Senior Microsoft Azure DevOps Engineer UK Wide £65,000 - £80,000 + perm benefits Eligibility for Security Clearance is required for this role! A leading consultancy organisation is looking to grow and add a couple Senior Microsoft Azure DevOps Engineer. This is a great opportunity to be involved in a some of the biggest and most exciting IT projects all built on Microsoft technology within Azure. You'll work in a cloud-first environment to build out a continuous integration process married with a solid release strategy while having the ability to upskill our client's team members and advise on best practice and strategy. Your role Understand the current client/project landscape and shape the design of the DevOps processes. Identify the accelerators that can be introduced to assist with the implementation and adoption of DevOps across projects. Help shape and implement delivery best practices across projects eg branching strategy, testing methodology, CI/CD and pipelines. Implement, manage and maintain DevOps processes and ensure adoption by the implementation teams of our projects. Act as a developer and subject matter expert on delivery engagements for clients to constantly enhance documented processes and improve the operational performance and security of systems. Scale systems sustainably through mechanisms like automation and evolve systems by pushing for changes that improve reliability and release velocity. Help define processes and standards, following Open Source best practices and keeping abreast of industry trends. Your skills and experience Energy and excitement about DevOps with experience in developing and implementing DevOps processes within an organization across Azure, .NET, Dynamics 365 and the Power Platform. A passion for software engineering and experience with industry-wide standards and best practices. And with an understanding of the following areas. At least one modern programming language Java/C#/JavaScript/Python/Go/Ruby etc. Understanding of Scripting languages, PowerShell/Bash. Automating the creation and maintenance of complex cloud infrastructure (anything as code). PaaS, Serverless, IaaS including VMs, Storage and security configuration. Application of security engineering principles (DevSecOps). Automation and Configuration Management tools such as Terraform. Source code control repository for Team Foundation Version Control (TFVC) or Git. Azure Services (Application Insights, Azure DevTest Lab, API Management, Web and Mobile Apps, Windows VM etc.). Container and Container Orchestration tools, eg Docker and Kubernetes. Hands on experience of Continuous Integration (CI) and Continuous Delivery (CD), ideally using Azure DevOps and with awareness of other CI/CD & build automation tools (Jenkins, Quick Build, Teamcity, GitLab, Octopus Deploy etc.)
25/06/2024
Full time
Senior Microsoft Azure DevOps Engineer UK Wide £65,000 - £80,000 + perm benefits Eligibility for Security Clearance is required for this role! A leading consultancy organisation is looking to grow and add a couple Senior Microsoft Azure DevOps Engineer. This is a great opportunity to be involved in a some of the biggest and most exciting IT projects all built on Microsoft technology within Azure. You'll work in a cloud-first environment to build out a continuous integration process married with a solid release strategy while having the ability to upskill our client's team members and advise on best practice and strategy. Your role Understand the current client/project landscape and shape the design of the DevOps processes. Identify the accelerators that can be introduced to assist with the implementation and adoption of DevOps across projects. Help shape and implement delivery best practices across projects eg branching strategy, testing methodology, CI/CD and pipelines. Implement, manage and maintain DevOps processes and ensure adoption by the implementation teams of our projects. Act as a developer and subject matter expert on delivery engagements for clients to constantly enhance documented processes and improve the operational performance and security of systems. Scale systems sustainably through mechanisms like automation and evolve systems by pushing for changes that improve reliability and release velocity. Help define processes and standards, following Open Source best practices and keeping abreast of industry trends. Your skills and experience Energy and excitement about DevOps with experience in developing and implementing DevOps processes within an organization across Azure, .NET, Dynamics 365 and the Power Platform. A passion for software engineering and experience with industry-wide standards and best practices. And with an understanding of the following areas. At least one modern programming language Java/C#/JavaScript/Python/Go/Ruby etc. Understanding of Scripting languages, PowerShell/Bash. Automating the creation and maintenance of complex cloud infrastructure (anything as code). PaaS, Serverless, IaaS including VMs, Storage and security configuration. Application of security engineering principles (DevSecOps). Automation and Configuration Management tools such as Terraform. Source code control repository for Team Foundation Version Control (TFVC) or Git. Azure Services (Application Insights, Azure DevTest Lab, API Management, Web and Mobile Apps, Windows VM etc.). Container and Container Orchestration tools, eg Docker and Kubernetes. Hands on experience of Continuous Integration (CI) and Continuous Delivery (CD), ideally using Azure DevOps and with awareness of other CI/CD & build automation tools (Jenkins, Quick Build, Teamcity, GitLab, Octopus Deploy etc.)
IT Security Engineer Glasgow - Hybrid working 3 days per week in the office £50,000 - £55,000 + benefits Fantastic new permanent opportunity for an experienced IT Security Engineer with a broad background within IT Infrastrucutre and security engineering and operations for this specialist financial services analytics business based in Glasgow. As a specialist Security Engineer, you will work as part of their DevSecOps team based in Glasgow. The role will involve working closely with the wider technology teams to enhance their cyber maturity. Furthermore, it provides the opportunity to contribute towards the implementation and management of various security technologies. Main responsibilities: Analysing security events and incidents relating to internal and customer assets. Designing and developing SIEM security use cases. Designing and implementing security controls and secure configurations. Maintaining proactive vulnerability scanning ensuring that all known vulnerabilities are addressed in line with policy. Collaborating with development teams to implement secure development practices. Configuring and maintaining security tooling across the infrastructure. Collaborating on maturing security incident management processes and playbooks. Collaborating with third-party led security tests, assessments and audits of our information security information security policies, procedures, and systems. Identifying, assessing, managing, remediating, and tracking information security risks through our risk management framework and ensuring key risks are reported to the CISO. Performing regular internal security audits aligned to ISO/IEC 27001 and SOC2 controls. Developing our security awareness training programme aligned with internal security policies. Comfortable engaging with customers and internal stakeholders to discuss security related matters. Skills Required: Proven hands-on experience as an IT Security Engineer or similar working with tools such as SIEM, vulnerability management, endpoint detection & response (EDR), applications security, identity, and access management, etc. Ability to work in a small high performing team, collaborating with other technical resources whilst aligning to the security strategy. Technical knowledge and experience with SIEM, SOAR, IDPS, DDoS, Malware Protection, Vulnerability Management, and Application Security tooling, etc. Knowledge of Information Security frameworks (CIS, NIST, NCSC CAF), supporting processes and toolsets. Ability to breakdown and solve complex problems across multiple domains and successfully lead the recovery of major and/or complex security incidents. Knowledge and experience of threat hunting and problem-solving through reviewing logs and identifying anomalous activities (Desirable). For any further queries regarding the role, please contact Danny Palmer at (see below)
25/06/2024
Full time
IT Security Engineer Glasgow - Hybrid working 3 days per week in the office £50,000 - £55,000 + benefits Fantastic new permanent opportunity for an experienced IT Security Engineer with a broad background within IT Infrastrucutre and security engineering and operations for this specialist financial services analytics business based in Glasgow. As a specialist Security Engineer, you will work as part of their DevSecOps team based in Glasgow. The role will involve working closely with the wider technology teams to enhance their cyber maturity. Furthermore, it provides the opportunity to contribute towards the implementation and management of various security technologies. Main responsibilities: Analysing security events and incidents relating to internal and customer assets. Designing and developing SIEM security use cases. Designing and implementing security controls and secure configurations. Maintaining proactive vulnerability scanning ensuring that all known vulnerabilities are addressed in line with policy. Collaborating with development teams to implement secure development practices. Configuring and maintaining security tooling across the infrastructure. Collaborating on maturing security incident management processes and playbooks. Collaborating with third-party led security tests, assessments and audits of our information security information security policies, procedures, and systems. Identifying, assessing, managing, remediating, and tracking information security risks through our risk management framework and ensuring key risks are reported to the CISO. Performing regular internal security audits aligned to ISO/IEC 27001 and SOC2 controls. Developing our security awareness training programme aligned with internal security policies. Comfortable engaging with customers and internal stakeholders to discuss security related matters. Skills Required: Proven hands-on experience as an IT Security Engineer or similar working with tools such as SIEM, vulnerability management, endpoint detection & response (EDR), applications security, identity, and access management, etc. Ability to work in a small high performing team, collaborating with other technical resources whilst aligning to the security strategy. Technical knowledge and experience with SIEM, SOAR, IDPS, DDoS, Malware Protection, Vulnerability Management, and Application Security tooling, etc. Knowledge of Information Security frameworks (CIS, NIST, NCSC CAF), supporting processes and toolsets. Ability to breakdown and solve complex problems across multiple domains and successfully lead the recovery of major and/or complex security incidents. Knowledge and experience of threat hunting and problem-solving through reviewing logs and identifying anomalous activities (Desirable). For any further queries regarding the role, please contact Danny Palmer at (see below)
Methods Business and Digital Technology Limited Methods is a £100M+ IT Services Consultancy who has partnered with a range of central government departments and agencies to transform the way the public sector operates in the UK. Established over 30 years ago and UK-based, we apply our skills in transformation, delivery, and collaboration from across the Methods Group, to create end-to-end business and technical solutions that are people-centred, safe, and designed for the future. Our human touch sets us apart from other consultancies, system integrators and software houses - with people, technology, and data at the heart of who we are, we believe in creating value and sustainability through everything we do for our clients, staff, communities, and the planet. We support our clients in the success of their projects while working collaboratively to share skill sets and solve problems. At Methods we have fun while working hard; we are not afraid of making mistakes and learning from them. Predominantly focused on the public-sector, Methods is now building a significant private sector client portfolio. Methods was acquired by the Alten Group in early 2022. Methods is currently recruiting for a DevSecOps Engineer (Cyber) Consultant to join our team on a permanent basis. This role will be based on-site Requirements Specialised in cloud management of platforms, applications, data and supporting infrastructure in the capacity of a system administrator of either the AWS or Azure platform Developing automation to support continuous delivery of changes using technologies on the Azure platform. Developing infrastructure as a service configuration to automate the creation of infrastructure and platforms to host test and production systems Building and setting up new development tools and infrastructure Understanding the needs of stakeholders and conveying this to developers Working on ways to automate and improve development and release processes Testing and examining code written by others and analysing results Ensuring that systems are safe and secure against cybersecurity threats Familiar with the NCSC secure design principles Familiar with managing security of cloud platforms, including administration of secrets, tokens and certificates. Working with Architects, Data and Software Engineers to ensure that development follows established processes and works as intended Planning out projects and being involved in project management decisions Responsible for the design, security, and maintenance of cloud infrastructure Making and guiding effective decisions, explaining clearly how the decision has been reached with the ability to understand and resolve technical disputes across varying levels of complexity and risk. Communicating effectively across organisational, technical and political boundaries to understand the context and how to make complex and technical information and language simple and accessible for non-technical audiences. Understanding of how to expose data from systems (for example, through APIs), link data from multiple systems and deliver streaming services. Ensuring that risks associated with deployment are adequately understood and documented. Ideal Candidates will demonstrate: Experience working across cyber security teams would be beneficial Solid infrastructure design experience for both on-prem and cloud, to implement or migrate applications and databases to Azure. Solid experience in a range of technologies and be able to make assessments as to what is best to be used for the projects and the organisation. As well as suggest and develop innovative approaches within constrained projects and environments. Strong experience in software development, change/release management processes, and technical governance to fully understand the typical life cycle and maintenance of live systems. Ability to work with containerization platforms such as Kubernetes, PKS, Docker; cloud provisioning software, including Ansible, Terraform, Azure blueprints, ARM templates; and application performance analysis and monitoring Experience of functional and non-functional testing including automated deployment experience of applications and databases. Understanding of the government digital service manual and standards across Discovery/Alpha/Beta/Live phases. Understanding of SaaS, PaaS, IaaS technologies and the implications of their use compared with bespoke development. Being able to provide training, support and mentoring to the wider business Knowledge of how to ensure that risks associated with deployment are adequately understood and documented. Desirable Skills & Experience: Worked as part of a system support team, managing live systems and triaging & resolving incidents to resolution including management of known defects and issues. Worked as part of multi-disciplinary project team. Experience with Terraform to deploy cloud infrastructure in Azure Experience with Azure DevOps and GitHub Actions to automate the build and deploy of containerised applications Experience implementing effective instrumentation to monitor applications Experience implementing SAST and DAST tooling in deployment pipelines like Trivvy and SonarQube Experience of both AWS and Azure Dev Ops tooling. This role will require you to have or be willing to go through Security Clearance. As part of the onboarding process candidates will be asked to complete a Baseline Personnel Security Standard; details of the evidence required to apply may be found on the government website Gov.UK. If you are unable to meet this and any associated criteria, then your employment may be delayed, or rejected . Details of this will be discussed with you at interview. Benefits Methods is passionate about its people; we want our colleagues to develop the things they are good at and enjoy. By joining us you can expect Autonomy to develop and grow your skills and experience Be part of exciting project work that is making a difference in society Strong, inspiring and thought-provoking leadership A supportive and collaborative environment Development - access to LinkedIn Learning, a management development programme, and training Wellness - 24/7 confidential employee assistance programme Flexible Working - including home working and part time Social - office parties, breakfast Tuesdays, monthly pizza Thursdays, Thirsty Thursdays, and commitment to charitable causes Time Off - 25 days of annual leave a year, plus bank holidays, with the option to buy 5 extra days each year Volunteering - 2 paid days per year to volunteer in our local communities or within a charity organisation Pension - Salary Exchange Scheme with 4% employer contribution and 5% employee contribution Discretionary Company Bonus - based on company and individual performance Life Assurance - of 4 times base salary Private Medical Insurance - which is non-contributory (spouse and dependants included) Worldwide Travel Insurance - which is non-contributory (spouse and dependants included) Enhanced Maternity and Paternity Pay Travel - season ticket loan, cycle to work scheme For a full list of benefits please visit our website
25/06/2024
Full time
Methods Business and Digital Technology Limited Methods is a £100M+ IT Services Consultancy who has partnered with a range of central government departments and agencies to transform the way the public sector operates in the UK. Established over 30 years ago and UK-based, we apply our skills in transformation, delivery, and collaboration from across the Methods Group, to create end-to-end business and technical solutions that are people-centred, safe, and designed for the future. Our human touch sets us apart from other consultancies, system integrators and software houses - with people, technology, and data at the heart of who we are, we believe in creating value and sustainability through everything we do for our clients, staff, communities, and the planet. We support our clients in the success of their projects while working collaboratively to share skill sets and solve problems. At Methods we have fun while working hard; we are not afraid of making mistakes and learning from them. Predominantly focused on the public-sector, Methods is now building a significant private sector client portfolio. Methods was acquired by the Alten Group in early 2022. Methods is currently recruiting for a DevSecOps Engineer (Cyber) Consultant to join our team on a permanent basis. This role will be based on-site Requirements Specialised in cloud management of platforms, applications, data and supporting infrastructure in the capacity of a system administrator of either the AWS or Azure platform Developing automation to support continuous delivery of changes using technologies on the Azure platform. Developing infrastructure as a service configuration to automate the creation of infrastructure and platforms to host test and production systems Building and setting up new development tools and infrastructure Understanding the needs of stakeholders and conveying this to developers Working on ways to automate and improve development and release processes Testing and examining code written by others and analysing results Ensuring that systems are safe and secure against cybersecurity threats Familiar with the NCSC secure design principles Familiar with managing security of cloud platforms, including administration of secrets, tokens and certificates. Working with Architects, Data and Software Engineers to ensure that development follows established processes and works as intended Planning out projects and being involved in project management decisions Responsible for the design, security, and maintenance of cloud infrastructure Making and guiding effective decisions, explaining clearly how the decision has been reached with the ability to understand and resolve technical disputes across varying levels of complexity and risk. Communicating effectively across organisational, technical and political boundaries to understand the context and how to make complex and technical information and language simple and accessible for non-technical audiences. Understanding of how to expose data from systems (for example, through APIs), link data from multiple systems and deliver streaming services. Ensuring that risks associated with deployment are adequately understood and documented. Ideal Candidates will demonstrate: Experience working across cyber security teams would be beneficial Solid infrastructure design experience for both on-prem and cloud, to implement or migrate applications and databases to Azure. Solid experience in a range of technologies and be able to make assessments as to what is best to be used for the projects and the organisation. As well as suggest and develop innovative approaches within constrained projects and environments. Strong experience in software development, change/release management processes, and technical governance to fully understand the typical life cycle and maintenance of live systems. Ability to work with containerization platforms such as Kubernetes, PKS, Docker; cloud provisioning software, including Ansible, Terraform, Azure blueprints, ARM templates; and application performance analysis and monitoring Experience of functional and non-functional testing including automated deployment experience of applications and databases. Understanding of the government digital service manual and standards across Discovery/Alpha/Beta/Live phases. Understanding of SaaS, PaaS, IaaS technologies and the implications of their use compared with bespoke development. Being able to provide training, support and mentoring to the wider business Knowledge of how to ensure that risks associated with deployment are adequately understood and documented. Desirable Skills & Experience: Worked as part of a system support team, managing live systems and triaging & resolving incidents to resolution including management of known defects and issues. Worked as part of multi-disciplinary project team. Experience with Terraform to deploy cloud infrastructure in Azure Experience with Azure DevOps and GitHub Actions to automate the build and deploy of containerised applications Experience implementing effective instrumentation to monitor applications Experience implementing SAST and DAST tooling in deployment pipelines like Trivvy and SonarQube Experience of both AWS and Azure Dev Ops tooling. This role will require you to have or be willing to go through Security Clearance. As part of the onboarding process candidates will be asked to complete a Baseline Personnel Security Standard; details of the evidence required to apply may be found on the government website Gov.UK. If you are unable to meet this and any associated criteria, then your employment may be delayed, or rejected . Details of this will be discussed with you at interview. Benefits Methods is passionate about its people; we want our colleagues to develop the things they are good at and enjoy. By joining us you can expect Autonomy to develop and grow your skills and experience Be part of exciting project work that is making a difference in society Strong, inspiring and thought-provoking leadership A supportive and collaborative environment Development - access to LinkedIn Learning, a management development programme, and training Wellness - 24/7 confidential employee assistance programme Flexible Working - including home working and part time Social - office parties, breakfast Tuesdays, monthly pizza Thursdays, Thirsty Thursdays, and commitment to charitable causes Time Off - 25 days of annual leave a year, plus bank holidays, with the option to buy 5 extra days each year Volunteering - 2 paid days per year to volunteer in our local communities or within a charity organisation Pension - Salary Exchange Scheme with 4% employer contribution and 5% employee contribution Discretionary Company Bonus - based on company and individual performance Life Assurance - of 4 times base salary Private Medical Insurance - which is non-contributory (spouse and dependants included) Worldwide Travel Insurance - which is non-contributory (spouse and dependants included) Enhanced Maternity and Paternity Pay Travel - season ticket loan, cycle to work scheme For a full list of benefits please visit our website
An exciting opportunity has arisen to join a global organisation as a Senior Cloud Security Engineer - Network and Infrastructure Security on a contract basis . The role is hybrid to be based in Geneva . You would Collaborate with the Senior Information Security Architect, Information Security Engineer, and Cloud Solution Architect to develop detailed designs and operational transition documents for the RSP Project. This will align with the approved security architecture and patterns. Also, create comprehensive procedures for security and technical administrators for tasks that are not fully automalable. You would Work with the Senior Information Security Architect, the Information Security Engineer and the Cloud Solution Architect to deploy, enable, configure, integrate, and initially administer all the required cloud-based information on Azure and AWS. Skills:- At least 10+ years of experience in the Information technology engineering At least 3 Years of experience as Security Engineer/Specialist, cloud security Engineer or similar position in regulated sectors preferably in finance Should have Familiarity with a broad range of technologies Having in-depth knowledge in AWS and AZURE security services , mechanisms, and features. Should have good experience in Cloud Security Engineering, Cloud Security Architecture, Hybrid Multi-Cloud Strategy, and Cloud Automation technologies. Familiar with cloud compliance and governance frameworks like NIST, CIS, CSA CCM, and AWS Well-Architected Framework. Skilled in Information Security Engineering, Security Compliance as code, technical documentation, and requirements and architectural analysis. Experience in automating security solution deployments on AWS and Azure, utilizing their native Infrastructure as Code (laC) for efficient setup. Having in-depth knowledge of AWS and Azure security tools, expertise in integrating various cloud-native security services, and skills in optimising for performance and Should have experience in technical documentation, architectural frameworks, and providing advanced IT support. Experience in Scripting for security automation, Microsoft Purview, CSPM, Zcaler SASE, LogRhythm,ISO27001 CISSP, ITIL Foundation, GIAC Public Cloud Security- SEC 510, SEC540(Cloud Security and OevSecOps Automation), SEC522(Application Security: Securing Web Apps, APls, and Microservices) Excellent interpersonal skills with the ability to establish and maintain effective partnerships and working relations in a multi-cultural environment with sensitivity and respect for diversity. Excellent analytical, decision-making, problem-solving, interpersonal skills. Excellent verbal and written communication skills. Knowledge of other official languages particularly French. Having Strong experience in agile ways of working. AWS Certified Security Specialist certification AWS Certified Solution Architect Associate If this position sounds of interest, please send across an updated CV and a member of the resource team will be in contact to proceed with your application.
25/06/2024
Project-based
An exciting opportunity has arisen to join a global organisation as a Senior Cloud Security Engineer - Network and Infrastructure Security on a contract basis . The role is hybrid to be based in Geneva . You would Collaborate with the Senior Information Security Architect, Information Security Engineer, and Cloud Solution Architect to develop detailed designs and operational transition documents for the RSP Project. This will align with the approved security architecture and patterns. Also, create comprehensive procedures for security and technical administrators for tasks that are not fully automalable. You would Work with the Senior Information Security Architect, the Information Security Engineer and the Cloud Solution Architect to deploy, enable, configure, integrate, and initially administer all the required cloud-based information on Azure and AWS. Skills:- At least 10+ years of experience in the Information technology engineering At least 3 Years of experience as Security Engineer/Specialist, cloud security Engineer or similar position in regulated sectors preferably in finance Should have Familiarity with a broad range of technologies Having in-depth knowledge in AWS and AZURE security services , mechanisms, and features. Should have good experience in Cloud Security Engineering, Cloud Security Architecture, Hybrid Multi-Cloud Strategy, and Cloud Automation technologies. Familiar with cloud compliance and governance frameworks like NIST, CIS, CSA CCM, and AWS Well-Architected Framework. Skilled in Information Security Engineering, Security Compliance as code, technical documentation, and requirements and architectural analysis. Experience in automating security solution deployments on AWS and Azure, utilizing their native Infrastructure as Code (laC) for efficient setup. Having in-depth knowledge of AWS and Azure security tools, expertise in integrating various cloud-native security services, and skills in optimising for performance and Should have experience in technical documentation, architectural frameworks, and providing advanced IT support. Experience in Scripting for security automation, Microsoft Purview, CSPM, Zcaler SASE, LogRhythm,ISO27001 CISSP, ITIL Foundation, GIAC Public Cloud Security- SEC 510, SEC540(Cloud Security and OevSecOps Automation), SEC522(Application Security: Securing Web Apps, APls, and Microservices) Excellent interpersonal skills with the ability to establish and maintain effective partnerships and working relations in a multi-cultural environment with sensitivity and respect for diversity. Excellent analytical, decision-making, problem-solving, interpersonal skills. Excellent verbal and written communication skills. Knowledge of other official languages particularly French. Having Strong experience in agile ways of working. AWS Certified Security Specialist certification AWS Certified Solution Architect Associate If this position sounds of interest, please send across an updated CV and a member of the resource team will be in contact to proceed with your application.