Methods Business and Digital Technology Limited Methods is a £100M+ IT Services Consultancy who has partnered with a range of central government departments and agencies to transform the way the public sector operates in the UK. Established over 30 years ago and UK-based, we apply our skills in transformation, delivery, and collaboration from across the Methods Group, to create end-to-end business and technical solutions that are people-centred, safe, and designed for the future. Our human touch sets us apart from other consultancies, system integrators and software houses - with people, technology, and data at the heart of who we are, we believe in creating value and sustainability through everything we do for our clients, staff, communities, and the planet. We support our clients in the success of their projects while working collaboratively to share skill sets and solve problems. At Methods we have fun while working hard; we are not afraid of making mistakes and learning from them. Predominantly focused on the public-sector, Methods is now building a significant private sector client portfolio. Methods was acquired by the Alten Group in early 2022. Methods is currently recruiting for a DevSecOps Engineer (Cyber) Consultant to join our team on a permanent basis. This role will be based on-site Requirements Specialised in cloud management of platforms, applications, data and supporting infrastructure in the capacity of a system administrator of either the AWS or Azure platform Developing automation to support continuous delivery of changes using technologies on the Azure platform. Developing infrastructure as a service configuration to automate the creation of infrastructure and platforms to host test and production systems Building and setting up new development tools and infrastructure Understanding the needs of stakeholders and conveying this to developers Working on ways to automate and improve development and release processes Testing and examining code written by others and analysing results Ensuring that systems are safe and secure against cybersecurity threats Familiar with the NCSC secure design principles Familiar with managing security of cloud platforms, including administration of secrets, tokens and certificates. Working with Architects, Data and Software Engineers to ensure that development follows established processes and works as intended Planning out projects and being involved in project management decisions Responsible for the design, security, and maintenance of cloud infrastructure Making and guiding effective decisions, explaining clearly how the decision has been reached with the ability to understand and resolve technical disputes across varying levels of complexity and risk. Communicating effectively across organisational, technical and political boundaries to understand the context and how to make complex and technical information and language simple and accessible for non-technical audiences. Understanding of how to expose data from systems (for example, through APIs), link data from multiple systems and deliver streaming services. Ensuring that risks associated with deployment are adequately understood and documented. Ideal Candidates will demonstrate: Experience working across cyber security teams would be beneficial Solid infrastructure design experience for both on-prem and cloud, to implement or migrate applications and databases to Azure. Solid experience in a range of technologies and be able to make assessments as to what is best to be used for the projects and the organisation. As well as suggest and develop innovative approaches within constrained projects and environments. Strong experience in software development, change/release management processes, and technical governance to fully understand the typical life cycle and maintenance of live systems. Ability to work with containerization platforms such as Kubernetes, PKS, Docker; cloud provisioning software, including Ansible, Terraform, Azure blueprints, ARM templates; and application performance analysis and monitoring Experience of functional and non-functional testing including automated deployment experience of applications and databases. Understanding of the government digital service manual and standards across Discovery/Alpha/Beta/Live phases. Understanding of SaaS, PaaS, IaaS technologies and the implications of their use compared with bespoke development. Being able to provide training, support and mentoring to the wider business Knowledge of how to ensure that risks associated with deployment are adequately understood and documented. Desirable Skills & Experience: Worked as part of a system support team, managing live systems and triaging & resolving incidents to resolution including management of known defects and issues. Worked as part of multi-disciplinary project team. Experience with Terraform to deploy cloud infrastructure in Azure Experience with Azure DevOps and GitHub Actions to automate the build and deploy of containerised applications Experience implementing effective instrumentation to monitor applications Experience implementing SAST and DAST tooling in deployment pipelines like Trivvy and SonarQube Experience of both AWS and Azure Dev Ops tooling. This role will require you to have or be willing to go through Security Clearance. As part of the onboarding process candidates will be asked to complete a Baseline Personnel Security Standard; details of the evidence required to apply may be found on the government website Gov.UK. If you are unable to meet this and any associated criteria, then your employment may be delayed, or rejected. Details of this will be discussed with you at interview. Benefits Methods is passionate about its people; we want our colleagues to develop the things they are good at and enjoy. By joining us you can expect Autonomy to develop and grow your skills and experience Be part of exciting project work that is making a difference in society Strong, inspiring and thought-provoking leadership A supportive and collaborative environment Development - access to LinkedIn Learning, a management development programme, and training Wellness - 24/7 confidential employee assistance programme Flexible Working - including home working and part time Social - office parties, breakfast Tuesdays, monthly pizza Thursdays, Thirsty Thursdays, and commitment to charitable causes Time Off - 25 days of annual leave a year, plus bank holidays, with the option to buy 5 extra days each year Volunteering - 2 paid days per year to volunteer in our local communities or within a charity organisation Pension - Salary Exchange Scheme with 4% employer contribution and 5% employee contribution Discretionary Company Bonus - based on company and individual performance Life Assurance - of 4 times base salary Private Medical Insurance - which is non-contributory (spouse and dependants included) Worldwide Travel Insurance - which is non-contributory (spouse and dependants included) Enhanced Maternity and Paternity Pay Travel - season ticket loan, cycle to work scheme For a full list of benefits please visit our website
14/01/2025
Full time
Methods Business and Digital Technology Limited Methods is a £100M+ IT Services Consultancy who has partnered with a range of central government departments and agencies to transform the way the public sector operates in the UK. Established over 30 years ago and UK-based, we apply our skills in transformation, delivery, and collaboration from across the Methods Group, to create end-to-end business and technical solutions that are people-centred, safe, and designed for the future. Our human touch sets us apart from other consultancies, system integrators and software houses - with people, technology, and data at the heart of who we are, we believe in creating value and sustainability through everything we do for our clients, staff, communities, and the planet. We support our clients in the success of their projects while working collaboratively to share skill sets and solve problems. At Methods we have fun while working hard; we are not afraid of making mistakes and learning from them. Predominantly focused on the public-sector, Methods is now building a significant private sector client portfolio. Methods was acquired by the Alten Group in early 2022. Methods is currently recruiting for a DevSecOps Engineer (Cyber) Consultant to join our team on a permanent basis. This role will be based on-site Requirements Specialised in cloud management of platforms, applications, data and supporting infrastructure in the capacity of a system administrator of either the AWS or Azure platform Developing automation to support continuous delivery of changes using technologies on the Azure platform. Developing infrastructure as a service configuration to automate the creation of infrastructure and platforms to host test and production systems Building and setting up new development tools and infrastructure Understanding the needs of stakeholders and conveying this to developers Working on ways to automate and improve development and release processes Testing and examining code written by others and analysing results Ensuring that systems are safe and secure against cybersecurity threats Familiar with the NCSC secure design principles Familiar with managing security of cloud platforms, including administration of secrets, tokens and certificates. Working with Architects, Data and Software Engineers to ensure that development follows established processes and works as intended Planning out projects and being involved in project management decisions Responsible for the design, security, and maintenance of cloud infrastructure Making and guiding effective decisions, explaining clearly how the decision has been reached with the ability to understand and resolve technical disputes across varying levels of complexity and risk. Communicating effectively across organisational, technical and political boundaries to understand the context and how to make complex and technical information and language simple and accessible for non-technical audiences. Understanding of how to expose data from systems (for example, through APIs), link data from multiple systems and deliver streaming services. Ensuring that risks associated with deployment are adequately understood and documented. Ideal Candidates will demonstrate: Experience working across cyber security teams would be beneficial Solid infrastructure design experience for both on-prem and cloud, to implement or migrate applications and databases to Azure. Solid experience in a range of technologies and be able to make assessments as to what is best to be used for the projects and the organisation. As well as suggest and develop innovative approaches within constrained projects and environments. Strong experience in software development, change/release management processes, and technical governance to fully understand the typical life cycle and maintenance of live systems. Ability to work with containerization platforms such as Kubernetes, PKS, Docker; cloud provisioning software, including Ansible, Terraform, Azure blueprints, ARM templates; and application performance analysis and monitoring Experience of functional and non-functional testing including automated deployment experience of applications and databases. Understanding of the government digital service manual and standards across Discovery/Alpha/Beta/Live phases. Understanding of SaaS, PaaS, IaaS technologies and the implications of their use compared with bespoke development. Being able to provide training, support and mentoring to the wider business Knowledge of how to ensure that risks associated with deployment are adequately understood and documented. Desirable Skills & Experience: Worked as part of a system support team, managing live systems and triaging & resolving incidents to resolution including management of known defects and issues. Worked as part of multi-disciplinary project team. Experience with Terraform to deploy cloud infrastructure in Azure Experience with Azure DevOps and GitHub Actions to automate the build and deploy of containerised applications Experience implementing effective instrumentation to monitor applications Experience implementing SAST and DAST tooling in deployment pipelines like Trivvy and SonarQube Experience of both AWS and Azure Dev Ops tooling. This role will require you to have or be willing to go through Security Clearance. As part of the onboarding process candidates will be asked to complete a Baseline Personnel Security Standard; details of the evidence required to apply may be found on the government website Gov.UK. If you are unable to meet this and any associated criteria, then your employment may be delayed, or rejected. Details of this will be discussed with you at interview. Benefits Methods is passionate about its people; we want our colleagues to develop the things they are good at and enjoy. By joining us you can expect Autonomy to develop and grow your skills and experience Be part of exciting project work that is making a difference in society Strong, inspiring and thought-provoking leadership A supportive and collaborative environment Development - access to LinkedIn Learning, a management development programme, and training Wellness - 24/7 confidential employee assistance programme Flexible Working - including home working and part time Social - office parties, breakfast Tuesdays, monthly pizza Thursdays, Thirsty Thursdays, and commitment to charitable causes Time Off - 25 days of annual leave a year, plus bank holidays, with the option to buy 5 extra days each year Volunteering - 2 paid days per year to volunteer in our local communities or within a charity organisation Pension - Salary Exchange Scheme with 4% employer contribution and 5% employee contribution Discretionary Company Bonus - based on company and individual performance Life Assurance - of 4 times base salary Private Medical Insurance - which is non-contributory (spouse and dependants included) Worldwide Travel Insurance - which is non-contributory (spouse and dependants included) Enhanced Maternity and Paternity Pay Travel - season ticket loan, cycle to work scheme For a full list of benefits please visit our website
Are you a passionate Full Stack Web Developer looking to elevate your career? An esteemed Midlands-based automotive client is expanding their team and is in search of a talented individual to join their ranks. This role offers the chance to work with cutting-edge technology on projects that include Cybersecurity, Zero Emission Vehicles, and connectivity, ensuring that your work has a meaningful impact on the future of the automotive industry. The company prides itself on fostering a culture of internal promotion and career development, providing a clear path for professional growth. As a valued team member, you will collaborate with a diverse group of engineers, including Embedded Software and Firmware Engineers, to deliver high-quality solutions. Your responsibilities will encompass writing code for both the front and Back End, peer reviewing code, and contributing to testing and documentation. The ideal candidate will possess a robust understanding of full web development and demonstrate proficiency in the following core skills: - PHP/JavaScript/HTML/SQL: Mastery of these foundational web technologies. - Object-Oriented Languages/Principles: Strong grasp of OO concepts. - Laravel/Eloquent ORM: Experience with this PHP framework and ORM. - VueJS: Competence in this progressive JavaScript framework. - REST Architecture: Knowledge of RESTful services and APIs. - MVC: Familiarity with the Model-View-Controller design pattern. - Agile JIRA Development: Experience in agile methodologies and JIRA. - Test-Driven Development: Commitment to writing tests as part of the development process. - UNIX Shell: Proficiency in UNIX Shell Scripting. - Source Control (preferably Git): Skilled in version control systems. This role not only offers the chance to work on innovative projects but also provides a supportive environment where your skills and career can flourish. If you are ready to take the next step in your career and contribute to groundbreaking automotive advancements, this position is tailored for you. (Sponsorship available for Skilled Worker Visa). WA Consultants is an Employment Business and an Employment Agency as described within The Conduct of Employment Agencies and Employment Businesses Regulations 2003.
13/01/2025
Full time
Are you a passionate Full Stack Web Developer looking to elevate your career? An esteemed Midlands-based automotive client is expanding their team and is in search of a talented individual to join their ranks. This role offers the chance to work with cutting-edge technology on projects that include Cybersecurity, Zero Emission Vehicles, and connectivity, ensuring that your work has a meaningful impact on the future of the automotive industry. The company prides itself on fostering a culture of internal promotion and career development, providing a clear path for professional growth. As a valued team member, you will collaborate with a diverse group of engineers, including Embedded Software and Firmware Engineers, to deliver high-quality solutions. Your responsibilities will encompass writing code for both the front and Back End, peer reviewing code, and contributing to testing and documentation. The ideal candidate will possess a robust understanding of full web development and demonstrate proficiency in the following core skills: - PHP/JavaScript/HTML/SQL: Mastery of these foundational web technologies. - Object-Oriented Languages/Principles: Strong grasp of OO concepts. - Laravel/Eloquent ORM: Experience with this PHP framework and ORM. - VueJS: Competence in this progressive JavaScript framework. - REST Architecture: Knowledge of RESTful services and APIs. - MVC: Familiarity with the Model-View-Controller design pattern. - Agile JIRA Development: Experience in agile methodologies and JIRA. - Test-Driven Development: Commitment to writing tests as part of the development process. - UNIX Shell: Proficiency in UNIX Shell Scripting. - Source Control (preferably Git): Skilled in version control systems. This role not only offers the chance to work on innovative projects but also provides a supportive environment where your skills and career can flourish. If you are ready to take the next step in your career and contribute to groundbreaking automotive advancements, this position is tailored for you. (Sponsorship available for Skilled Worker Visa). WA Consultants is an Employment Business and an Employment Agency as described within The Conduct of Employment Agencies and Employment Businesses Regulations 2003.
Request Technology - Craig Johnson
Chicago, Illinois
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a Sr. Cyber Defense Threat Engineer. Candidate will be responsible for the in-depth analysis and response to security incidents escalated from Tier 1 analysts. This role involves investigating complex security events, identifying potential threats, and implementing measures to mitigate risks. The Tier 2 analyst plays a critical role in maintaining the security posture of the organization by leveraging advanced threat intelligence and incident response techniques. Responsibilities: Monitor security alerts and events from various security tools and technologies. Perform advanced analysis of security logs, network traffic, and endpoint data. Review and respond to security incidents escalated by Tier 1 analysts. Conduct thorough investigations to determine the scope and impact of security incidents. Implement containment, eradication, and recovery measures for confirmed incidents. Document and report findings, actions taken, and lessons learned. Work closely with threat intelligence team to enhance detection and response capabilities. Collaborate with other security team members and IT staff to address security incidents. Provide guidance and support to Tier 1 analysts on complex security issues. Communicate effectively with stakeholders regarding security incidents and mitigation efforts. Participate in post-incident reviews to identify areas for improvement. Stay current with the latest cybersecurity trends, threats, and technologies. Contribute to the development and enhancement of SOC processes and procedures. Qualifications: Proven team player will be working primarily with other staff members, on both long-term projects and rapid response under tight deadlines. Team Leadership experience, taking initiative; providing and following through on solutions across various skillsets. Knowledge and experience implementing controls based on security regulation (eg, NIST Cyber Security Framework) is a plus. Effective and excellent oral and written communication, analytical, judgment and consultation skills. Ability to effectively communicate in both formal and informal review settings with all levels of management. Ability to work with local and remote IT staff/management, vendors and consultants. Ability to work independently and possess strong project management skills. Log analysis and security content development in SIEM solutions (Splunk, IBM QRadar, LogRhythm, etc.). SOAR products such as Splunk SOAR, Cortex XSOAR, FortiSOAR, etc. SOAR playbook development experience is a plus. Endpoint detection and response tools, eg CrowdStrike, SentinelOne, Microsoft Defender, etc. Incident Response playbook development, managing security incident analysis and remediation. Network-based preventative and detective technologies (IDS/IPS, Firewalls, Proxy Servers) Standard technical writing tools including MS Word, Excel, Project and Visio Vulnerability assessment tools (Qualys, Nessus, nmap, etc.). Directory services, LDAP, and their inherent security (Active Directory, CA Directory, Entra ID). Client Server platforms including Sun Solaris, Windows, Linux. Operating system hardening procedures (Solaris, Linux, Windows, etc.) Web Application Firewalls. Cloud based security tools and techniques (AWS, Azure, GCP, etc.) Scripting and development activities to appropriately leverage Application Programing Interfaces (APIs) to optimize integrations between disparate security monitoring and analysis devices. Education and Experience: Bachelor's degree in cybersecurity, computer science, or another related field. Minimum three years of information security experience, preferably in the financial services industry. Hands-on security operations experience including interdisciplinary experience with two or more of the following: Cyber Threat Analysis, Incident Response, Application Security, Operating Systems Security, Networking, Programming languages, Incident Response. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives. Familiarity with computer network exploitation and network attack methodologies while maintaining an understanding of the relationship these activities have with the financial services industry and critical infrastructure. Industry knowledge of leading-edge security technologies and methods. Shift work and working in an on-call response capacity is required including availability for 24 x 7 on-call support responsibilities. Previous people/project management experience is a plus. Strongly prefer at least one of the following certifications: CISSP, GCIA, GCIH, CHFI, GCFA, CASP+.
10/01/2025
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a Sr. Cyber Defense Threat Engineer. Candidate will be responsible for the in-depth analysis and response to security incidents escalated from Tier 1 analysts. This role involves investigating complex security events, identifying potential threats, and implementing measures to mitigate risks. The Tier 2 analyst plays a critical role in maintaining the security posture of the organization by leveraging advanced threat intelligence and incident response techniques. Responsibilities: Monitor security alerts and events from various security tools and technologies. Perform advanced analysis of security logs, network traffic, and endpoint data. Review and respond to security incidents escalated by Tier 1 analysts. Conduct thorough investigations to determine the scope and impact of security incidents. Implement containment, eradication, and recovery measures for confirmed incidents. Document and report findings, actions taken, and lessons learned. Work closely with threat intelligence team to enhance detection and response capabilities. Collaborate with other security team members and IT staff to address security incidents. Provide guidance and support to Tier 1 analysts on complex security issues. Communicate effectively with stakeholders regarding security incidents and mitigation efforts. Participate in post-incident reviews to identify areas for improvement. Stay current with the latest cybersecurity trends, threats, and technologies. Contribute to the development and enhancement of SOC processes and procedures. Qualifications: Proven team player will be working primarily with other staff members, on both long-term projects and rapid response under tight deadlines. Team Leadership experience, taking initiative; providing and following through on solutions across various skillsets. Knowledge and experience implementing controls based on security regulation (eg, NIST Cyber Security Framework) is a plus. Effective and excellent oral and written communication, analytical, judgment and consultation skills. Ability to effectively communicate in both formal and informal review settings with all levels of management. Ability to work with local and remote IT staff/management, vendors and consultants. Ability to work independently and possess strong project management skills. Log analysis and security content development in SIEM solutions (Splunk, IBM QRadar, LogRhythm, etc.). SOAR products such as Splunk SOAR, Cortex XSOAR, FortiSOAR, etc. SOAR playbook development experience is a plus. Endpoint detection and response tools, eg CrowdStrike, SentinelOne, Microsoft Defender, etc. Incident Response playbook development, managing security incident analysis and remediation. Network-based preventative and detective technologies (IDS/IPS, Firewalls, Proxy Servers) Standard technical writing tools including MS Word, Excel, Project and Visio Vulnerability assessment tools (Qualys, Nessus, nmap, etc.). Directory services, LDAP, and their inherent security (Active Directory, CA Directory, Entra ID). Client Server platforms including Sun Solaris, Windows, Linux. Operating system hardening procedures (Solaris, Linux, Windows, etc.) Web Application Firewalls. Cloud based security tools and techniques (AWS, Azure, GCP, etc.) Scripting and development activities to appropriately leverage Application Programing Interfaces (APIs) to optimize integrations between disparate security monitoring and analysis devices. Education and Experience: Bachelor's degree in cybersecurity, computer science, or another related field. Minimum three years of information security experience, preferably in the financial services industry. Hands-on security operations experience including interdisciplinary experience with two or more of the following: Cyber Threat Analysis, Incident Response, Application Security, Operating Systems Security, Networking, Programming languages, Incident Response. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives. Familiarity with computer network exploitation and network attack methodologies while maintaining an understanding of the relationship these activities have with the financial services industry and critical infrastructure. Industry knowledge of leading-edge security technologies and methods. Shift work and working in an on-call response capacity is required including availability for 24 x 7 on-call support responsibilities. Previous people/project management experience is a plus. Strongly prefer at least one of the following certifications: CISSP, GCIA, GCIH, CHFI, GCFA, CASP+.
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a Sr. Cyber Defense Threat Engineer. Candidate will be responsible for the in-depth analysis and response to security incidents escalated from Tier 1 analysts. This role involves investigating complex security events, identifying potential threats, and implementing measures to mitigate risks. The Tier 2 analyst plays a critical role in maintaining the security posture of the organization by leveraging advanced threat intelligence and incident response techniques. Responsibilities: Monitor security alerts and events from various security tools and technologies. Perform advanced analysis of security logs, network traffic, and endpoint data. Review and respond to security incidents escalated by Tier 1 analysts. Conduct thorough investigations to determine the scope and impact of security incidents. Implement containment, eradication, and recovery measures for confirmed incidents. Document and report findings, actions taken, and lessons learned. Work closely with threat intelligence team to enhance detection and response capabilities. Collaborate with other security team members and IT staff to address security incidents. Provide guidance and support to Tier 1 analysts on complex security issues. Communicate effectively with stakeholders regarding security incidents and mitigation efforts. Participate in post-incident reviews to identify areas for improvement. Stay current with the latest cybersecurity trends, threats, and technologies. Contribute to the development and enhancement of SOC processes and procedures. Qualifications: Proven team player will be working primarily with other staff members, on both long-term projects and rapid response under tight deadlines. Team Leadership experience, taking initiative; providing and following through on solutions across various skillsets. Knowledge and experience implementing controls based on security regulation (eg, NIST Cyber Security Framework) is a plus. Effective and excellent oral and written communication, analytical, judgment and consultation skills. Ability to effectively communicate in both formal and informal review settings with all levels of management. Ability to work with local and remote IT staff/management, vendors and consultants. Ability to work independently and possess strong project management skills. Log analysis and security content development in SIEM solutions (Splunk, IBM QRadar, LogRhythm, etc.). SOAR products such as Splunk SOAR, Cortex XSOAR, FortiSOAR, etc. SOAR playbook development experience is a plus. Endpoint detection and response tools, eg CrowdStrike, SentinelOne, Microsoft Defender, etc. Incident Response playbook development, managing security incident analysis and remediation. Network-based preventative and detective technologies (IDS/IPS, Firewalls, Proxy Servers) Standard technical writing tools including MS Word, Excel, Project and Visio Vulnerability assessment tools (Qualys, Nessus, nmap, etc.). Directory services, LDAP, and their inherent security (Active Directory, CA Directory, Entra ID). Client Server platforms including Sun Solaris, Windows, Linux. Operating system hardening procedures (Solaris, Linux, Windows, etc.) Web Application Firewalls. Cloud based security tools and techniques (AWS, Azure, GCP, etc.) Scripting and development activities to appropriately leverage Application Programing Interfaces (APIs) to optimize integrations between disparate security monitoring and analysis devices. Education and Experience: Bachelor's degree in cybersecurity, computer science, or another related field. Minimum three years of information security experience, preferably in the financial services industry. Hands-on security operations experience including interdisciplinary experience with two or more of the following: Cyber Threat Analysis, Incident Response, Application Security, Operating Systems Security, Networking, Programming languages, Incident Response. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives. Familiarity with computer network exploitation and network attack methodologies while maintaining an understanding of the relationship these activities have with the financial services industry and critical infrastructure. Industry knowledge of leading-edge security technologies and methods. Shift work and working in an on-call response capacity is required including availability for 24 x 7 on-call support responsibilities. Previous people/project management experience is a plus. Strongly prefer at least one of the following certifications: CISSP, GCIA, GCIH, CHFI, GCFA, CASP+.
10/01/2025
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a Sr. Cyber Defense Threat Engineer. Candidate will be responsible for the in-depth analysis and response to security incidents escalated from Tier 1 analysts. This role involves investigating complex security events, identifying potential threats, and implementing measures to mitigate risks. The Tier 2 analyst plays a critical role in maintaining the security posture of the organization by leveraging advanced threat intelligence and incident response techniques. Responsibilities: Monitor security alerts and events from various security tools and technologies. Perform advanced analysis of security logs, network traffic, and endpoint data. Review and respond to security incidents escalated by Tier 1 analysts. Conduct thorough investigations to determine the scope and impact of security incidents. Implement containment, eradication, and recovery measures for confirmed incidents. Document and report findings, actions taken, and lessons learned. Work closely with threat intelligence team to enhance detection and response capabilities. Collaborate with other security team members and IT staff to address security incidents. Provide guidance and support to Tier 1 analysts on complex security issues. Communicate effectively with stakeholders regarding security incidents and mitigation efforts. Participate in post-incident reviews to identify areas for improvement. Stay current with the latest cybersecurity trends, threats, and technologies. Contribute to the development and enhancement of SOC processes and procedures. Qualifications: Proven team player will be working primarily with other staff members, on both long-term projects and rapid response under tight deadlines. Team Leadership experience, taking initiative; providing and following through on solutions across various skillsets. Knowledge and experience implementing controls based on security regulation (eg, NIST Cyber Security Framework) is a plus. Effective and excellent oral and written communication, analytical, judgment and consultation skills. Ability to effectively communicate in both formal and informal review settings with all levels of management. Ability to work with local and remote IT staff/management, vendors and consultants. Ability to work independently and possess strong project management skills. Log analysis and security content development in SIEM solutions (Splunk, IBM QRadar, LogRhythm, etc.). SOAR products such as Splunk SOAR, Cortex XSOAR, FortiSOAR, etc. SOAR playbook development experience is a plus. Endpoint detection and response tools, eg CrowdStrike, SentinelOne, Microsoft Defender, etc. Incident Response playbook development, managing security incident analysis and remediation. Network-based preventative and detective technologies (IDS/IPS, Firewalls, Proxy Servers) Standard technical writing tools including MS Word, Excel, Project and Visio Vulnerability assessment tools (Qualys, Nessus, nmap, etc.). Directory services, LDAP, and their inherent security (Active Directory, CA Directory, Entra ID). Client Server platforms including Sun Solaris, Windows, Linux. Operating system hardening procedures (Solaris, Linux, Windows, etc.) Web Application Firewalls. Cloud based security tools and techniques (AWS, Azure, GCP, etc.) Scripting and development activities to appropriately leverage Application Programing Interfaces (APIs) to optimize integrations between disparate security monitoring and analysis devices. Education and Experience: Bachelor's degree in cybersecurity, computer science, or another related field. Minimum three years of information security experience, preferably in the financial services industry. Hands-on security operations experience including interdisciplinary experience with two or more of the following: Cyber Threat Analysis, Incident Response, Application Security, Operating Systems Security, Networking, Programming languages, Incident Response. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives. Familiarity with computer network exploitation and network attack methodologies while maintaining an understanding of the relationship these activities have with the financial services industry and critical infrastructure. Industry knowledge of leading-edge security technologies and methods. Shift work and working in an on-call response capacity is required including availability for 24 x 7 on-call support responsibilities. Previous people/project management experience is a plus. Strongly prefer at least one of the following certifications: CISSP, GCIA, GCIH, CHFI, GCFA, CASP+.
Lead Validation Engineer - Controls & Automation Are you ready to lead validation efforts and work on cutting-edge control and automation systems? Do you thrive in ensuring the safety, security, and reliability of systems while mentoring a talented team? I'm working with a leading company seeking a Lead Validation Engineer to take charge of their validation activities for automation products and systems. You'll play a crucial role in ensuring compliance with industry standards, improving validation processes, and leading automated test executions. What You'll Do: . Take ownership of validation activities for control and automation systems, ensuring they adhere to industry standards (ANSI/ISA18.2, ISA-95, and IEC62443). . Design and implement detailed test plans and specifications to guarantee product reliability and safety. . Optimise validation processes using automated testing tools like JIRA XRAY, Selenium, or similar. . Collaborate closely with development and cross-functional teams to resolve technical challenges and align validation activities with customer expectations. . Provide mentorship to validation engineers, fostering growth and promoting best practices. . Maintain comprehensive documentation on validation processes, test outcomes, and corrective actions. . Continuously refine and improve validation tools and methodologies for increased efficiency. What You Bring: . A degree in Engineering, Computer Science, or a related field. . Industry-recognised certifications (eg ISTQB/OT Cybersecurity). . Deep expertise in OT technologies, SCADA/DCS systems, and the Purdue model. . Solid background in validation engineering, particularly in complex control systems. . Hands-on experience with automated testing tools. . A thorough understanding of industry standards for automation and control validation . Industry experience in sectors like Power, Marine, Oil & Gas, or similar. . Knowledge of Cybersecurity validation and penetration testing. Salary up to £75,000 + bonus + benefits. Offices in Rugby, Warwickshire. If you're ready to take your validation engineering career to the next level, apply now for immediate consideration! Lawrence Harvey is acting as an Employment Business in regards to this position.
10/01/2025
Full time
Lead Validation Engineer - Controls & Automation Are you ready to lead validation efforts and work on cutting-edge control and automation systems? Do you thrive in ensuring the safety, security, and reliability of systems while mentoring a talented team? I'm working with a leading company seeking a Lead Validation Engineer to take charge of their validation activities for automation products and systems. You'll play a crucial role in ensuring compliance with industry standards, improving validation processes, and leading automated test executions. What You'll Do: . Take ownership of validation activities for control and automation systems, ensuring they adhere to industry standards (ANSI/ISA18.2, ISA-95, and IEC62443). . Design and implement detailed test plans and specifications to guarantee product reliability and safety. . Optimise validation processes using automated testing tools like JIRA XRAY, Selenium, or similar. . Collaborate closely with development and cross-functional teams to resolve technical challenges and align validation activities with customer expectations. . Provide mentorship to validation engineers, fostering growth and promoting best practices. . Maintain comprehensive documentation on validation processes, test outcomes, and corrective actions. . Continuously refine and improve validation tools and methodologies for increased efficiency. What You Bring: . A degree in Engineering, Computer Science, or a related field. . Industry-recognised certifications (eg ISTQB/OT Cybersecurity). . Deep expertise in OT technologies, SCADA/DCS systems, and the Purdue model. . Solid background in validation engineering, particularly in complex control systems. . Hands-on experience with automated testing tools. . A thorough understanding of industry standards for automation and control validation . Industry experience in sectors like Power, Marine, Oil & Gas, or similar. . Knowledge of Cybersecurity validation and penetration testing. Salary up to £75,000 + bonus + benefits. Offices in Rugby, Warwickshire. If you're ready to take your validation engineering career to the next level, apply now for immediate consideration! Lawrence Harvey is acting as an Employment Business in regards to this position.
Endpoint & IAM Lead Location: Oxford (Hybrid - 1-2 days in the office per week) Salary: Competitive About the Role We are seeking an Endpoint Protection & IAM Lead to spearhead the strategic integration of Microsoft-based Identity and Access Management (IAM) and Endpoint Protection solutions across our Security Operations and Optimization (SOO) functions. As part of a greenfield cybersecurity build, you will play a pivotal role in shaping a modern, scalable cybersecurity framework under the guidance of our new CISO. This is an exciting opportunity to be at the forefront of a transformative journey, leveraging a substantial budget to deliver tools and solutions that align with industry best practices (eg, NIST). Key Responsibilities Strategic Leadership Drive the integration of IAM and endpoint security into the organization's cybersecurity strategy. Collaborate with the CISO to align security initiatives with business objectives. Oversee tool selection, process development, and implementation, managing a budget to map and optimize security functions. Build and maintain strong vendor relationships to ensure effective partnerships and service delivery. Technical Integration Lead the transition to a Microsoft-focused security ecosystem, including: Microsoft Defender for endpoint security. Azure, Entra ID, and Active Directory for IAM. Design and implement solutions that ensure seamless integration across SOO functions, fostering consistency and operational efficiency. Act as a bridge between strategic planning and technical execution, ensuring adherence to industry best practices. Team Enablement Provide strategic and technical guidance, fostering a culture of cybersecurity awareness across the organization. Balance high-level strategic responsibilities with hands-on involvement, particularly during early implementation phases. Candidate Profile Leadership Expertise Proven track record in leading cybersecurity initiatives in a Microsoft-centric environment. Exceptional communication skills, capable of influencing executive decision-making. Strong vendor management and procurement capabilities, achieving maximum ROI. Experience leading cross-functional integration projects with a strategic focus. Technical Proficiency In-depth expertise in Microsoft's security stack, including: Microsoft Defender for endpoints. Azure, Entra ID, and Active Directory. Ability to assess and transform existing infrastructures into secure, scalable solutions. Experience blending technical engineering expertise with a high-level strategic vision. Additional Attributes Commercially astute, with experience managing significant budgets. Comfortable with hybrid working arrangements. Strong focus on collaboration and driving organizational impact. The Current Landscape Greenfield cybersecurity build under a new CISO. Transitioning to a Microsoft-focused environment from Cisco. Aiming to integrate tools and policies across SOO functions with a focus on resilience, risk management, and adherence to standards like NIST. Apply now to join our mission of building a resilient, secure future.
09/01/2025
Full time
Endpoint & IAM Lead Location: Oxford (Hybrid - 1-2 days in the office per week) Salary: Competitive About the Role We are seeking an Endpoint Protection & IAM Lead to spearhead the strategic integration of Microsoft-based Identity and Access Management (IAM) and Endpoint Protection solutions across our Security Operations and Optimization (SOO) functions. As part of a greenfield cybersecurity build, you will play a pivotal role in shaping a modern, scalable cybersecurity framework under the guidance of our new CISO. This is an exciting opportunity to be at the forefront of a transformative journey, leveraging a substantial budget to deliver tools and solutions that align with industry best practices (eg, NIST). Key Responsibilities Strategic Leadership Drive the integration of IAM and endpoint security into the organization's cybersecurity strategy. Collaborate with the CISO to align security initiatives with business objectives. Oversee tool selection, process development, and implementation, managing a budget to map and optimize security functions. Build and maintain strong vendor relationships to ensure effective partnerships and service delivery. Technical Integration Lead the transition to a Microsoft-focused security ecosystem, including: Microsoft Defender for endpoint security. Azure, Entra ID, and Active Directory for IAM. Design and implement solutions that ensure seamless integration across SOO functions, fostering consistency and operational efficiency. Act as a bridge between strategic planning and technical execution, ensuring adherence to industry best practices. Team Enablement Provide strategic and technical guidance, fostering a culture of cybersecurity awareness across the organization. Balance high-level strategic responsibilities with hands-on involvement, particularly during early implementation phases. Candidate Profile Leadership Expertise Proven track record in leading cybersecurity initiatives in a Microsoft-centric environment. Exceptional communication skills, capable of influencing executive decision-making. Strong vendor management and procurement capabilities, achieving maximum ROI. Experience leading cross-functional integration projects with a strategic focus. Technical Proficiency In-depth expertise in Microsoft's security stack, including: Microsoft Defender for endpoints. Azure, Entra ID, and Active Directory. Ability to assess and transform existing infrastructures into secure, scalable solutions. Experience blending technical engineering expertise with a high-level strategic vision. Additional Attributes Commercially astute, with experience managing significant budgets. Comfortable with hybrid working arrangements. Strong focus on collaboration and driving organizational impact. The Current Landscape Greenfield cybersecurity build under a new CISO. Transitioning to a Microsoft-focused environment from Cisco. Aiming to integrate tools and policies across SOO functions with a focus on resilience, risk management, and adherence to standards like NIST. Apply now to join our mission of building a resilient, secure future.
Scada Engineer Initial 12 month contract + extensions 3-4 days per week Poland (onsite Warsaw or Szczecin) Fluent English and Polish Client: A leading energy company. The Instrumentation and Control team is responsible for the implementation, quality assurance and operational support for the SCADA systems of the high-voltage and substations as well as for the generation and storage systems (WTG, PV and storage) of our onshore wind farms and PV plants. As a SCADA and Network Engineer, you will be project orientated and take technical responsibility during the development and design phase of the projects as well as operational support during the subsequent operational phase by performing engineering activities, remote configurations, site implementations and managing contractors. Tasks : You will define and create technical specifications You will be responsible for reviewing the designs provided by contractors and suppliers You will design, develop and implement system interfaces You are responsible for carrying out quality and acceptance tests for contractors and ensure that these are carried out and documented in accordance with the specifications (FAT and SAT) You accompany complex commissioning activities of the suppliers and check their results You coordinate, prioritise, track and carry out troubleshooting and maintenance of the relevant systems with the operations teams Manage contractors and service providers who perform design, implementation, maintenance and troubleshooting activities for the relevant systems You will lead and drive SCADA projects to optimise monitoring and control functions and data availability You are an active member of an international team in which knowledge, experience, successes and insights are continuously shared You promote good collaboration and knowledge sharing with other teams in the renewable energy business units Qualifications : University degree or equivalent in a relevant technical or engineering discipline or equivalent experience At least 5 years of relevant work experience and experience with SCADA systems Experience with control systems, automation, SCADA, PLCs, RTUs and IEDs Experience with industrial communication protocols (especially OPC family, Modbus, IEC-104 and MMS) and their network specific behaviours Experience with the development and/or administration of networks and the setup of network components (Switches, Firewalls, ) . Certification in networking is an advantage. Experience with SCADA systems in the areas of high voltage and substations, wind turbines and/or solar plants and their infrastructure is a plus Knowledge of SQL server queries, experience managing SQL Servers is a plus Experience with Restful API for industrial data transmission is a plus Experience with VMware ESXI and installing and managing hardware is a plus Aptitude for working in a wind turbine (training provided by employer) is a plus Relevant project management skills and experience supervising contractors Ability to communicate clearly and concisely Ability to perform risk analyses and implement risk mitigation plans Ability to multi-task as needed and manage schedule according to project priority Experience or knowledge of cybersecurity requirements for critical infrastructure is a plus Expected average travel during the work week of 20%-30% Fluency in written and spoken English and Polish . Other languages such as Italian, Swedish, French, German or Spanish are a plus
09/01/2025
Project-based
Scada Engineer Initial 12 month contract + extensions 3-4 days per week Poland (onsite Warsaw or Szczecin) Fluent English and Polish Client: A leading energy company. The Instrumentation and Control team is responsible for the implementation, quality assurance and operational support for the SCADA systems of the high-voltage and substations as well as for the generation and storage systems (WTG, PV and storage) of our onshore wind farms and PV plants. As a SCADA and Network Engineer, you will be project orientated and take technical responsibility during the development and design phase of the projects as well as operational support during the subsequent operational phase by performing engineering activities, remote configurations, site implementations and managing contractors. Tasks : You will define and create technical specifications You will be responsible for reviewing the designs provided by contractors and suppliers You will design, develop and implement system interfaces You are responsible for carrying out quality and acceptance tests for contractors and ensure that these are carried out and documented in accordance with the specifications (FAT and SAT) You accompany complex commissioning activities of the suppliers and check their results You coordinate, prioritise, track and carry out troubleshooting and maintenance of the relevant systems with the operations teams Manage contractors and service providers who perform design, implementation, maintenance and troubleshooting activities for the relevant systems You will lead and drive SCADA projects to optimise monitoring and control functions and data availability You are an active member of an international team in which knowledge, experience, successes and insights are continuously shared You promote good collaboration and knowledge sharing with other teams in the renewable energy business units Qualifications : University degree or equivalent in a relevant technical or engineering discipline or equivalent experience At least 5 years of relevant work experience and experience with SCADA systems Experience with control systems, automation, SCADA, PLCs, RTUs and IEDs Experience with industrial communication protocols (especially OPC family, Modbus, IEC-104 and MMS) and their network specific behaviours Experience with the development and/or administration of networks and the setup of network components (Switches, Firewalls, ) . Certification in networking is an advantage. Experience with SCADA systems in the areas of high voltage and substations, wind turbines and/or solar plants and their infrastructure is a plus Knowledge of SQL server queries, experience managing SQL Servers is a plus Experience with Restful API for industrial data transmission is a plus Experience with VMware ESXI and installing and managing hardware is a plus Aptitude for working in a wind turbine (training provided by employer) is a plus Relevant project management skills and experience supervising contractors Ability to communicate clearly and concisely Ability to perform risk analyses and implement risk mitigation plans Ability to multi-task as needed and manage schedule according to project priority Experience or knowledge of cybersecurity requirements for critical infrastructure is a plus Expected average travel during the work week of 20%-30% Fluency in written and spoken English and Polish . Other languages such as Italian, Swedish, French, German or Spanish are a plus
Okta Specialist Remote £450-£500 per day outside IR35 I am working with a forward-thinking organisation seeking an experienced Okta Platform Engineer or Okta Specialist to lead their Identity and Access Management (IAM) initiatives. This is an exciting opportunity to work on cutting-edge projects, improving the security and efficiency of their systems. Responsibilities Administer and optimise the Okta platform, including users, groups, and access policies. Develop integrations with internal and external applications using SSO, SAML, OIDC, and SCIM. Configure and manage multi-factor authentication (MFA) and adaptive access policies. Automate user life cycle processes using Okta Workflows or scripts. Troubleshoot and resolve Okta-related issues promptly. Collaborate with IT and security teams to align IAM strategies with business goals. Maintain clear documentation of configurations and processes. Key Skills and Experience Strong hands-on experience with Okta platform configuration and management. Deep understanding of IAM principles and protocols (eg, SAML, OIDC, SCIM). Scripting experience (eg, Python, PowerShell) and familiarity with automation tools. Knowledge of cybersecurity best practices and zero-trust security models. Strong problem-solving skills and the ability to communicate effectively with technical and non-technical stakeholders. Talent International UK Limited and it's subsidary Rethink Digital Gurus Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this opportunity, you accept the T&C's, Privacy Policy and Disclaimers which can be found on our website
23/12/2024
Project-based
Okta Specialist Remote £450-£500 per day outside IR35 I am working with a forward-thinking organisation seeking an experienced Okta Platform Engineer or Okta Specialist to lead their Identity and Access Management (IAM) initiatives. This is an exciting opportunity to work on cutting-edge projects, improving the security and efficiency of their systems. Responsibilities Administer and optimise the Okta platform, including users, groups, and access policies. Develop integrations with internal and external applications using SSO, SAML, OIDC, and SCIM. Configure and manage multi-factor authentication (MFA) and adaptive access policies. Automate user life cycle processes using Okta Workflows or scripts. Troubleshoot and resolve Okta-related issues promptly. Collaborate with IT and security teams to align IAM strategies with business goals. Maintain clear documentation of configurations and processes. Key Skills and Experience Strong hands-on experience with Okta platform configuration and management. Deep understanding of IAM principles and protocols (eg, SAML, OIDC, SCIM). Scripting experience (eg, Python, PowerShell) and familiarity with automation tools. Knowledge of cybersecurity best practices and zero-trust security models. Strong problem-solving skills and the ability to communicate effectively with technical and non-technical stakeholders. Talent International UK Limited and it's subsidary Rethink Digital Gurus Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this opportunity, you accept the T&C's, Privacy Policy and Disclaimers which can be found on our website
