37 joburi disponibile

*This is a remote 6+ month contract role, there is no sponsorship, and no 3rd party candidates will be considered* Prestigious Enterprise Company is currently seeking a Application Security Analyst. Candidate works closely with other members of the Security Services, IT Development Teams and Quality Assurance teams to support application and software security initiatives, projects, and operations. Candidate will be integrating security tools into the development pipeline to support the confidentiality, integrity and availability of enterprise applications. Responsibilities: Assist with application penetration testing Assist with retesting vulnerabilities to verify the development teams have remediated Review reports of the testing and conduct security risk assessment of the vulnerabilities Conduct code scans using automated tools and risk rate the vulnerabilities according to the organization risk profile and mitigating controls. Conduct IT/Security code review meetings to eliminate false positives and encourage collaboration between Security and IT development teams Assist with application security vulnerability management including implementation of new vulnerability management tools Assist in the development of metrics documentation to track the burndown rate of vulnerability remediation Assist in the development of security engineering documentation: Explore opportunities for updates to Security Engineering policies and standards Assist with the development and periodic review of Security controls, policies, and procedures in close coordination with Security managers Participate in the improvement of security engineering processes Help gather evidence of security testing processes for audits Work with development team and Q/A to create development life cycle documentation, provides integrated systems planning which will enhance current systems and support corporate, business and system goals. Identify automation opportunities and help with department automation efforts Collaborate and brainstorm with the Security Engineering team on new application and application infrastructure technology components Qualifications : Highly motivated individual that assumes ownership of their projects Ability to act as a liaison between security and the development, IT, and QA teams. Strong desire and capacity to learn and support new technical applications Exceptional verbal communication skills that include the ability to articulate ideas clearly and concisely Ability to write clear and concise documentation Knowledge of security principles Training and/or education preferred Experience administering and interpreting results from security scanning tools Experience working in the financial industry Technical Skills: Knowledge of Scripting languages including Java, C++, Python, JavaScript, Bash Familiarity with application frameworks and their built-in security services and API s (ie, Sun J2EE, MS .NET, OMG CORBA, Spring, etc.) Knowledge of automated code scanning tools (ie,) and development pipeline tools (ie,) Understanding of security concepts and practices, including those for authentication, authorization, access control and auditing as well as best practices (eg OWASP).Knowledge of Secure DevOps concepts Bachelors degree in Cybersecurity, Computer Science, Management Information Systems, or related field or the equivalent combination of education and/or relevant experience 3+ year experience in Security-related roles or equivalent training/knowledge of security best practices and OWASP and NVD Experience with SDLC and working with business users, database analysts, system architects, etc., to identify and prioritize requirements

We are currently looking on behalf of one of our important clients for a Medical Device Systems Engineer (Cybersecurity). The role is a permanent position based in Solothurn Canton with good home office allowance. Your Role: Operate as a Systems Engineer with strong focus on cybersecurity of a Medical Device. Define requirements (on stakeholder & technical levels) related to security for Medical Devices & Connected Systems. Define architecture & design of secure Medical Devices & Connected Systems (security by design). Work closely with other specialists, including Systems Engineers, Software Developers, Hardware Engineers, Test Managers & Risk Managers to specify & develop secure Connected solutions. Participate actively in Cybersecurity Risk Assessments/Threat Modeling. Partake in pre- & post-market vulnerability assessments. Evaluate & interpret Cybersecurity related standards. Develop & maintain concept & design documents & create & maintain traceability. Your Skills: At least 3 years of relevant professional experience, including experience in Cybersecurity, Systems Architecture & Software Architecture. Strong skills & experience in Security Architectures, Technologies & Best Practices. Ideally experienced in the Medical Technology Sector or other Highly Regulated Environments. Your Profile: Completed University Degree in Computer Science, Information Security or similar. Strategic, able to think critically & in possession of strong problem-solving skills. Fluent in English (spoken & written), German language skills are considered a plus. If you wish to apply, please send us your resume in Word or PDF format.

*We are unable to sponsor as this is a permanent Full time role* *This can be a fully remote position* A prestigious company is on the search for an Expert CRM Architect, Vulnerability Researcher. This position will focus heavily on offensive security vulnerability assessments and research manual & automated source code review. They will work with reverse engineering and binary analysis. They will focus on web applications, cloud infrastructure, red team/purple team, etc. Responsibilities: Performs vulnerability assessments using industry best practices on various environments, including web applications, APIs, and cloud infrastructure Develops and manages testing methodologies that adhere to common security guidelines and NIST standards Conducts an evaluation of cloud security configurations, identifies prevalent vulnerabilities in cloud security controls, and improves and maintains cloud testing standards Provides detailed reports with proof of vulnerabilities, guidance, and advice to support customer teams through vulnerability remediation Researches and develops innovative techniques, tools, and methodologies for vulnerability research and red team activities Exercises thought leadership in the development and execution of security threats and malicious actors Qualifications: 7+ years of work experience in the Cyber Security industry Bachelor's Degree in Computer Science or Management Information related field, or equivalent work experience Extensive experience in offensive cybersecurity roles, such as red teaming, penetration testing (eg, web, infrastructure, cloud), purple team exercises in cloud and on-prem environments A robust understanding of contemporary security theory and application exploitation techniques and attack vectors (including the vulnerability life cycle and scanning methodologies (SAST, DAST, IAST, RASP) Experience developing and managing testing methodologies that adhere to common security guidelines such as OWASP and frameworks such NIST 800 or MITRE ATT&CK A solid understanding of computer architecture and organization with respect to binary analysis and exploitation Ability to analyze, create, and debug shellcode and other low-level exploits Experience developing custom security (either offensive or defensive) software in one or more compiled languages Demonstrated abilities to reverse engineer binaries, enumerate vulnerabilities in compiled software, and provide working exploits (eg, CVEs, public acknowledgements, or ability to demonstrate on demand) Familiarity with automated security analysis and fuzzing tools (eg, AFL and Peach) Demonstrated ability to discover vulnerabilities via static analysis and source code review A working understanding of key programming languages and frameworks (eg, Java, Node.js, Python, JSP, etc.), including the ability to pick up new languages quickly, understand the security implications of those languages, and enumerate vulnerabilities in custom-developed software packages that leverage those languages Familiarity with Scripting/programming of Python, PowerShell, or C# with the ability to create and customize tools

Network Domain Architect - €100K+ Bonus & Benefits Highly regarded Insurance and Financial Services Multinational has an immediate requirement for a Network Domain Architect to join operations at their European HQ in Dublin City Centre. The Network Domain Architect will set the direction enterprise network solutions and influence direction on security, tooling and strategy. They will ensure we have the right technologies, capabilities, and architectures to connect, support and secure Enterprise operations into the future. This position also has a leadership Dimension, as the Network Domain Architect will have responsibility for leading a team of solution architects whose primary purpose is the ongoing improvement of Information Systems methods, tools, techniques and the delivery of services throughout the business. This role is permanent and comes with an exceptionally generous benefits package. The working arrangements for this role are hybrid, with a 1-2 day per week onsite requirement. Please note that while this role is offered on a hybrid basis there may be an occasional requirement to visit the company's offices at short notice so all prospective candidates must be willing to reside in the republic of Ireland. Duties and Responsibilities: Work closely with the other architects and leaders across the enterprise to define technology direction, strategies and roadmaps. Ensure that strategies are in place which align with business and other IS strategies including the wider European Technology Strategy. Manage a team of architects working on a diverse project portfolio. Define goals and objectives, meet regularly, provide direction and guidance, review project allocations Mentor other staff and assist in succession planning activities Represent your Domain/Specialist area(s) at Technical Design Authority Provide governance and oversight to project/programmes Provide consultancy services to the enterprise Lead technology RFPs Business case development Vendor management Stakeholder management Technology Due diligence exercises for M&A Activities Maintain strong partnership with IT leaders and practitioners across the enterprise Ensure technology deliveries align to strategies and standards Essential Candidate Requirements 10+ Years working in network/security engineering Third Level degree in Computer Science, IT or other relevant area. A proven track record in working effectively as part of a team within formal project management methodologies and processes. Broad technical knowledge of a range of Application and Infrastructure disciplines across Storage/Compute/Network for on-prem and experience in working on delivery of Cloud solutions in addition to Cyber Security is an essential. Experience in architecting and designing complex technical solutions in a hybrid cloud environment. Ability to collaborate effectively with staff at all levels and use your influencing skills to drive better business outcomes Demonstratable experience as the technical lead in the delivery of infrastructure and software solutions, and be able to reference successful implementations Possess professional Cloud, Security & Networking certification. Knowledge of industry trends, directions, roadmaps, capability models and frameworks The drive and willingness to continuously develop your technical knowledge Excellent communications skills with a trac k record in communicating at all levels from Executive to Team level, IS and business stakeholders. Excellent written skills are also essential. Telecoms knowledge and experience would be an advantage. Experience in working and driving large scale programs. Has a very strong risk security focus. Representing Information Security across Technology Services and playing a key role in communicating the technology strategies and road maps. Leading complex projects/issues that require in-depth knowledge across multiple technical areas across common enterprise architecture domains Advantageous but not essential: Experience working within the financial services sector is preferable, or within other heavily regulated entities such as Pharma. A broad understanding of how applications work and the implications of technology change on them. IMPORTANT - All applicants must have immediate availability to work in the EU as our client cannot provide any kind of Visa or Work Permit sponsorship at present. To Apply: For more information on this role, please contact Níall  or send current CV along with brief cover letter through this site

Principal Engineer - Produsct Security Filton (Or nearest site) £83.40p/h Inside IR35 This role requires Active SC clearance from day 1. (No Sponsorship offered) Role Description The following activities are typical of the work that may be carried out by the PSA Principal Engineer, in full or part dependent on the role and the place the project is in the engineering life cycle: Provide advice on Product Security matters for programmes to a wide range of stakeholders which will include System Engineers, Engineering Managers and Technical Authorities as required. Gain sufficient understanding of a system, its concept of use and architectures in order to provide an accurate assessment of Product Security in terms of possible threats, potential avenues of attack and to advise on the application of secure development practices. Be able to select appropriate Product Security techniques which are consistent and repeatable for use across a programme. Understand and be able to provide relevant guidance on the threat environment for a programme. Ensure that Product Security analysis of a project, system or equipment, is delivered and is managed using recognised risk analysis techniques. Ensure that Product Security analysis work is fully documented, enabling the management of risk throughout the product life cycle. Be able to contribute and influence the development of Product Security strategies, policies, guidance, good practices and awareness. Be able to recommend appropriate controls to mitigate identified risks in line with government and MOD policies and good practice, to provide more cost effective risk mitigation in the longer term. Present risks and proposed controls to internal and external stakeholders, to achieve agreement and buy-in. Be able to plan and manage work concurrently across multiple security work programmes. Provide regular updates on project status/progress in accordance with project specific reporting cycles. Represent the Product Security group at Design Reviews and other various engagements, to ensure that Product Security is appropriately considered at each stage of the design life cycle. Undertake peer reviews as directed. Provide technical guidance and supervision to other Product Security engineers and support the management and planning of specialist activities. Provide technical guidance and support in relation to product incident management. Specific Key Accountabilities and Deliverables The PSA Principal Engineer will be responsible for, or provide input to the following typical key deliverables, dependent on the role and the place the project is in the engineering life cycle: Risk Management Accreditation Document Set (RMADS). Security Strategy and other accreditation documentation Captured and agreed technical requirements in accordance with company and programme processes. Compliant technical solutions against contractual requirements and regulations. Technical input and appropriate consideration of product security activities and issues for LCM deliverables and Design Reviews, including Sub-Contract Design Reviews. Captured and agreed input to appropriate Verification and Qualification Plans. Specialist advice and contribution to other project documentation, such as Training Needs Analysis (TNA), Technical Publications, Cyber Incident Plans and Operating Instructions (list is not exhaustive). Experience Degree (or equivalent experience) in a relevant STEM subject or Information Security related. Holds NCSC CCP SIRA status (or able to achieve) Good understanding of information security principles and is able to advise on the potential impact to Product Systems. Experience of Product Security Engineering activities in the defence, maritime or closely linked domain. Knowledge of security related activities required to support the engineering life cycle with experience of operating in the phase relevant to the role. Proven experience of assessing and managing information risk in line with industry good practice. Experience of assessing and advising on controls to support Product Safety. Proven experience of applying Product Security/Information Security concepts to applicable technologies within the environment (or similar).

Cyber Security Manager Location: Nottingham office. Expected to be on site 1 set day a week, remote working available for the other days with ad-hoc exceptions. Salary: £55,000-£60,000 with 3 year increments to £65k for the right candidate. Permanent. 15% bonus, 12% pension. Lithium3 Technology Recruitment are exclusively engaged with a unique Nottingham based client to recruit them a Cyber Security Manager. Purpose of the role Effective cyber security is an integral part of our client's strategic goals. Reporting to the Head of Cyber Security, this is a new senior management appointment arising from an ongoing cyber security improvement programme. The successful candidate will play a pivotal role in shaping the future of cyber operations. The role will involve hands on, practical application of cyber operations. The successful candidate will have experience of managing cyber incidents through the effective identification, response, and recovery process, even when working under pressure. Applicants should have a sound understanding of managing cyber risks, as well as experience of managing both analytical teams and stakeholders. This role will work closely with colleagues in IT, both internal and third party, as well as those in Data Protection; however, they will also need to engage effectively across the business to ensure a consistent approach to cyber security. This role will suit a people-oriented individual, who is able to promote the benefits of security to non-specialists. Our client offers a supportive and collaborative environment, where the successful candidate will be given the opportunity to develop their specialist skill set and have paid training where justified. We will also consider Senior Cyber Security Analysts or Leads looking to move into a formal Manager position. Responsibilities Support the implementation of Security Strategy, in line with recognised frameworks and standards, such as NIST, ISO/IEC 27001 and Cyber Essentials. Provide expert advice and guidance to stakeholders on cyber security threats and how best to respond. This may involve assessing proposals to introduce new systems, service and processes, and changes to existing systems, services and processes for cyber security risks. Working with our third-party security partner to ensure the delivery of cyber operations, evidenced through regular KRI/KPI reporting. Identifying areas of weakness current IT systems and processes and make recommendations on appropriate mitigation to minimise risk. Develop, review, and embed Information Security Policy, associated standards, and guidance, in line with relevant legislation and industry standards. Manage the Information and Cyber Security systems, processes and procedures, and contribute to reporting of identified threats and vulnerabilities. Manages for the Incident Response process, including triage, response, recovery, and post-incident review. Liaise with external bodies and organisations to keep abreast of emerging trends, technologies and legislation that have an impact on Cyber Security. Leverage existing technologies and embed new technologies to bolster cyber resilience. Collaborate with subject matter experts to ensure Cyber Security is managed effectively throughout the IT service delivery life cycle. This includes Security Operations, Security Architecture and Security Assurance. Supports the delivery of cyber security training and awareness, including operational exercises to rehearse incident response plans. When directed, deputise for the Head of Cyber Security What skills, qualifications and qualities do I need to be successful? This role will suit you if you are/have: Demonstrated experience playing a lead role within Cyber Operations. Experience implementing policies and procedures in line with recognised frameworks, such as ISO 27001 and Cyber Essentials. Experience building and developing effective relationships with internal and external stakeholders. Excellent communication skills, including the ability to articulate changes and technical information to stakeholders with differing levels of technical knowledge and the ability to influence decision makers. Experience working in a complex IT organisation encompassing service delivery, application development and IT infrastructure. Demonstrated ability to drive change in an organisation through the use of process improvement, culture change and technology. Experience of working to deadlines, prioritising a complex range of tasks to ensure delivery in a role which has made competing demands on your time. Experience applying various technologies and processes used to protect large organisations from cyber threats. Qualifications We are flexible and would be keen to hear from candidates who have a range of qualifications or experiences equivalent to the following: Bachelors' degree or equivalent CISM, CISSP, CISA ISO 27001 lead auditor Prince 2/PMP Lithium3 Technology Recruitment Limited is an equal opportunities employer that acts as an employment agency for permanent recruitment and an employment business for the supply of specialist contractors. By applying for this role your details will be submitted to Lithium3. Our Candidate Privacy Information Statement is on our website.

Contract - Cyber Security Architect LOCATION: REMOTE You will need to come from a large enterprise company (fortune 100 company preferred) or vendor serving large clients. Looking for a true architect. Must be heavy in cloud infrastructure Azure/AWS with good experience with applications, authentication and authorization. Agile Scrum Waterfall virtualization MDM Database encryption expert in platform network virtualization mobile etc. JOB DESCRIPTION The Expert Cyber Risk Management Architect will be responsible for the planning, development and implementation of enterprise information security solutions (such as authentication and authorization, public key infrastructure, data loss prevention, and security event information management) to address the current and emerging security needs of the business. This role requires the proactive identification and solution of some of the most complex enterprise-scale information security problems. The role will research, design, and develop new technologies, architectures, and security products that will support security requirements for the enterprise and its customers, business partners, and vendors. The person in this role will contribute to the development and execution of strategic information security architecture to enable effective business operations, manage enterprise risk, and address business or regulatory issues. RESPONSIBILITIES Designs, builds, and leads a team that ensures the security of enterprise data and systems by developing enterprise information security solutions. Creates and updates a view of IT assets, related attack surfaces, and threat actors to illustrate the flow of data and associated security threats. Researches, designs, and develops new enterprise technologies, architectures, and security products that will support security requirements for the enterprise and its customers, business partners, and vendors. Serves as a security expert in application development, database design, network, and/or platform (operating system) efforts, helping project teams comply with enterprise and IT security policies, industry regulations, and best practices. Serves as an expert in platform, application, storage, network, virtualization, cloud and mobile security best practices. Exercises thought leadership in the creation and maintenance of security architectures. QUALIFICATIONS 7+ years of experience w/Bachelor's degree A strong, complete, and working understanding of architecture-level information security and appropriate use enforcement technology solutions including advanced malware detection/prevention, mobile device virtualization/MDM, cloud security management, structured and unstructured database encryption, mobile application and remote API security, fine-grained application authorization and access control, security event visualization, big data user and entity behavior analytics, active adversary deception, and others. A strong working understanding of contemporary security theory and application (including vulnerabilities, exploitation techniques and attack vectors). Strong understanding of systems development life cycle to lead multifunctional projects or initiatives. Knowledge of laws, regulations, and standards relevant to the US Healthcare industry. Excellent written and verbal communication skills (including technical writing, documentation development, process mapping, and visualization). Must be able to effectively communicate technical concepts to a non-technical audience. Externally recognized information security industry thought leadership and innovation accomplishments desired but not required.

NO SPONSORSHIP Expert Vulnerability Researcher Researcher with CVE. 100% REMOTE Looking for a candidate who has a track record of Vulnerability Research (based on products developed, conference presentations, CVEs reported, having held research positions at prominent research orgs (.gov, Raytheon, MIT Lincoln Labs, niche security consulting shops, etc.). Ideal candidate will have additional skillsets like: Azure, Oracle Cloud, web platforms (specifically Java and Node/React on the research side, not OWASP. Someone who has published research or presented at a conference on web application security (eg, OAuth, SAML, web platform security bugs), and/or enterprise product vulnerability research All candidates should have experience developing in multiple languages and be able to find bugs in closed source products (ie, via reverse engineering). The Vulnerability Researcher role is responsible for analysing systems, software, and security strategies to discover previously unknown vulnerabilities to proactively identify and mitigate emerging threats. This is accomplished by performing manual and automated source code review, binary analysis, vulnerability assessments, threat modelling, and security architecture review. This role requires research into the latest threat actors, attack vectors, and the offensive security techniques. Development of custom tooling and automation will be required to supplement manual vulnerability discovery. You must be an application, penetration, code-testing EXPERT. Somebody who can call into the code and punch holes from the inside-out. QUALIFICATIONS: 7+ years of work experience in the Cyber Security industry Bachelors Degree in Computer Science or Management Information related field, or equivalent work experience Understanding of all phases of adversary emulation operations including reconnaissance, social engineering, exploitation, post-exploitation, covert techniques, lateral movement, and data exfiltration Extensive experience in offensive cybersecurity roles, such as red teaming, penetration testing (eg, web, infrastructure, cloud), purple team exercises in cloud and on-prem environments A robust understanding of contemporary security theory and application exploitation techniques and attack vectors (including the vulnerability life cycle and scanning methodologies (SAST, DAST, IAST, RASP) Experience developing and managing testing methodologies that adhere to common security guidelines such as OWASP and frameworks such NIST 800 or MITRE ATT&CK CVE A solid understanding of computer architecture and organization with respect to binary analysis and exploitation Ability to analyze, create, and debug shellcode and other low-level exploits Experience developing custom security (either offensive or defensive) software in one or more compiled languages Demonstrated abilities to reverse engineer binaries, enumerate vulnerabilities in compiled software, and provide working exploits (eg, CVEs, public acknowledgements, or ability to demonstrate on demand) Familiarity with automated security analysis and fuzzing tools (eg, AFL and Peach) Demonstrated ability to discover vulnerabilities via static analysis and source code review A working understanding of key programming languages and frameworks (eg, Java, Node.js, Python, JSP, etc.), including the ability to pick up new languages quickly, understand the security implications of those languages, and enumerate vulnerabilities in custom-developed software packages that leverage those languages Familiarity with Scripting/programming of Python, PowerShell, or C# with the ability to create and customize tools Must have Reverse Engineering and Binary Analysis experience

We are currently looking on behalf of one of our important clients for a C#/.NET Architect/Tech Leader. The role is permanent position based in Zürich Canton & comes with good home office allowance. Your role: Carry out technical leadership in SW architecture topics in close collaboration with the other global sub-teams. Work with Business & Software Engineering Teams to build C, C++ & C#/.NET applications from the ground up. Develop edge & cloud products that shape & optimize customer production environments. Work on all layers of the technology stack to provide a solution, which is perfectly integrated from the sensor, over the edge and to the cloud. Prepare solutions by determining & designing system specifications. Ensure that solutions comply to all cyber security demands. Provide solutions that are ready to integrate into the industrial Internet of things (IIoT). Guide teams on the end-to-end project life cycle, covering the initial conception, business requirements, software architecture & technical leadership. Provide technological & architectural consulting to stakeholders. Work on proof-of-concept & the design of innovative solutions, with an emphasis on scalability, modularity, flexibility & performance. Run group-wide thought leadership initiatives to advance architectural practices & sustain technical excellence. Work closely with cooperation partners including product managers, requirements engineers, test-automation-teams, Embedded software development teams & DevOps teams. Your Skills: At least 6 years of professional experience in Designing & implementing large-scale C, C++, C#/.NET & WPF Applications. Experienced in one or several other frameworks such as ASP.NET or on web Front End frameworks such as React, Angular, Vue.js & Blazor. A good knowledge of Integration Patterns & best practices such as Synchronous vs. Asynchronous Communications, RESTful APIs, Messaging & Publish-subscribe. Experienced in IIoT communication protocols, OPC-UA & MQTT. A strong understanding of Multi-tier Architectures & Microservices (load balancers, caching, web Servers, application Servers, networking, databases & content delivery networks). Hands-on experience with Containers & Orchestration Platforms. A strong knowledge of best practices & tooling for CI/CD pipelines, DevOps, Agile methods (SAFe, Scrum), Automated Testing, Code Quality, VSTS, Selenium/Gherkin & Artifactory. Experienced in monitoring, troubleshooting & profiling systems. Skills & expertise in Cloud Services (Azure, AWS, etc.) is considered a plus. Your Profile: Completed University Degree in Computer Science or similar. Enthusiastic, creative, flexible & team-oriented. Confident with strong communication skills. Fluent in English (spoken & written), German language skills are considered very advantageous. If you wish to apply, please send us your resume in Word or PDF format with some references.

Infrastructure Consultant - Architecture, Cloud, Design, Implementation Job Title: Infrastructure Consultant Location: Hybrid/Leicestershire Salary: Up to £56,500 per annum Benefits: Excellent pension (49% employer contributions!), flexible working, social benefits, and discounts at numerous retailers! The Client: Curo is collaborating with a public sector client based in Leicestershire. They provide vital services to their communities in and around the county, and have forged excellent relationships with the local community, organisations and agencies, working towards a shared goal of making real improvements to quality of life for everyone. They offer a collaborative and supportive environment, and excellent benefits. It is worth noting that this employer offers exceptional benefits, including 49% employer pension contributions, flexible working, discounted gym membership and discounts at numerous retailers. The Candidate: This role would suit a Solutions Architect, Consultant or Senior Engineer with strong experience in networking, designing, managing and implementing complex infrastructure and technology projects within a large organisation with relevant security checks. You will be involved in a mix of projects, and support with the local implementation of national projects. This role requires 2+ years design experience (HLD and LLD). This opportunity would suit a candidate who: Can work with business, regional and national stakeholders to identify, plan, design and deliver new information technology services and infrastructure across the Leicestershire region. Can further identify areas and opportunities to improve and support existing technology and critical infrastructure. Can be responsible for technical design, implementation, maintenance, security, final line support and budgeting for a wide range of national, regional, local and collaborative systems. Can provide technical expertise to resolve and to manage any and all IT related issues, and to be part of an on-call rota to provide out of hours emergency IT service. Please note this role requires a candidate who is eligible to undergo DV Clearance. Ideally you will live within a commutable distance of Leicestershire, to accommodate the on-site requirement associated with the role. The Role: You will be joining an established internal team of 12 Solution Architects, supporting with the local implementation of regional IT Projects. This position would suit a candidate with experience of conceptualising and identifying solutions, with the ability to take responsibility for all aspects of the design, implementation and technical management of enterprise grade systems and cloud platforms as necessary. This role would suit a candidate with Solution Architecture experience in core technologies such as Active Directory, SQL Server, SAN, and Citrix. This is a hybrid position. Knowledge and Skills: As a Technical Solution Architect, the suitable candidate will (as part of a team): Have the ability to communicate effectively (both written and verbal) to a technical and non-technical audience and present technical information in a clear concise way to a range of senior technical and operational/business stakeholders. Manage relationships with local, regional and national stakeholders and partners and lead the implementation of ICT projects, systems and services. Be able to work either independently or collaboratively with colleagues to achieve the best outcome for the organisation and a passion for maintaining existing skills and acquiring new capabilities via a mix of self-learning and formal training. Education and Experience required: Solution Architecture experience with core technologies including Active Directory, SQL Server, SAN, Citrix etc. Qualified to a degree level in a Computer Science or other Technology discipline, or hold a professional qualification in a relevant subject (eg MBCS or equivalent), or demonstrate work experience to an equivalent level. Experience of conceptualising and identifying solutions and to take responsibility for all aspects of the design, implementation and technical management of enterprise grade systems and infrastructure to include physical systems, virtual systems and cloud platforms as necessary. Demonstrable experience of taking ownership of a project throughout the full implementation life cycle, of projects & systems, utilising appropriate methodologies and techniques. To include experience of planning and managing budgetary control over the life cycle of a piece of software, infrastructure or system. Maintaining documentation of systems, processes and problems using the appropriate tools and techniques (eg UML, DFD, network diagram, etc.) Manage systems to suggest technical and system optimisations through a multi-year solution lifespan to maintain and enhance business benefits. Have experience and awareness of identifying and implementing appropriate system backup, recovery and business continuity processes. Demonstrate experience and a good working knowledge of implementing systems and services that conform to the requirements of internal and external security standards (eg relevant British and ISO standards, Cyber Essentials, NCSC and NIST). Have a strong understanding of infrastructure technologies and experience of utilising and implementing such technology in a secure and practical way, to provide a technical and infrastructure expert view for procurement decisions and to influence decisions based on best practice and current industry thinking. To apply for this Infrastructure Consultant permanent job, please click the button below and submit your latest CV. Curo Services endeavours to respond to all applications, however this may not always be possible during periods of high volume. Thank you for your patience. Curo Services is a trading name of Curo Resourcing Ltd and acts as an Employment Business for contract and temporary recruitment as well as an Employment Agency in relation to permanent vacancies.

Security Engineer Salary: $110k-$120k Location: East Chicago, IN *Hybrid role. Must live within 1 hr. distance for occasional in-office travel* *This role is unable to provide sponsorship* Qualifications Bachelor's Degree in Business, Computer Science or related field. 3-5 years of enterprise IT security engineering experience Knowledge of security and control frameworks, such as ISO 17799, COBIT, and NIST CyberSecurity Framework. Systems Security Certified Practitioner (SSCP), CompTIA Security+, or GIAC Security Essentials Certification (GSEC) certification required or must be obtained within 2 years of hire. Experience with ProofPoint, Cisco AMP, SpecOps and other industry standard security tools. Experience with Palo Alto Firewalls Advanced knowledge of Network Security, Endpoint Security, Server hardening, patching, and base-lining, Mobile device security, Data Loss Prevention, IDS/IPS, Log analysis Preferred Cisco ISE or NAC experience Scripting (Python, Perl, Powershell) knowledge CISSP Responsibilities Maintain and implement the cybersecurity infrastructure and program Collaborate with other technical teams to respond to threats as well as on a daily basis to maintain the security posture of the environment. Work on highly complex projects and maintains knowledge across multiple domains (networking, server, end points, mobile, cloud, etc.) Involved in patching, maintaining Firewalls, scanning for vulnerabilities, keeping current on the latest security threats and trends, and reviewing technical architecture for security compliance

*We are unable to sponsor as this is a permanent Full time role* A prestigious company is on the search for an Information Security Engineer. This engineer will get their hands on everything related to cybersecurity which includes, network defense, TCP/IP Networking, Active Directory, Firewalls, vulnerabilities, compliance, etc. Responsibilities: This position works on highly complex projects and maintains knowledge across multiple domains (networking, server, end points, mobile, cloud, etc.). The Information Security Engineer has a thorough understanding of network defense technologies, TCP/IP Networking, Active Directory, DHCP, DNS, network security monitoring tools, secure engineering principles and technical security testing. This is a hands-on role which will be involved in patching, maintaining Firewalls, scanning for vulnerabilities, keeping current on the latest security threats and trends, and reviewing technical architecture for security compliance. Qualifications: Bachelor's Degree in Business, Computer Science or related field. 3-5 years of enterprise IT security engineering experience. CISSP preferred. Must possess expert understanding of Information Technology, Information Security, and Risk Management. Knowledge of security and control frameworks, such as ISO 17799, COBIT, and NIST CyberSecurity Framework. Systems Security Certified Practitioner (SSCP), CompTIA Security+, or GIAC Security Essentials Certification (GSEC) certification required or must be obtained within 2 years of hire. Experience with ProofPoint, Cisco AMP, SpecOps and other industry standard security tools. Experience with Palo Alto Firewalls Advanced knowledge of Network Security Advanced knowledge of Endpoint Security Advanced knowledge of Server hardening, patching, and base-lining Advanced knowledge of Mobile device security Advanced knowledge of Data Loss Prevention Advanced knowledge of IDS/IPS Advanced knowledge of Log analysis Skilled Critical Thinking Cisco ISE or NAC experience desired Keeps current on emerging threats and mitigation strategies. Scripting (Python, Perl, Powershell) knowledge preferred.

*We are unable to sponsor for this permanent Full time role* Prestigious Enterprise Company is currently seeking an Information Security Engineer. Candidate is responsible for maintaining and implementing the cybersecurity infrastructure and program. This position will work very closely and collaborate with other technical teams to respond to threats as well as on a daily basis to maintain the security posture of the environment. Responsibilities: This position works on highly complex projects and maintains knowledge across multiple domains (networking, server, end points, mobile, cloud, etc.). The Information Security Engineer has a thorough understanding of network defense technologies, TCP/IP Networking, Active Directory, DHCP, DNS, network security monitoring tools, secure engineering principles and technical security testing. This is a hands-on role which will be involved in patching, maintaining Firewalls, scanning for vulnerabilities, keeping current on the latest security threats and trends, and reviewing technical architecture for security compliance. This individual will be regarded as an expert in all things cybersecurity related. Qualifications: Bachelor's Degree in Business, Computer Science or related field. 3-5 years of enterprise IT security engineering experience. CISSP preferred. Must possess expert understanding of Information Technology, Information Security, and Risk Management. Knowledge of security and control frameworks, such as ISO 17799, COBIT, and NIST CyberSecurity Framework. Systems Security Certified Practitioner (SSCP), CompTIA Security+, or GIAC Security Essentials Certification (GSEC) certification required or must be obtained within 2 years of hire. Experience with ProofPoint, Cisco AMP, SpecOps and other industry standard security tools. Experience with Palo Alto Firewalls Advanced knowledge of Network Security Advanced knowledge of Endpoint Security Advanced knowledge of Server hardening, patching, and base-lining Advanced knowledge of Mobile device security Advanced knowledge of Data Loss Prevention Advanced knowledge of IDS/IPS Advanced knowledge of Log analysis Skilled Critical Thinking Cisco ISE or NAC experience desired Keeps current on emerging threats and mitigation strategies. Scripting (Python, Perl, Powershell) knowledge preferred.

Enterprise IT Infrastructure Architect London - Remote £75,000 - £90,000 This is a fantastic opportunity for an IT Infrastructure Architect to join a thriving "Tech for good" company in a time of real growth and innovation. The company are Green-Tech focused with a core focus across sustainability. This is a new position within the organisation and will be part of the wider Enterprise IT Architecture team, reporting Enterprise Architecture Manager with a core focus on designing and developing the infrastructure required to support business initiatives. The role: The successful IT Infrastructure Architect will work closely with other Architects across Operations, Cyber, Virtual and more to understand needs, share best practices and insights, ensuring effective architecture. In this role you will evaluate projects from a technical perspective, ensuring alignment with business and IT needs and translating them into technical solutions. You will champion a security-first mindset, whilst assisting in the development of policies, guidelines, standards etc for the use of IT within the enterprise. This is a really varied role as the company work across numerous technologies, therefore the IT Infrastructure Architect must have a pragmatic approach to work. Requirements: 3+ years' experience as an IT Infrastructure Architect. Proven Enterprise level IT Infrastructure Architecture experience and Best Practice. In depth knowledge across Infrastructure technologies including: Servers (On prem & cloud), Storage, Network and Security. Virtualisation - VMware Containerisation - Docker, Kubernetes This is predominately a remote position; however, there may be times where you will need to go to the company office for high level or business critical meetings. Please apply to this advert or email your CV direct to (see below) Applicants must be based in the UK with no work restrictions. Spectrum IT Recruitment (South) Limited is acting as an Employment Agency in relation to this vacancy.

Responsibilities: Assessing client needs and managing stakeholder relationships Identifying and communicating risks to stakeholders Designing pragmatic solutions based on industry best practices Selecting and adapting security control frameworks Implementing security management strategies Developing corporate information security policies and guidelines Conducting vulnerability assessments and recommending control improvements Creating architectures to mitigate risks from new technologies Delivering high-quality work within agreed time-lines Supporting client engagements and presentations Sounds like something you'd enjoy? Here's a bit more about you: Experienced in reviewing and designing a range of complex systems Degree level extensive industry experience in cyber security Experienced in leading teams and projects Experienced in utilising AWS, Azure or/and GCP Experience with ISO27001, NIST, and CAF Strong interpersonal skills UK SC clearance or above or eligible and willing to undergo clearance If you have any questions; feel free to reach out to me directly.

NO SPONSORSHIP EXPERT CYBER SECURITY ARCHITECT SALARY: $200k - $250k plus 20% bonus LOCATIONS: Remote: Except No : Alaska, North Dakota, Nebraska, Hawaii, Oklahoma, Vermont, Maine, West Virginia, New Hampshire, Wyoming Looking for a true architect, 70% large enterprise infrastructure networking platform data leakage, some applications cloud architecture research design security policies industry regulations must have great soft skills good communications requirements gathering good written skills API security. The Expert Cyber Risk Management Architect will be responsible for the planning, development and implementation of enterprise information security solutions (such as authentication and authorization, public key infrastructure, data loss prevention, and security event information management) to address the current and emerging security needs of the business. The role will research, design, and develop new technologies, architectures, and security products that will support security requirements for the enterprise and its customers, business partners, and vendors. The person in this role will contribute to the development and execution of strategic information security architecture to enable effective business operations, manage enterprise risk, and address business or regulatory issues. RESPONSIBILITIES Designs, builds, and leads a team that ensures the security of enterprise data and systems by developing enterprise information security solutions. Creates and updates a view of IT assets, related attack surfaces, and threat actors to illustrate the flow of data and associated security threats. Researches, designs, and develops new enterprise technologies, architectures, and security products that will support security requirements for the enterprise and its customers, business partners, and vendors. Serves as a security expert in application development, database design, network, and/or platform (operating system) efforts, helping project teams comply with enterprise and IT security policies, industry regulations, and best practices. Analyzes business impact and exposure based on emerging security threats, vulnerabilities, and risks and contributes to the development and maintenance of information security strategy and architecture. Engages with security specialists, enterprise architects and other functional area architects to ensure adequate enterprise security solutions are in place to sufficiently mitigate identified risks, and to meet business objectives and regulatory requirements. Serves as a cybersecurity subject matter expert, assessing the business impact of cybersecurity risks to the enterprise and identifying options and recommendations for mitigating those risks. Works with Enterprise Architects and other functional area architects and security specialists to ensure adequate security solutions are in place throughout all IT systems and platforms to mitigate identified risks sufficiently and support business objectives. Serves as an expert in platform, application, storage, network, virtualization, cloud and mobile security best practices. Exercises thought leadership in the creation and maintenance of security architectures. QUALIFICATIONS 7+ years of experience w/Bachelor's degree A strong, complete, and working understanding of architecture-level information security and appropriate use enforcement technology solutions including advanced malware detection/prevention, mobile device virtualization/MDM, cloud security management, structured and unstructured database encryption, mobile application and remote API security, fine-grained application authorization and access control, security event visualization, big data user and entity behavior analytics, active adversary deception, and others. A strong working understanding of contemporary security theory and application (including vulnerabilities, exploitation techniques and attack vectors). Strong understanding of systems development life cycle to lead multifunctional projects or initiatives. Knowledge of laws, regulations, and standards relevant to the US Healthcare industry. Excellent written and verbal communication skills (including technical writing, documentation development, process mapping, and visualization). Must be able to effectively communicate technical concepts to a non-technical audience. Externally recognized information security industry thought leadership and innovation accomplishments desired but not required.

Cyber Security Architect - Infrastructure Salary: Starting at $200k + bonus Location: Fully Remote *We are unable to provide sponsorship for this role* A Fortune 500 company is seeking a highly experienced Security Architect with responsibilities over Enterprise Infrastructure Architecture, Networking, Platform, Cloud, Data Leakage and API Security with some experience in Application Security Architecture. Qualifications Bachelor's degree required Minimum 8+ years of experience in Enterprise Architecture roles coming out of large environments is a must Infrastructure focused including Networking, Platform, Cloud, Data Leakage, API Security Responsibilities Designs, builds, and leads a team that ensures the security of enterprise data and systems by developing enterprise information security solutions. Creates and updates a view of IT assets, related attack surfaces, and threat actors to illustrate the flow of data and associated security threats. Researches, designs, and develops new enterprise technologies, architectures, and security products that will support security requirements for the enterprise and its customers, business partners, and vendors. Serves as a security expert in application development, database design, network, and/or platform (operating system) efforts, helping project teams comply with enterprise and IT security policies, industry regulations, and best practices. Analyzes business impact and exposure based on emerging security threats, vulnerabilities, and risks and contributes to the development and maintenance of information security strategy and architecture. Engages with security specialists, enterprise architects and other functional area architects to ensure adequate enterprise security solutions are in place to sufficiently mitigate identified risks, and to meet business objectives and regulatory requirements. Serves as a cybersecurity subject matter expert, assessing the business impact of cybersecurity risks to the enterprise and identifying options and recommendations for mitigating those risks.

*This is a remote 6+ month contract role, there is no sponsorship, and no 3rd party candidates will be considered* Prestigious Enterprise Company is currently seeking a Cyber Security Architect with Azure experience. Candidate will be responsible for the planning, development and implementation of enterprise information security solutions (such as authentication and authorization, public key infrastructure, data loss prevention, and security event information management) to address the current and emerging security needs of the business. This role requires the solution of complex enterprise-scale information security problems. The role will design and develop new technologies, architectures, and security products that will support security requirements for the enterprise and its customers, business partners, and vendors. The person in this role will contribute to the execution of strategic information security architecture to enable effective business operations, manage enterprise risk, and address business or regulatory issues. Skills/Experience: Contributes to a team that ensures the security of enterprise data and systems by developing enterprise information security solutions. Creates and updates a view of IT assets, related attack surfaces, and threat actors to illustrate the flow of data and associated security threats. Researches, designs, and develops new enterprise technologies, architectures, and security products that will support security requirements for the enterprise and its customers, business partners, and vendors. Serves as a security expert in one or more of application development, database design, network, and/or platform (operating system) efforts, helping project teams comply with enterprise and IT security policies, industry regulations, and best practices. Analyzes business impact and exposure based on emerging security threats, vulnerabilities, and risks and contributes to the development and maintenance of information security architecture. Engages with security specialists and other functional area architects to ensure adequate enterprise security solutions are in place to sufficiently mitigate identified risks, and to meet business objectives and regulatory requirements. Serves as a cybersecurity subject matter expert, assessing the business impact of cybersecurity risks to the enterprise and identifying options and recommendations for mitigating those risks. Serves as an expert in one or more of platform, application, storage, network, virtualization, cloud and mobile security best practices. This list is not all-inclusive and you are expected to perform other duties as requested or assigned. Required Skills: Cyber Security certifications such as CISSP, CCSP 4+ years experience providing security architecture designs and guidance Development background a plus Experience with IaC, Cloud architecture desired

*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Enterprise Company is currently seeking a Lead Cyber Security Architect/SME. Candidate will be responsible for the planning, development and implementation of enterprise information security solutions (such as authentication and authorization, public key infrastructure, data loss prevention, and security event information management) to address the current and emerging security needs of the business. This role requires the proactive identification and solution of some of the most complex enterprise-scale information security problems. The role will research, design, and develop new technologies, architectures, and security products that will support security requirements for the enterprise and its customers, business partners, and vendors. The person in this role will contribute to the development and execution of strategic information security architecture to enable effective business operations, manage enterprise risk, and address business or regulatory issues. RESPONSIBILITIES Designs, builds, and leads a team that ensures the security of enterprise data and systems by developing enterprise information security solutions. Creates and updates a view of IT assets, related attack surfaces, and threat actors to illustrate the flow of data and associated security threats. Researches, designs, and develops new enterprise technologies, architectures, and security products that will support security requirements for the enterprise and its customers, business partners, and vendors. Serves as a security expert in application development, database design, network, and/or platform (operating system) efforts, helping project teams comply with enterprise and IT security policies, industry regulations, and best practices. Analyzes business impact and exposure based on emerging security threats, vulnerabilities, and risks and contributes to the development and maintenance of information security strategy and architecture. Engages with security specialists, enterprise architects and other functional area architects to ensure adequate enterprise security solutions are in place to sufficiently mitigate identified risks, and to meet business objectives and regulatory requirements. Serves as a cybersecurity subject matter expert, assessing the business impact of cybersecurity risks to the enterprise and identifying options and recommendations for mitigating those risks. Works with Enterprise Architects and other functional area architects and security specialists to ensure adequate security solutions are in place throughout all IT systems and platforms to mitigate identified risks sufficiently and support business objectives. Serves as an expert in platform, application, storage, network, virtualization, cloud and mobile security best practices. Exercises thought leadership in the creation and maintenance of security architectures. QUALIFICATIONS 7+ years of experience w/Bachelor's degree A strong, complete, and working understanding of architecture-level information security and appropriate use enforcement technology solutions including advanced malware detection/prevention, mobile device virtualization/MDM, cloud security management, structured and unstructured database encryption, mobile application and remote API security, fine-grained application authorization and access control, security event visualization, big data user and entity behavior analytics, active adversary deception, and others. A strong working understanding of contemporary security theory and application (including vulnerabilities, exploitation techniques and attack vectors). Strong understanding of systems development life cycle to lead multifunctional projects or initiatives. Knowledge of laws, regulations, and standards relevant to the US Healthcare industry. Excellent written and verbal communication skills (including technical writing, documentation development, process mapping, and visualization). Must be able to effectively communicate technical concepts to a non-technical audience. Externally recognized information security industry thought leadership and innovation accomplishments desired but not required.

Infrastructure Engineer Location: Plymouth (Hybrid) Permanent Paying up to 35K base + bonus + additional Benefits OVERVIEW: My client is a Niche IT Consultancy providing support to the public sector in the South West of the UK. Due to continued growth they are looking for an Infrastructure Engineer to join them on a permanent basis RESPONSIBILITIES: Implements infrastructure projects for customers in a complex and multi-tenant environment You will contribute on the successful delivery of Infrastructure projects across a broad technology base. Autonomously delivering small and medium sized projects across the Infrastructure portfolio and contribute to the delivery of large-scale projects Implements infrastructure projects for customers in a complex and multi-tenant environment. Works on the design, implementation and transition of key projects with a focus on customer satisfaction and in accordance with IT strategy, technology architecture, compliance, best practice and industry standards Supports the creation of high- and low-level technical designs for Infrastructure solutions. Ensures adequate transition from project delivery to operational support; working to reduce the risk of service failure. Works to ensure documentation is accurate and current for Infrastructure solutions. Supports the production of corporate business cases, providing estimates for internal/external delivery of secure IT solutions. Engage directly with the costumer as part of the project delivery team to undertake customer requirements and challenge analysis, present solutions and challenge customer need to ensure successful delivery of the most appropriate solution. Provides technical advice to customers to maximise their understanding. Keeps abreast of new technology trends and developing solutions in the infrastructure arena. Supports the IT operational life cycle by reviewing and implementing change, supporting delivery of new services, working with the Operations lead on capacity and uptime Keep abreast of new technology trends and developing solutions in the IT Infrastructure arena. Demonstrates a keen desire for continual development of personal and professional skills. The accountabilities listed here are not an exhaustive list. The post holder will be required to work in any area of the business and deliver ad-hoc duties as and when directed EXPERIENCE & QUALIFICATIONS: Switching and routing in a commercial environment. Implementation & Troubleshooting of Enterprise Infrastructure Managing and maintaining compute, identity and cloud services in a commercial environment for a number of the following: o VMWare, AHV o Nutanix, Dell, Rubrik o Windows Server o Cloud Services, eg Microsoft Azure, Microsoft 365 , AD Knowledge and understanding of data centre, compute and application environments, both on-premise and cloud Wireless access points and controllers (Cisco, Meraki, Fortinet) Experience engaging with customers (internal or external) on solution design, delivery and support Hybrid environment authentication Project delivery of small to medium infrastructure projects across multi-sites. High- and Low-level design creation Supporting SD-WAN Networks Telephone system support and implementation experience (MS Teams, Alcatel, Avaya) Managing and maintaining Firewalls in a commercial environment. (Checkpoint, Cisco ASA, FortiGate, Meraki desirable) Linux support ITIL Foundation Cyber Essentials + and security compliance Due to high volume, we can only respond to applications that match the criteria.