Security Engineer Salary: $140k-$150k + bonus Location: Chicago, IL or Dallas, TX Hybrid: 3 days onsite, 2 days remote *We are unable to provide sponsorship for this role* Qualifications Bachelor's degree 3+ years of related experience Hands-on security operations experience including interdisciplinary experience with two or more of the following: Cyber Threat Analysis, Incident Response, Application Security, Operating Systems Security, Networking, Programming languages, Incident Response. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives. Familiarity with computer network exploitation and network attack methodologies while maintaining an understanding of the relationship these activities have with the financial services industry and critical infrastructure. Responsibilities Monitor security alerts and events from various security tools and technologies. Perform advanced analysis of security logs, network traffic, and endpoint data. Review and respond to security incidents escalated by Tier 1 analysts. Conduct thorough investigations to determine the scope and impact of security incidents. Implement containment, eradication, and recovery measures for confirmed incidents. Document and report findings, actions taken, and lessons learned.
15/01/2025
Full time
Security Engineer Salary: $140k-$150k + bonus Location: Chicago, IL or Dallas, TX Hybrid: 3 days onsite, 2 days remote *We are unable to provide sponsorship for this role* Qualifications Bachelor's degree 3+ years of related experience Hands-on security operations experience including interdisciplinary experience with two or more of the following: Cyber Threat Analysis, Incident Response, Application Security, Operating Systems Security, Networking, Programming languages, Incident Response. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives. Familiarity with computer network exploitation and network attack methodologies while maintaining an understanding of the relationship these activities have with the financial services industry and critical infrastructure. Responsibilities Monitor security alerts and events from various security tools and technologies. Perform advanced analysis of security logs, network traffic, and endpoint data. Review and respond to security incidents escalated by Tier 1 analysts. Conduct thorough investigations to determine the scope and impact of security incidents. Implement containment, eradication, and recovery measures for confirmed incidents. Document and report findings, actions taken, and lessons learned.
Security Engineer Salary: $140k-$150k + bonus Location: Chicago, IL or Dallas, TX Hybrid: 3 days onsite, 2 days remote *We are unable to provide sponsorship for this role* Qualifications Bachelor's degree 3+ years of related experience Hands-on security operations experience including interdisciplinary experience with two or more of the following: Cyber Threat Analysis, Incident Response, Application Security, Operating Systems Security, Networking, Programming languages, Incident Response. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives. Familiarity with computer network exploitation and network attack methodologies while maintaining an understanding of the relationship these activities have with the financial services industry and critical infrastructure. Responsibilities Monitor security alerts and events from various security tools and technologies. Perform advanced analysis of security logs, network traffic, and endpoint data. Review and respond to security incidents escalated by Tier 1 analysts. Conduct thorough investigations to determine the scope and impact of security incidents. Implement containment, eradication, and recovery measures for confirmed incidents. Document and report findings, actions taken, and lessons learned.
14/01/2025
Full time
Security Engineer Salary: $140k-$150k + bonus Location: Chicago, IL or Dallas, TX Hybrid: 3 days onsite, 2 days remote *We are unable to provide sponsorship for this role* Qualifications Bachelor's degree 3+ years of related experience Hands-on security operations experience including interdisciplinary experience with two or more of the following: Cyber Threat Analysis, Incident Response, Application Security, Operating Systems Security, Networking, Programming languages, Incident Response. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives. Familiarity with computer network exploitation and network attack methodologies while maintaining an understanding of the relationship these activities have with the financial services industry and critical infrastructure. Responsibilities Monitor security alerts and events from various security tools and technologies. Perform advanced analysis of security logs, network traffic, and endpoint data. Review and respond to security incidents escalated by Tier 1 analysts. Conduct thorough investigations to determine the scope and impact of security incidents. Implement containment, eradication, and recovery measures for confirmed incidents. Document and report findings, actions taken, and lessons learned.
*Hybrid, 3 days onsite, 2 days remote* *We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a Senior Associate, Internal Audit IT & Security. This internal auditor will need 2+ years of experience conducting risk-based information technology and security audits. This is a highly regulated financial environment, and these audits will follow AICPA, IIA, IPPF, COBIT, NIST, and CSF standards/frameworks. Responsibilities: Support the team on delivery of assigned audits within the annual audit plan. Support the team confirming a professional auditee experience. Owning the audit quality, accuracy of results, and delivery in a timely manner. Proactively identify regulatory, operational, and/or strategic risks to the organization and bring them to your engagement team. Evaluate exceptions or inefficient practices for root causes and propose advice and recommendations for achievable solutions. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, change management, security), engagement and alignment of change initiatives to business objectives. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Ability to understand professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and control. Keeping current on best practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Qualifications Bachelor's degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. 2+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent. Consulting and/or accounting firm experience. Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). Microsoft Office applications Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software
14/01/2025
Full time
*Hybrid, 3 days onsite, 2 days remote* *We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a Senior Associate, Internal Audit IT & Security. This internal auditor will need 2+ years of experience conducting risk-based information technology and security audits. This is a highly regulated financial environment, and these audits will follow AICPA, IIA, IPPF, COBIT, NIST, and CSF standards/frameworks. Responsibilities: Support the team on delivery of assigned audits within the annual audit plan. Support the team confirming a professional auditee experience. Owning the audit quality, accuracy of results, and delivery in a timely manner. Proactively identify regulatory, operational, and/or strategic risks to the organization and bring them to your engagement team. Evaluate exceptions or inefficient practices for root causes and propose advice and recommendations for achievable solutions. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, change management, security), engagement and alignment of change initiatives to business objectives. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Ability to understand professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and control. Keeping current on best practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Qualifications Bachelor's degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. 2+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent. Consulting and/or accounting firm experience. Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). Microsoft Office applications Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software
Lorien are currently partnered with a professional services organisation that are looking to add a IT Security Administrator into the team to be responsible for the configuration, maintaining and upgrading the company's Cyber Security Platforms while ensuring Security best practices are maintained in their expanding AWS cloud infrastructure for our customer facing systems and services. Working closely with the infrastructure, Service Desk and Software Development engineering teams to implement and manage security best practices and proactive security measures. You will also perform vulnerability scans to asses and remediate any vulnerabilities. Aside from this, you will play a key role in agreeing, implementing and monitoring employee Cyber Security awareness activities - including onboarding, training, awareness raising campaigns and promoting best practices. Experience: 2+ years in Cyber Security Proven experience as an IT Security Administrator Experience of building and maintaining security systems Experience with Vunerability scanning tools (Smartscan) Cloud Services and security controls (AWS) Designing and architecting security solutions ISO27001 or Cyber Essentials controls and compliance experience The role is paying up to £60,000 with additional attractive benefits. The role is on a hybrid basis with expectation to be in the Bradford office once or twice a month. Carbon60, Lorien & SRG - The Impellam Group STEM Portfolio are acting as an Employment Business in relation to this vacancy.
14/01/2025
Full time
Lorien are currently partnered with a professional services organisation that are looking to add a IT Security Administrator into the team to be responsible for the configuration, maintaining and upgrading the company's Cyber Security Platforms while ensuring Security best practices are maintained in their expanding AWS cloud infrastructure for our customer facing systems and services. Working closely with the infrastructure, Service Desk and Software Development engineering teams to implement and manage security best practices and proactive security measures. You will also perform vulnerability scans to asses and remediate any vulnerabilities. Aside from this, you will play a key role in agreeing, implementing and monitoring employee Cyber Security awareness activities - including onboarding, training, awareness raising campaigns and promoting best practices. Experience: 2+ years in Cyber Security Proven experience as an IT Security Administrator Experience of building and maintaining security systems Experience with Vunerability scanning tools (Smartscan) Cloud Services and security controls (AWS) Designing and architecting security solutions ISO27001 or Cyber Essentials controls and compliance experience The role is paying up to £60,000 with additional attractive benefits. The role is on a hybrid basis with expectation to be in the Bradford office once or twice a month. Carbon60, Lorien & SRG - The Impellam Group STEM Portfolio are acting as an Employment Business in relation to this vacancy.
Cyber Security Engineer - EU Institution/Public sector, Government institutions, Satellite communications, Networks, Key Management (Cryptography) Long term freelance opportunity for multiple Cyber Security Engineers to join my leading customer on one of the biggest Satellite connectivity projects across Europe. This is a 12-year project to deliver Europe's next generation of Satellite connectivity services which will ultimately benefit many countries, businesses and industries across Europe. As part of this programme, we are seeking 2 Cyber Security Engineers to be accountable for all Security aspects of this project. We are looking for broad skilled security engineers that ideally have knowledge across Networks, and Cryptography. To be successful in this role you must have past experience working in the Public sector (European/Governmental Institutions), ideally for the European Commission or for any institutions in the space industry (Thales, European space agency for example). The ideal candidate would also have knowledge/experience of the Telecommunications/connectivity industry. This role is hybrid working, with presence on-site required in Luxembourg 3 days per week minimum. Please apply immediately if you are a proven Cyber Security Engineer with experience in the Public sector/Government industry!
14/01/2025
Project-based
Cyber Security Engineer - EU Institution/Public sector, Government institutions, Satellite communications, Networks, Key Management (Cryptography) Long term freelance opportunity for multiple Cyber Security Engineers to join my leading customer on one of the biggest Satellite connectivity projects across Europe. This is a 12-year project to deliver Europe's next generation of Satellite connectivity services which will ultimately benefit many countries, businesses and industries across Europe. As part of this programme, we are seeking 2 Cyber Security Engineers to be accountable for all Security aspects of this project. We are looking for broad skilled security engineers that ideally have knowledge across Networks, and Cryptography. To be successful in this role you must have past experience working in the Public sector (European/Governmental Institutions), ideally for the European Commission or for any institutions in the space industry (Thales, European space agency for example). The ideal candidate would also have knowledge/experience of the Telecommunications/connectivity industry. This role is hybrid working, with presence on-site required in Luxembourg 3 days per week minimum. Please apply immediately if you are a proven Cyber Security Engineer with experience in the Public sector/Government industry!
Methods Business and Digital Technology Limited
Gloucester, Gloucestershire
Senior Back End Developer (Cyber) Location: On-site 5-days (Worcester/Ebbw Vale/Gloucester/Great Malvern) Company: Methods Business and Digital Technology Limited About Us: Methods is a leading £100M+ IT Services Consultancy with a rich history of transforming the public sector in the UK. With over 30 years of experience, we collaborate with central government departments and agencies to create innovative, people-centred solutions. Now expanding into the private sector, we continue to drive success through our commitment to technology, data, and a human touch. Role Overview: We are seeking a highly skilled Senior Back End Developer to join our dynamic team. The ideal candidate will have strong expertise in Python and SQL, with a proven track record of developing and maintaining robust Back End systems. You will collaborate closely with Front End developers, data engineers, and product managers to build scalable, efficient applications that meet user needs. Key Responsibilities: Design, develop, and maintain reliable Back End systems using Python and SQL. Utilize frameworks like Django, Flask, FastAPI, Asyncio, Aiohttp, and SQLAlchemy. Develop and document RESTful APIs, WebSocket, and GraphQL services. Manage and optimize databases (PostgreSQL, NATS, Redis, Min.IO). Implement cloud-based solutions using Microsoft Azure services. Ensure security protocols with OAuth and KeyCloak. Conduct testing with SonarQube, Pytest, isort, black, and bandit. Use Git for version control. Implement containerization and orchestration with Docker, Kubernetes, and Helm. Develop CI/CD pipelines with GitHub Actions and Azure DevOps Pipelines. Collaborate using Jira and Confluence. Monitor and enhance system performance with Prometheus and Grafana. Requirements: Extensive experience as a Senior Back End Developer. Proficient in Python and SQL. Skilled with frameworks and libraries: Django, Flask, FastAPI, Asyncio, Aiohttp, SQLAlchemy. Experience in developing/managing RESTful APIs, WebSocket, GraphQL services. Database management expertise (PostgreSQL, NATS, Redis, Min.IO). Hands-on with Microsoft Azure services. Security implementation knowledge (OAuth, KeyCloak). Testing proficiency (SonarQube, Pytest, isort, black, bandit). Version control with Git. Experience with Docker, Kubernetes, Helm. CI/CD processes familiarity (GitHub Actions, Azure DevOps Pipelines). Excellent collaboration and communication skills. Problem-solving abilities. Security Clearance: This role will require you to have or be willing to go through Security Clearance. As part of the onboarding process candidates will be asked to complete a Baseline Personnel Security Standard; details of the evidence required to apply may be found on the government website Gov.UK. If you are unable to meet this and any associated criteria, then your employment may be delayed, or rejected. Details of this will be discussed with you at interview. Benefits: Methods is passionate about its people; we want our colleagues to develop the things they are good at and enjoy. By joining us you can expect Autonomy to develop and grow your skills and experience Be part of exciting project work that is making a difference in society Strong, inspiring and thought-provoking leadership A supportive and collaborative environment Development - access to LinkedIn Learning, a management development programme, and training Wellness - 24/7 confidential employee assistance programme Flexible Working - including home working and part time Social - office parties, breakfast Tuesdays, monthly pizza Thursdays, Thirsty Thursdays, and commitment to charitable causes Time Off - 25 days of annual leave a year, plus bank holidays, with the option to buy 5 extra days each year Volunteering - 2 paid days per year to volunteer in our local communities or within a charity organisation Pension - Salary Exchange Scheme with 4% employer contribution and 5% employee contribution Discretionary Company Bonus - based on company and individual performance Life Assurance - of 4 times base salary Private Medical Insurance - which is non-contributory (spouse and dependants included) Worldwide Travel Insurance - which is non-contributory (spouse and dependants included) Enhanced Maternity and Paternity Pay Travel - season ticket loan, cycle to work scheme For a full list of benefits please visit our website
14/01/2025
Full time
Senior Back End Developer (Cyber) Location: On-site 5-days (Worcester/Ebbw Vale/Gloucester/Great Malvern) Company: Methods Business and Digital Technology Limited About Us: Methods is a leading £100M+ IT Services Consultancy with a rich history of transforming the public sector in the UK. With over 30 years of experience, we collaborate with central government departments and agencies to create innovative, people-centred solutions. Now expanding into the private sector, we continue to drive success through our commitment to technology, data, and a human touch. Role Overview: We are seeking a highly skilled Senior Back End Developer to join our dynamic team. The ideal candidate will have strong expertise in Python and SQL, with a proven track record of developing and maintaining robust Back End systems. You will collaborate closely with Front End developers, data engineers, and product managers to build scalable, efficient applications that meet user needs. Key Responsibilities: Design, develop, and maintain reliable Back End systems using Python and SQL. Utilize frameworks like Django, Flask, FastAPI, Asyncio, Aiohttp, and SQLAlchemy. Develop and document RESTful APIs, WebSocket, and GraphQL services. Manage and optimize databases (PostgreSQL, NATS, Redis, Min.IO). Implement cloud-based solutions using Microsoft Azure services. Ensure security protocols with OAuth and KeyCloak. Conduct testing with SonarQube, Pytest, isort, black, and bandit. Use Git for version control. Implement containerization and orchestration with Docker, Kubernetes, and Helm. Develop CI/CD pipelines with GitHub Actions and Azure DevOps Pipelines. Collaborate using Jira and Confluence. Monitor and enhance system performance with Prometheus and Grafana. Requirements: Extensive experience as a Senior Back End Developer. Proficient in Python and SQL. Skilled with frameworks and libraries: Django, Flask, FastAPI, Asyncio, Aiohttp, SQLAlchemy. Experience in developing/managing RESTful APIs, WebSocket, GraphQL services. Database management expertise (PostgreSQL, NATS, Redis, Min.IO). Hands-on with Microsoft Azure services. Security implementation knowledge (OAuth, KeyCloak). Testing proficiency (SonarQube, Pytest, isort, black, bandit). Version control with Git. Experience with Docker, Kubernetes, Helm. CI/CD processes familiarity (GitHub Actions, Azure DevOps Pipelines). Excellent collaboration and communication skills. Problem-solving abilities. Security Clearance: This role will require you to have or be willing to go through Security Clearance. As part of the onboarding process candidates will be asked to complete a Baseline Personnel Security Standard; details of the evidence required to apply may be found on the government website Gov.UK. If you are unable to meet this and any associated criteria, then your employment may be delayed, or rejected. Details of this will be discussed with you at interview. Benefits: Methods is passionate about its people; we want our colleagues to develop the things they are good at and enjoy. By joining us you can expect Autonomy to develop and grow your skills and experience Be part of exciting project work that is making a difference in society Strong, inspiring and thought-provoking leadership A supportive and collaborative environment Development - access to LinkedIn Learning, a management development programme, and training Wellness - 24/7 confidential employee assistance programme Flexible Working - including home working and part time Social - office parties, breakfast Tuesdays, monthly pizza Thursdays, Thirsty Thursdays, and commitment to charitable causes Time Off - 25 days of annual leave a year, plus bank holidays, with the option to buy 5 extra days each year Volunteering - 2 paid days per year to volunteer in our local communities or within a charity organisation Pension - Salary Exchange Scheme with 4% employer contribution and 5% employee contribution Discretionary Company Bonus - based on company and individual performance Life Assurance - of 4 times base salary Private Medical Insurance - which is non-contributory (spouse and dependants included) Worldwide Travel Insurance - which is non-contributory (spouse and dependants included) Enhanced Maternity and Paternity Pay Travel - season ticket loan, cycle to work scheme For a full list of benefits please visit our website
Methods Business and Digital Technology Limited Methods is a £100M+ IT Services Consultancy who has partnered with a range of central government departments and agencies to transform the way the public sector operates in the UK. Established over 30 years ago and UK-based, we apply our skills in transformation, delivery, and collaboration from across the Methods Group, to create end-to-end business and technical solutions that are people-centred, safe, and designed for the future. Our human touch sets us apart from other consultancies, system integrators and software houses - with people, technology, and data at the heart of who we are, we believe in creating value and sustainability through everything we do for our clients, staff, communities, and the planet. We support our clients in the success of their projects while working collaboratively to share skill sets and solve problems. At Methods we have fun while working hard; we are not afraid of making mistakes and learning from them. Predominantly focused on the public-sector, Methods is now building a significant private sector client portfolio. Methods was acquired by the Alten Group in early 2022. Methods is currently recruiting for a DevSecOps Engineer (Cyber) Consultant to join our team on a permanent basis. This role will be based on-site Requirements Specialised in cloud management of platforms, applications, data and supporting infrastructure in the capacity of a system administrator of either the AWS or Azure platform Developing automation to support continuous delivery of changes using technologies on the Azure platform. Developing infrastructure as a service configuration to automate the creation of infrastructure and platforms to host test and production systems Building and setting up new development tools and infrastructure Understanding the needs of stakeholders and conveying this to developers Working on ways to automate and improve development and release processes Testing and examining code written by others and analysing results Ensuring that systems are safe and secure against cybersecurity threats Familiar with the NCSC secure design principles Familiar with managing security of cloud platforms, including administration of secrets, tokens and certificates. Working with Architects, Data and Software Engineers to ensure that development follows established processes and works as intended Planning out projects and being involved in project management decisions Responsible for the design, security, and maintenance of cloud infrastructure Making and guiding effective decisions, explaining clearly how the decision has been reached with the ability to understand and resolve technical disputes across varying levels of complexity and risk. Communicating effectively across organisational, technical and political boundaries to understand the context and how to make complex and technical information and language simple and accessible for non-technical audiences. Understanding of how to expose data from systems (for example, through APIs), link data from multiple systems and deliver streaming services. Ensuring that risks associated with deployment are adequately understood and documented. Ideal Candidates will demonstrate: Experience working across cyber security teams would be beneficial Solid infrastructure design experience for both on-prem and cloud, to implement or migrate applications and databases to Azure. Solid experience in a range of technologies and be able to make assessments as to what is best to be used for the projects and the organisation. As well as suggest and develop innovative approaches within constrained projects and environments. Strong experience in software development, change/release management processes, and technical governance to fully understand the typical life cycle and maintenance of live systems. Ability to work with containerization platforms such as Kubernetes, PKS, Docker; cloud provisioning software, including Ansible, Terraform, Azure blueprints, ARM templates; and application performance analysis and monitoring Experience of functional and non-functional testing including automated deployment experience of applications and databases. Understanding of the government digital service manual and standards across Discovery/Alpha/Beta/Live phases. Understanding of SaaS, PaaS, IaaS technologies and the implications of their use compared with bespoke development. Being able to provide training, support and mentoring to the wider business Knowledge of how to ensure that risks associated with deployment are adequately understood and documented. Desirable Skills & Experience: Worked as part of a system support team, managing live systems and triaging & resolving incidents to resolution including management of known defects and issues. Worked as part of multi-disciplinary project team. Experience with Terraform to deploy cloud infrastructure in Azure Experience with Azure DevOps and GitHub Actions to automate the build and deploy of containerised applications Experience implementing effective instrumentation to monitor applications Experience implementing SAST and DAST tooling in deployment pipelines like Trivvy and SonarQube Experience of both AWS and Azure Dev Ops tooling. This role will require you to have or be willing to go through Security Clearance. As part of the onboarding process candidates will be asked to complete a Baseline Personnel Security Standard; details of the evidence required to apply may be found on the government website Gov.UK. If you are unable to meet this and any associated criteria, then your employment may be delayed, or rejected. Details of this will be discussed with you at interview. Benefits Methods is passionate about its people; we want our colleagues to develop the things they are good at and enjoy. By joining us you can expect Autonomy to develop and grow your skills and experience Be part of exciting project work that is making a difference in society Strong, inspiring and thought-provoking leadership A supportive and collaborative environment Development - access to LinkedIn Learning, a management development programme, and training Wellness - 24/7 confidential employee assistance programme Flexible Working - including home working and part time Social - office parties, breakfast Tuesdays, monthly pizza Thursdays, Thirsty Thursdays, and commitment to charitable causes Time Off - 25 days of annual leave a year, plus bank holidays, with the option to buy 5 extra days each year Volunteering - 2 paid days per year to volunteer in our local communities or within a charity organisation Pension - Salary Exchange Scheme with 4% employer contribution and 5% employee contribution Discretionary Company Bonus - based on company and individual performance Life Assurance - of 4 times base salary Private Medical Insurance - which is non-contributory (spouse and dependants included) Worldwide Travel Insurance - which is non-contributory (spouse and dependants included) Enhanced Maternity and Paternity Pay Travel - season ticket loan, cycle to work scheme For a full list of benefits please visit our website
14/01/2025
Full time
Methods Business and Digital Technology Limited Methods is a £100M+ IT Services Consultancy who has partnered with a range of central government departments and agencies to transform the way the public sector operates in the UK. Established over 30 years ago and UK-based, we apply our skills in transformation, delivery, and collaboration from across the Methods Group, to create end-to-end business and technical solutions that are people-centred, safe, and designed for the future. Our human touch sets us apart from other consultancies, system integrators and software houses - with people, technology, and data at the heart of who we are, we believe in creating value and sustainability through everything we do for our clients, staff, communities, and the planet. We support our clients in the success of their projects while working collaboratively to share skill sets and solve problems. At Methods we have fun while working hard; we are not afraid of making mistakes and learning from them. Predominantly focused on the public-sector, Methods is now building a significant private sector client portfolio. Methods was acquired by the Alten Group in early 2022. Methods is currently recruiting for a DevSecOps Engineer (Cyber) Consultant to join our team on a permanent basis. This role will be based on-site Requirements Specialised in cloud management of platforms, applications, data and supporting infrastructure in the capacity of a system administrator of either the AWS or Azure platform Developing automation to support continuous delivery of changes using technologies on the Azure platform. Developing infrastructure as a service configuration to automate the creation of infrastructure and platforms to host test and production systems Building and setting up new development tools and infrastructure Understanding the needs of stakeholders and conveying this to developers Working on ways to automate and improve development and release processes Testing and examining code written by others and analysing results Ensuring that systems are safe and secure against cybersecurity threats Familiar with the NCSC secure design principles Familiar with managing security of cloud platforms, including administration of secrets, tokens and certificates. Working with Architects, Data and Software Engineers to ensure that development follows established processes and works as intended Planning out projects and being involved in project management decisions Responsible for the design, security, and maintenance of cloud infrastructure Making and guiding effective decisions, explaining clearly how the decision has been reached with the ability to understand and resolve technical disputes across varying levels of complexity and risk. Communicating effectively across organisational, technical and political boundaries to understand the context and how to make complex and technical information and language simple and accessible for non-technical audiences. Understanding of how to expose data from systems (for example, through APIs), link data from multiple systems and deliver streaming services. Ensuring that risks associated with deployment are adequately understood and documented. Ideal Candidates will demonstrate: Experience working across cyber security teams would be beneficial Solid infrastructure design experience for both on-prem and cloud, to implement or migrate applications and databases to Azure. Solid experience in a range of technologies and be able to make assessments as to what is best to be used for the projects and the organisation. As well as suggest and develop innovative approaches within constrained projects and environments. Strong experience in software development, change/release management processes, and technical governance to fully understand the typical life cycle and maintenance of live systems. Ability to work with containerization platforms such as Kubernetes, PKS, Docker; cloud provisioning software, including Ansible, Terraform, Azure blueprints, ARM templates; and application performance analysis and monitoring Experience of functional and non-functional testing including automated deployment experience of applications and databases. Understanding of the government digital service manual and standards across Discovery/Alpha/Beta/Live phases. Understanding of SaaS, PaaS, IaaS technologies and the implications of their use compared with bespoke development. Being able to provide training, support and mentoring to the wider business Knowledge of how to ensure that risks associated with deployment are adequately understood and documented. Desirable Skills & Experience: Worked as part of a system support team, managing live systems and triaging & resolving incidents to resolution including management of known defects and issues. Worked as part of multi-disciplinary project team. Experience with Terraform to deploy cloud infrastructure in Azure Experience with Azure DevOps and GitHub Actions to automate the build and deploy of containerised applications Experience implementing effective instrumentation to monitor applications Experience implementing SAST and DAST tooling in deployment pipelines like Trivvy and SonarQube Experience of both AWS and Azure Dev Ops tooling. This role will require you to have or be willing to go through Security Clearance. As part of the onboarding process candidates will be asked to complete a Baseline Personnel Security Standard; details of the evidence required to apply may be found on the government website Gov.UK. If you are unable to meet this and any associated criteria, then your employment may be delayed, or rejected. Details of this will be discussed with you at interview. Benefits Methods is passionate about its people; we want our colleagues to develop the things they are good at and enjoy. By joining us you can expect Autonomy to develop and grow your skills and experience Be part of exciting project work that is making a difference in society Strong, inspiring and thought-provoking leadership A supportive and collaborative environment Development - access to LinkedIn Learning, a management development programme, and training Wellness - 24/7 confidential employee assistance programme Flexible Working - including home working and part time Social - office parties, breakfast Tuesdays, monthly pizza Thursdays, Thirsty Thursdays, and commitment to charitable causes Time Off - 25 days of annual leave a year, plus bank holidays, with the option to buy 5 extra days each year Volunteering - 2 paid days per year to volunteer in our local communities or within a charity organisation Pension - Salary Exchange Scheme with 4% employer contribution and 5% employee contribution Discretionary Company Bonus - based on company and individual performance Life Assurance - of 4 times base salary Private Medical Insurance - which is non-contributory (spouse and dependants included) Worldwide Travel Insurance - which is non-contributory (spouse and dependants included) Enhanced Maternity and Paternity Pay Travel - season ticket loan, cycle to work scheme For a full list of benefits please visit our website
Request Technology - Craig Johnson
Chicago, Illinois
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Company is currently seeking an Information Technology Internal Auditor. Candidate will support independent assessments of the Information Technology and Security environment, risk management, and other objectives as needed. The role is responsible for determining the sufficiency of management's controls and activities related to the management of regulatory, operational, and strategic risks and presenting recommendations for improvements to the engagement team. Responsibilities: Support the team on delivery of assigned audits within the annual audit plan. Support the team confirming a professional auditee experience. Owning the audit quality, accuracy of results, and delivery in a timely manner. Proactively identify regulatory, operational, and/or strategic risks to the organization and bring them to your engagement team. Evaluate exceptions or inefficient practices for root causes and propose advice and recommendations for achievable solutions. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, change management, security), engagement and alignment of change initiatives to business objectives. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Ability to understand professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and control. Keeping current on best practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Qualifications Ability to communicate clearly and effectively, both orally and in writing, including the ability to handle potentially sensitive situations and discussions. Strong problem solving and analytical capabilities. Demonstrated ability to gather, analyze, and evaluate facts, and prepare and present concise oral and written reports. Ability to work independently or as part of a team, prioritizing multiple audit assignments to simultaneously complete each in a timely fashion. [Preferred] Experience working in a complex, fast paced environment. [Preferred] Consulting and/or accounting firm experience. [Preferred] Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). [Preferred] Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). [Required] Microsoft Office applications [Preferred] Familiarity with security tools such as: CyberArk, Splunk, SailPoint [Preferred] Familiarity with change management tools such as: ServiceNow, Jira, Confluence, GitHub [Preferred] Familiarity with databases such as: Oracle, DB2, SQL [Preferred] Familiarity with cloud based solutions: AWS, Workday [Preferred] Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software Education: [Required] Bachelors degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. [Required] 2+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. [Preferred] Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent.
14/01/2025
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Company is currently seeking an Information Technology Internal Auditor. Candidate will support independent assessments of the Information Technology and Security environment, risk management, and other objectives as needed. The role is responsible for determining the sufficiency of management's controls and activities related to the management of regulatory, operational, and strategic risks and presenting recommendations for improvements to the engagement team. Responsibilities: Support the team on delivery of assigned audits within the annual audit plan. Support the team confirming a professional auditee experience. Owning the audit quality, accuracy of results, and delivery in a timely manner. Proactively identify regulatory, operational, and/or strategic risks to the organization and bring them to your engagement team. Evaluate exceptions or inefficient practices for root causes and propose advice and recommendations for achievable solutions. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, change management, security), engagement and alignment of change initiatives to business objectives. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Ability to understand professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and control. Keeping current on best practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Qualifications Ability to communicate clearly and effectively, both orally and in writing, including the ability to handle potentially sensitive situations and discussions. Strong problem solving and analytical capabilities. Demonstrated ability to gather, analyze, and evaluate facts, and prepare and present concise oral and written reports. Ability to work independently or as part of a team, prioritizing multiple audit assignments to simultaneously complete each in a timely fashion. [Preferred] Experience working in a complex, fast paced environment. [Preferred] Consulting and/or accounting firm experience. [Preferred] Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). [Preferred] Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). [Required] Microsoft Office applications [Preferred] Familiarity with security tools such as: CyberArk, Splunk, SailPoint [Preferred] Familiarity with change management tools such as: ServiceNow, Jira, Confluence, GitHub [Preferred] Familiarity with databases such as: Oracle, DB2, SQL [Preferred] Familiarity with cloud based solutions: AWS, Workday [Preferred] Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software Education: [Required] Bachelors degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. [Required] 2+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. [Preferred] Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent.
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Company is currently seeking an Information Technology Internal Auditor. Candidate will support independent assessments of the Information Technology and Security environment, risk management, and other objectives as needed. The role is responsible for determining the sufficiency of management's controls and activities related to the management of regulatory, operational, and strategic risks and presenting recommendations for improvements to the engagement team. Responsibilities: Support the team on delivery of assigned audits within the annual audit plan. Support the team confirming a professional auditee experience. Owning the audit quality, accuracy of results, and delivery in a timely manner. Proactively identify regulatory, operational, and/or strategic risks to the organization and bring them to your engagement team. Evaluate exceptions or inefficient practices for root causes and propose advice and recommendations for achievable solutions. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, change management, security), engagement and alignment of change initiatives to business objectives. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Ability to understand professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and control. Keeping current on best practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Qualifications Ability to communicate clearly and effectively, both orally and in writing, including the ability to handle potentially sensitive situations and discussions. Strong problem solving and analytical capabilities. Demonstrated ability to gather, analyze, and evaluate facts, and prepare and present concise oral and written reports. Ability to work independently or as part of a team, prioritizing multiple audit assignments to simultaneously complete each in a timely fashion. [Preferred] Experience working in a complex, fast paced environment. [Preferred] Consulting and/or accounting firm experience. [Preferred] Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). [Preferred] Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). [Required] Microsoft Office applications [Preferred] Familiarity with security tools such as: CyberArk, Splunk, SailPoint [Preferred] Familiarity with change management tools such as: ServiceNow, Jira, Confluence, GitHub [Preferred] Familiarity with databases such as: Oracle, DB2, SQL [Preferred] Familiarity with cloud based solutions: AWS, Workday [Preferred] Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software Education: [Required] Bachelors degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. [Required] 2+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. [Preferred] Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent.
13/01/2025
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Company is currently seeking an Information Technology Internal Auditor. Candidate will support independent assessments of the Information Technology and Security environment, risk management, and other objectives as needed. The role is responsible for determining the sufficiency of management's controls and activities related to the management of regulatory, operational, and strategic risks and presenting recommendations for improvements to the engagement team. Responsibilities: Support the team on delivery of assigned audits within the annual audit plan. Support the team confirming a professional auditee experience. Owning the audit quality, accuracy of results, and delivery in a timely manner. Proactively identify regulatory, operational, and/or strategic risks to the organization and bring them to your engagement team. Evaluate exceptions or inefficient practices for root causes and propose advice and recommendations for achievable solutions. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, change management, security), engagement and alignment of change initiatives to business objectives. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Ability to understand professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and control. Keeping current on best practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Qualifications Ability to communicate clearly and effectively, both orally and in writing, including the ability to handle potentially sensitive situations and discussions. Strong problem solving and analytical capabilities. Demonstrated ability to gather, analyze, and evaluate facts, and prepare and present concise oral and written reports. Ability to work independently or as part of a team, prioritizing multiple audit assignments to simultaneously complete each in a timely fashion. [Preferred] Experience working in a complex, fast paced environment. [Preferred] Consulting and/or accounting firm experience. [Preferred] Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). [Preferred] Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). [Required] Microsoft Office applications [Preferred] Familiarity with security tools such as: CyberArk, Splunk, SailPoint [Preferred] Familiarity with change management tools such as: ServiceNow, Jira, Confluence, GitHub [Preferred] Familiarity with databases such as: Oracle, DB2, SQL [Preferred] Familiarity with cloud based solutions: AWS, Workday [Preferred] Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software Education: [Required] Bachelors degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. [Required] 2+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. [Preferred] Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent.
Are you a passionate Full Stack Web Developer looking to elevate your career? An esteemed Midlands-based automotive client is expanding their team and is in search of a talented individual to join their ranks. This role offers the chance to work with cutting-edge technology on projects that include Cybersecurity, Zero Emission Vehicles, and connectivity, ensuring that your work has a meaningful impact on the future of the automotive industry. The company prides itself on fostering a culture of internal promotion and career development, providing a clear path for professional growth. As a valued team member, you will collaborate with a diverse group of engineers, including Embedded Software and Firmware Engineers, to deliver high-quality solutions. Your responsibilities will encompass writing code for both the front and Back End, peer reviewing code, and contributing to testing and documentation. The ideal candidate will possess a robust understanding of full web development and demonstrate proficiency in the following core skills: - PHP/JavaScript/HTML/SQL: Mastery of these foundational web technologies. - Object-Oriented Languages/Principles: Strong grasp of OO concepts. - Laravel/Eloquent ORM: Experience with this PHP framework and ORM. - VueJS: Competence in this progressive JavaScript framework. - REST Architecture: Knowledge of RESTful services and APIs. - MVC: Familiarity with the Model-View-Controller design pattern. - Agile JIRA Development: Experience in agile methodologies and JIRA. - Test-Driven Development: Commitment to writing tests as part of the development process. - UNIX Shell: Proficiency in UNIX Shell Scripting. - Source Control (preferably Git): Skilled in version control systems. This role not only offers the chance to work on innovative projects but also provides a supportive environment where your skills and career can flourish. If you are ready to take the next step in your career and contribute to groundbreaking automotive advancements, this position is tailored for you. (Sponsorship available for Skilled Worker Visa). WA Consultants is an Employment Business and an Employment Agency as described within The Conduct of Employment Agencies and Employment Businesses Regulations 2003.
13/01/2025
Full time
Are you a passionate Full Stack Web Developer looking to elevate your career? An esteemed Midlands-based automotive client is expanding their team and is in search of a talented individual to join their ranks. This role offers the chance to work with cutting-edge technology on projects that include Cybersecurity, Zero Emission Vehicles, and connectivity, ensuring that your work has a meaningful impact on the future of the automotive industry. The company prides itself on fostering a culture of internal promotion and career development, providing a clear path for professional growth. As a valued team member, you will collaborate with a diverse group of engineers, including Embedded Software and Firmware Engineers, to deliver high-quality solutions. Your responsibilities will encompass writing code for both the front and Back End, peer reviewing code, and contributing to testing and documentation. The ideal candidate will possess a robust understanding of full web development and demonstrate proficiency in the following core skills: - PHP/JavaScript/HTML/SQL: Mastery of these foundational web technologies. - Object-Oriented Languages/Principles: Strong grasp of OO concepts. - Laravel/Eloquent ORM: Experience with this PHP framework and ORM. - VueJS: Competence in this progressive JavaScript framework. - REST Architecture: Knowledge of RESTful services and APIs. - MVC: Familiarity with the Model-View-Controller design pattern. - Agile JIRA Development: Experience in agile methodologies and JIRA. - Test-Driven Development: Commitment to writing tests as part of the development process. - UNIX Shell: Proficiency in UNIX Shell Scripting. - Source Control (preferably Git): Skilled in version control systems. This role not only offers the chance to work on innovative projects but also provides a supportive environment where your skills and career can flourish. If you are ready to take the next step in your career and contribute to groundbreaking automotive advancements, this position is tailored for you. (Sponsorship available for Skilled Worker Visa). WA Consultants is an Employment Business and an Employment Agency as described within The Conduct of Employment Agencies and Employment Businesses Regulations 2003.
Request Technology - Craig Johnson
Chicago, Illinois
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a Sr. Cyber Defense Threat Engineer. Candidate will be responsible for the in-depth analysis and response to security incidents escalated from Tier 1 analysts. This role involves investigating complex security events, identifying potential threats, and implementing measures to mitigate risks. The Tier 2 analyst plays a critical role in maintaining the security posture of the organization by leveraging advanced threat intelligence and incident response techniques. Responsibilities: Monitor security alerts and events from various security tools and technologies. Perform advanced analysis of security logs, network traffic, and endpoint data. Review and respond to security incidents escalated by Tier 1 analysts. Conduct thorough investigations to determine the scope and impact of security incidents. Implement containment, eradication, and recovery measures for confirmed incidents. Document and report findings, actions taken, and lessons learned. Work closely with threat intelligence team to enhance detection and response capabilities. Collaborate with other security team members and IT staff to address security incidents. Provide guidance and support to Tier 1 analysts on complex security issues. Communicate effectively with stakeholders regarding security incidents and mitigation efforts. Participate in post-incident reviews to identify areas for improvement. Stay current with the latest cybersecurity trends, threats, and technologies. Contribute to the development and enhancement of SOC processes and procedures. Qualifications: Proven team player will be working primarily with other staff members, on both long-term projects and rapid response under tight deadlines. Team Leadership experience, taking initiative; providing and following through on solutions across various skillsets. Knowledge and experience implementing controls based on security regulation (eg, NIST Cyber Security Framework) is a plus. Effective and excellent oral and written communication, analytical, judgment and consultation skills. Ability to effectively communicate in both formal and informal review settings with all levels of management. Ability to work with local and remote IT staff/management, vendors and consultants. Ability to work independently and possess strong project management skills. Log analysis and security content development in SIEM solutions (Splunk, IBM QRadar, LogRhythm, etc.). SOAR products such as Splunk SOAR, Cortex XSOAR, FortiSOAR, etc. SOAR playbook development experience is a plus. Endpoint detection and response tools, eg CrowdStrike, SentinelOne, Microsoft Defender, etc. Incident Response playbook development, managing security incident analysis and remediation. Network-based preventative and detective technologies (IDS/IPS, Firewalls, Proxy Servers) Standard technical writing tools including MS Word, Excel, Project and Visio Vulnerability assessment tools (Qualys, Nessus, nmap, etc.). Directory services, LDAP, and their inherent security (Active Directory, CA Directory, Entra ID). Client Server platforms including Sun Solaris, Windows, Linux. Operating system hardening procedures (Solaris, Linux, Windows, etc.) Web Application Firewalls. Cloud based security tools and techniques (AWS, Azure, GCP, etc.) Scripting and development activities to appropriately leverage Application Programing Interfaces (APIs) to optimize integrations between disparate security monitoring and analysis devices. Education and Experience: Bachelor's degree in cybersecurity, computer science, or another related field. Minimum three years of information security experience, preferably in the financial services industry. Hands-on security operations experience including interdisciplinary experience with two or more of the following: Cyber Threat Analysis, Incident Response, Application Security, Operating Systems Security, Networking, Programming languages, Incident Response. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives. Familiarity with computer network exploitation and network attack methodologies while maintaining an understanding of the relationship these activities have with the financial services industry and critical infrastructure. Industry knowledge of leading-edge security technologies and methods. Shift work and working in an on-call response capacity is required including availability for 24 x 7 on-call support responsibilities. Previous people/project management experience is a plus. Strongly prefer at least one of the following certifications: CISSP, GCIA, GCIH, CHFI, GCFA, CASP+.
10/01/2025
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a Sr. Cyber Defense Threat Engineer. Candidate will be responsible for the in-depth analysis and response to security incidents escalated from Tier 1 analysts. This role involves investigating complex security events, identifying potential threats, and implementing measures to mitigate risks. The Tier 2 analyst plays a critical role in maintaining the security posture of the organization by leveraging advanced threat intelligence and incident response techniques. Responsibilities: Monitor security alerts and events from various security tools and technologies. Perform advanced analysis of security logs, network traffic, and endpoint data. Review and respond to security incidents escalated by Tier 1 analysts. Conduct thorough investigations to determine the scope and impact of security incidents. Implement containment, eradication, and recovery measures for confirmed incidents. Document and report findings, actions taken, and lessons learned. Work closely with threat intelligence team to enhance detection and response capabilities. Collaborate with other security team members and IT staff to address security incidents. Provide guidance and support to Tier 1 analysts on complex security issues. Communicate effectively with stakeholders regarding security incidents and mitigation efforts. Participate in post-incident reviews to identify areas for improvement. Stay current with the latest cybersecurity trends, threats, and technologies. Contribute to the development and enhancement of SOC processes and procedures. Qualifications: Proven team player will be working primarily with other staff members, on both long-term projects and rapid response under tight deadlines. Team Leadership experience, taking initiative; providing and following through on solutions across various skillsets. Knowledge and experience implementing controls based on security regulation (eg, NIST Cyber Security Framework) is a plus. Effective and excellent oral and written communication, analytical, judgment and consultation skills. Ability to effectively communicate in both formal and informal review settings with all levels of management. Ability to work with local and remote IT staff/management, vendors and consultants. Ability to work independently and possess strong project management skills. Log analysis and security content development in SIEM solutions (Splunk, IBM QRadar, LogRhythm, etc.). SOAR products such as Splunk SOAR, Cortex XSOAR, FortiSOAR, etc. SOAR playbook development experience is a plus. Endpoint detection and response tools, eg CrowdStrike, SentinelOne, Microsoft Defender, etc. Incident Response playbook development, managing security incident analysis and remediation. Network-based preventative and detective technologies (IDS/IPS, Firewalls, Proxy Servers) Standard technical writing tools including MS Word, Excel, Project and Visio Vulnerability assessment tools (Qualys, Nessus, nmap, etc.). Directory services, LDAP, and their inherent security (Active Directory, CA Directory, Entra ID). Client Server platforms including Sun Solaris, Windows, Linux. Operating system hardening procedures (Solaris, Linux, Windows, etc.) Web Application Firewalls. Cloud based security tools and techniques (AWS, Azure, GCP, etc.) Scripting and development activities to appropriately leverage Application Programing Interfaces (APIs) to optimize integrations between disparate security monitoring and analysis devices. Education and Experience: Bachelor's degree in cybersecurity, computer science, or another related field. Minimum three years of information security experience, preferably in the financial services industry. Hands-on security operations experience including interdisciplinary experience with two or more of the following: Cyber Threat Analysis, Incident Response, Application Security, Operating Systems Security, Networking, Programming languages, Incident Response. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives. Familiarity with computer network exploitation and network attack methodologies while maintaining an understanding of the relationship these activities have with the financial services industry and critical infrastructure. Industry knowledge of leading-edge security technologies and methods. Shift work and working in an on-call response capacity is required including availability for 24 x 7 on-call support responsibilities. Previous people/project management experience is a plus. Strongly prefer at least one of the following certifications: CISSP, GCIA, GCIH, CHFI, GCFA, CASP+.
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a Sr. Cyber Defense Threat Engineer. Candidate will be responsible for the in-depth analysis and response to security incidents escalated from Tier 1 analysts. This role involves investigating complex security events, identifying potential threats, and implementing measures to mitigate risks. The Tier 2 analyst plays a critical role in maintaining the security posture of the organization by leveraging advanced threat intelligence and incident response techniques. Responsibilities: Monitor security alerts and events from various security tools and technologies. Perform advanced analysis of security logs, network traffic, and endpoint data. Review and respond to security incidents escalated by Tier 1 analysts. Conduct thorough investigations to determine the scope and impact of security incidents. Implement containment, eradication, and recovery measures for confirmed incidents. Document and report findings, actions taken, and lessons learned. Work closely with threat intelligence team to enhance detection and response capabilities. Collaborate with other security team members and IT staff to address security incidents. Provide guidance and support to Tier 1 analysts on complex security issues. Communicate effectively with stakeholders regarding security incidents and mitigation efforts. Participate in post-incident reviews to identify areas for improvement. Stay current with the latest cybersecurity trends, threats, and technologies. Contribute to the development and enhancement of SOC processes and procedures. Qualifications: Proven team player will be working primarily with other staff members, on both long-term projects and rapid response under tight deadlines. Team Leadership experience, taking initiative; providing and following through on solutions across various skillsets. Knowledge and experience implementing controls based on security regulation (eg, NIST Cyber Security Framework) is a plus. Effective and excellent oral and written communication, analytical, judgment and consultation skills. Ability to effectively communicate in both formal and informal review settings with all levels of management. Ability to work with local and remote IT staff/management, vendors and consultants. Ability to work independently and possess strong project management skills. Log analysis and security content development in SIEM solutions (Splunk, IBM QRadar, LogRhythm, etc.). SOAR products such as Splunk SOAR, Cortex XSOAR, FortiSOAR, etc. SOAR playbook development experience is a plus. Endpoint detection and response tools, eg CrowdStrike, SentinelOne, Microsoft Defender, etc. Incident Response playbook development, managing security incident analysis and remediation. Network-based preventative and detective technologies (IDS/IPS, Firewalls, Proxy Servers) Standard technical writing tools including MS Word, Excel, Project and Visio Vulnerability assessment tools (Qualys, Nessus, nmap, etc.). Directory services, LDAP, and their inherent security (Active Directory, CA Directory, Entra ID). Client Server platforms including Sun Solaris, Windows, Linux. Operating system hardening procedures (Solaris, Linux, Windows, etc.) Web Application Firewalls. Cloud based security tools and techniques (AWS, Azure, GCP, etc.) Scripting and development activities to appropriately leverage Application Programing Interfaces (APIs) to optimize integrations between disparate security monitoring and analysis devices. Education and Experience: Bachelor's degree in cybersecurity, computer science, or another related field. Minimum three years of information security experience, preferably in the financial services industry. Hands-on security operations experience including interdisciplinary experience with two or more of the following: Cyber Threat Analysis, Incident Response, Application Security, Operating Systems Security, Networking, Programming languages, Incident Response. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives. Familiarity with computer network exploitation and network attack methodologies while maintaining an understanding of the relationship these activities have with the financial services industry and critical infrastructure. Industry knowledge of leading-edge security technologies and methods. Shift work and working in an on-call response capacity is required including availability for 24 x 7 on-call support responsibilities. Previous people/project management experience is a plus. Strongly prefer at least one of the following certifications: CISSP, GCIA, GCIH, CHFI, GCFA, CASP+.
10/01/2025
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a Sr. Cyber Defense Threat Engineer. Candidate will be responsible for the in-depth analysis and response to security incidents escalated from Tier 1 analysts. This role involves investigating complex security events, identifying potential threats, and implementing measures to mitigate risks. The Tier 2 analyst plays a critical role in maintaining the security posture of the organization by leveraging advanced threat intelligence and incident response techniques. Responsibilities: Monitor security alerts and events from various security tools and technologies. Perform advanced analysis of security logs, network traffic, and endpoint data. Review and respond to security incidents escalated by Tier 1 analysts. Conduct thorough investigations to determine the scope and impact of security incidents. Implement containment, eradication, and recovery measures for confirmed incidents. Document and report findings, actions taken, and lessons learned. Work closely with threat intelligence team to enhance detection and response capabilities. Collaborate with other security team members and IT staff to address security incidents. Provide guidance and support to Tier 1 analysts on complex security issues. Communicate effectively with stakeholders regarding security incidents and mitigation efforts. Participate in post-incident reviews to identify areas for improvement. Stay current with the latest cybersecurity trends, threats, and technologies. Contribute to the development and enhancement of SOC processes and procedures. Qualifications: Proven team player will be working primarily with other staff members, on both long-term projects and rapid response under tight deadlines. Team Leadership experience, taking initiative; providing and following through on solutions across various skillsets. Knowledge and experience implementing controls based on security regulation (eg, NIST Cyber Security Framework) is a plus. Effective and excellent oral and written communication, analytical, judgment and consultation skills. Ability to effectively communicate in both formal and informal review settings with all levels of management. Ability to work with local and remote IT staff/management, vendors and consultants. Ability to work independently and possess strong project management skills. Log analysis and security content development in SIEM solutions (Splunk, IBM QRadar, LogRhythm, etc.). SOAR products such as Splunk SOAR, Cortex XSOAR, FortiSOAR, etc. SOAR playbook development experience is a plus. Endpoint detection and response tools, eg CrowdStrike, SentinelOne, Microsoft Defender, etc. Incident Response playbook development, managing security incident analysis and remediation. Network-based preventative and detective technologies (IDS/IPS, Firewalls, Proxy Servers) Standard technical writing tools including MS Word, Excel, Project and Visio Vulnerability assessment tools (Qualys, Nessus, nmap, etc.). Directory services, LDAP, and their inherent security (Active Directory, CA Directory, Entra ID). Client Server platforms including Sun Solaris, Windows, Linux. Operating system hardening procedures (Solaris, Linux, Windows, etc.) Web Application Firewalls. Cloud based security tools and techniques (AWS, Azure, GCP, etc.) Scripting and development activities to appropriately leverage Application Programing Interfaces (APIs) to optimize integrations between disparate security monitoring and analysis devices. Education and Experience: Bachelor's degree in cybersecurity, computer science, or another related field. Minimum three years of information security experience, preferably in the financial services industry. Hands-on security operations experience including interdisciplinary experience with two or more of the following: Cyber Threat Analysis, Incident Response, Application Security, Operating Systems Security, Networking, Programming languages, Incident Response. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives. Familiarity with computer network exploitation and network attack methodologies while maintaining an understanding of the relationship these activities have with the financial services industry and critical infrastructure. Industry knowledge of leading-edge security technologies and methods. Shift work and working in an on-call response capacity is required including availability for 24 x 7 on-call support responsibilities. Previous people/project management experience is a plus. Strongly prefer at least one of the following certifications: CISSP, GCIA, GCIH, CHFI, GCFA, CASP+.
LEAD SOFTWARE DEVELOPER - EDV CLEARED BRAND NEW CONTRACT OPPORTUNITY AVAILABLE WITHIN A LEADING COMPANY FOR A SOFTWARE DEVELOPER WITH ENHANCED DV CLEARANCE Contract opportunity for a Lead Software Developers with enhanced DV clearance. Industry leading company supporting UK national security projects. Day rate up to £715/day DOE. London based in an easily accessible location. To apply please call or email (see below) WHO ARE WE? We are recruiting Lead Software Developers with a wide variety of experience to work with an industry-leading cyber/National Security/defence client with office locations in and around London. The expertise of our engineers drives us forward, and we're looking for talented individuals to join us. Due to the nature of these clients, you must hold Enhanced DV Security Clearance to work on National Security projects. WE NEED THE LEAD SOFTWARE DEVELOPER TO HAVE . Enhanced DV Security Clearance. Experience with a wide variety of software tools and technologies (preferably Oracle DB, SAS, Linux, and Python). Ability to contribute to code development and best practices, including code reviews, unit testing, CI/CD, etc. Ability to develop and document change management and release management plans. Working knowledge of a cloud technology (preferably AWS). Experience mentoring junior Software Engineers. Experience collaborating with stakeholders. TO BE CONSIDERED . Please either apply by clicking online or emailing me directly to (see below). For further information please call me. I can make myself available outside of normal working hours to suit from 7am until 10pm. If unavailable, please leave a message and either myself or one of my colleagues will respond. By applying for this role, you give express consent for us to process & submit (subject to required skills) your application to our client in conjunction with this vacancy only. I look forward to hearing from you. LEAD SOFTWARE DEVELOPER - EDV CLEARED KEY SKILLS: SOFTWARE ENGINEER/DEVOPS/FULL STACK/PYTHON/Oracle/VERSION CONTROL/UNIT TESTING/INTEGRATION TESTING/MENTORING/DV CLEARED/DV CLEARANCE/DEVELOPPED VETTING/DEVELOPED VETTED/DEEP VETTING/DEEP VETTED/SC CLEARED/SC CLEARANCE/SECURITY CLEARED/SECURITY CLEARANCE
10/01/2025
Project-based
LEAD SOFTWARE DEVELOPER - EDV CLEARED BRAND NEW CONTRACT OPPORTUNITY AVAILABLE WITHIN A LEADING COMPANY FOR A SOFTWARE DEVELOPER WITH ENHANCED DV CLEARANCE Contract opportunity for a Lead Software Developers with enhanced DV clearance. Industry leading company supporting UK national security projects. Day rate up to £715/day DOE. London based in an easily accessible location. To apply please call or email (see below) WHO ARE WE? We are recruiting Lead Software Developers with a wide variety of experience to work with an industry-leading cyber/National Security/defence client with office locations in and around London. The expertise of our engineers drives us forward, and we're looking for talented individuals to join us. Due to the nature of these clients, you must hold Enhanced DV Security Clearance to work on National Security projects. WE NEED THE LEAD SOFTWARE DEVELOPER TO HAVE . Enhanced DV Security Clearance. Experience with a wide variety of software tools and technologies (preferably Oracle DB, SAS, Linux, and Python). Ability to contribute to code development and best practices, including code reviews, unit testing, CI/CD, etc. Ability to develop and document change management and release management plans. Working knowledge of a cloud technology (preferably AWS). Experience mentoring junior Software Engineers. Experience collaborating with stakeholders. TO BE CONSIDERED . Please either apply by clicking online or emailing me directly to (see below). For further information please call me. I can make myself available outside of normal working hours to suit from 7am until 10pm. If unavailable, please leave a message and either myself or one of my colleagues will respond. By applying for this role, you give express consent for us to process & submit (subject to required skills) your application to our client in conjunction with this vacancy only. I look forward to hearing from you. LEAD SOFTWARE DEVELOPER - EDV CLEARED KEY SKILLS: SOFTWARE ENGINEER/DEVOPS/FULL STACK/PYTHON/Oracle/VERSION CONTROL/UNIT TESTING/INTEGRATION TESTING/MENTORING/DV CLEARED/DV CLEARANCE/DEVELOPPED VETTING/DEVELOPED VETTED/DEEP VETTING/DEEP VETTED/SC CLEARED/SC CLEARANCE/SECURITY CLEARED/SECURITY CLEARANCE
Lead Validation Engineer - Controls & Automation Are you ready to lead validation efforts and work on cutting-edge control and automation systems? Do you thrive in ensuring the safety, security, and reliability of systems while mentoring a talented team? I'm working with a leading company seeking a Lead Validation Engineer to take charge of their validation activities for automation products and systems. You'll play a crucial role in ensuring compliance with industry standards, improving validation processes, and leading automated test executions. What You'll Do: . Take ownership of validation activities for control and automation systems, ensuring they adhere to industry standards (ANSI/ISA18.2, ISA-95, and IEC62443). . Design and implement detailed test plans and specifications to guarantee product reliability and safety. . Optimise validation processes using automated testing tools like JIRA XRAY, Selenium, or similar. . Collaborate closely with development and cross-functional teams to resolve technical challenges and align validation activities with customer expectations. . Provide mentorship to validation engineers, fostering growth and promoting best practices. . Maintain comprehensive documentation on validation processes, test outcomes, and corrective actions. . Continuously refine and improve validation tools and methodologies for increased efficiency. What You Bring: . A degree in Engineering, Computer Science, or a related field. . Industry-recognised certifications (eg ISTQB/OT Cybersecurity). . Deep expertise in OT technologies, SCADA/DCS systems, and the Purdue model. . Solid background in validation engineering, particularly in complex control systems. . Hands-on experience with automated testing tools. . A thorough understanding of industry standards for automation and control validation . Industry experience in sectors like Power, Marine, Oil & Gas, or similar. . Knowledge of Cybersecurity validation and penetration testing. Salary up to £75,000 + bonus + benefits. Offices in Rugby, Warwickshire. If you're ready to take your validation engineering career to the next level, apply now for immediate consideration! Lawrence Harvey is acting as an Employment Business in regards to this position.
10/01/2025
Full time
Lead Validation Engineer - Controls & Automation Are you ready to lead validation efforts and work on cutting-edge control and automation systems? Do you thrive in ensuring the safety, security, and reliability of systems while mentoring a talented team? I'm working with a leading company seeking a Lead Validation Engineer to take charge of their validation activities for automation products and systems. You'll play a crucial role in ensuring compliance with industry standards, improving validation processes, and leading automated test executions. What You'll Do: . Take ownership of validation activities for control and automation systems, ensuring they adhere to industry standards (ANSI/ISA18.2, ISA-95, and IEC62443). . Design and implement detailed test plans and specifications to guarantee product reliability and safety. . Optimise validation processes using automated testing tools like JIRA XRAY, Selenium, or similar. . Collaborate closely with development and cross-functional teams to resolve technical challenges and align validation activities with customer expectations. . Provide mentorship to validation engineers, fostering growth and promoting best practices. . Maintain comprehensive documentation on validation processes, test outcomes, and corrective actions. . Continuously refine and improve validation tools and methodologies for increased efficiency. What You Bring: . A degree in Engineering, Computer Science, or a related field. . Industry-recognised certifications (eg ISTQB/OT Cybersecurity). . Deep expertise in OT technologies, SCADA/DCS systems, and the Purdue model. . Solid background in validation engineering, particularly in complex control systems. . Hands-on experience with automated testing tools. . A thorough understanding of industry standards for automation and control validation . Industry experience in sectors like Power, Marine, Oil & Gas, or similar. . Knowledge of Cybersecurity validation and penetration testing. Salary up to £75,000 + bonus + benefits. Offices in Rugby, Warwickshire. If you're ready to take your validation engineering career to the next level, apply now for immediate consideration! Lawrence Harvey is acting as an Employment Business in regards to this position.
SOFTWARE DEVELOPER - EDV CLEARED BRAND NEW CONTRACT OPPORTUNITY AVAILABLE WITHIN A LEADING COMPANY FOR A SOFTWARE DEVELOPER WITH ENHANCED DV CLEARANCE Contract opportunity for a Software Engineer with enhanced DV clearance. Industry leading company supporting UK national security projects. Day rate up to £550/day DOE. London based in an easily accessible location. To apply please call or email (see below) WHO ARE WE? We are recruiting Software Developers to work with an industry-leading cyber/National Security/defence client with office locations in and around London. The expertise of our engineers drives us forward, and we're looking for talented individuals eager to learn and grow to join us. Due to the nature of these clients, you must hold Enhanced DV Security Clearance to work on National Security projects. WE NEED THE SOFTWARE DEVELOPER TO HAVE . Enhanced DV Security Clearance. Experience as a Full Stack Developer. Working knowledge of a programming language (preferably Python). Familiarity with a software suite (preferably SAS). Working knowledge of a relational database management system (preferably Oracle DB). Experience in version control, unit testing, integration testing, and UAT. A problem-solving mindset and a growth attitude. TO BE CONSIDERED . Please either apply by clicking online or emailing me directly to (see below) For further information please call me. I can make myself available outside of normal working hours to suit from 7am until 10pm. If unavailable, please leave a message and either myself or one of my colleagues will respond. By applying for this role, you give express consent for us to process & submit (subject to required skills) your application to our client in conjunction with this vacancy only. I look forward to hearing from you. SOFTWARE DEVELOPER - EDV CLEARED KEY SKILLS: SOFTWARE ENGINEER/DEVOPS/FULL STACK/PYTHON/Oracle/VERSION CONTROL/UNIT TESTING/INTEGRATION TESTING/DV CLEARED/DV CLEARANCE/ DEVELOPPED VETTING/DEVELOPED VETTED/DEEP VETTING/DEEP VETTED/SC CLEARED/SC CLEARANCE/SECURITY CLEARED/SECURITY CLEARANCE
09/01/2025
Project-based
SOFTWARE DEVELOPER - EDV CLEARED BRAND NEW CONTRACT OPPORTUNITY AVAILABLE WITHIN A LEADING COMPANY FOR A SOFTWARE DEVELOPER WITH ENHANCED DV CLEARANCE Contract opportunity for a Software Engineer with enhanced DV clearance. Industry leading company supporting UK national security projects. Day rate up to £550/day DOE. London based in an easily accessible location. To apply please call or email (see below) WHO ARE WE? We are recruiting Software Developers to work with an industry-leading cyber/National Security/defence client with office locations in and around London. The expertise of our engineers drives us forward, and we're looking for talented individuals eager to learn and grow to join us. Due to the nature of these clients, you must hold Enhanced DV Security Clearance to work on National Security projects. WE NEED THE SOFTWARE DEVELOPER TO HAVE . Enhanced DV Security Clearance. Experience as a Full Stack Developer. Working knowledge of a programming language (preferably Python). Familiarity with a software suite (preferably SAS). Working knowledge of a relational database management system (preferably Oracle DB). Experience in version control, unit testing, integration testing, and UAT. A problem-solving mindset and a growth attitude. TO BE CONSIDERED . Please either apply by clicking online or emailing me directly to (see below) For further information please call me. I can make myself available outside of normal working hours to suit from 7am until 10pm. If unavailable, please leave a message and either myself or one of my colleagues will respond. By applying for this role, you give express consent for us to process & submit (subject to required skills) your application to our client in conjunction with this vacancy only. I look forward to hearing from you. SOFTWARE DEVELOPER - EDV CLEARED KEY SKILLS: SOFTWARE ENGINEER/DEVOPS/FULL STACK/PYTHON/Oracle/VERSION CONTROL/UNIT TESTING/INTEGRATION TESTING/DV CLEARED/DV CLEARANCE/ DEVELOPPED VETTING/DEVELOPED VETTED/DEEP VETTING/DEEP VETTED/SC CLEARED/SC CLEARANCE/SECURITY CLEARED/SECURITY CLEARANCE
Job Title - Technical Service Delivery Manager Location - Stroud, Gloucestershire (hybrid working - 2/3 days on site) Salary - £55,000 - £60,000 pa + bonus + package (inc. private health care and dental) Contract type - Full time, Permanent Concept have been engaged by a Gloucestershire based client, working at the forefront of networking and Cisco technology, to recruit an experienced Technical Delivery Manager to join their professional services team. This will be a broad role encompassing a range of technical and commercial responsibilities, working closely with management, sales, and technical teams. Key Responsibilities include (but not limited to) Work closely with the Head of Professional Services, receiving mentorship and coaching, and supporting on the delivery and planning of projects and co-ordinating resource. Work collaboratively with current and prospect clients to understand technical environments and commercial aspects, to create technical roadmaps. Act as a point of technical escalation for network and infrastructure queries for the sales teams. Assist with the creation of technical design documentation and statement of works. Support the sales teams with tender responses. Candidate Specification We can consider individuals coming from a technical engineering, support, solutions design, presales, or similar background. However, we would need the individual to possess a strong technical understanding of networks and infrastructure. Further requirements include: The ideal candidate will have hands-on experience with key networking technologies, a deep understanding of network security standards, and practical expertise in delivering robust network solutions Network Design and Implementation: Design networks with considerations for switching and backplane capacity (bandwidth). Configure and deploy physical Switches, including VLAN setups and Layer 3 functionality. Build, configure, and optimise network components such as Switches, Firewalls, and wireless networks. Firewall Configuration and Management: Develop and manage Firewall policies using industry-leading vendors such as Cisco, Fortinet, or Palo Alto. Ensure network security and functionality by configuring Firewalls in alignment with organisational needs. WIFI Solutions Delivery: Design and implement comprehensive WIFI solutions, including controllers and access points. Maintain and optimise wireless networks to ensure reliability and performance. Network Security: Apply base-level security standards (eg, Cyber Essentials, Cyber Essentials Plus, NIST) to ensure network safety. Assess, enhance, and maintain network security practices in line with industry standards. Technology Expertise: Provide insights into networking tools and platforms, particularly Cisco Meraki and similar technologies. Collaborate with IT teams to ensure seamless integration of network components into the broader infrastructure. Required Skills and Experience: Hands-on experience with key network infrastructure components, including Switches, Firewalls, WIFI, and Servers. Proficiency in VLANs, Layer 3 switching, and network segmentation techniques. Experience with network design and capacity planning. Exposure to security standards (eg, Cyber Essentials, NIST) and their practical application in network environments. Familiarity with industry-leading Firewall vendors, including Cisco, Fortinet, and Palo Alto. Expertise in designing and deploying WIFI solutions, including access point configuration and controller management. Knowledge of Cisco Meraki and its capabilities. Desired Qualifications: Certification in networking (eg, CCNA, CCNP, or equivalent). Strong understanding of network security frameworks and tools. Experience working in environments with compliance requirements tied to network security standards. This role offers an exciting opportunity to work in a dynamic team, leveraging cutting-edge technologies to deliver secure and high-performance network solutions. For more information on this role, please apply with an up-to-date copy of your CV.
09/01/2025
Full time
Job Title - Technical Service Delivery Manager Location - Stroud, Gloucestershire (hybrid working - 2/3 days on site) Salary - £55,000 - £60,000 pa + bonus + package (inc. private health care and dental) Contract type - Full time, Permanent Concept have been engaged by a Gloucestershire based client, working at the forefront of networking and Cisco technology, to recruit an experienced Technical Delivery Manager to join their professional services team. This will be a broad role encompassing a range of technical and commercial responsibilities, working closely with management, sales, and technical teams. Key Responsibilities include (but not limited to) Work closely with the Head of Professional Services, receiving mentorship and coaching, and supporting on the delivery and planning of projects and co-ordinating resource. Work collaboratively with current and prospect clients to understand technical environments and commercial aspects, to create technical roadmaps. Act as a point of technical escalation for network and infrastructure queries for the sales teams. Assist with the creation of technical design documentation and statement of works. Support the sales teams with tender responses. Candidate Specification We can consider individuals coming from a technical engineering, support, solutions design, presales, or similar background. However, we would need the individual to possess a strong technical understanding of networks and infrastructure. Further requirements include: The ideal candidate will have hands-on experience with key networking technologies, a deep understanding of network security standards, and practical expertise in delivering robust network solutions Network Design and Implementation: Design networks with considerations for switching and backplane capacity (bandwidth). Configure and deploy physical Switches, including VLAN setups and Layer 3 functionality. Build, configure, and optimise network components such as Switches, Firewalls, and wireless networks. Firewall Configuration and Management: Develop and manage Firewall policies using industry-leading vendors such as Cisco, Fortinet, or Palo Alto. Ensure network security and functionality by configuring Firewalls in alignment with organisational needs. WIFI Solutions Delivery: Design and implement comprehensive WIFI solutions, including controllers and access points. Maintain and optimise wireless networks to ensure reliability and performance. Network Security: Apply base-level security standards (eg, Cyber Essentials, Cyber Essentials Plus, NIST) to ensure network safety. Assess, enhance, and maintain network security practices in line with industry standards. Technology Expertise: Provide insights into networking tools and platforms, particularly Cisco Meraki and similar technologies. Collaborate with IT teams to ensure seamless integration of network components into the broader infrastructure. Required Skills and Experience: Hands-on experience with key network infrastructure components, including Switches, Firewalls, WIFI, and Servers. Proficiency in VLANs, Layer 3 switching, and network segmentation techniques. Experience with network design and capacity planning. Exposure to security standards (eg, Cyber Essentials, NIST) and their practical application in network environments. Familiarity with industry-leading Firewall vendors, including Cisco, Fortinet, and Palo Alto. Expertise in designing and deploying WIFI solutions, including access point configuration and controller management. Knowledge of Cisco Meraki and its capabilities. Desired Qualifications: Certification in networking (eg, CCNA, CCNP, or equivalent). Strong understanding of network security frameworks and tools. Experience working in environments with compliance requirements tied to network security standards. This role offers an exciting opportunity to work in a dynamic team, leveraging cutting-edge technologies to deliver secure and high-performance network solutions. For more information on this role, please apply with an up-to-date copy of your CV.
C++ Software Engineer required by a global software company developing products for use in cyber security. *Fully remote - no office based work required at any point" The successful C++ Software Engineer will join a team developing new components that are integrated into a microservices architecture. Proven experience programming C++ on Windows is sought. Any knowledge of C# would be advantageous but is not a prerequisite. Extensive Windows development experience is essential. Key experience C++ Multithreading Windows programming MS Visual Studio Unit testing Any experience in the following areas would be advantageous for any application Microservices architecture Reverse engineering in Windows Windows Kernel development WinAPI COM SQL CI/CD C# Agile Algorithm development If you are looking for a role of this nature please get in touch for more information. Spectrum IT Recruitment (South) Limited is acting as an Employment Agency in relation to this vacancy.
09/01/2025
Full time
C++ Software Engineer required by a global software company developing products for use in cyber security. *Fully remote - no office based work required at any point" The successful C++ Software Engineer will join a team developing new components that are integrated into a microservices architecture. Proven experience programming C++ on Windows is sought. Any knowledge of C# would be advantageous but is not a prerequisite. Extensive Windows development experience is essential. Key experience C++ Multithreading Windows programming MS Visual Studio Unit testing Any experience in the following areas would be advantageous for any application Microservices architecture Reverse engineering in Windows Windows Kernel development WinAPI COM SQL CI/CD C# Agile Algorithm development If you are looking for a role of this nature please get in touch for more information. Spectrum IT Recruitment (South) Limited is acting as an Employment Agency in relation to this vacancy.
Endpoint & IAM Lead Location: Oxford (Hybrid - 1-2 days in the office per week) Salary: Competitive About the Role We are seeking an Endpoint Protection & IAM Lead to spearhead the strategic integration of Microsoft-based Identity and Access Management (IAM) and Endpoint Protection solutions across our Security Operations and Optimization (SOO) functions. As part of a greenfield cybersecurity build, you will play a pivotal role in shaping a modern, scalable cybersecurity framework under the guidance of our new CISO. This is an exciting opportunity to be at the forefront of a transformative journey, leveraging a substantial budget to deliver tools and solutions that align with industry best practices (eg, NIST). Key Responsibilities Strategic Leadership Drive the integration of IAM and endpoint security into the organization's cybersecurity strategy. Collaborate with the CISO to align security initiatives with business objectives. Oversee tool selection, process development, and implementation, managing a budget to map and optimize security functions. Build and maintain strong vendor relationships to ensure effective partnerships and service delivery. Technical Integration Lead the transition to a Microsoft-focused security ecosystem, including: Microsoft Defender for endpoint security. Azure, Entra ID, and Active Directory for IAM. Design and implement solutions that ensure seamless integration across SOO functions, fostering consistency and operational efficiency. Act as a bridge between strategic planning and technical execution, ensuring adherence to industry best practices. Team Enablement Provide strategic and technical guidance, fostering a culture of cybersecurity awareness across the organization. Balance high-level strategic responsibilities with hands-on involvement, particularly during early implementation phases. Candidate Profile Leadership Expertise Proven track record in leading cybersecurity initiatives in a Microsoft-centric environment. Exceptional communication skills, capable of influencing executive decision-making. Strong vendor management and procurement capabilities, achieving maximum ROI. Experience leading cross-functional integration projects with a strategic focus. Technical Proficiency In-depth expertise in Microsoft's security stack, including: Microsoft Defender for endpoints. Azure, Entra ID, and Active Directory. Ability to assess and transform existing infrastructures into secure, scalable solutions. Experience blending technical engineering expertise with a high-level strategic vision. Additional Attributes Commercially astute, with experience managing significant budgets. Comfortable with hybrid working arrangements. Strong focus on collaboration and driving organizational impact. The Current Landscape Greenfield cybersecurity build under a new CISO. Transitioning to a Microsoft-focused environment from Cisco. Aiming to integrate tools and policies across SOO functions with a focus on resilience, risk management, and adherence to standards like NIST. Apply now to join our mission of building a resilient, secure future.
09/01/2025
Full time
Endpoint & IAM Lead Location: Oxford (Hybrid - 1-2 days in the office per week) Salary: Competitive About the Role We are seeking an Endpoint Protection & IAM Lead to spearhead the strategic integration of Microsoft-based Identity and Access Management (IAM) and Endpoint Protection solutions across our Security Operations and Optimization (SOO) functions. As part of a greenfield cybersecurity build, you will play a pivotal role in shaping a modern, scalable cybersecurity framework under the guidance of our new CISO. This is an exciting opportunity to be at the forefront of a transformative journey, leveraging a substantial budget to deliver tools and solutions that align with industry best practices (eg, NIST). Key Responsibilities Strategic Leadership Drive the integration of IAM and endpoint security into the organization's cybersecurity strategy. Collaborate with the CISO to align security initiatives with business objectives. Oversee tool selection, process development, and implementation, managing a budget to map and optimize security functions. Build and maintain strong vendor relationships to ensure effective partnerships and service delivery. Technical Integration Lead the transition to a Microsoft-focused security ecosystem, including: Microsoft Defender for endpoint security. Azure, Entra ID, and Active Directory for IAM. Design and implement solutions that ensure seamless integration across SOO functions, fostering consistency and operational efficiency. Act as a bridge between strategic planning and technical execution, ensuring adherence to industry best practices. Team Enablement Provide strategic and technical guidance, fostering a culture of cybersecurity awareness across the organization. Balance high-level strategic responsibilities with hands-on involvement, particularly during early implementation phases. Candidate Profile Leadership Expertise Proven track record in leading cybersecurity initiatives in a Microsoft-centric environment. Exceptional communication skills, capable of influencing executive decision-making. Strong vendor management and procurement capabilities, achieving maximum ROI. Experience leading cross-functional integration projects with a strategic focus. Technical Proficiency In-depth expertise in Microsoft's security stack, including: Microsoft Defender for endpoints. Azure, Entra ID, and Active Directory. Ability to assess and transform existing infrastructures into secure, scalable solutions. Experience blending technical engineering expertise with a high-level strategic vision. Additional Attributes Commercially astute, with experience managing significant budgets. Comfortable with hybrid working arrangements. Strong focus on collaboration and driving organizational impact. The Current Landscape Greenfield cybersecurity build under a new CISO. Transitioning to a Microsoft-focused environment from Cisco. Aiming to integrate tools and policies across SOO functions with a focus on resilience, risk management, and adherence to standards like NIST. Apply now to join our mission of building a resilient, secure future.
Global Technology company that specialise in ensuring Software Security are looking for a Principal Software Engineer (skilled with C++) to join their Glasgow Base. Work on series of world-class products and gain experience with some really interesting development led security practices. Their software ensures security with data, communications, payments and protects content. The company have been operating successfully in Glasgow for over 20 years now, and they are well respected in the tech community. They now have a global client base and build trusted securities software for billions of connected devices. It's an exciting time to join them as they have spent the last year refactoring their products to their best standard yet. They also have placed a focus on increasing their Global presence and plan to break into new several new global markets. The ideal candidate will have several years of programming experience with C++ (bonus points if you have exposure with C or Objective-C). This role will mainly involve working on the company's core products, they currently have 3 that are used world-wide and very highly rated (in fact many of us use them daily and we don't even know it!). The project work is genuinely interesting and they have host of greenfield projects kicking off in Q1 of this year. As security is their bread and butter, their ideally looking for someone from that background or to have strong knowledge/a passion for security. Your skills & Experience: * Strong knowledge of C/C++ * Ideally coming from a Security background. *Knowledge of IOS/MACOS development * Deep understanding of Design processes and Architectural patterns The following is highly desirable; * Cybersecurity certifications will definitely get you some bonus points * Experience in mentoring Junior members of the team Their office is based in Glasgow city centre, walking distance from both Central Station and Queen Street - like most they work on a hybrid basis, with a couple of days on site per week (definitely flexible on this for those travelling from further affield). They've got great staff retention - a testament to the good working environment and interesting technical work - in addition to this they offer a very comprehensive package of benefits including; Bonus, Private Medical Insurance, Life Assurance, Income Protection, Contributory Pension and very flexible working - this is all on top off a very competitive salary (£70k to £80k). If you're interested in this role, or generally looking for a new opportunity in Glasgow, please apply and/or call Max at Cathcart Technology.
09/01/2025
Full time
Global Technology company that specialise in ensuring Software Security are looking for a Principal Software Engineer (skilled with C++) to join their Glasgow Base. Work on series of world-class products and gain experience with some really interesting development led security practices. Their software ensures security with data, communications, payments and protects content. The company have been operating successfully in Glasgow for over 20 years now, and they are well respected in the tech community. They now have a global client base and build trusted securities software for billions of connected devices. It's an exciting time to join them as they have spent the last year refactoring their products to their best standard yet. They also have placed a focus on increasing their Global presence and plan to break into new several new global markets. The ideal candidate will have several years of programming experience with C++ (bonus points if you have exposure with C or Objective-C). This role will mainly involve working on the company's core products, they currently have 3 that are used world-wide and very highly rated (in fact many of us use them daily and we don't even know it!). The project work is genuinely interesting and they have host of greenfield projects kicking off in Q1 of this year. As security is their bread and butter, their ideally looking for someone from that background or to have strong knowledge/a passion for security. Your skills & Experience: * Strong knowledge of C/C++ * Ideally coming from a Security background. *Knowledge of IOS/MACOS development * Deep understanding of Design processes and Architectural patterns The following is highly desirable; * Cybersecurity certifications will definitely get you some bonus points * Experience in mentoring Junior members of the team Their office is based in Glasgow city centre, walking distance from both Central Station and Queen Street - like most they work on a hybrid basis, with a couple of days on site per week (definitely flexible on this for those travelling from further affield). They've got great staff retention - a testament to the good working environment and interesting technical work - in addition to this they offer a very comprehensive package of benefits including; Bonus, Private Medical Insurance, Life Assurance, Income Protection, Contributory Pension and very flexible working - this is all on top off a very competitive salary (£70k to £80k). If you're interested in this role, or generally looking for a new opportunity in Glasgow, please apply and/or call Max at Cathcart Technology.
Scada Engineer Initial 12 month contract + extensions 3-4 days per week Poland (onsite Warsaw or Szczecin) Fluent English and Polish Client: A leading energy company. The Instrumentation and Control team is responsible for the implementation, quality assurance and operational support for the SCADA systems of the high-voltage and substations as well as for the generation and storage systems (WTG, PV and storage) of our onshore wind farms and PV plants. As a SCADA and Network Engineer, you will be project orientated and take technical responsibility during the development and design phase of the projects as well as operational support during the subsequent operational phase by performing engineering activities, remote configurations, site implementations and managing contractors. Tasks : You will define and create technical specifications You will be responsible for reviewing the designs provided by contractors and suppliers You will design, develop and implement system interfaces You are responsible for carrying out quality and acceptance tests for contractors and ensure that these are carried out and documented in accordance with the specifications (FAT and SAT) You accompany complex commissioning activities of the suppliers and check their results You coordinate, prioritise, track and carry out troubleshooting and maintenance of the relevant systems with the operations teams Manage contractors and service providers who perform design, implementation, maintenance and troubleshooting activities for the relevant systems You will lead and drive SCADA projects to optimise monitoring and control functions and data availability You are an active member of an international team in which knowledge, experience, successes and insights are continuously shared You promote good collaboration and knowledge sharing with other teams in the renewable energy business units Qualifications : University degree or equivalent in a relevant technical or engineering discipline or equivalent experience At least 5 years of relevant work experience and experience with SCADA systems Experience with control systems, automation, SCADA, PLCs, RTUs and IEDs Experience with industrial communication protocols (especially OPC family, Modbus, IEC-104 and MMS) and their network specific behaviours Experience with the development and/or administration of networks and the setup of network components (Switches, Firewalls, ) . Certification in networking is an advantage. Experience with SCADA systems in the areas of high voltage and substations, wind turbines and/or solar plants and their infrastructure is a plus Knowledge of SQL server queries, experience managing SQL Servers is a plus Experience with Restful API for industrial data transmission is a plus Experience with VMware ESXI and installing and managing hardware is a plus Aptitude for working in a wind turbine (training provided by employer) is a plus Relevant project management skills and experience supervising contractors Ability to communicate clearly and concisely Ability to perform risk analyses and implement risk mitigation plans Ability to multi-task as needed and manage schedule according to project priority Experience or knowledge of cybersecurity requirements for critical infrastructure is a plus Expected average travel during the work week of 20%-30% Fluency in written and spoken English and Polish . Other languages such as Italian, Swedish, French, German or Spanish are a plus
09/01/2025
Project-based
Scada Engineer Initial 12 month contract + extensions 3-4 days per week Poland (onsite Warsaw or Szczecin) Fluent English and Polish Client: A leading energy company. The Instrumentation and Control team is responsible for the implementation, quality assurance and operational support for the SCADA systems of the high-voltage and substations as well as for the generation and storage systems (WTG, PV and storage) of our onshore wind farms and PV plants. As a SCADA and Network Engineer, you will be project orientated and take technical responsibility during the development and design phase of the projects as well as operational support during the subsequent operational phase by performing engineering activities, remote configurations, site implementations and managing contractors. Tasks : You will define and create technical specifications You will be responsible for reviewing the designs provided by contractors and suppliers You will design, develop and implement system interfaces You are responsible for carrying out quality and acceptance tests for contractors and ensure that these are carried out and documented in accordance with the specifications (FAT and SAT) You accompany complex commissioning activities of the suppliers and check their results You coordinate, prioritise, track and carry out troubleshooting and maintenance of the relevant systems with the operations teams Manage contractors and service providers who perform design, implementation, maintenance and troubleshooting activities for the relevant systems You will lead and drive SCADA projects to optimise monitoring and control functions and data availability You are an active member of an international team in which knowledge, experience, successes and insights are continuously shared You promote good collaboration and knowledge sharing with other teams in the renewable energy business units Qualifications : University degree or equivalent in a relevant technical or engineering discipline or equivalent experience At least 5 years of relevant work experience and experience with SCADA systems Experience with control systems, automation, SCADA, PLCs, RTUs and IEDs Experience with industrial communication protocols (especially OPC family, Modbus, IEC-104 and MMS) and their network specific behaviours Experience with the development and/or administration of networks and the setup of network components (Switches, Firewalls, ) . Certification in networking is an advantage. Experience with SCADA systems in the areas of high voltage and substations, wind turbines and/or solar plants and their infrastructure is a plus Knowledge of SQL server queries, experience managing SQL Servers is a plus Experience with Restful API for industrial data transmission is a plus Experience with VMware ESXI and installing and managing hardware is a plus Aptitude for working in a wind turbine (training provided by employer) is a plus Relevant project management skills and experience supervising contractors Ability to communicate clearly and concisely Ability to perform risk analyses and implement risk mitigation plans Ability to multi-task as needed and manage schedule according to project priority Experience or knowledge of cybersecurity requirements for critical infrastructure is a plus Expected average travel during the work week of 20%-30% Fluency in written and spoken English and Polish . Other languages such as Italian, Swedish, French, German or Spanish are a plus
