Security Engineer Salary: $140k-$150k + bonus Location: Chicago, IL or Dallas, TX Hybrid: 3 days onsite, 2 days remote *We are unable to provide sponsorship for this role* Qualifications Bachelor's degree 3+ years of related experience Hands-on security operations experience including interdisciplinary experience with two or more of the following: Cyber Threat Analysis, Incident Response, Application Security, Operating Systems Security, Networking, Programming languages, Incident Response. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives. Familiarity with computer network exploitation and network attack methodologies while maintaining an understanding of the relationship these activities have with the financial services industry and critical infrastructure. Responsibilities Monitor security alerts and events from various security tools and technologies. Perform advanced analysis of security logs, network traffic, and endpoint data. Review and respond to security incidents escalated by Tier 1 analysts. Conduct thorough investigations to determine the scope and impact of security incidents. Implement containment, eradication, and recovery measures for confirmed incidents. Document and report findings, actions taken, and lessons learned.
15/01/2025
Full time
Security Engineer Salary: $140k-$150k + bonus Location: Chicago, IL or Dallas, TX Hybrid: 3 days onsite, 2 days remote *We are unable to provide sponsorship for this role* Qualifications Bachelor's degree 3+ years of related experience Hands-on security operations experience including interdisciplinary experience with two or more of the following: Cyber Threat Analysis, Incident Response, Application Security, Operating Systems Security, Networking, Programming languages, Incident Response. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives. Familiarity with computer network exploitation and network attack methodologies while maintaining an understanding of the relationship these activities have with the financial services industry and critical infrastructure. Responsibilities Monitor security alerts and events from various security tools and technologies. Perform advanced analysis of security logs, network traffic, and endpoint data. Review and respond to security incidents escalated by Tier 1 analysts. Conduct thorough investigations to determine the scope and impact of security incidents. Implement containment, eradication, and recovery measures for confirmed incidents. Document and report findings, actions taken, and lessons learned.
Security Engineer Salary: $140k-$150k + bonus Location: Chicago, IL or Dallas, TX Hybrid: 3 days onsite, 2 days remote *We are unable to provide sponsorship for this role* Qualifications Bachelor's degree 3+ years of related experience Hands-on security operations experience including interdisciplinary experience with two or more of the following: Cyber Threat Analysis, Incident Response, Application Security, Operating Systems Security, Networking, Programming languages, Incident Response. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives. Familiarity with computer network exploitation and network attack methodologies while maintaining an understanding of the relationship these activities have with the financial services industry and critical infrastructure. Responsibilities Monitor security alerts and events from various security tools and technologies. Perform advanced analysis of security logs, network traffic, and endpoint data. Review and respond to security incidents escalated by Tier 1 analysts. Conduct thorough investigations to determine the scope and impact of security incidents. Implement containment, eradication, and recovery measures for confirmed incidents. Document and report findings, actions taken, and lessons learned.
14/01/2025
Full time
Security Engineer Salary: $140k-$150k + bonus Location: Chicago, IL or Dallas, TX Hybrid: 3 days onsite, 2 days remote *We are unable to provide sponsorship for this role* Qualifications Bachelor's degree 3+ years of related experience Hands-on security operations experience including interdisciplinary experience with two or more of the following: Cyber Threat Analysis, Incident Response, Application Security, Operating Systems Security, Networking, Programming languages, Incident Response. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives. Familiarity with computer network exploitation and network attack methodologies while maintaining an understanding of the relationship these activities have with the financial services industry and critical infrastructure. Responsibilities Monitor security alerts and events from various security tools and technologies. Perform advanced analysis of security logs, network traffic, and endpoint data. Review and respond to security incidents escalated by Tier 1 analysts. Conduct thorough investigations to determine the scope and impact of security incidents. Implement containment, eradication, and recovery measures for confirmed incidents. Document and report findings, actions taken, and lessons learned.
CBSButler are looking for a number of SOC Analysts (Beveiligingscentrum) to join on an exciting top secret project with a Dutch government organisation, this will be a permanent position and we can pay between €4000 - €8000 per month (Up to €96,000 per year), depending on experience, we are looking for junior/mid through to senior and lead level SOC Analyst candidates. P.S if you're not interested but know someone who might be we do pay €250 referral fees for successful referrals. You will have to be on site 5 days a week in the Rotterdam area and be a Dutch citizen as you will be working on a top secret project and will require Security Clearance. The organisation can get the clearance for you if you don't hold active clearance already, so as long as you are a Dutch citizen you can apply. Please see below for what we're looking for: - A strong background in Cyber Security blue teaming - Ideally experience working in the Security Operation Centre previously (Beveiligingscentrum) as a SOC Analyst, SOC Developer or SOC Engineer - Strong experience working with Firewalls, intrusion detection/prevention systems (IDS/IPS), and endpoint protection tools. - Familiarity with security monitoring tools and knowledge of protocols for intrusion detection/threat intelligence - Proficiency with a SIEM tool (eg, Splunk, ArcSight, Sentinel, ELK Stack) for security event management and analysis, and a basic understanding of network protocols (TCP/IP, DNS, HTTP/HTTPS, etc.) and common attack vectors. No shift pattern for this role is required. If you're suitable please send through an updated CV and I will call ASAP!
14/01/2025
Full time
CBSButler are looking for a number of SOC Analysts (Beveiligingscentrum) to join on an exciting top secret project with a Dutch government organisation, this will be a permanent position and we can pay between €4000 - €8000 per month (Up to €96,000 per year), depending on experience, we are looking for junior/mid through to senior and lead level SOC Analyst candidates. P.S if you're not interested but know someone who might be we do pay €250 referral fees for successful referrals. You will have to be on site 5 days a week in the Rotterdam area and be a Dutch citizen as you will be working on a top secret project and will require Security Clearance. The organisation can get the clearance for you if you don't hold active clearance already, so as long as you are a Dutch citizen you can apply. Please see below for what we're looking for: - A strong background in Cyber Security blue teaming - Ideally experience working in the Security Operation Centre previously (Beveiligingscentrum) as a SOC Analyst, SOC Developer or SOC Engineer - Strong experience working with Firewalls, intrusion detection/prevention systems (IDS/IPS), and endpoint protection tools. - Familiarity with security monitoring tools and knowledge of protocols for intrusion detection/threat intelligence - Proficiency with a SIEM tool (eg, Splunk, ArcSight, Sentinel, ELK Stack) for security event management and analysis, and a basic understanding of network protocols (TCP/IP, DNS, HTTP/HTTPS, etc.) and common attack vectors. No shift pattern for this role is required. If you're suitable please send through an updated CV and I will call ASAP!
*Hybrid, 3 days onsite, 2 days remote* *We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a Senior Associate, Internal Audit IT & Security. This internal auditor will need 2+ years of experience conducting risk-based information technology and security audits. This is a highly regulated financial environment, and these audits will follow AICPA, IIA, IPPF, COBIT, NIST, and CSF standards/frameworks. Responsibilities: Support the team on delivery of assigned audits within the annual audit plan. Support the team confirming a professional auditee experience. Owning the audit quality, accuracy of results, and delivery in a timely manner. Proactively identify regulatory, operational, and/or strategic risks to the organization and bring them to your engagement team. Evaluate exceptions or inefficient practices for root causes and propose advice and recommendations for achievable solutions. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, change management, security), engagement and alignment of change initiatives to business objectives. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Ability to understand professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and control. Keeping current on best practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Qualifications Bachelor's degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. 2+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent. Consulting and/or accounting firm experience. Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). Microsoft Office applications Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software
14/01/2025
Full time
*Hybrid, 3 days onsite, 2 days remote* *We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a Senior Associate, Internal Audit IT & Security. This internal auditor will need 2+ years of experience conducting risk-based information technology and security audits. This is a highly regulated financial environment, and these audits will follow AICPA, IIA, IPPF, COBIT, NIST, and CSF standards/frameworks. Responsibilities: Support the team on delivery of assigned audits within the annual audit plan. Support the team confirming a professional auditee experience. Owning the audit quality, accuracy of results, and delivery in a timely manner. Proactively identify regulatory, operational, and/or strategic risks to the organization and bring them to your engagement team. Evaluate exceptions or inefficient practices for root causes and propose advice and recommendations for achievable solutions. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, change management, security), engagement and alignment of change initiatives to business objectives. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Ability to understand professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and control. Keeping current on best practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Qualifications Bachelor's degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. 2+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent. Consulting and/or accounting firm experience. Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). Microsoft Office applications Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software
Lorien are currently partnered with a professional services organisation that are looking to add a IT Security Administrator into the team to be responsible for the configuration, maintaining and upgrading the company's Cyber Security Platforms while ensuring Security best practices are maintained in their expanding AWS cloud infrastructure for our customer facing systems and services. Working closely with the infrastructure, Service Desk and Software Development engineering teams to implement and manage security best practices and proactive security measures. You will also perform vulnerability scans to asses and remediate any vulnerabilities. Aside from this, you will play a key role in agreeing, implementing and monitoring employee Cyber Security awareness activities - including onboarding, training, awareness raising campaigns and promoting best practices. Experience: 2+ years in Cyber Security Proven experience as an IT Security Administrator Experience of building and maintaining security systems Experience with Vunerability scanning tools (Smartscan) Cloud Services and security controls (AWS) Designing and architecting security solutions ISO27001 or Cyber Essentials controls and compliance experience The role is paying up to £60,000 with additional attractive benefits. The role is on a hybrid basis with expectation to be in the Bradford office once or twice a month. Carbon60, Lorien & SRG - The Impellam Group STEM Portfolio are acting as an Employment Business in relation to this vacancy.
14/01/2025
Full time
Lorien are currently partnered with a professional services organisation that are looking to add a IT Security Administrator into the team to be responsible for the configuration, maintaining and upgrading the company's Cyber Security Platforms while ensuring Security best practices are maintained in their expanding AWS cloud infrastructure for our customer facing systems and services. Working closely with the infrastructure, Service Desk and Software Development engineering teams to implement and manage security best practices and proactive security measures. You will also perform vulnerability scans to asses and remediate any vulnerabilities. Aside from this, you will play a key role in agreeing, implementing and monitoring employee Cyber Security awareness activities - including onboarding, training, awareness raising campaigns and promoting best practices. Experience: 2+ years in Cyber Security Proven experience as an IT Security Administrator Experience of building and maintaining security systems Experience with Vunerability scanning tools (Smartscan) Cloud Services and security controls (AWS) Designing and architecting security solutions ISO27001 or Cyber Essentials controls and compliance experience The role is paying up to £60,000 with additional attractive benefits. The role is on a hybrid basis with expectation to be in the Bradford office once or twice a month. Carbon60, Lorien & SRG - The Impellam Group STEM Portfolio are acting as an Employment Business in relation to this vacancy.
Methods Business and Digital Technology Limited
Gloucester, Gloucestershire
Senior Back End Developer (Cyber) Location: On-site 5-days (Worcester/Ebbw Vale/Gloucester/Great Malvern) Company: Methods Business and Digital Technology Limited About Us: Methods is a leading £100M+ IT Services Consultancy with a rich history of transforming the public sector in the UK. With over 30 years of experience, we collaborate with central government departments and agencies to create innovative, people-centred solutions. Now expanding into the private sector, we continue to drive success through our commitment to technology, data, and a human touch. Role Overview: We are seeking a highly skilled Senior Back End Developer to join our dynamic team. The ideal candidate will have strong expertise in Python and SQL, with a proven track record of developing and maintaining robust Back End systems. You will collaborate closely with Front End developers, data engineers, and product managers to build scalable, efficient applications that meet user needs. Key Responsibilities: Design, develop, and maintain reliable Back End systems using Python and SQL. Utilize frameworks like Django, Flask, FastAPI, Asyncio, Aiohttp, and SQLAlchemy. Develop and document RESTful APIs, WebSocket, and GraphQL services. Manage and optimize databases (PostgreSQL, NATS, Redis, Min.IO). Implement cloud-based solutions using Microsoft Azure services. Ensure security protocols with OAuth and KeyCloak. Conduct testing with SonarQube, Pytest, isort, black, and bandit. Use Git for version control. Implement containerization and orchestration with Docker, Kubernetes, and Helm. Develop CI/CD pipelines with GitHub Actions and Azure DevOps Pipelines. Collaborate using Jira and Confluence. Monitor and enhance system performance with Prometheus and Grafana. Requirements: Extensive experience as a Senior Back End Developer. Proficient in Python and SQL. Skilled with frameworks and libraries: Django, Flask, FastAPI, Asyncio, Aiohttp, SQLAlchemy. Experience in developing/managing RESTful APIs, WebSocket, GraphQL services. Database management expertise (PostgreSQL, NATS, Redis, Min.IO). Hands-on with Microsoft Azure services. Security implementation knowledge (OAuth, KeyCloak). Testing proficiency (SonarQube, Pytest, isort, black, bandit). Version control with Git. Experience with Docker, Kubernetes, Helm. CI/CD processes familiarity (GitHub Actions, Azure DevOps Pipelines). Excellent collaboration and communication skills. Problem-solving abilities. Security Clearance: This role will require you to have or be willing to go through Security Clearance. As part of the onboarding process candidates will be asked to complete a Baseline Personnel Security Standard; details of the evidence required to apply may be found on the government website Gov.UK. If you are unable to meet this and any associated criteria, then your employment may be delayed, or rejected. Details of this will be discussed with you at interview. Benefits: Methods is passionate about its people; we want our colleagues to develop the things they are good at and enjoy. By joining us you can expect Autonomy to develop and grow your skills and experience Be part of exciting project work that is making a difference in society Strong, inspiring and thought-provoking leadership A supportive and collaborative environment Development - access to LinkedIn Learning, a management development programme, and training Wellness - 24/7 confidential employee assistance programme Flexible Working - including home working and part time Social - office parties, breakfast Tuesdays, monthly pizza Thursdays, Thirsty Thursdays, and commitment to charitable causes Time Off - 25 days of annual leave a year, plus bank holidays, with the option to buy 5 extra days each year Volunteering - 2 paid days per year to volunteer in our local communities or within a charity organisation Pension - Salary Exchange Scheme with 4% employer contribution and 5% employee contribution Discretionary Company Bonus - based on company and individual performance Life Assurance - of 4 times base salary Private Medical Insurance - which is non-contributory (spouse and dependants included) Worldwide Travel Insurance - which is non-contributory (spouse and dependants included) Enhanced Maternity and Paternity Pay Travel - season ticket loan, cycle to work scheme For a full list of benefits please visit our website
14/01/2025
Full time
Senior Back End Developer (Cyber) Location: On-site 5-days (Worcester/Ebbw Vale/Gloucester/Great Malvern) Company: Methods Business and Digital Technology Limited About Us: Methods is a leading £100M+ IT Services Consultancy with a rich history of transforming the public sector in the UK. With over 30 years of experience, we collaborate with central government departments and agencies to create innovative, people-centred solutions. Now expanding into the private sector, we continue to drive success through our commitment to technology, data, and a human touch. Role Overview: We are seeking a highly skilled Senior Back End Developer to join our dynamic team. The ideal candidate will have strong expertise in Python and SQL, with a proven track record of developing and maintaining robust Back End systems. You will collaborate closely with Front End developers, data engineers, and product managers to build scalable, efficient applications that meet user needs. Key Responsibilities: Design, develop, and maintain reliable Back End systems using Python and SQL. Utilize frameworks like Django, Flask, FastAPI, Asyncio, Aiohttp, and SQLAlchemy. Develop and document RESTful APIs, WebSocket, and GraphQL services. Manage and optimize databases (PostgreSQL, NATS, Redis, Min.IO). Implement cloud-based solutions using Microsoft Azure services. Ensure security protocols with OAuth and KeyCloak. Conduct testing with SonarQube, Pytest, isort, black, and bandit. Use Git for version control. Implement containerization and orchestration with Docker, Kubernetes, and Helm. Develop CI/CD pipelines with GitHub Actions and Azure DevOps Pipelines. Collaborate using Jira and Confluence. Monitor and enhance system performance with Prometheus and Grafana. Requirements: Extensive experience as a Senior Back End Developer. Proficient in Python and SQL. Skilled with frameworks and libraries: Django, Flask, FastAPI, Asyncio, Aiohttp, SQLAlchemy. Experience in developing/managing RESTful APIs, WebSocket, GraphQL services. Database management expertise (PostgreSQL, NATS, Redis, Min.IO). Hands-on with Microsoft Azure services. Security implementation knowledge (OAuth, KeyCloak). Testing proficiency (SonarQube, Pytest, isort, black, bandit). Version control with Git. Experience with Docker, Kubernetes, Helm. CI/CD processes familiarity (GitHub Actions, Azure DevOps Pipelines). Excellent collaboration and communication skills. Problem-solving abilities. Security Clearance: This role will require you to have or be willing to go through Security Clearance. As part of the onboarding process candidates will be asked to complete a Baseline Personnel Security Standard; details of the evidence required to apply may be found on the government website Gov.UK. If you are unable to meet this and any associated criteria, then your employment may be delayed, or rejected. Details of this will be discussed with you at interview. Benefits: Methods is passionate about its people; we want our colleagues to develop the things they are good at and enjoy. By joining us you can expect Autonomy to develop and grow your skills and experience Be part of exciting project work that is making a difference in society Strong, inspiring and thought-provoking leadership A supportive and collaborative environment Development - access to LinkedIn Learning, a management development programme, and training Wellness - 24/7 confidential employee assistance programme Flexible Working - including home working and part time Social - office parties, breakfast Tuesdays, monthly pizza Thursdays, Thirsty Thursdays, and commitment to charitable causes Time Off - 25 days of annual leave a year, plus bank holidays, with the option to buy 5 extra days each year Volunteering - 2 paid days per year to volunteer in our local communities or within a charity organisation Pension - Salary Exchange Scheme with 4% employer contribution and 5% employee contribution Discretionary Company Bonus - based on company and individual performance Life Assurance - of 4 times base salary Private Medical Insurance - which is non-contributory (spouse and dependants included) Worldwide Travel Insurance - which is non-contributory (spouse and dependants included) Enhanced Maternity and Paternity Pay Travel - season ticket loan, cycle to work scheme For a full list of benefits please visit our website
Methods Business and Digital Technology Limited Methods is a £100M+ IT Services Consultancy who has partnered with a range of central government departments and agencies to transform the way the public sector operates in the UK. Established over 30 years ago and UK-based, we apply our skills in transformation, delivery, and collaboration from across the Methods Group, to create end-to-end business and technical solutions that are people-centred, safe, and designed for the future. Our human touch sets us apart from other consultancies, system integrators and software houses - with people, technology, and data at the heart of who we are, we believe in creating value and sustainability through everything we do for our clients, staff, communities, and the planet. We support our clients in the success of their projects while working collaboratively to share skill sets and solve problems. At Methods we have fun while working hard; we are not afraid of making mistakes and learning from them. Predominantly focused on the public-sector, Methods is now building a significant private sector client portfolio. Methods was acquired by the Alten Group in early 2022. Methods is currently recruiting for a DevSecOps Engineer (Cyber) Consultant to join our team on a permanent basis. This role will be based on-site Requirements Specialised in cloud management of platforms, applications, data and supporting infrastructure in the capacity of a system administrator of either the AWS or Azure platform Developing automation to support continuous delivery of changes using technologies on the Azure platform. Developing infrastructure as a service configuration to automate the creation of infrastructure and platforms to host test and production systems Building and setting up new development tools and infrastructure Understanding the needs of stakeholders and conveying this to developers Working on ways to automate and improve development and release processes Testing and examining code written by others and analysing results Ensuring that systems are safe and secure against cybersecurity threats Familiar with the NCSC secure design principles Familiar with managing security of cloud platforms, including administration of secrets, tokens and certificates. Working with Architects, Data and Software Engineers to ensure that development follows established processes and works as intended Planning out projects and being involved in project management decisions Responsible for the design, security, and maintenance of cloud infrastructure Making and guiding effective decisions, explaining clearly how the decision has been reached with the ability to understand and resolve technical disputes across varying levels of complexity and risk. Communicating effectively across organisational, technical and political boundaries to understand the context and how to make complex and technical information and language simple and accessible for non-technical audiences. Understanding of how to expose data from systems (for example, through APIs), link data from multiple systems and deliver streaming services. Ensuring that risks associated with deployment are adequately understood and documented. Ideal Candidates will demonstrate: Experience working across cyber security teams would be beneficial Solid infrastructure design experience for both on-prem and cloud, to implement or migrate applications and databases to Azure. Solid experience in a range of technologies and be able to make assessments as to what is best to be used for the projects and the organisation. As well as suggest and develop innovative approaches within constrained projects and environments. Strong experience in software development, change/release management processes, and technical governance to fully understand the typical life cycle and maintenance of live systems. Ability to work with containerization platforms such as Kubernetes, PKS, Docker; cloud provisioning software, including Ansible, Terraform, Azure blueprints, ARM templates; and application performance analysis and monitoring Experience of functional and non-functional testing including automated deployment experience of applications and databases. Understanding of the government digital service manual and standards across Discovery/Alpha/Beta/Live phases. Understanding of SaaS, PaaS, IaaS technologies and the implications of their use compared with bespoke development. Being able to provide training, support and mentoring to the wider business Knowledge of how to ensure that risks associated with deployment are adequately understood and documented. Desirable Skills & Experience: Worked as part of a system support team, managing live systems and triaging & resolving incidents to resolution including management of known defects and issues. Worked as part of multi-disciplinary project team. Experience with Terraform to deploy cloud infrastructure in Azure Experience with Azure DevOps and GitHub Actions to automate the build and deploy of containerised applications Experience implementing effective instrumentation to monitor applications Experience implementing SAST and DAST tooling in deployment pipelines like Trivvy and SonarQube Experience of both AWS and Azure Dev Ops tooling. This role will require you to have or be willing to go through Security Clearance. As part of the onboarding process candidates will be asked to complete a Baseline Personnel Security Standard; details of the evidence required to apply may be found on the government website Gov.UK. If you are unable to meet this and any associated criteria, then your employment may be delayed, or rejected. Details of this will be discussed with you at interview. Benefits Methods is passionate about its people; we want our colleagues to develop the things they are good at and enjoy. By joining us you can expect Autonomy to develop and grow your skills and experience Be part of exciting project work that is making a difference in society Strong, inspiring and thought-provoking leadership A supportive and collaborative environment Development - access to LinkedIn Learning, a management development programme, and training Wellness - 24/7 confidential employee assistance programme Flexible Working - including home working and part time Social - office parties, breakfast Tuesdays, monthly pizza Thursdays, Thirsty Thursdays, and commitment to charitable causes Time Off - 25 days of annual leave a year, plus bank holidays, with the option to buy 5 extra days each year Volunteering - 2 paid days per year to volunteer in our local communities or within a charity organisation Pension - Salary Exchange Scheme with 4% employer contribution and 5% employee contribution Discretionary Company Bonus - based on company and individual performance Life Assurance - of 4 times base salary Private Medical Insurance - which is non-contributory (spouse and dependants included) Worldwide Travel Insurance - which is non-contributory (spouse and dependants included) Enhanced Maternity and Paternity Pay Travel - season ticket loan, cycle to work scheme For a full list of benefits please visit our website
14/01/2025
Full time
Methods Business and Digital Technology Limited Methods is a £100M+ IT Services Consultancy who has partnered with a range of central government departments and agencies to transform the way the public sector operates in the UK. Established over 30 years ago and UK-based, we apply our skills in transformation, delivery, and collaboration from across the Methods Group, to create end-to-end business and technical solutions that are people-centred, safe, and designed for the future. Our human touch sets us apart from other consultancies, system integrators and software houses - with people, technology, and data at the heart of who we are, we believe in creating value and sustainability through everything we do for our clients, staff, communities, and the planet. We support our clients in the success of their projects while working collaboratively to share skill sets and solve problems. At Methods we have fun while working hard; we are not afraid of making mistakes and learning from them. Predominantly focused on the public-sector, Methods is now building a significant private sector client portfolio. Methods was acquired by the Alten Group in early 2022. Methods is currently recruiting for a DevSecOps Engineer (Cyber) Consultant to join our team on a permanent basis. This role will be based on-site Requirements Specialised in cloud management of platforms, applications, data and supporting infrastructure in the capacity of a system administrator of either the AWS or Azure platform Developing automation to support continuous delivery of changes using technologies on the Azure platform. Developing infrastructure as a service configuration to automate the creation of infrastructure and platforms to host test and production systems Building and setting up new development tools and infrastructure Understanding the needs of stakeholders and conveying this to developers Working on ways to automate and improve development and release processes Testing and examining code written by others and analysing results Ensuring that systems are safe and secure against cybersecurity threats Familiar with the NCSC secure design principles Familiar with managing security of cloud platforms, including administration of secrets, tokens and certificates. Working with Architects, Data and Software Engineers to ensure that development follows established processes and works as intended Planning out projects and being involved in project management decisions Responsible for the design, security, and maintenance of cloud infrastructure Making and guiding effective decisions, explaining clearly how the decision has been reached with the ability to understand and resolve technical disputes across varying levels of complexity and risk. Communicating effectively across organisational, technical and political boundaries to understand the context and how to make complex and technical information and language simple and accessible for non-technical audiences. Understanding of how to expose data from systems (for example, through APIs), link data from multiple systems and deliver streaming services. Ensuring that risks associated with deployment are adequately understood and documented. Ideal Candidates will demonstrate: Experience working across cyber security teams would be beneficial Solid infrastructure design experience for both on-prem and cloud, to implement or migrate applications and databases to Azure. Solid experience in a range of technologies and be able to make assessments as to what is best to be used for the projects and the organisation. As well as suggest and develop innovative approaches within constrained projects and environments. Strong experience in software development, change/release management processes, and technical governance to fully understand the typical life cycle and maintenance of live systems. Ability to work with containerization platforms such as Kubernetes, PKS, Docker; cloud provisioning software, including Ansible, Terraform, Azure blueprints, ARM templates; and application performance analysis and monitoring Experience of functional and non-functional testing including automated deployment experience of applications and databases. Understanding of the government digital service manual and standards across Discovery/Alpha/Beta/Live phases. Understanding of SaaS, PaaS, IaaS technologies and the implications of their use compared with bespoke development. Being able to provide training, support and mentoring to the wider business Knowledge of how to ensure that risks associated with deployment are adequately understood and documented. Desirable Skills & Experience: Worked as part of a system support team, managing live systems and triaging & resolving incidents to resolution including management of known defects and issues. Worked as part of multi-disciplinary project team. Experience with Terraform to deploy cloud infrastructure in Azure Experience with Azure DevOps and GitHub Actions to automate the build and deploy of containerised applications Experience implementing effective instrumentation to monitor applications Experience implementing SAST and DAST tooling in deployment pipelines like Trivvy and SonarQube Experience of both AWS and Azure Dev Ops tooling. This role will require you to have or be willing to go through Security Clearance. As part of the onboarding process candidates will be asked to complete a Baseline Personnel Security Standard; details of the evidence required to apply may be found on the government website Gov.UK. If you are unable to meet this and any associated criteria, then your employment may be delayed, or rejected. Details of this will be discussed with you at interview. Benefits Methods is passionate about its people; we want our colleagues to develop the things they are good at and enjoy. By joining us you can expect Autonomy to develop and grow your skills and experience Be part of exciting project work that is making a difference in society Strong, inspiring and thought-provoking leadership A supportive and collaborative environment Development - access to LinkedIn Learning, a management development programme, and training Wellness - 24/7 confidential employee assistance programme Flexible Working - including home working and part time Social - office parties, breakfast Tuesdays, monthly pizza Thursdays, Thirsty Thursdays, and commitment to charitable causes Time Off - 25 days of annual leave a year, plus bank holidays, with the option to buy 5 extra days each year Volunteering - 2 paid days per year to volunteer in our local communities or within a charity organisation Pension - Salary Exchange Scheme with 4% employer contribution and 5% employee contribution Discretionary Company Bonus - based on company and individual performance Life Assurance - of 4 times base salary Private Medical Insurance - which is non-contributory (spouse and dependants included) Worldwide Travel Insurance - which is non-contributory (spouse and dependants included) Enhanced Maternity and Paternity Pay Travel - season ticket loan, cycle to work scheme For a full list of benefits please visit our website
Request Technology - Craig Johnson
Chicago, Illinois
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Company is currently seeking an Information Technology Internal Auditor. Candidate will support independent assessments of the Information Technology and Security environment, risk management, and other objectives as needed. The role is responsible for determining the sufficiency of management's controls and activities related to the management of regulatory, operational, and strategic risks and presenting recommendations for improvements to the engagement team. Responsibilities: Support the team on delivery of assigned audits within the annual audit plan. Support the team confirming a professional auditee experience. Owning the audit quality, accuracy of results, and delivery in a timely manner. Proactively identify regulatory, operational, and/or strategic risks to the organization and bring them to your engagement team. Evaluate exceptions or inefficient practices for root causes and propose advice and recommendations for achievable solutions. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, change management, security), engagement and alignment of change initiatives to business objectives. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Ability to understand professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and control. Keeping current on best practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Qualifications Ability to communicate clearly and effectively, both orally and in writing, including the ability to handle potentially sensitive situations and discussions. Strong problem solving and analytical capabilities. Demonstrated ability to gather, analyze, and evaluate facts, and prepare and present concise oral and written reports. Ability to work independently or as part of a team, prioritizing multiple audit assignments to simultaneously complete each in a timely fashion. [Preferred] Experience working in a complex, fast paced environment. [Preferred] Consulting and/or accounting firm experience. [Preferred] Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). [Preferred] Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). [Required] Microsoft Office applications [Preferred] Familiarity with security tools such as: CyberArk, Splunk, SailPoint [Preferred] Familiarity with change management tools such as: ServiceNow, Jira, Confluence, GitHub [Preferred] Familiarity with databases such as: Oracle, DB2, SQL [Preferred] Familiarity with cloud based solutions: AWS, Workday [Preferred] Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software Education: [Required] Bachelors degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. [Required] 2+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. [Preferred] Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent.
14/01/2025
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Company is currently seeking an Information Technology Internal Auditor. Candidate will support independent assessments of the Information Technology and Security environment, risk management, and other objectives as needed. The role is responsible for determining the sufficiency of management's controls and activities related to the management of regulatory, operational, and strategic risks and presenting recommendations for improvements to the engagement team. Responsibilities: Support the team on delivery of assigned audits within the annual audit plan. Support the team confirming a professional auditee experience. Owning the audit quality, accuracy of results, and delivery in a timely manner. Proactively identify regulatory, operational, and/or strategic risks to the organization and bring them to your engagement team. Evaluate exceptions or inefficient practices for root causes and propose advice and recommendations for achievable solutions. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, change management, security), engagement and alignment of change initiatives to business objectives. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Ability to understand professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and control. Keeping current on best practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Qualifications Ability to communicate clearly and effectively, both orally and in writing, including the ability to handle potentially sensitive situations and discussions. Strong problem solving and analytical capabilities. Demonstrated ability to gather, analyze, and evaluate facts, and prepare and present concise oral and written reports. Ability to work independently or as part of a team, prioritizing multiple audit assignments to simultaneously complete each in a timely fashion. [Preferred] Experience working in a complex, fast paced environment. [Preferred] Consulting and/or accounting firm experience. [Preferred] Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). [Preferred] Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). [Required] Microsoft Office applications [Preferred] Familiarity with security tools such as: CyberArk, Splunk, SailPoint [Preferred] Familiarity with change management tools such as: ServiceNow, Jira, Confluence, GitHub [Preferred] Familiarity with databases such as: Oracle, DB2, SQL [Preferred] Familiarity with cloud based solutions: AWS, Workday [Preferred] Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software Education: [Required] Bachelors degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. [Required] 2+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. [Preferred] Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent.
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Company is currently seeking an Information Technology Internal Auditor. Candidate will support independent assessments of the Information Technology and Security environment, risk management, and other objectives as needed. The role is responsible for determining the sufficiency of management's controls and activities related to the management of regulatory, operational, and strategic risks and presenting recommendations for improvements to the engagement team. Responsibilities: Support the team on delivery of assigned audits within the annual audit plan. Support the team confirming a professional auditee experience. Owning the audit quality, accuracy of results, and delivery in a timely manner. Proactively identify regulatory, operational, and/or strategic risks to the organization and bring them to your engagement team. Evaluate exceptions or inefficient practices for root causes and propose advice and recommendations for achievable solutions. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, change management, security), engagement and alignment of change initiatives to business objectives. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Ability to understand professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and control. Keeping current on best practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Qualifications Ability to communicate clearly and effectively, both orally and in writing, including the ability to handle potentially sensitive situations and discussions. Strong problem solving and analytical capabilities. Demonstrated ability to gather, analyze, and evaluate facts, and prepare and present concise oral and written reports. Ability to work independently or as part of a team, prioritizing multiple audit assignments to simultaneously complete each in a timely fashion. [Preferred] Experience working in a complex, fast paced environment. [Preferred] Consulting and/or accounting firm experience. [Preferred] Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). [Preferred] Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). [Required] Microsoft Office applications [Preferred] Familiarity with security tools such as: CyberArk, Splunk, SailPoint [Preferred] Familiarity with change management tools such as: ServiceNow, Jira, Confluence, GitHub [Preferred] Familiarity with databases such as: Oracle, DB2, SQL [Preferred] Familiarity with cloud based solutions: AWS, Workday [Preferred] Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software Education: [Required] Bachelors degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. [Required] 2+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. [Preferred] Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent.
13/01/2025
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Company is currently seeking an Information Technology Internal Auditor. Candidate will support independent assessments of the Information Technology and Security environment, risk management, and other objectives as needed. The role is responsible for determining the sufficiency of management's controls and activities related to the management of regulatory, operational, and strategic risks and presenting recommendations for improvements to the engagement team. Responsibilities: Support the team on delivery of assigned audits within the annual audit plan. Support the team confirming a professional auditee experience. Owning the audit quality, accuracy of results, and delivery in a timely manner. Proactively identify regulatory, operational, and/or strategic risks to the organization and bring them to your engagement team. Evaluate exceptions or inefficient practices for root causes and propose advice and recommendations for achievable solutions. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, change management, security), engagement and alignment of change initiatives to business objectives. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Ability to understand professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and control. Keeping current on best practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Qualifications Ability to communicate clearly and effectively, both orally and in writing, including the ability to handle potentially sensitive situations and discussions. Strong problem solving and analytical capabilities. Demonstrated ability to gather, analyze, and evaluate facts, and prepare and present concise oral and written reports. Ability to work independently or as part of a team, prioritizing multiple audit assignments to simultaneously complete each in a timely fashion. [Preferred] Experience working in a complex, fast paced environment. [Preferred] Consulting and/or accounting firm experience. [Preferred] Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). [Preferred] Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). [Required] Microsoft Office applications [Preferred] Familiarity with security tools such as: CyberArk, Splunk, SailPoint [Preferred] Familiarity with change management tools such as: ServiceNow, Jira, Confluence, GitHub [Preferred] Familiarity with databases such as: Oracle, DB2, SQL [Preferred] Familiarity with cloud based solutions: AWS, Workday [Preferred] Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software Education: [Required] Bachelors degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. [Required] 2+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. [Preferred] Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent.
Are you a passionate Full Stack Web Developer looking to elevate your career? An esteemed Midlands-based automotive client is expanding their team and is in search of a talented individual to join their ranks. This role offers the chance to work with cutting-edge technology on projects that include Cybersecurity, Zero Emission Vehicles, and connectivity, ensuring that your work has a meaningful impact on the future of the automotive industry. The company prides itself on fostering a culture of internal promotion and career development, providing a clear path for professional growth. As a valued team member, you will collaborate with a diverse group of engineers, including Embedded Software and Firmware Engineers, to deliver high-quality solutions. Your responsibilities will encompass writing code for both the front and Back End, peer reviewing code, and contributing to testing and documentation. The ideal candidate will possess a robust understanding of full web development and demonstrate proficiency in the following core skills: - PHP/JavaScript/HTML/SQL: Mastery of these foundational web technologies. - Object-Oriented Languages/Principles: Strong grasp of OO concepts. - Laravel/Eloquent ORM: Experience with this PHP framework and ORM. - VueJS: Competence in this progressive JavaScript framework. - REST Architecture: Knowledge of RESTful services and APIs. - MVC: Familiarity with the Model-View-Controller design pattern. - Agile JIRA Development: Experience in agile methodologies and JIRA. - Test-Driven Development: Commitment to writing tests as part of the development process. - UNIX Shell: Proficiency in UNIX Shell Scripting. - Source Control (preferably Git): Skilled in version control systems. This role not only offers the chance to work on innovative projects but also provides a supportive environment where your skills and career can flourish. If you are ready to take the next step in your career and contribute to groundbreaking automotive advancements, this position is tailored for you. (Sponsorship available for Skilled Worker Visa). WA Consultants is an Employment Business and an Employment Agency as described within The Conduct of Employment Agencies and Employment Businesses Regulations 2003.
13/01/2025
Full time
Are you a passionate Full Stack Web Developer looking to elevate your career? An esteemed Midlands-based automotive client is expanding their team and is in search of a talented individual to join their ranks. This role offers the chance to work with cutting-edge technology on projects that include Cybersecurity, Zero Emission Vehicles, and connectivity, ensuring that your work has a meaningful impact on the future of the automotive industry. The company prides itself on fostering a culture of internal promotion and career development, providing a clear path for professional growth. As a valued team member, you will collaborate with a diverse group of engineers, including Embedded Software and Firmware Engineers, to deliver high-quality solutions. Your responsibilities will encompass writing code for both the front and Back End, peer reviewing code, and contributing to testing and documentation. The ideal candidate will possess a robust understanding of full web development and demonstrate proficiency in the following core skills: - PHP/JavaScript/HTML/SQL: Mastery of these foundational web technologies. - Object-Oriented Languages/Principles: Strong grasp of OO concepts. - Laravel/Eloquent ORM: Experience with this PHP framework and ORM. - VueJS: Competence in this progressive JavaScript framework. - REST Architecture: Knowledge of RESTful services and APIs. - MVC: Familiarity with the Model-View-Controller design pattern. - Agile JIRA Development: Experience in agile methodologies and JIRA. - Test-Driven Development: Commitment to writing tests as part of the development process. - UNIX Shell: Proficiency in UNIX Shell Scripting. - Source Control (preferably Git): Skilled in version control systems. This role not only offers the chance to work on innovative projects but also provides a supportive environment where your skills and career can flourish. If you are ready to take the next step in your career and contribute to groundbreaking automotive advancements, this position is tailored for you. (Sponsorship available for Skilled Worker Visa). WA Consultants is an Employment Business and an Employment Agency as described within The Conduct of Employment Agencies and Employment Businesses Regulations 2003.
Permanent Staffordshire Digital Data and Technology (DDaT) £53,688 + Package. + On call rates. 3 days a week* - Hybrid Stafford. Must live 1 hour from Stafford due to On call/standby rota Staffordshire Police is dedicated to providing outstanding service for the county's residents, businesses, and visitors. As a dynamic organisation, they adapt to modern policing needs and are committed to continuous improvement. Everyone in the force plays a crucial role in shaping the future of Staffordshire Police. Are you interested in helping transform and support their new and changing technology needs? About you; Staffordshire Police are looking for an experienced Cyber Security Engineer to join them and help ensuring the security, integrity, availability and performance of the Force's network and communications infrastructure in live operational use; As the Cyber Security Engineer you will be responsible for the management configuration and support of all IT security measures, such as system logs, Firewall policies, virus protection, Internet access, encryption, PKI, confidential systems, identity management and gateways. You will have a working knowledge of the following Skills and Experience; Essentials; Substantial experience in an IT Cyber Security administration role. Competent in the configuration of Microsoft products including Defender, Intune, Azure including Sentinel. Experience in anti-virus and endpoint security. Experience in Secure Web Gateways. Below qualifications or a Computer based university degree. Microsoft Security Operations Analyst/Sentinel (SC-200). Microsoft 365 Security Administrator (MS-500). Microsoft Azure Security Technologies (AZ-500). CompTIA A+/Security +/ITF+ Desirables; NESSUS application or equivalent. Experience working within a Security Operations Centre (SOC). Member of the UK Cyber Security Council. BCS - Foundation Certificate in Information Security Management Principles. ISACA - Information Technology Certified Associate. IT Governance - Certified Cyber Security Foundation Training Course. EC Council - Network, Ethical Hacking & Digital Forensics Essentials. (ISC)2 - Certified in Cybersecurity. SANS/GIAC - Security Fundamentals & Security Essentials. APMG - IT Security Foundation. The Cyber Scheme - Cyber Scheme Foundation Level. How to Apply If you would like to discuss further, then please apply with your up to date CV, and visit our dedicated microsite to understand more about the challenge and the opportunities that await. Talent International UK Limited and it's subsidary Rethink Digital Gurus Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this opportunity, you accept the T&C's, Privacy Policy and Disclaimers which can be found at our website
13/01/2025
Full time
Permanent Staffordshire Digital Data and Technology (DDaT) £53,688 + Package. + On call rates. 3 days a week* - Hybrid Stafford. Must live 1 hour from Stafford due to On call/standby rota Staffordshire Police is dedicated to providing outstanding service for the county's residents, businesses, and visitors. As a dynamic organisation, they adapt to modern policing needs and are committed to continuous improvement. Everyone in the force plays a crucial role in shaping the future of Staffordshire Police. Are you interested in helping transform and support their new and changing technology needs? About you; Staffordshire Police are looking for an experienced Cyber Security Engineer to join them and help ensuring the security, integrity, availability and performance of the Force's network and communications infrastructure in live operational use; As the Cyber Security Engineer you will be responsible for the management configuration and support of all IT security measures, such as system logs, Firewall policies, virus protection, Internet access, encryption, PKI, confidential systems, identity management and gateways. You will have a working knowledge of the following Skills and Experience; Essentials; Substantial experience in an IT Cyber Security administration role. Competent in the configuration of Microsoft products including Defender, Intune, Azure including Sentinel. Experience in anti-virus and endpoint security. Experience in Secure Web Gateways. Below qualifications or a Computer based university degree. Microsoft Security Operations Analyst/Sentinel (SC-200). Microsoft 365 Security Administrator (MS-500). Microsoft Azure Security Technologies (AZ-500). CompTIA A+/Security +/ITF+ Desirables; NESSUS application or equivalent. Experience working within a Security Operations Centre (SOC). Member of the UK Cyber Security Council. BCS - Foundation Certificate in Information Security Management Principles. ISACA - Information Technology Certified Associate. IT Governance - Certified Cyber Security Foundation Training Course. EC Council - Network, Ethical Hacking & Digital Forensics Essentials. (ISC)2 - Certified in Cybersecurity. SANS/GIAC - Security Fundamentals & Security Essentials. APMG - IT Security Foundation. The Cyber Scheme - Cyber Scheme Foundation Level. How to Apply If you would like to discuss further, then please apply with your up to date CV, and visit our dedicated microsite to understand more about the challenge and the opportunities that await. Talent International UK Limited and it's subsidary Rethink Digital Gurus Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this opportunity, you accept the T&C's, Privacy Policy and Disclaimers which can be found at our website
Request Technology - Craig Johnson
Chicago, Illinois
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a Sr. Cyber Defense Threat Engineer. Candidate will be responsible for the in-depth analysis and response to security incidents escalated from Tier 1 analysts. This role involves investigating complex security events, identifying potential threats, and implementing measures to mitigate risks. The Tier 2 analyst plays a critical role in maintaining the security posture of the organization by leveraging advanced threat intelligence and incident response techniques. Responsibilities: Monitor security alerts and events from various security tools and technologies. Perform advanced analysis of security logs, network traffic, and endpoint data. Review and respond to security incidents escalated by Tier 1 analysts. Conduct thorough investigations to determine the scope and impact of security incidents. Implement containment, eradication, and recovery measures for confirmed incidents. Document and report findings, actions taken, and lessons learned. Work closely with threat intelligence team to enhance detection and response capabilities. Collaborate with other security team members and IT staff to address security incidents. Provide guidance and support to Tier 1 analysts on complex security issues. Communicate effectively with stakeholders regarding security incidents and mitigation efforts. Participate in post-incident reviews to identify areas for improvement. Stay current with the latest cybersecurity trends, threats, and technologies. Contribute to the development and enhancement of SOC processes and procedures. Qualifications: Proven team player will be working primarily with other staff members, on both long-term projects and rapid response under tight deadlines. Team Leadership experience, taking initiative; providing and following through on solutions across various skillsets. Knowledge and experience implementing controls based on security regulation (eg, NIST Cyber Security Framework) is a plus. Effective and excellent oral and written communication, analytical, judgment and consultation skills. Ability to effectively communicate in both formal and informal review settings with all levels of management. Ability to work with local and remote IT staff/management, vendors and consultants. Ability to work independently and possess strong project management skills. Log analysis and security content development in SIEM solutions (Splunk, IBM QRadar, LogRhythm, etc.). SOAR products such as Splunk SOAR, Cortex XSOAR, FortiSOAR, etc. SOAR playbook development experience is a plus. Endpoint detection and response tools, eg CrowdStrike, SentinelOne, Microsoft Defender, etc. Incident Response playbook development, managing security incident analysis and remediation. Network-based preventative and detective technologies (IDS/IPS, Firewalls, Proxy Servers) Standard technical writing tools including MS Word, Excel, Project and Visio Vulnerability assessment tools (Qualys, Nessus, nmap, etc.). Directory services, LDAP, and their inherent security (Active Directory, CA Directory, Entra ID). Client Server platforms including Sun Solaris, Windows, Linux. Operating system hardening procedures (Solaris, Linux, Windows, etc.) Web Application Firewalls. Cloud based security tools and techniques (AWS, Azure, GCP, etc.) Scripting and development activities to appropriately leverage Application Programing Interfaces (APIs) to optimize integrations between disparate security monitoring and analysis devices. Education and Experience: Bachelor's degree in cybersecurity, computer science, or another related field. Minimum three years of information security experience, preferably in the financial services industry. Hands-on security operations experience including interdisciplinary experience with two or more of the following: Cyber Threat Analysis, Incident Response, Application Security, Operating Systems Security, Networking, Programming languages, Incident Response. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives. Familiarity with computer network exploitation and network attack methodologies while maintaining an understanding of the relationship these activities have with the financial services industry and critical infrastructure. Industry knowledge of leading-edge security technologies and methods. Shift work and working in an on-call response capacity is required including availability for 24 x 7 on-call support responsibilities. Previous people/project management experience is a plus. Strongly prefer at least one of the following certifications: CISSP, GCIA, GCIH, CHFI, GCFA, CASP+.
10/01/2025
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a Sr. Cyber Defense Threat Engineer. Candidate will be responsible for the in-depth analysis and response to security incidents escalated from Tier 1 analysts. This role involves investigating complex security events, identifying potential threats, and implementing measures to mitigate risks. The Tier 2 analyst plays a critical role in maintaining the security posture of the organization by leveraging advanced threat intelligence and incident response techniques. Responsibilities: Monitor security alerts and events from various security tools and technologies. Perform advanced analysis of security logs, network traffic, and endpoint data. Review and respond to security incidents escalated by Tier 1 analysts. Conduct thorough investigations to determine the scope and impact of security incidents. Implement containment, eradication, and recovery measures for confirmed incidents. Document and report findings, actions taken, and lessons learned. Work closely with threat intelligence team to enhance detection and response capabilities. Collaborate with other security team members and IT staff to address security incidents. Provide guidance and support to Tier 1 analysts on complex security issues. Communicate effectively with stakeholders regarding security incidents and mitigation efforts. Participate in post-incident reviews to identify areas for improvement. Stay current with the latest cybersecurity trends, threats, and technologies. Contribute to the development and enhancement of SOC processes and procedures. Qualifications: Proven team player will be working primarily with other staff members, on both long-term projects and rapid response under tight deadlines. Team Leadership experience, taking initiative; providing and following through on solutions across various skillsets. Knowledge and experience implementing controls based on security regulation (eg, NIST Cyber Security Framework) is a plus. Effective and excellent oral and written communication, analytical, judgment and consultation skills. Ability to effectively communicate in both formal and informal review settings with all levels of management. Ability to work with local and remote IT staff/management, vendors and consultants. Ability to work independently and possess strong project management skills. Log analysis and security content development in SIEM solutions (Splunk, IBM QRadar, LogRhythm, etc.). SOAR products such as Splunk SOAR, Cortex XSOAR, FortiSOAR, etc. SOAR playbook development experience is a plus. Endpoint detection and response tools, eg CrowdStrike, SentinelOne, Microsoft Defender, etc. Incident Response playbook development, managing security incident analysis and remediation. Network-based preventative and detective technologies (IDS/IPS, Firewalls, Proxy Servers) Standard technical writing tools including MS Word, Excel, Project and Visio Vulnerability assessment tools (Qualys, Nessus, nmap, etc.). Directory services, LDAP, and their inherent security (Active Directory, CA Directory, Entra ID). Client Server platforms including Sun Solaris, Windows, Linux. Operating system hardening procedures (Solaris, Linux, Windows, etc.) Web Application Firewalls. Cloud based security tools and techniques (AWS, Azure, GCP, etc.) Scripting and development activities to appropriately leverage Application Programing Interfaces (APIs) to optimize integrations between disparate security monitoring and analysis devices. Education and Experience: Bachelor's degree in cybersecurity, computer science, or another related field. Minimum three years of information security experience, preferably in the financial services industry. Hands-on security operations experience including interdisciplinary experience with two or more of the following: Cyber Threat Analysis, Incident Response, Application Security, Operating Systems Security, Networking, Programming languages, Incident Response. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives. Familiarity with computer network exploitation and network attack methodologies while maintaining an understanding of the relationship these activities have with the financial services industry and critical infrastructure. Industry knowledge of leading-edge security technologies and methods. Shift work and working in an on-call response capacity is required including availability for 24 x 7 on-call support responsibilities. Previous people/project management experience is a plus. Strongly prefer at least one of the following certifications: CISSP, GCIA, GCIH, CHFI, GCFA, CASP+.
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a Sr. Cyber Defense Threat Engineer. Candidate will be responsible for the in-depth analysis and response to security incidents escalated from Tier 1 analysts. This role involves investigating complex security events, identifying potential threats, and implementing measures to mitigate risks. The Tier 2 analyst plays a critical role in maintaining the security posture of the organization by leveraging advanced threat intelligence and incident response techniques. Responsibilities: Monitor security alerts and events from various security tools and technologies. Perform advanced analysis of security logs, network traffic, and endpoint data. Review and respond to security incidents escalated by Tier 1 analysts. Conduct thorough investigations to determine the scope and impact of security incidents. Implement containment, eradication, and recovery measures for confirmed incidents. Document and report findings, actions taken, and lessons learned. Work closely with threat intelligence team to enhance detection and response capabilities. Collaborate with other security team members and IT staff to address security incidents. Provide guidance and support to Tier 1 analysts on complex security issues. Communicate effectively with stakeholders regarding security incidents and mitigation efforts. Participate in post-incident reviews to identify areas for improvement. Stay current with the latest cybersecurity trends, threats, and technologies. Contribute to the development and enhancement of SOC processes and procedures. Qualifications: Proven team player will be working primarily with other staff members, on both long-term projects and rapid response under tight deadlines. Team Leadership experience, taking initiative; providing and following through on solutions across various skillsets. Knowledge and experience implementing controls based on security regulation (eg, NIST Cyber Security Framework) is a plus. Effective and excellent oral and written communication, analytical, judgment and consultation skills. Ability to effectively communicate in both formal and informal review settings with all levels of management. Ability to work with local and remote IT staff/management, vendors and consultants. Ability to work independently and possess strong project management skills. Log analysis and security content development in SIEM solutions (Splunk, IBM QRadar, LogRhythm, etc.). SOAR products such as Splunk SOAR, Cortex XSOAR, FortiSOAR, etc. SOAR playbook development experience is a plus. Endpoint detection and response tools, eg CrowdStrike, SentinelOne, Microsoft Defender, etc. Incident Response playbook development, managing security incident analysis and remediation. Network-based preventative and detective technologies (IDS/IPS, Firewalls, Proxy Servers) Standard technical writing tools including MS Word, Excel, Project and Visio Vulnerability assessment tools (Qualys, Nessus, nmap, etc.). Directory services, LDAP, and their inherent security (Active Directory, CA Directory, Entra ID). Client Server platforms including Sun Solaris, Windows, Linux. Operating system hardening procedures (Solaris, Linux, Windows, etc.) Web Application Firewalls. Cloud based security tools and techniques (AWS, Azure, GCP, etc.) Scripting and development activities to appropriately leverage Application Programing Interfaces (APIs) to optimize integrations between disparate security monitoring and analysis devices. Education and Experience: Bachelor's degree in cybersecurity, computer science, or another related field. Minimum three years of information security experience, preferably in the financial services industry. Hands-on security operations experience including interdisciplinary experience with two or more of the following: Cyber Threat Analysis, Incident Response, Application Security, Operating Systems Security, Networking, Programming languages, Incident Response. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives. Familiarity with computer network exploitation and network attack methodologies while maintaining an understanding of the relationship these activities have with the financial services industry and critical infrastructure. Industry knowledge of leading-edge security technologies and methods. Shift work and working in an on-call response capacity is required including availability for 24 x 7 on-call support responsibilities. Previous people/project management experience is a plus. Strongly prefer at least one of the following certifications: CISSP, GCIA, GCIH, CHFI, GCFA, CASP+.
10/01/2025
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a Sr. Cyber Defense Threat Engineer. Candidate will be responsible for the in-depth analysis and response to security incidents escalated from Tier 1 analysts. This role involves investigating complex security events, identifying potential threats, and implementing measures to mitigate risks. The Tier 2 analyst plays a critical role in maintaining the security posture of the organization by leveraging advanced threat intelligence and incident response techniques. Responsibilities: Monitor security alerts and events from various security tools and technologies. Perform advanced analysis of security logs, network traffic, and endpoint data. Review and respond to security incidents escalated by Tier 1 analysts. Conduct thorough investigations to determine the scope and impact of security incidents. Implement containment, eradication, and recovery measures for confirmed incidents. Document and report findings, actions taken, and lessons learned. Work closely with threat intelligence team to enhance detection and response capabilities. Collaborate with other security team members and IT staff to address security incidents. Provide guidance and support to Tier 1 analysts on complex security issues. Communicate effectively with stakeholders regarding security incidents and mitigation efforts. Participate in post-incident reviews to identify areas for improvement. Stay current with the latest cybersecurity trends, threats, and technologies. Contribute to the development and enhancement of SOC processes and procedures. Qualifications: Proven team player will be working primarily with other staff members, on both long-term projects and rapid response under tight deadlines. Team Leadership experience, taking initiative; providing and following through on solutions across various skillsets. Knowledge and experience implementing controls based on security regulation (eg, NIST Cyber Security Framework) is a plus. Effective and excellent oral and written communication, analytical, judgment and consultation skills. Ability to effectively communicate in both formal and informal review settings with all levels of management. Ability to work with local and remote IT staff/management, vendors and consultants. Ability to work independently and possess strong project management skills. Log analysis and security content development in SIEM solutions (Splunk, IBM QRadar, LogRhythm, etc.). SOAR products such as Splunk SOAR, Cortex XSOAR, FortiSOAR, etc. SOAR playbook development experience is a plus. Endpoint detection and response tools, eg CrowdStrike, SentinelOne, Microsoft Defender, etc. Incident Response playbook development, managing security incident analysis and remediation. Network-based preventative and detective technologies (IDS/IPS, Firewalls, Proxy Servers) Standard technical writing tools including MS Word, Excel, Project and Visio Vulnerability assessment tools (Qualys, Nessus, nmap, etc.). Directory services, LDAP, and their inherent security (Active Directory, CA Directory, Entra ID). Client Server platforms including Sun Solaris, Windows, Linux. Operating system hardening procedures (Solaris, Linux, Windows, etc.) Web Application Firewalls. Cloud based security tools and techniques (AWS, Azure, GCP, etc.) Scripting and development activities to appropriately leverage Application Programing Interfaces (APIs) to optimize integrations between disparate security monitoring and analysis devices. Education and Experience: Bachelor's degree in cybersecurity, computer science, or another related field. Minimum three years of information security experience, preferably in the financial services industry. Hands-on security operations experience including interdisciplinary experience with two or more of the following: Cyber Threat Analysis, Incident Response, Application Security, Operating Systems Security, Networking, Programming languages, Incident Response. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives. Familiarity with computer network exploitation and network attack methodologies while maintaining an understanding of the relationship these activities have with the financial services industry and critical infrastructure. Industry knowledge of leading-edge security technologies and methods. Shift work and working in an on-call response capacity is required including availability for 24 x 7 on-call support responsibilities. Previous people/project management experience is a plus. Strongly prefer at least one of the following certifications: CISSP, GCIA, GCIH, CHFI, GCFA, CASP+.
Lead Validation Engineer - Controls & Automation Are you ready to lead validation efforts and work on cutting-edge control and automation systems? Do you thrive in ensuring the safety, security, and reliability of systems while mentoring a talented team? I'm working with a leading company seeking a Lead Validation Engineer to take charge of their validation activities for automation products and systems. You'll play a crucial role in ensuring compliance with industry standards, improving validation processes, and leading automated test executions. What You'll Do: . Take ownership of validation activities for control and automation systems, ensuring they adhere to industry standards (ANSI/ISA18.2, ISA-95, and IEC62443). . Design and implement detailed test plans and specifications to guarantee product reliability and safety. . Optimise validation processes using automated testing tools like JIRA XRAY, Selenium, or similar. . Collaborate closely with development and cross-functional teams to resolve technical challenges and align validation activities with customer expectations. . Provide mentorship to validation engineers, fostering growth and promoting best practices. . Maintain comprehensive documentation on validation processes, test outcomes, and corrective actions. . Continuously refine and improve validation tools and methodologies for increased efficiency. What You Bring: . A degree in Engineering, Computer Science, or a related field. . Industry-recognised certifications (eg ISTQB/OT Cybersecurity). . Deep expertise in OT technologies, SCADA/DCS systems, and the Purdue model. . Solid background in validation engineering, particularly in complex control systems. . Hands-on experience with automated testing tools. . A thorough understanding of industry standards for automation and control validation . Industry experience in sectors like Power, Marine, Oil & Gas, or similar. . Knowledge of Cybersecurity validation and penetration testing. Salary up to £75,000 + bonus + benefits. Offices in Rugby, Warwickshire. If you're ready to take your validation engineering career to the next level, apply now for immediate consideration! Lawrence Harvey is acting as an Employment Business in regards to this position.
10/01/2025
Full time
Lead Validation Engineer - Controls & Automation Are you ready to lead validation efforts and work on cutting-edge control and automation systems? Do you thrive in ensuring the safety, security, and reliability of systems while mentoring a talented team? I'm working with a leading company seeking a Lead Validation Engineer to take charge of their validation activities for automation products and systems. You'll play a crucial role in ensuring compliance with industry standards, improving validation processes, and leading automated test executions. What You'll Do: . Take ownership of validation activities for control and automation systems, ensuring they adhere to industry standards (ANSI/ISA18.2, ISA-95, and IEC62443). . Design and implement detailed test plans and specifications to guarantee product reliability and safety. . Optimise validation processes using automated testing tools like JIRA XRAY, Selenium, or similar. . Collaborate closely with development and cross-functional teams to resolve technical challenges and align validation activities with customer expectations. . Provide mentorship to validation engineers, fostering growth and promoting best practices. . Maintain comprehensive documentation on validation processes, test outcomes, and corrective actions. . Continuously refine and improve validation tools and methodologies for increased efficiency. What You Bring: . A degree in Engineering, Computer Science, or a related field. . Industry-recognised certifications (eg ISTQB/OT Cybersecurity). . Deep expertise in OT technologies, SCADA/DCS systems, and the Purdue model. . Solid background in validation engineering, particularly in complex control systems. . Hands-on experience with automated testing tools. . A thorough understanding of industry standards for automation and control validation . Industry experience in sectors like Power, Marine, Oil & Gas, or similar. . Knowledge of Cybersecurity validation and penetration testing. Salary up to £75,000 + bonus + benefits. Offices in Rugby, Warwickshire. If you're ready to take your validation engineering career to the next level, apply now for immediate consideration! Lawrence Harvey is acting as an Employment Business in regards to this position.
Scada Engineer Initial 12 month contract + extensions 3-4 days per week Poland (onsite Warsaw or Szczecin) Fluent English and Polish Client: A leading energy company. The Instrumentation and Control team is responsible for the implementation, quality assurance and operational support for the SCADA systems of the high-voltage and substations as well as for the generation and storage systems (WTG, PV and storage) of our onshore wind farms and PV plants. As a SCADA and Network Engineer, you will be project orientated and take technical responsibility during the development and design phase of the projects as well as operational support during the subsequent operational phase by performing engineering activities, remote configurations, site implementations and managing contractors. Tasks : You will define and create technical specifications You will be responsible for reviewing the designs provided by contractors and suppliers You will design, develop and implement system interfaces You are responsible for carrying out quality and acceptance tests for contractors and ensure that these are carried out and documented in accordance with the specifications (FAT and SAT) You accompany complex commissioning activities of the suppliers and check their results You coordinate, prioritise, track and carry out troubleshooting and maintenance of the relevant systems with the operations teams Manage contractors and service providers who perform design, implementation, maintenance and troubleshooting activities for the relevant systems You will lead and drive SCADA projects to optimise monitoring and control functions and data availability You are an active member of an international team in which knowledge, experience, successes and insights are continuously shared You promote good collaboration and knowledge sharing with other teams in the renewable energy business units Qualifications : University degree or equivalent in a relevant technical or engineering discipline or equivalent experience At least 5 years of relevant work experience and experience with SCADA systems Experience with control systems, automation, SCADA, PLCs, RTUs and IEDs Experience with industrial communication protocols (especially OPC family, Modbus, IEC-104 and MMS) and their network specific behaviours Experience with the development and/or administration of networks and the setup of network components (Switches, Firewalls, ) . Certification in networking is an advantage. Experience with SCADA systems in the areas of high voltage and substations, wind turbines and/or solar plants and their infrastructure is a plus Knowledge of SQL server queries, experience managing SQL Servers is a plus Experience with Restful API for industrial data transmission is a plus Experience with VMware ESXI and installing and managing hardware is a plus Aptitude for working in a wind turbine (training provided by employer) is a plus Relevant project management skills and experience supervising contractors Ability to communicate clearly and concisely Ability to perform risk analyses and implement risk mitigation plans Ability to multi-task as needed and manage schedule according to project priority Experience or knowledge of cybersecurity requirements for critical infrastructure is a plus Expected average travel during the work week of 20%-30% Fluency in written and spoken English and Polish . Other languages such as Italian, Swedish, French, German or Spanish are a plus
09/01/2025
Project-based
Scada Engineer Initial 12 month contract + extensions 3-4 days per week Poland (onsite Warsaw or Szczecin) Fluent English and Polish Client: A leading energy company. The Instrumentation and Control team is responsible for the implementation, quality assurance and operational support for the SCADA systems of the high-voltage and substations as well as for the generation and storage systems (WTG, PV and storage) of our onshore wind farms and PV plants. As a SCADA and Network Engineer, you will be project orientated and take technical responsibility during the development and design phase of the projects as well as operational support during the subsequent operational phase by performing engineering activities, remote configurations, site implementations and managing contractors. Tasks : You will define and create technical specifications You will be responsible for reviewing the designs provided by contractors and suppliers You will design, develop and implement system interfaces You are responsible for carrying out quality and acceptance tests for contractors and ensure that these are carried out and documented in accordance with the specifications (FAT and SAT) You accompany complex commissioning activities of the suppliers and check their results You coordinate, prioritise, track and carry out troubleshooting and maintenance of the relevant systems with the operations teams Manage contractors and service providers who perform design, implementation, maintenance and troubleshooting activities for the relevant systems You will lead and drive SCADA projects to optimise monitoring and control functions and data availability You are an active member of an international team in which knowledge, experience, successes and insights are continuously shared You promote good collaboration and knowledge sharing with other teams in the renewable energy business units Qualifications : University degree or equivalent in a relevant technical or engineering discipline or equivalent experience At least 5 years of relevant work experience and experience with SCADA systems Experience with control systems, automation, SCADA, PLCs, RTUs and IEDs Experience with industrial communication protocols (especially OPC family, Modbus, IEC-104 and MMS) and their network specific behaviours Experience with the development and/or administration of networks and the setup of network components (Switches, Firewalls, ) . Certification in networking is an advantage. Experience with SCADA systems in the areas of high voltage and substations, wind turbines and/or solar plants and their infrastructure is a plus Knowledge of SQL server queries, experience managing SQL Servers is a plus Experience with Restful API for industrial data transmission is a plus Experience with VMware ESXI and installing and managing hardware is a plus Aptitude for working in a wind turbine (training provided by employer) is a plus Relevant project management skills and experience supervising contractors Ability to communicate clearly and concisely Ability to perform risk analyses and implement risk mitigation plans Ability to multi-task as needed and manage schedule according to project priority Experience or knowledge of cybersecurity requirements for critical infrastructure is a plus Expected average travel during the work week of 20%-30% Fluency in written and spoken English and Polish . Other languages such as Italian, Swedish, French, German or Spanish are a plus
Description The Network Engineer will be responsible to manage the network planning, delivery, and operations for client's offices and Tournaments. Review Network Infrastructure design and ensure all aspects of the Network deliverables (Hardware, Passive Infrastructure, Cyber Security, Monitoring and Alerting, etc.) are implemented at venues and offices according to client's requirements. Actively participate in the scope definition, procurement liaison, supplier selection and onboarding of Telco and Network suppliers. Lead the management of network infrastructure build and implementation, ensuring timely availability of components and services and including the commissioning and decommissioning of venues. Overseeing the effective and efficient provision of Network services for client's Offices, Tournaments and Events. Track the progress of network implementation, report status, issues and risks related to Network projects and operations, according to IT governance and keep counterpart aligned. Performing equipment configuration, tests, handover, monitoring and troubleshooting. Liaise and/or support with Network projects in clarifying requirements, adhering to robust change management protocol. Ensure that all information pertaining to the delivery and support of Event Network are communicated to and well understood by all parties. Deliver technical guidance, coaching & mentoring to team members, including preparation of good practice and educational material for personnel. Requirements: 8-10 years of experience in Network (routing/switching/security/wireless technologies). Experience in the Sports/major event industry is a highly recommended. Proven track record of successful delivery of complex Network projects. University degree or similar higher education, in Information Technology, Computer Science or related field. Strong IT skills and relevant knowledge in Telecom Service Providers networks, wired and wireless infrastructure design and implementation, network integration and connectivity. Should have sufficient experience in networks, protocols, design, commissioning and operation of following systems (WAN/LAN, MPLS, VPN, Routing, VLAN, VoIP, Multicast, NAC, Wireless). Technology certifications such as CCNP, CCIE, CISSP, or equivalent experience . Proven track of record of delivery of wireless networks in complex and high-density areas. Expertise in structured cabling (copper and fibre) in a heterogeneous model. Highly adept at consulting, negotiating, communicating, consensus building and facilitation. Good analytical skills and problem-solving skills. Excellent verbal and written communication, training, and presentation skills. Team Player, willing to work to tight timelines. Positive attitude, patience and persistence Fluent in English; proficiency in any other language is an asset. Willing to travel globally (up to 30%), some assignments might have a long duration (30 days or more). Perks and benefits: Health and fitness: on-site gym and other bonuses. Home office: Up to two days of home office per week if work permits and home office allowance for all. Language courses: Offered to all staff to aid personal and professional growth. Continuous learning: We care about your development and encourage internal mobility, offering a variety of training and education to help achieve it. Pension: Flexible pension benefits with generous employer contributions. Relocation assistance: A dedicated team will be on hand to support your relocation. Sustainability: We support all employees using public transport. Vacation: Maintain a healthy work/life balance with a generous vacation allowance. Volunteering: Make an impact beyond your regular role and bond with colleagues by volunteering with one of our partners. Skills Firewall Checkpoint Network engineering Security Troubleshooting project management routing VPN VLAN MPLS Job Title: Event Technology - Network Engineer Location: Zürich, Switzerland Job Type: Permanent TEKsystems, an Allegis Group company. Allegis Group AG, Aeschengraben 20, CH-4051 Basel, Switzerland. Registration No. CHE-101.865.121. TEKsystems is a company within the Allegis Group network of companies (collectively referred to as "Allegis Group"). Aerotek, Aston Carter, EASi, TEKsystems, Stamford Consultants and The Stamford Group are Allegis Group brands. If you apply, your personal data will be processed as described in the Allegis Group Online Privacy Notice available at our website. To access our Online Privacy Notice, which explains what information we may collect, use, share, and store about you, and describes your rights and choices about this, please go our website. We are part of a global network of companies and as a result, the personal data you provide will be shared within Allegis Group and transferred and processed outside the UK, Switzerland and European Economic Area subject to the protections described in the Allegis Group Online Privacy Notice. We store personal data in the UK, EEA, Switzerland and the USA. If you would like to exercise your privacy rights, please visit the "Contacting Us" section of our Online Privacy Notice on our website for details on how to contact us. To protect your privacy and security, we may take steps to verify your identity, such as a password and user ID if there is an account associated with your request, or identifying information such as your address or date of birth, before proceeding with your request. commitments under the UK Data Protection Act, EU-U.S. Privacy Shield or the Swiss-U.S. Privacy Shield.
08/01/2025
Full time
Description The Network Engineer will be responsible to manage the network planning, delivery, and operations for client's offices and Tournaments. Review Network Infrastructure design and ensure all aspects of the Network deliverables (Hardware, Passive Infrastructure, Cyber Security, Monitoring and Alerting, etc.) are implemented at venues and offices according to client's requirements. Actively participate in the scope definition, procurement liaison, supplier selection and onboarding of Telco and Network suppliers. Lead the management of network infrastructure build and implementation, ensuring timely availability of components and services and including the commissioning and decommissioning of venues. Overseeing the effective and efficient provision of Network services for client's Offices, Tournaments and Events. Track the progress of network implementation, report status, issues and risks related to Network projects and operations, according to IT governance and keep counterpart aligned. Performing equipment configuration, tests, handover, monitoring and troubleshooting. Liaise and/or support with Network projects in clarifying requirements, adhering to robust change management protocol. Ensure that all information pertaining to the delivery and support of Event Network are communicated to and well understood by all parties. Deliver technical guidance, coaching & mentoring to team members, including preparation of good practice and educational material for personnel. Requirements: 8-10 years of experience in Network (routing/switching/security/wireless technologies). Experience in the Sports/major event industry is a highly recommended. Proven track record of successful delivery of complex Network projects. University degree or similar higher education, in Information Technology, Computer Science or related field. Strong IT skills and relevant knowledge in Telecom Service Providers networks, wired and wireless infrastructure design and implementation, network integration and connectivity. Should have sufficient experience in networks, protocols, design, commissioning and operation of following systems (WAN/LAN, MPLS, VPN, Routing, VLAN, VoIP, Multicast, NAC, Wireless). Technology certifications such as CCNP, CCIE, CISSP, or equivalent experience . Proven track of record of delivery of wireless networks in complex and high-density areas. Expertise in structured cabling (copper and fibre) in a heterogeneous model. Highly adept at consulting, negotiating, communicating, consensus building and facilitation. Good analytical skills and problem-solving skills. Excellent verbal and written communication, training, and presentation skills. Team Player, willing to work to tight timelines. Positive attitude, patience and persistence Fluent in English; proficiency in any other language is an asset. Willing to travel globally (up to 30%), some assignments might have a long duration (30 days or more). Perks and benefits: Health and fitness: on-site gym and other bonuses. Home office: Up to two days of home office per week if work permits and home office allowance for all. Language courses: Offered to all staff to aid personal and professional growth. Continuous learning: We care about your development and encourage internal mobility, offering a variety of training and education to help achieve it. Pension: Flexible pension benefits with generous employer contributions. Relocation assistance: A dedicated team will be on hand to support your relocation. Sustainability: We support all employees using public transport. Vacation: Maintain a healthy work/life balance with a generous vacation allowance. Volunteering: Make an impact beyond your regular role and bond with colleagues by volunteering with one of our partners. Skills Firewall Checkpoint Network engineering Security Troubleshooting project management routing VPN VLAN MPLS Job Title: Event Technology - Network Engineer Location: Zürich, Switzerland Job Type: Permanent TEKsystems, an Allegis Group company. Allegis Group AG, Aeschengraben 20, CH-4051 Basel, Switzerland. Registration No. CHE-101.865.121. TEKsystems is a company within the Allegis Group network of companies (collectively referred to as "Allegis Group"). Aerotek, Aston Carter, EASi, TEKsystems, Stamford Consultants and The Stamford Group are Allegis Group brands. If you apply, your personal data will be processed as described in the Allegis Group Online Privacy Notice available at our website. To access our Online Privacy Notice, which explains what information we may collect, use, share, and store about you, and describes your rights and choices about this, please go our website. We are part of a global network of companies and as a result, the personal data you provide will be shared within Allegis Group and transferred and processed outside the UK, Switzerland and European Economic Area subject to the protections described in the Allegis Group Online Privacy Notice. We store personal data in the UK, EEA, Switzerland and the USA. If you would like to exercise your privacy rights, please visit the "Contacting Us" section of our Online Privacy Notice on our website for details on how to contact us. To protect your privacy and security, we may take steps to verify your identity, such as a password and user ID if there is an account associated with your request, or identifying information such as your address or date of birth, before proceeding with your request. commitments under the UK Data Protection Act, EU-U.S. Privacy Shield or the Swiss-U.S. Privacy Shield.
*Hybrid, 3 days onsite, 2 days remote* *We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a Senior Associate, Internal Audit IT & Security. This internal auditor will need 2+ years of experience conducting risk-based information technology and security audits. This is a highly regulated financial environment, and these audits will follow AICPA, IIA, IPPF, COBIT, NIST, and CSF standards/frameworks. Responsibilities: Support the team on delivery of assigned audits within the annual audit plan. Support the team confirming a professional auditee experience. Owning the audit quality, accuracy of results, and delivery in a timely manner. Proactively identify regulatory, operational, and/or strategic risks to the organization and bring them to your engagement team. Evaluate exceptions or inefficient practices for root causes and propose advice and recommendations for achievable solutions. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, change management, security), engagement and alignment of change initiatives to business objectives. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Ability to understand professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and control. Keeping current on best practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Qualifications Bachelor's degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. 2+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent. Consulting and/or accounting firm experience. Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). Microsoft Office applications Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software
07/01/2025
Full time
*Hybrid, 3 days onsite, 2 days remote* *We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a Senior Associate, Internal Audit IT & Security. This internal auditor will need 2+ years of experience conducting risk-based information technology and security audits. This is a highly regulated financial environment, and these audits will follow AICPA, IIA, IPPF, COBIT, NIST, and CSF standards/frameworks. Responsibilities: Support the team on delivery of assigned audits within the annual audit plan. Support the team confirming a professional auditee experience. Owning the audit quality, accuracy of results, and delivery in a timely manner. Proactively identify regulatory, operational, and/or strategic risks to the organization and bring them to your engagement team. Evaluate exceptions or inefficient practices for root causes and propose advice and recommendations for achievable solutions. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, change management, security), engagement and alignment of change initiatives to business objectives. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Ability to understand professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and control. Keeping current on best practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Qualifications Bachelor's degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. 2+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent. Consulting and/or accounting firm experience. Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). Microsoft Office applications Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software
Okta Specialist Remote £450-£500 per day outside IR35 I am working with a forward-thinking organisation seeking an experienced Okta Platform Engineer or Okta Specialist to lead their Identity and Access Management (IAM) initiatives. This is an exciting opportunity to work on cutting-edge projects, improving the security and efficiency of their systems. Responsibilities Administer and optimise the Okta platform, including users, groups, and access policies. Develop integrations with internal and external applications using SSO, SAML, OIDC, and SCIM. Configure and manage multi-factor authentication (MFA) and adaptive access policies. Automate user life cycle processes using Okta Workflows or scripts. Troubleshoot and resolve Okta-related issues promptly. Collaborate with IT and security teams to align IAM strategies with business goals. Maintain clear documentation of configurations and processes. Key Skills and Experience Strong hands-on experience with Okta platform configuration and management. Deep understanding of IAM principles and protocols (eg, SAML, OIDC, SCIM). Scripting experience (eg, Python, PowerShell) and familiarity with automation tools. Knowledge of cybersecurity best practices and zero-trust security models. Strong problem-solving skills and the ability to communicate effectively with technical and non-technical stakeholders. Talent International UK Limited and it's subsidary Rethink Digital Gurus Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this opportunity, you accept the T&C's, Privacy Policy and Disclaimers which can be found on our website
23/12/2024
Project-based
Okta Specialist Remote £450-£500 per day outside IR35 I am working with a forward-thinking organisation seeking an experienced Okta Platform Engineer or Okta Specialist to lead their Identity and Access Management (IAM) initiatives. This is an exciting opportunity to work on cutting-edge projects, improving the security and efficiency of their systems. Responsibilities Administer and optimise the Okta platform, including users, groups, and access policies. Develop integrations with internal and external applications using SSO, SAML, OIDC, and SCIM. Configure and manage multi-factor authentication (MFA) and adaptive access policies. Automate user life cycle processes using Okta Workflows or scripts. Troubleshoot and resolve Okta-related issues promptly. Collaborate with IT and security teams to align IAM strategies with business goals. Maintain clear documentation of configurations and processes. Key Skills and Experience Strong hands-on experience with Okta platform configuration and management. Deep understanding of IAM principles and protocols (eg, SAML, OIDC, SCIM). Scripting experience (eg, Python, PowerShell) and familiarity with automation tools. Knowledge of cybersecurity best practices and zero-trust security models. Strong problem-solving skills and the ability to communicate effectively with technical and non-technical stakeholders. Talent International UK Limited and it's subsidary Rethink Digital Gurus Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this opportunity, you accept the T&C's, Privacy Policy and Disclaimers which can be found on our website
