architecture that ensures the appropriate protection of all aspects of security, (people, process, electronic, data, physical) in Spring Fibre. You will be a subject matter expert and provide security guidance and recommendations to technology/business teams and contribute toSpring's security policies, standards, and guidelines related to information and Network security. This is a technical role and suitable for someone who has hands on experience in Cybersecurity. Responsibilities Help develop an Enterprise Security Architecture Framework, including patterns for identity & authentication, authorization and access control, cryptographic key and certificate management, auditing and security monitoring, data leakage prevention, privacy enhancement & protection and other standards in alignment with Enterprise Architect platforms. Establish metrics and monitoring to report the effectiveness and efficiency of the Security Architecture function. Identify, register and maintain security risks throughout their lifetimes, including agreeing treatment of risks with their owners, and reporting &escalating to Internal Audit and the CIO, when necessary. Develop, review and update security & privacy policies & standards and provide awareness guidelines, implementation and exceptions advice. Engage with owners & custodians of BAU IT systems to understand the architecture, data flow and security controls in their systems. Conduct periodic security compliance assessments and ISO 27001/2 reviews of BAU IT applications, infrastructures & ISMS. Review the security posture of potential M&A acquisition targets. Requirement Mapping long term business requirements to security architecture frameworks such as NIST, CIS etc. Experience delivering Hybrid Cloud and Internet facing applications with a strong focus on cyber security. Broad hands-on knowledge of Firewalls, intrusion detection systems, data encryption, and other industry-standard techniques and practices. Strong knowledge of IT infrastructure, IP Networking, security best practices, and automation technologies. Application security: including but not limited to: authentication, identity and access management, auditing, use of cryptography, data security, privacy enhancing technologies, web services security, OWASP, threat & vulnerability management and secure code development methodologies. Infrastructure security: including but not limited to: network security, host security, database security, device security, VPNs & SSLs, secure file transfers, security event monitoring, malware security and cyber security. Operational security: including but not limited to: incident management, change & patch management, data centre & physical security, backups, DR & BCP, outsourcing, managed services, cloud computing, asset management, cryptographic keys & certificate management, PCI DSS and DPA compliance and ISO 27001/2. Analysing network security controls, including Firewall and Router security configuration. Preferred Delivering the security review processes and frameworks, with full audit trail. Managing multiple security assessments and changing priorities, simultaneously Ensuring Security Architecture Review is built into group wide and business specific processes for acquiring and developing new technology,including developing any needed processes. Aligning business requirements to complex security architecture frameworks. Skills Required: In depth knowledge of: Firewall: Juniper/Cisco/PaloAlto. Onion Security, Splunk, Suricata, Kali. Application Security. Identity and Access Management. Data Protection. Endpoint Security. Cyber Security Operations. Experienced with Threat Modelling. Pen testing and basic incident response. Scripting languages ( python, or PowerShell/building dashboards/au-tomating common tasks) Preferred: Experience in designing systems against a zero-trust architecture. Experience with designing SOC architectures (ie SIEM, SOAR and vulnerability management solutions). Expert-level certification in either AWS or Azure, with a Security specialization. Experience in working within regulated environments, such as PCI-DSS Experience in defining secure development life cycles. Qualifications Bachelor's Degree in either Computer Science, Computer Engineering, Software Engineering, Electrical Engineering, Math, Physics. CISSP, Certified Information Systems Security Professional, International Information Systems Security Certification Consortium (ISC2) Certification, Microsoft Azure Solutions Architect, or AWS Solutions Architect.
24/04/2024
Full time
Job: Security Architect Location: Reading, UK, Hybrid Job Type: Permanent Job Description We are seeking a highly skilled and experienced Security Architect to join our team who will be responsible for development of the Security Architecture that ensures the appropriate protection of all aspects of security, (people, process, electronic, data, physical) in Spring Fibre. You will be a subject matter expert and provide security guidance and recommendations to technology/business teams and contribute toSpring's security policies, standards, and guidelines related to information and Network security. This is a technical role and suitable for someone who has hands on experience in Cybersecurity. Responsibilities Help develop an Enterprise Security Architecture Framework, including patterns for identity & authentication, authorization and access control, cryptographic key and certificate management, auditing and security monitoring, data leakage prevention, privacy enhancement & protection and other standards in alignment with Enterprise Architect platforms. Establish metrics and monitoring to report the effectiveness and efficiency of the Security Architecture function. Identify, register and maintain security risks throughout their lifetimes, including agreeing treatment of risks with their owners, and reporting &escalating to Internal Audit and the CIO, when necessary. Develop, review and update security & privacy policies & standards and provide awareness guidelines, implementation and exceptions advice. Engage with owners & custodians of BAU IT systems to understand the architecture, data flow and security controls in their systems. Conduct periodic security compliance assessments and ISO 27001/2 reviews of BAU IT applications, infrastructures & ISMS. Review the security posture of potential M&A acquisition targets. Requirement Mapping long term business requirements to security architecture frameworks such as NIST, CIS etc. Experience delivering Hybrid Cloud and Internet facing applications with a strong focus on cyber security. Broad hands-on knowledge of Firewalls, intrusion detection systems, data encryption, and other industry-standard techniques and practices. Strong knowledge of IT infrastructure, IP Networking, security best practices, and automation technologies. Application security: including but not limited to: authentication, identity and access management, auditing, use of cryptography, data security, privacy enhancing technologies, web services security, OWASP, threat & vulnerability management and secure code development methodologies. Infrastructure security: including but not limited to: network security, host security, database security, device security, VPNs & SSLs, secure file transfers, security event monitoring, malware security and cyber security. Operational security: including but not limited to: incident management, change & patch management, data centre & physical security, backups, DR & BCP, outsourcing, managed services, cloud computing, asset management, cryptographic keys & certificate management, PCI DSS and DPA compliance and ISO 27001/2. Analysing network security controls, including Firewall and Router security configuration. Preferred Delivering the security review processes and frameworks, with full audit trail. Managing multiple security assessments and changing priorities, simultaneously Ensuring Security Architecture Review is built into group wide and business specific processes for acquiring and developing new technology,including developing any needed processes. Aligning business requirements to complex security architecture frameworks. Skills Required: In depth knowledge of: Firewall: Juniper/Cisco/PaloAlto. Onion Security, Splunk, Suricata, Kali. Application Security. Identity and Access Management. Data Protection. Endpoint Security. Cyber Security Operations. Experienced with Threat Modelling. Pen testing and basic incident response. Scripting languages ( python, or PowerShell/building dashboards/au-tomating common tasks) Preferred: Experience in designing systems against a zero-trust architecture. Experience with designing SOC architectures (ie SIEM, SOAR and vulnerability management solutions). Expert-level certification in either AWS or Azure, with a Security specialization. Experience in working within regulated environments, such as PCI-DSS Experience in defining secure development life cycles. Qualifications Bachelor's Degree in either Computer Science, Computer Engineering, Software Engineering, Electrical Engineering, Math, Physics. CISSP, Certified Information Systems Security Professional, International Information Systems Security Certification Consortium (ISC2) Certification, Microsoft Azure Solutions Architect, or AWS Solutions Architect.
Lead IT Security Manager Permanent Birmingham - 2 Days per week on site £48,900 - £61,140 per annum My client in the Rail industry are looking for a Lead IT Security Manager to join their fast-paced Operations team on a permanent basis. The Lead IT Security Manager is responsible for is the effective management of the Security Operations pillar within the IT Security, Compliance & Identity function. This includes Security technology and Security Operations Centre management. Key focus areas for this role, the ideal candidate will have experience in each of the below; Threat & Vulnerability Management Security Operations Centre - 24/7 Outsourced Web & Content Filtering - ProofPoint, Zscaler, etc. Endpoint Security Infrastructure Security Accountabilities * Lead the Security Operations pillar, determining and delivering requirements, methods, and tools to provide value and reduce risk across proactive monitoring, incident response, threat management and vulnerability management (among other activity) . * Lead the creation and maintenance of Security Operations policy, standards procedures, and documentation (including playbooks and guidance). * Manage the application and compliance of security operations procedures, reviewing actual and potential security breaches, and ensuring their investigation. * Lead the Security Operations team's response to incidents, recommending actions and appropriate control improvements. * Monitor the external environment to gather intelligence on emerging technologies, documenting impacts, threats, and opportunities to IT. * Provide expert advice on threat intelligence activities, identifying which threat categories are most dangerous to the organization and how to defend against them. * Manage vulnerability assessment activities within company IT, providing expert advice where necessary in the review of vulnerability assessment tools and techniques. * Develop, maintain, and test Security Operations' incident management procedures, investigating escalated incidents and facilitating recovery post-incident resolution. * Lead Security Operations risk management activities, leading on the identification of risks and vulnerabilities and assessment of their impacts. * Manage and oversee the day-to-day activity of the SOC supplier who will deliver security capabilities, communicating their activity to relevant teams. * Manage the design, delivery, maintenance, and continuous improvement of the IT Security Ops capabilities in line with business needs. * Manage the Security Operations Centre (SOC) capability, ensuring effective protection, defence, and response to IT security risks. * Promote the Security, Compliance & Identity function to develop and enhance the team profile to develop enduring relationships with stakeholders and teams. * Implement a multi-year Security roadmap that provides proactive capabilities which enable business objectives. * Actively promote and embed Equality Diversity and Inclusion (EDI) in all your work, and support and comply with all organisational initiatives, policies and procedures on EDI. Skills: * Relationship Building. Ability to develop and maintain strong relationships with internal and external stakeholders. * Security Operations. Ability provide leadership for live security incidents and helping conduct robust investigations in order to identify corrective actions and see them through to completion. * Threat Intelligence. Ability to provide guidance on proactive threat identification, analysis, and mitigation. Skilled in actionable intelligence, industry sources, and general awareness of threat landscape. * Vulnerability Assessment. Ability to identify and classify security vulnerabilities in networks, systems and applications and mitigating or eliminating their impact. * Risk Management. Ability to identify IT security operations risks and the delivery of audit remediation activities. * Emerging technology monitoring. Ability to identify and assess new and emerging technologies, products, services, methods and techniques. Knowledge: * Knowledge of IT Service Frameworks, methodologies, and best practice such as ITIL v4 and Agile. * Knowledge of day-to-day activities and best practice within a SOC. * Knowledge of technical security such as Firewalls, network security groups, and access controls. Type of Experience: * Experience of leading a team through the full IT service life cycle, enhancing security posture, and evolving capabilities via continual service improvement. * Experience of leading live cyber incidents and the remediation actions. * Experience of partnering with supplier teams for managed services delivery of improvements. * Experience across the full IT security spectrum (software, Servers, infrastructure, and networks). * Experience designing and implementing secure systems, leading review where necessary of complex security issues. * Experience of enabling and informing risk-based decisions. * Experience dealing with the security implications of transformation and day-to-day product changes. * Experience working with system architectures, displaying a strong understanding of the impact of vulnerabilities on varied systems Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission.
23/04/2024
Full time
Lead IT Security Manager Permanent Birmingham - 2 Days per week on site £48,900 - £61,140 per annum My client in the Rail industry are looking for a Lead IT Security Manager to join their fast-paced Operations team on a permanent basis. The Lead IT Security Manager is responsible for is the effective management of the Security Operations pillar within the IT Security, Compliance & Identity function. This includes Security technology and Security Operations Centre management. Key focus areas for this role, the ideal candidate will have experience in each of the below; Threat & Vulnerability Management Security Operations Centre - 24/7 Outsourced Web & Content Filtering - ProofPoint, Zscaler, etc. Endpoint Security Infrastructure Security Accountabilities * Lead the Security Operations pillar, determining and delivering requirements, methods, and tools to provide value and reduce risk across proactive monitoring, incident response, threat management and vulnerability management (among other activity) . * Lead the creation and maintenance of Security Operations policy, standards procedures, and documentation (including playbooks and guidance). * Manage the application and compliance of security operations procedures, reviewing actual and potential security breaches, and ensuring their investigation. * Lead the Security Operations team's response to incidents, recommending actions and appropriate control improvements. * Monitor the external environment to gather intelligence on emerging technologies, documenting impacts, threats, and opportunities to IT. * Provide expert advice on threat intelligence activities, identifying which threat categories are most dangerous to the organization and how to defend against them. * Manage vulnerability assessment activities within company IT, providing expert advice where necessary in the review of vulnerability assessment tools and techniques. * Develop, maintain, and test Security Operations' incident management procedures, investigating escalated incidents and facilitating recovery post-incident resolution. * Lead Security Operations risk management activities, leading on the identification of risks and vulnerabilities and assessment of their impacts. * Manage and oversee the day-to-day activity of the SOC supplier who will deliver security capabilities, communicating their activity to relevant teams. * Manage the design, delivery, maintenance, and continuous improvement of the IT Security Ops capabilities in line with business needs. * Manage the Security Operations Centre (SOC) capability, ensuring effective protection, defence, and response to IT security risks. * Promote the Security, Compliance & Identity function to develop and enhance the team profile to develop enduring relationships with stakeholders and teams. * Implement a multi-year Security roadmap that provides proactive capabilities which enable business objectives. * Actively promote and embed Equality Diversity and Inclusion (EDI) in all your work, and support and comply with all organisational initiatives, policies and procedures on EDI. Skills: * Relationship Building. Ability to develop and maintain strong relationships with internal and external stakeholders. * Security Operations. Ability provide leadership for live security incidents and helping conduct robust investigations in order to identify corrective actions and see them through to completion. * Threat Intelligence. Ability to provide guidance on proactive threat identification, analysis, and mitigation. Skilled in actionable intelligence, industry sources, and general awareness of threat landscape. * Vulnerability Assessment. Ability to identify and classify security vulnerabilities in networks, systems and applications and mitigating or eliminating their impact. * Risk Management. Ability to identify IT security operations risks and the delivery of audit remediation activities. * Emerging technology monitoring. Ability to identify and assess new and emerging technologies, products, services, methods and techniques. Knowledge: * Knowledge of IT Service Frameworks, methodologies, and best practice such as ITIL v4 and Agile. * Knowledge of day-to-day activities and best practice within a SOC. * Knowledge of technical security such as Firewalls, network security groups, and access controls. Type of Experience: * Experience of leading a team through the full IT service life cycle, enhancing security posture, and evolving capabilities via continual service improvement. * Experience of leading live cyber incidents and the remediation actions. * Experience of partnering with supplier teams for managed services delivery of improvements. * Experience across the full IT security spectrum (software, Servers, infrastructure, and networks). * Experience designing and implementing secure systems, leading review where necessary of complex security issues. * Experience of enabling and informing risk-based decisions. * Experience dealing with the security implications of transformation and day-to-day product changes. * Experience working with system architectures, displaying a strong understanding of the impact of vulnerabilities on varied systems Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission.