About Edelman's Crisis & Risk Practice: Edelman's Crisis & Risk practice is one of the largest and most respected in the world. With over 180 practitioners in 65 countries, we address some of the most complex reputational issues for clients worldwide. Issues that the team handles include corporate malfeasance, societal matters, litigation, ethics and integrity, security risks (e.g., physical and data), product and service risks (e.g., safety, health) and financial. About the Opportunity: Edelman is establishing a new Counter-Disinformation Unit (CDU) to provide deeper expertise in this growing area of reputational risk. It will build on the success that Edelman's Digital Crisis team has had in this space in recent years. The CDU will help clients anticipate, build resilience against, respond to, and recover from misinformation and disinformation attacks, ranging on a spectrum from organic consumer misperceptions through to weaponized state-backed disinformation and influence operations. Working as part of a Global team and reporting to the Head of Crisis & Risk, EMEA as well as the Head of Global Digital Crisis, The Head of Counter Disinformation, EMEA will be responsible for developing the CDU strategy and offer against an agreed set of objectives. This individual will work across a wide range of Edelman teams to introduce, deliver, and execute the offer. The CDU team will also be supported by a research resource responsible for providing up to date analysis and strategic insights that will help inform a multi-channel crisis response strategy for our clients as they combat these disinformation risks. This role will also play a key role in shaping the longer-term vision for the Crisis & Risk specialism considering the growing impact of artificial intelligence (AI) and the shifting media landscape. Given the CDU is a rapidly evolving offering from Edelman, there is significant scope to develop the strategy, targets and operating principles. We would also expect this role to take the lead in evolving and deepening the capabilities of the team in this area. The role requires someone who is comfortable in a constantly changing landscape.In return, you will play an integral part in leading accounts thatareat the center of some of the most relevant discussionsin the world today. Responsibilities: Work with other regional CDU leads to develop a global Counter Disinformation offering to service the growing needs of Edelman clients (existing and new). Serve as the lead adviser on mis and disinformation issues in EMEA serving high-profile and culturally relevant clients, working closely with other senior leaders in the company to counsel public, private sector, and NGO clients on complex issues. Advise on countering sensitive content issues including digital harassment, doxing, hostile activism, and hateful content. Drive pipeline and defined revenue growth in counter-disinformation and misinformation work within EMEA. Lead the marketing of the CDU internally within Edelman and externally in the region. Lead/participate in new business pitches to potential clients. Inform and develop proactive and reactive strategies and cross-channel tactical plans to counter or mitigate anticipated, emerging, and acute information threats. Identify and assess risks with a systems mindset, contextualizing emerging trends and threats with relevant geopolitical, cultural, or societally specific nuances. Develop and deliver disinformation response plans, client-side training, and simulations to build readiness and resilience against disinformation campaigns. Partner with other Edelman teams including strategy, creative, social media, influencer, performance marketing, predictive analytics and more to ensure seamless integration of counter-disinformation strategies within broader reputation and crisis management programs and context. Work with best-in-class academics, technology partners and practitioners to ensure Edelman's counter-disinformation work remains in line with evolving best practices in the industry. Support project management and financial tracking across multiple client projects. Share knowledge and experience with other members of the Crisis & Risk team to embed the skills into all members of the team over time. Qualifications: Significant experience working specifically in counter-disinformation roles, e.g. intelligence (preferably in military intelligence, government, or private security sector), international geopolitical, cybersecurity, or human rights functions. Strong experience in strategic communications and/or related fields. Extensive experience conceptualizing, drafting, and presenting strategic and tactical communications plans to address geopolitical, information (IO), cyber and/or violent actor behaviours and activities. Preferred Qualifications: Strong understanding of the application of digital communications and marketing techniques, strategies and tactics in disinformation, crisis, issues, or reputation management contexts. Experience analysing and mitigating high-impact threats from a diverse range of online threat actors. Understanding of psychological and behavioural science as it pertains to combatting disinformation and misinformation issues. Proven track record of managing and executing short-term and long-term projects under high pressure and time constraints. Experience leading cross-functional teams of direct and indirect reports on high-profile, high-pressure projects. Understanding of performance marketing strategies (notably audience identification/segmentation, targeting using paid media channels). Experienced in system dynamics thinking, thinking critically, and qualifying assessments with data driven communications skills. Experience working with a team spanning multiple locations/time zones. Proven business development experience with a track record of pitching and closing new business. Edelman is a global communications firm that partners with businesses and organizations to evolve, promote and protect their brands and reputations. Our 6,000 people in more than 60 offices deliver communications strategies that give our clients the confidence to lead and act with certainty, earning the trust of their stakeholders. Our honors include the Cannes Lions Grand Prix for PR; Advertising Age's 2019 A-List; the Holmes Report's 2018 Global Digital Agency of the Year; and, five times, Glassdoor's Best Places to Work. Since our founding in 1952, we have remained an independent, family-run business. Edelman owns specialty companies Edelman Data & Intelligence (DxI) and United Entertainment Group (entertainment, sports, lifestyle). For more information please visit: Click here to view a short video about life at Edelman.
Apr 30, 2024
Full time
About Edelman's Crisis & Risk Practice: Edelman's Crisis & Risk practice is one of the largest and most respected in the world. With over 180 practitioners in 65 countries, we address some of the most complex reputational issues for clients worldwide. Issues that the team handles include corporate malfeasance, societal matters, litigation, ethics and integrity, security risks (e.g., physical and data), product and service risks (e.g., safety, health) and financial. About the Opportunity: Edelman is establishing a new Counter-Disinformation Unit (CDU) to provide deeper expertise in this growing area of reputational risk. It will build on the success that Edelman's Digital Crisis team has had in this space in recent years. The CDU will help clients anticipate, build resilience against, respond to, and recover from misinformation and disinformation attacks, ranging on a spectrum from organic consumer misperceptions through to weaponized state-backed disinformation and influence operations. Working as part of a Global team and reporting to the Head of Crisis & Risk, EMEA as well as the Head of Global Digital Crisis, The Head of Counter Disinformation, EMEA will be responsible for developing the CDU strategy and offer against an agreed set of objectives. This individual will work across a wide range of Edelman teams to introduce, deliver, and execute the offer. The CDU team will also be supported by a research resource responsible for providing up to date analysis and strategic insights that will help inform a multi-channel crisis response strategy for our clients as they combat these disinformation risks. This role will also play a key role in shaping the longer-term vision for the Crisis & Risk specialism considering the growing impact of artificial intelligence (AI) and the shifting media landscape. Given the CDU is a rapidly evolving offering from Edelman, there is significant scope to develop the strategy, targets and operating principles. We would also expect this role to take the lead in evolving and deepening the capabilities of the team in this area. The role requires someone who is comfortable in a constantly changing landscape.In return, you will play an integral part in leading accounts thatareat the center of some of the most relevant discussionsin the world today. Responsibilities: Work with other regional CDU leads to develop a global Counter Disinformation offering to service the growing needs of Edelman clients (existing and new). Serve as the lead adviser on mis and disinformation issues in EMEA serving high-profile and culturally relevant clients, working closely with other senior leaders in the company to counsel public, private sector, and NGO clients on complex issues. Advise on countering sensitive content issues including digital harassment, doxing, hostile activism, and hateful content. Drive pipeline and defined revenue growth in counter-disinformation and misinformation work within EMEA. Lead the marketing of the CDU internally within Edelman and externally in the region. Lead/participate in new business pitches to potential clients. Inform and develop proactive and reactive strategies and cross-channel tactical plans to counter or mitigate anticipated, emerging, and acute information threats. Identify and assess risks with a systems mindset, contextualizing emerging trends and threats with relevant geopolitical, cultural, or societally specific nuances. Develop and deliver disinformation response plans, client-side training, and simulations to build readiness and resilience against disinformation campaigns. Partner with other Edelman teams including strategy, creative, social media, influencer, performance marketing, predictive analytics and more to ensure seamless integration of counter-disinformation strategies within broader reputation and crisis management programs and context. Work with best-in-class academics, technology partners and practitioners to ensure Edelman's counter-disinformation work remains in line with evolving best practices in the industry. Support project management and financial tracking across multiple client projects. Share knowledge and experience with other members of the Crisis & Risk team to embed the skills into all members of the team over time. Qualifications: Significant experience working specifically in counter-disinformation roles, e.g. intelligence (preferably in military intelligence, government, or private security sector), international geopolitical, cybersecurity, or human rights functions. Strong experience in strategic communications and/or related fields. Extensive experience conceptualizing, drafting, and presenting strategic and tactical communications plans to address geopolitical, information (IO), cyber and/or violent actor behaviours and activities. Preferred Qualifications: Strong understanding of the application of digital communications and marketing techniques, strategies and tactics in disinformation, crisis, issues, or reputation management contexts. Experience analysing and mitigating high-impact threats from a diverse range of online threat actors. Understanding of psychological and behavioural science as it pertains to combatting disinformation and misinformation issues. Proven track record of managing and executing short-term and long-term projects under high pressure and time constraints. Experience leading cross-functional teams of direct and indirect reports on high-profile, high-pressure projects. Understanding of performance marketing strategies (notably audience identification/segmentation, targeting using paid media channels). Experienced in system dynamics thinking, thinking critically, and qualifying assessments with data driven communications skills. Experience working with a team spanning multiple locations/time zones. Proven business development experience with a track record of pitching and closing new business. Edelman is a global communications firm that partners with businesses and organizations to evolve, promote and protect their brands and reputations. Our 6,000 people in more than 60 offices deliver communications strategies that give our clients the confidence to lead and act with certainty, earning the trust of their stakeholders. Our honors include the Cannes Lions Grand Prix for PR; Advertising Age's 2019 A-List; the Holmes Report's 2018 Global Digital Agency of the Year; and, five times, Glassdoor's Best Places to Work. Since our founding in 1952, we have remained an independent, family-run business. Edelman owns specialty companies Edelman Data & Intelligence (DxI) and United Entertainment Group (entertainment, sports, lifestyle). For more information please visit: Click here to view a short video about life at Edelman.
Scottish Council of Independent Schools
City, Edinburgh
The Rector and Chair of the Court of Directors are seeking to appoint an ambitious, highly motivated, and financially astute individual to the post of Chief Operating Officer (COO). This is an important time for the Edinburgh Academy, as we celebrate our 200th year and look to develop further, guided by an exciting and innovative five-year vision for the School which commenced in 2023. The COO will play a lead role in the implementation of this strategic plan. An ability to thrive in a dynamic and fast-paced working environment will be essential, as will proven experience of senior leadership and financial control in complex organisations. The successful candidate will work collaboratively with the Rector, the Court of Directors, and the Senior Management Team to help navigate the School through the potentially difficult political, economic, technological and societal challenges that lie ahead for the independent school sector in order to ensure the School's long-term success. Reporting to the Rector, the COO will lead a large and diverse team to ensure the successful delivery of the School's operations. They will be a creative and accomplished senior leader, with outstanding financial and commercial acumen and the ability to empower and develop others to ensure the continued success of the Academy. Whilst the COO role reports to the Rector for the day-to-day management of the school administration and finances, there is a further reporting line to the Court of Directors, through the Chairman of Directors and the Chairman of the Finance and General Purposes Committee, for all issues of Governance as Clerk of the Court. Prior experience in the education sector is not a prerequisite and applications are encouraged from candidates with commercial, charitable, private-sector and public-sector backgrounds. The successful candidate will demonstrate support for independent education and a commitment to the Edinburgh Academy's mission and values. The COO will provide strong operational leadership and financial understanding to ensure that the School continues to enjoy outstanding support services and robust finances. Applications are invited from well qualified candidates, and close at 5pm on May 16th, 2024. Interviews are scheduled for week commencing May 27th, 2024. Package Description A generous compensation package is offered with this role, commensurate with the successful individual's experience and qualifications. This will be discussed at interview. The school prides itself on its warm and welcoming community, inclusive of all staff. Our teaching staff work alongside the operational teams to ensure the smooth running of the school. We value the contribution of all team members. Through involvement in the co-curricular programme all those who work with us can bring their passions to work. Developing our talent is important to us. Access to training and professional development is available and encouraged. Our reward package includes: Generous Defined Contribution Pension Scheme Access to onsite gym Employee Assistance Programme Employee Benefits Programme, including discounted access to health insurance, financial well-being products, cycle to work and electric car schemes as well as discounts to a number of major retailers Fee discount A three course lunch is provided during term time Main Responsibilities This is multifaceted role, and the following is intended as an overview of the role. It is not necessarily a complete statement of the duties of the post. Strategy Partner with the Rector and Court of Directors to deliver the School's short, medium, and long-term financial, operational, and commercial strategy. Develop the people strategy and culture to meet the needs of the School. Contribute, as a member of the Senior Leadership Team, to the longer-term educational aims of the School. Lead negotiations on all aspects of major contracts with third parties, including the use of outsourcing where appropriate. Lead all aspects of capital development. Support the Court of Directors' strategic oversight review and reporting. Leadership & Management Providing outstanding leadership to a multifunctional and diverse operational team, ensuring that all are supported and challenged to deliver their responsibilities to the highest professional standards. In conjunction with the HR team oversee the recruitment, professional development, appraisal, and welfare of operational staff Ensure that compliance, safeguarding and the welfare of pupils and staff inform and direct all decision making so that the School continues to evolve its practice in line with changes and legislation Ensure that School Policies are current, reviewed within a timescale and meet the criteria of the governing body. Finance Working with the Financial Controller to deliver: Oversight of the preparation and delivery of the annual budget within the context of the Five-year Plan and advising the Rector and Court of fee and salary levels Responsible for the Finance Team and ensuring effective controls and processes are in place for the processing of the School's financial business. Provide effective management reporting for all of the entities to enable good and timely decision making at Court, Committee and SMT Financial oversight of the School's pension and fee remission policy, including staff fee remission and bursaries Financial oversight and reporting of the School's associated charities including the: Eric H Stevenson Charitable Trust and EA Foundation Manage effective relationships with key external service providers and professionals, including the bank, auditors, insurers, pension and legal advisers. Estates Responsible for developing and maintaining an outstanding, distinctive, and innovative physical environment for pupils and staff including: Strategic estate master-planning and the oversight of major building projects, including working with the Facilities Manager on the appointment of project management support, architects, engineers, and other major building consultants / contractors. Alongside the Facilities Manager planning and overseeing capital projects and developments including management of professional advisers, drawing up specifications for new buildings, obtaining tenders and planning permission and liaising with school architects and builders. Oversee and manage all utilities contracts. Alongside the Facilities Manager, lead and manage the development and improvement of the grounds and gardens on the site. Information Technology Ensure the development, procurement, delivery and management of the IT infrastructure, data, and services to support high-quality teaching and learning and administration. Working with the Director of IT to ensure the IT strategy is achievable and kept under review for speed of technology changes. Ensure the safety, security, and integrity of the School's IT network with particular reference to ensuring that it remains secure from cyberattacks and viruses. Operations & Commercial Activities In conjunction with the Facilities Manager and the Commercial Director of AccessEA, ensure the efficient and effective running of the following support operations: Catering and cleaning services - oversee caretaking and cleaning to support the educational offering. Oversee the delivery of all catering services ensuring that they are being provided efficiently and to a high standard Transport - in conjunction with the Health and Safety Manager, develop and manage an effective School Transportation Plan. Oversee and manage regulations pertaining to minibuses, licenses, driver training and assessments Commercial activities - alongside the Commercial Director, generate significant opportunities for additional revenue generation, developing a long-term plan for commercial development and alternative revenue generation Contribute as a pro-active member of the Senior Management Team (SMT) in both the strategic and operational leadership of the School. Assist the Rector, SMT and Court of Directors with the guiding of the strategic direction of the School Direct, motivate and develop the Operational Staff management teams to ensure the efficient day-to-day provision of operational services for the School, looking to develop operational systems as appropriate. Liaise closely and regularly with the Senior Deputy Rector and Headteacher of the Junior School, as well as with other members of the Senior Management Team, to ensure that all aspects of School life operate efficiently and successfully. This will involve the co-ordination of logistical support for major events and being prepared to exercise broad 'troubleshooting' responsibilities for resolving routine operational issues. Assist the Rector with oversight of the interface between the Nursery, Junior and Senior Schools, the Commercial Director of AccessEA, the EAC (Academicals), the Foundation and the Eric Stevenson Charitable Trust Oversee the delegation to the Senior Deputy Rector/Headteacher, the Estates Manager and the Commercial Manager of AccessEA, for the co-ordination of efficient and effective use of all buildings including the letting of buildings to assist income generation, de-conflicting commercial/charitable bids where necessary. . click apply for full job details
Apr 30, 2024
Full time
The Rector and Chair of the Court of Directors are seeking to appoint an ambitious, highly motivated, and financially astute individual to the post of Chief Operating Officer (COO). This is an important time for the Edinburgh Academy, as we celebrate our 200th year and look to develop further, guided by an exciting and innovative five-year vision for the School which commenced in 2023. The COO will play a lead role in the implementation of this strategic plan. An ability to thrive in a dynamic and fast-paced working environment will be essential, as will proven experience of senior leadership and financial control in complex organisations. The successful candidate will work collaboratively with the Rector, the Court of Directors, and the Senior Management Team to help navigate the School through the potentially difficult political, economic, technological and societal challenges that lie ahead for the independent school sector in order to ensure the School's long-term success. Reporting to the Rector, the COO will lead a large and diverse team to ensure the successful delivery of the School's operations. They will be a creative and accomplished senior leader, with outstanding financial and commercial acumen and the ability to empower and develop others to ensure the continued success of the Academy. Whilst the COO role reports to the Rector for the day-to-day management of the school administration and finances, there is a further reporting line to the Court of Directors, through the Chairman of Directors and the Chairman of the Finance and General Purposes Committee, for all issues of Governance as Clerk of the Court. Prior experience in the education sector is not a prerequisite and applications are encouraged from candidates with commercial, charitable, private-sector and public-sector backgrounds. The successful candidate will demonstrate support for independent education and a commitment to the Edinburgh Academy's mission and values. The COO will provide strong operational leadership and financial understanding to ensure that the School continues to enjoy outstanding support services and robust finances. Applications are invited from well qualified candidates, and close at 5pm on May 16th, 2024. Interviews are scheduled for week commencing May 27th, 2024. Package Description A generous compensation package is offered with this role, commensurate with the successful individual's experience and qualifications. This will be discussed at interview. The school prides itself on its warm and welcoming community, inclusive of all staff. Our teaching staff work alongside the operational teams to ensure the smooth running of the school. We value the contribution of all team members. Through involvement in the co-curricular programme all those who work with us can bring their passions to work. Developing our talent is important to us. Access to training and professional development is available and encouraged. Our reward package includes: Generous Defined Contribution Pension Scheme Access to onsite gym Employee Assistance Programme Employee Benefits Programme, including discounted access to health insurance, financial well-being products, cycle to work and electric car schemes as well as discounts to a number of major retailers Fee discount A three course lunch is provided during term time Main Responsibilities This is multifaceted role, and the following is intended as an overview of the role. It is not necessarily a complete statement of the duties of the post. Strategy Partner with the Rector and Court of Directors to deliver the School's short, medium, and long-term financial, operational, and commercial strategy. Develop the people strategy and culture to meet the needs of the School. Contribute, as a member of the Senior Leadership Team, to the longer-term educational aims of the School. Lead negotiations on all aspects of major contracts with third parties, including the use of outsourcing where appropriate. Lead all aspects of capital development. Support the Court of Directors' strategic oversight review and reporting. Leadership & Management Providing outstanding leadership to a multifunctional and diverse operational team, ensuring that all are supported and challenged to deliver their responsibilities to the highest professional standards. In conjunction with the HR team oversee the recruitment, professional development, appraisal, and welfare of operational staff Ensure that compliance, safeguarding and the welfare of pupils and staff inform and direct all decision making so that the School continues to evolve its practice in line with changes and legislation Ensure that School Policies are current, reviewed within a timescale and meet the criteria of the governing body. Finance Working with the Financial Controller to deliver: Oversight of the preparation and delivery of the annual budget within the context of the Five-year Plan and advising the Rector and Court of fee and salary levels Responsible for the Finance Team and ensuring effective controls and processes are in place for the processing of the School's financial business. Provide effective management reporting for all of the entities to enable good and timely decision making at Court, Committee and SMT Financial oversight of the School's pension and fee remission policy, including staff fee remission and bursaries Financial oversight and reporting of the School's associated charities including the: Eric H Stevenson Charitable Trust and EA Foundation Manage effective relationships with key external service providers and professionals, including the bank, auditors, insurers, pension and legal advisers. Estates Responsible for developing and maintaining an outstanding, distinctive, and innovative physical environment for pupils and staff including: Strategic estate master-planning and the oversight of major building projects, including working with the Facilities Manager on the appointment of project management support, architects, engineers, and other major building consultants / contractors. Alongside the Facilities Manager planning and overseeing capital projects and developments including management of professional advisers, drawing up specifications for new buildings, obtaining tenders and planning permission and liaising with school architects and builders. Oversee and manage all utilities contracts. Alongside the Facilities Manager, lead and manage the development and improvement of the grounds and gardens on the site. Information Technology Ensure the development, procurement, delivery and management of the IT infrastructure, data, and services to support high-quality teaching and learning and administration. Working with the Director of IT to ensure the IT strategy is achievable and kept under review for speed of technology changes. Ensure the safety, security, and integrity of the School's IT network with particular reference to ensuring that it remains secure from cyberattacks and viruses. Operations & Commercial Activities In conjunction with the Facilities Manager and the Commercial Director of AccessEA, ensure the efficient and effective running of the following support operations: Catering and cleaning services - oversee caretaking and cleaning to support the educational offering. Oversee the delivery of all catering services ensuring that they are being provided efficiently and to a high standard Transport - in conjunction with the Health and Safety Manager, develop and manage an effective School Transportation Plan. Oversee and manage regulations pertaining to minibuses, licenses, driver training and assessments Commercial activities - alongside the Commercial Director, generate significant opportunities for additional revenue generation, developing a long-term plan for commercial development and alternative revenue generation Contribute as a pro-active member of the Senior Management Team (SMT) in both the strategic and operational leadership of the School. Assist the Rector, SMT and Court of Directors with the guiding of the strategic direction of the School Direct, motivate and develop the Operational Staff management teams to ensure the efficient day-to-day provision of operational services for the School, looking to develop operational systems as appropriate. Liaise closely and regularly with the Senior Deputy Rector and Headteacher of the Junior School, as well as with other members of the Senior Management Team, to ensure that all aspects of School life operate efficiently and successfully. This will involve the co-ordination of logistical support for major events and being prepared to exercise broad 'troubleshooting' responsibilities for resolving routine operational issues. Assist the Rector with oversight of the interface between the Nursery, Junior and Senior Schools, the Commercial Director of AccessEA, the EAC (Academicals), the Foundation and the Eric Stevenson Charitable Trust Oversee the delegation to the Senior Deputy Rector/Headteacher, the Estates Manager and the Commercial Manager of AccessEA, for the co-ordination of efficient and effective use of all buildings including the letting of buildings to assist income generation, de-conflicting commercial/charitable bids where necessary. . click apply for full job details
Head of information Security 06 - 09 months contract Reading - Hybrid Working As the Head of information Security Operations, you will be responsible for creating and maintaining robust Information Security processes and procedures to align with business policies and operations. Lead and manage Information Security Operational teams will be integral to ensure efficient and effective security monitoring and defence across information assets. Do you thrive in dynamic environments, where innovation and excellence are the norm? If so, we want you to apply to this Head of information Security Operations role today! What is in it for you? Opportunity to work with cutting-edge technology in a dynamic and collaborative environment. Chance to make a real impact by safeguarding critical digital infrastructure. Collaborative culture that values creativity, diversity, and excellence. Key Responsibilities: Lead Cyber security incident response efforts, ensuring processes and procedures are efficient and regularly tested. Develop and maintain operational checks to uphold the confidentiality, integrity, and availability of organizational information assets. Act as an escalation point for Information Security Incidents, changes, and problems. Manage IDAM (Identity and Access Management) functions and controls. Produce Risk Landscape documentation in collaboration with Information Security Risk functions. Experience Required: Minimum 5+ years of commercial experience with various security technologies and systems. Operational experience with PCI DSS and familiarity with Check Point Firewall, SIEM/Splunk, endpoint protection technologies, vulnerability scanning tools, and Microsoft Windows Server family. Experience in managing and developing a SIEM system, and feeding events into a SOC for security incident identification. Strong understanding of identity and access management systems, Active Directory, GPO Configuration, and Citrix/VMWare. If you're ready to take on the challenge of leading cyber security operations in a forward-thinking organisation, apply now! Project People is acting as an Employment Business in relation to this vacancy.
Apr 30, 2024
Contractor
Head of information Security 06 - 09 months contract Reading - Hybrid Working As the Head of information Security Operations, you will be responsible for creating and maintaining robust Information Security processes and procedures to align with business policies and operations. Lead and manage Information Security Operational teams will be integral to ensure efficient and effective security monitoring and defence across information assets. Do you thrive in dynamic environments, where innovation and excellence are the norm? If so, we want you to apply to this Head of information Security Operations role today! What is in it for you? Opportunity to work with cutting-edge technology in a dynamic and collaborative environment. Chance to make a real impact by safeguarding critical digital infrastructure. Collaborative culture that values creativity, diversity, and excellence. Key Responsibilities: Lead Cyber security incident response efforts, ensuring processes and procedures are efficient and regularly tested. Develop and maintain operational checks to uphold the confidentiality, integrity, and availability of organizational information assets. Act as an escalation point for Information Security Incidents, changes, and problems. Manage IDAM (Identity and Access Management) functions and controls. Produce Risk Landscape documentation in collaboration with Information Security Risk functions. Experience Required: Minimum 5+ years of commercial experience with various security technologies and systems. Operational experience with PCI DSS and familiarity with Check Point Firewall, SIEM/Splunk, endpoint protection technologies, vulnerability scanning tools, and Microsoft Windows Server family. Experience in managing and developing a SIEM system, and feeding events into a SOC for security incident identification. Strong understanding of identity and access management systems, Active Directory, GPO Configuration, and Citrix/VMWare. If you're ready to take on the challenge of leading cyber security operations in a forward-thinking organisation, apply now! Project People is acting as an Employment Business in relation to this vacancy.
Our leading Douglas-based Finance Sector Client is expanding its Finance Team as they progress an ambitious transformation programme. As they evolve the technology organisation, they require an experienced Security Engineer. Note - this role is based on the Isle of Man, so requires candidates to either be based on the island currently or be open to relocation. Reporting to the Head of IT Security, the Security Engineer will assist with the translation of the company's Information Security policies and standards into practical operational procedures. You will work as part of the IT Security Team in areas including the design, implementation and maintenance of robust security measures across network and cloud environments, ensuring protection against potential threats, adherence to industry standards, and proactive incident response. This will include providing security consultancy services to the Change Team. In this role you will Ensure continual alignment of Information Security Policies with industry standards, regulatory requirements, and evolving cyber threats Develop and communicate an effective strategy for the implementation of Information Security Policies across all departments and systems within the organisation Establish mechanisms to regularly monitor and, measure compliance with Information Security Policies, addressing non-compliance issues Maintain updated documentation, providing easy access to policies, guidelines, and procedures for all staff members Establish a robust mechanism to ensure alignment with relevant Information Security Frameworks (e.g., ISO 27000 series, NIST, etc.), mapping organisational policies and practices to the framework's requirements Conduct periodic internal assessments to evaluate adherence to Information Security Frameworks and compliance standards, driving continuous improvement and implement corrective actions based on assessment findings Stay updated with industry trends, best practices, regulatory standards and amendments in Information Security Frameworks Develop strategic plans outlining security objectives and domain roadmaps for network and Cloud environments aligned with organisational goals Develop and implement security focused Architecture Building Blocks (ABBs) and Solution Building Blocks (SBBs) in collaboration with the Architecture team Ensure adherence to industry best practices, regulatory standards, and internal security policies across network and Cloud environments Develop and implement incident response plans specific to network and Cloud security incidents, outlining clear protocols for detection, containment, and recovery Identify and establish partnerships with external security entities, including vendors, consultants, industry groups, or security forums Regularly assess the performance and alignment of external security partners with organisational security objectives Establish channels for continuous intelligence gathering from external partners regarding emerging threats, vulnerabilities, and best practices Foster an environment of knowledge sharing and cooperation to leverage expertise from external entities Develop a comprehensive framework for assessing the security posture of Material IT Suppliers, outlining assessment criteria, methodologies, and evaluation metrics Working with the Head of IT Service, establish mechanisms to verify and validate the compliance of material IT suppliers with agreed-upon security standards, contractual obligations, and regulatory requirements Conduct thorough assessments to identify security risks associated with material IT suppliers, considering factors like data handling, access controls, and compliance Implement tools or systems for continuous monitoring of security practices and performance of material IT suppliers Develop a standardised framework for conducting comprehensive risk assessments across the organisation's systems, applications, and infrastructure Conduct periodic risk assessments to identify, analyse, and prioritise potential risks and threats to the organisation's assets and operations Develop and implement risk mitigation strategies based on the findings from risk assessments, vulnerability testing, and penetration testing reports Organise and oversee regular vulnerability assessments and penetration testing activities to identify weaknesses and potential entry points for cyber threats Develop and maintain incident response plans aligned with identified risks and potential threats The ideal candidate for the role of Security Engineer will have: - Hold a degree in Computer Science, Information Security, or related field (or equivalent experience) - Advanced certifications (or working towards such a certification) such as CISSP, CISM, or equivalent are preferred - 5+ years in network and / or Cloud security roles, demonstrating progressive responsibility - Proven experience in designing and implementing security solutions in network and Cloud environments - Extensive experience in IT security, with a focus on Security Operations, Access Management, and Policy Development - Strong knowledge of security frameworks, such as NIST and ISO27000 series - Up-to-date knowledge of emerging security threats, trends, and technologies - Expertise in network security protocols, cloud security solutions (Azure/AWS/GCP), firewalls, intrusion detection systems, VPNs - Proficient in vulnerability assessment tools, incident response frameworks, and risk management methodologies - Analytical mindset and problem-solving abilities to assess security risks and propose appropriate mitigation strategies - A basic understanding for compliance and risk management
Apr 29, 2024
Full time
Our leading Douglas-based Finance Sector Client is expanding its Finance Team as they progress an ambitious transformation programme. As they evolve the technology organisation, they require an experienced Security Engineer. Note - this role is based on the Isle of Man, so requires candidates to either be based on the island currently or be open to relocation. Reporting to the Head of IT Security, the Security Engineer will assist with the translation of the company's Information Security policies and standards into practical operational procedures. You will work as part of the IT Security Team in areas including the design, implementation and maintenance of robust security measures across network and cloud environments, ensuring protection against potential threats, adherence to industry standards, and proactive incident response. This will include providing security consultancy services to the Change Team. In this role you will Ensure continual alignment of Information Security Policies with industry standards, regulatory requirements, and evolving cyber threats Develop and communicate an effective strategy for the implementation of Information Security Policies across all departments and systems within the organisation Establish mechanisms to regularly monitor and, measure compliance with Information Security Policies, addressing non-compliance issues Maintain updated documentation, providing easy access to policies, guidelines, and procedures for all staff members Establish a robust mechanism to ensure alignment with relevant Information Security Frameworks (e.g., ISO 27000 series, NIST, etc.), mapping organisational policies and practices to the framework's requirements Conduct periodic internal assessments to evaluate adherence to Information Security Frameworks and compliance standards, driving continuous improvement and implement corrective actions based on assessment findings Stay updated with industry trends, best practices, regulatory standards and amendments in Information Security Frameworks Develop strategic plans outlining security objectives and domain roadmaps for network and Cloud environments aligned with organisational goals Develop and implement security focused Architecture Building Blocks (ABBs) and Solution Building Blocks (SBBs) in collaboration with the Architecture team Ensure adherence to industry best practices, regulatory standards, and internal security policies across network and Cloud environments Develop and implement incident response plans specific to network and Cloud security incidents, outlining clear protocols for detection, containment, and recovery Identify and establish partnerships with external security entities, including vendors, consultants, industry groups, or security forums Regularly assess the performance and alignment of external security partners with organisational security objectives Establish channels for continuous intelligence gathering from external partners regarding emerging threats, vulnerabilities, and best practices Foster an environment of knowledge sharing and cooperation to leverage expertise from external entities Develop a comprehensive framework for assessing the security posture of Material IT Suppliers, outlining assessment criteria, methodologies, and evaluation metrics Working with the Head of IT Service, establish mechanisms to verify and validate the compliance of material IT suppliers with agreed-upon security standards, contractual obligations, and regulatory requirements Conduct thorough assessments to identify security risks associated with material IT suppliers, considering factors like data handling, access controls, and compliance Implement tools or systems for continuous monitoring of security practices and performance of material IT suppliers Develop a standardised framework for conducting comprehensive risk assessments across the organisation's systems, applications, and infrastructure Conduct periodic risk assessments to identify, analyse, and prioritise potential risks and threats to the organisation's assets and operations Develop and implement risk mitigation strategies based on the findings from risk assessments, vulnerability testing, and penetration testing reports Organise and oversee regular vulnerability assessments and penetration testing activities to identify weaknesses and potential entry points for cyber threats Develop and maintain incident response plans aligned with identified risks and potential threats The ideal candidate for the role of Security Engineer will have: - Hold a degree in Computer Science, Information Security, or related field (or equivalent experience) - Advanced certifications (or working towards such a certification) such as CISSP, CISM, or equivalent are preferred - 5+ years in network and / or Cloud security roles, demonstrating progressive responsibility - Proven experience in designing and implementing security solutions in network and Cloud environments - Extensive experience in IT security, with a focus on Security Operations, Access Management, and Policy Development - Strong knowledge of security frameworks, such as NIST and ISO27000 series - Up-to-date knowledge of emerging security threats, trends, and technologies - Expertise in network security protocols, cloud security solutions (Azure/AWS/GCP), firewalls, intrusion detection systems, VPNs - Proficient in vulnerability assessment tools, incident response frameworks, and risk management methodologies - Analytical mindset and problem-solving abilities to assess security risks and propose appropriate mitigation strategies - A basic understanding for compliance and risk management
Holt Engineering Recruitment are currently looking for an experienced Infrastructure & Software Support Developer to join our forward-thinking manufacturing business in Lymington! This is an exciting opportunity which will see a motivated individual with a broad skillset assist the head of IT in the day-to-day support, maintenance and upgrade of the IT infrastructure. This position has arisen as the company are beginning to transform and upgrade their IT systems and environment looking to align to future requirements of their growing business and YOU could be a key part in this. The duties of the Infrastructure & Software Support Developer will be: To assist the head of Information Technology in the installing, managing, monitoring and upgrading of: VMware ESXI server and vCSA infrastructure Server/backup hardware provisioning Microsoft Server 2012 R2+ and services Active directory domains, security groups, permissions and group policies Network infrastructure, including TCP/IP LAN, switches, routers, firewall's, and Wi-FI Ap's Veeam Backups and Replication Company applications, software updates and new software projects as required Windows laptop/ Desktop OS upgrades, feature updates,patches etc. Monitoring infrastructure health and performance for security and to prevent performance bottlenecks Maintain accurate IT documentation Ensure compliance with Cyber Essentials as certified. The successful Infrastructure & Support Developer will have experience with the following: Building and administering VMware ESXi and vCSA environments Server hardware builds, testing and provision Administering Microsoft Windows Server environments including new server setup, upgrades and services. Administering Microsoft domain environments, Active Directory, GPO's, DNS, WSUS, 365/Entra Backup and Recovery support including NAS/ISCSI, disaster recovering planning TCP/IP Networking knowledge including subnet routing, switches, VPN, Wi-Fi Server hardware support and knowledge including troubleshooting, RAID disks, performance tailoring Software application installations/ upgrades and project support. Windows Desktop/Office 365/Team environment knowledge and support The Infrastructure & Support Developer will: Have 3+ years' demonstratable experience in a similar role. Be organised, self-motivated and can show initiative Be able to work in a team but also take the lead as required Have the ability to manage multiple projects and adapt to changing timescales Have the ability to prioritise own workload and adapt in a fast-paced dynamic manufacturing environment Have the ability to keep clear and accurate documentation including project progress reporting Have good communication skills at all levels within an organisation This is a Permanent role paying up to 40,000pa DOE. If you believe you are the right person for the Infrastructure & Support Developer role APPLY today and Hannah Will be in touch shortly.
Apr 29, 2024
Full time
Holt Engineering Recruitment are currently looking for an experienced Infrastructure & Software Support Developer to join our forward-thinking manufacturing business in Lymington! This is an exciting opportunity which will see a motivated individual with a broad skillset assist the head of IT in the day-to-day support, maintenance and upgrade of the IT infrastructure. This position has arisen as the company are beginning to transform and upgrade their IT systems and environment looking to align to future requirements of their growing business and YOU could be a key part in this. The duties of the Infrastructure & Software Support Developer will be: To assist the head of Information Technology in the installing, managing, monitoring and upgrading of: VMware ESXI server and vCSA infrastructure Server/backup hardware provisioning Microsoft Server 2012 R2+ and services Active directory domains, security groups, permissions and group policies Network infrastructure, including TCP/IP LAN, switches, routers, firewall's, and Wi-FI Ap's Veeam Backups and Replication Company applications, software updates and new software projects as required Windows laptop/ Desktop OS upgrades, feature updates,patches etc. Monitoring infrastructure health and performance for security and to prevent performance bottlenecks Maintain accurate IT documentation Ensure compliance with Cyber Essentials as certified. The successful Infrastructure & Support Developer will have experience with the following: Building and administering VMware ESXi and vCSA environments Server hardware builds, testing and provision Administering Microsoft Windows Server environments including new server setup, upgrades and services. Administering Microsoft domain environments, Active Directory, GPO's, DNS, WSUS, 365/Entra Backup and Recovery support including NAS/ISCSI, disaster recovering planning TCP/IP Networking knowledge including subnet routing, switches, VPN, Wi-Fi Server hardware support and knowledge including troubleshooting, RAID disks, performance tailoring Software application installations/ upgrades and project support. Windows Desktop/Office 365/Team environment knowledge and support The Infrastructure & Support Developer will: Have 3+ years' demonstratable experience in a similar role. Be organised, self-motivated and can show initiative Be able to work in a team but also take the lead as required Have the ability to manage multiple projects and adapt to changing timescales Have the ability to prioritise own workload and adapt in a fast-paced dynamic manufacturing environment Have the ability to keep clear and accurate documentation including project progress reporting Have good communication skills at all levels within an organisation This is a Permanent role paying up to 40,000pa DOE. If you believe you are the right person for the Infrastructure & Support Developer role APPLY today and Hannah Will be in touch shortly.
Title: Head of Information Security Environment: IT and OT (must have recent experience in an OT environment) Salary: 90,000 - 130,000 + bonus depending on experience Location: Central London - hybrid (3 days in office) Reports: 3-4 direct reports We are currently working with one of the countries raw materials energy suppliers as they look to bring on a leader for their Information Security and IT Service Management department. This role will be responsible for the Information Security roll-out across the business and IT Service Management from the wider group initiative. Key Stakeholders IT Service Provider SCADA and other operational control systems providers Cybersecurity authorities in UK and EU Wider organisation / other heads of department (e.g. HSE, Engineering, Operations, Procurement, Risk) The Head of Information Security and IT is responsible for managing the IT and Cybersecurity programmes. This includes the continued development and implementation of the IT strategy, roadmap and resourcing needs to deliver the business outcomes. The Head of Information Technology and Security will continue the development and implementation of an integrated cybersecurity strategy and management system, addressing the cybersecurity risk and to ensure compliance with the NIS requirements. Please note, you will need previous experience working in an OT environment, as well as a solid understand of IT and Information Security. Previous experience of ISO27001 implementation and certification is an essential piece of criteria for this role as well as an excellent technical understanding allowing you to converse with everyone from board level to engineers. If you are keen to learn more and would like to arrange a confidential conversation, please get in touch.
Apr 29, 2024
Full time
Title: Head of Information Security Environment: IT and OT (must have recent experience in an OT environment) Salary: 90,000 - 130,000 + bonus depending on experience Location: Central London - hybrid (3 days in office) Reports: 3-4 direct reports We are currently working with one of the countries raw materials energy suppliers as they look to bring on a leader for their Information Security and IT Service Management department. This role will be responsible for the Information Security roll-out across the business and IT Service Management from the wider group initiative. Key Stakeholders IT Service Provider SCADA and other operational control systems providers Cybersecurity authorities in UK and EU Wider organisation / other heads of department (e.g. HSE, Engineering, Operations, Procurement, Risk) The Head of Information Security and IT is responsible for managing the IT and Cybersecurity programmes. This includes the continued development and implementation of the IT strategy, roadmap and resourcing needs to deliver the business outcomes. The Head of Information Technology and Security will continue the development and implementation of an integrated cybersecurity strategy and management system, addressing the cybersecurity risk and to ensure compliance with the NIS requirements. Please note, you will need previous experience working in an OT environment, as well as a solid understand of IT and Information Security. Previous experience of ISO27001 implementation and certification is an essential piece of criteria for this role as well as an excellent technical understanding allowing you to converse with everyone from board level to engineers. If you are keen to learn more and would like to arrange a confidential conversation, please get in touch.
Head of Fraud and Financial Crime - London or West Yorkshire - flexible hybrid working with 1 day in the office Our client, a leading FS business, is looking to recruit a new Head of Fraud and Financial Crime into their senior leadership team In the role you will be responsible for leading fraud strategy and the fraud and FC ops functions, ensuring the need to balance protecting customers and the business against fraud whilst ensuring the customer experience is 1st class and the business is complying with regulatory requirements KEY RESPONSIBILITIES Lead the Fraud Department in delivering exceptional advisory, operational and fraud risk support to the business Develop and maintain a fraud strategy to protect customers and the Group. This includes fraud prevention, risk appetite, systems and controls roadmap, industry partnership and collaboration, analytics and rules management and operational task management Ensure all regulatory and compliance requirements are met and maintained including, AML-related transaction monitoring and reporting of suspicious activity to the nominated officer, analysis of fraudulent activity, resolution of disputed transactions, identification of efficiencies and productivity improvements Ensure that the Group can respond to financial crime threats as these emerge and evolve Implement customer fraud awareness strategies to inform the customer base of nationwide industry threats Accountable for all outsourced fraud set up, oversight and on-going management Ensure that fraud strategy and practice adhere to current and adjusts to future legislation/regulation Maintain a strong industry network to understand industry best practises and ensure the Group is industry leading Keep up to date with new technology to improve processes where necessary within the Group and understand how to combat cyber-crime. Full accountability and management of profit and loss budgets across Fraud and Financial Crime Lead the Disputes team to provide exceptional services to customers, meet SLA's and minimise loss to the Group Operational execution of Financial Crime alerts covering customer screening, transaction monitoring, suspicious activity reporting, information requests from law enforcement, and identification of enhancements/ efficiencies Ensure a risk-based and proportionate quality control framework is operated across all operational processes, to give management confidence that activities are being completed in an effective and compliant way Plays a lead role in the design, implementation and maintenance of effective systems and controls related to the investigation and reporting of potential suspicious activity to the Nominated Officer, and identification of PEPs or customers subject to economic sanctions. Resolutions for claims against section 75 of the Consumer Credit Act. Work closely with the MLRO to drive the operational strategy for the Group's customer due diligence checks and anti-money laundering requirements. Contribute to the AML strategy through identification of risks, trends and typologies Work closely with key stakeholders to ensure we have a consistent, joined up view on the totality of losses reported through our credit loss lines. KNOWLEDGE & EXPERTISE Senior management experience, specifically managing a team of financial crime/fraud specialists Demonstrable insights and understanding gained from experience of the financial services market and credit card industry Demonstrable understanding of the key fraud, money laundering, terrorist financing and sanctions risks faced by the Group Detailed understanding of risk management and FCA/PRA regulations and approach Analytical capability to build effective, statistically relevant fraud prevention strategies Understanding of mathematical modelling and machine learning techniques, and technical knowledge of analysis through SAS / SQL PROBLEM SOLVING Leads the development of the vision for the Group's fraud strategy to ensure our customers and the Group are protected from fraud loss Maintains excellent up to date knowledge through external networking on fraud trends and identifies what risks these present. Informing stakeholders and ensuring clear steps are agreed through strategy and investment planning to ensure the protection of our customers and the Group from fraud loss is achieved. Liaison with industry bodies including the FCA, PRA, SOCA, CIFAS, APACS to identify appropriate operations challenges and emerging financial crime risks and influence industry initiatives against Fraud and Financial Crime Develops and implements innovative analysis and investigative techniques to enhance the ability to detect and report emerging fraud risk in a timely manner. Continually assess the operational risks associated with the role and taking into account changing economic, legal, technological and regulatory environments and captures through the Risk Frameworks. LEADERSHIP RESPONSIBILITIES Leads and inspires the Fraud and Financial Crime department both on/offshore, working towards achieving and exceeding key performance indicators Ensures that the teams have a clear line of sight between their individual roles and the aims and ambitions of the departments and company objectives as a whole Creates a culture where the team can flourish and reach their full potential Inspires others through own actions, to ensure that regular and meaningful communications take place at the right time and using the right channels Leads by example and ensures all relevant performance management processes are carried out in line with the Group's conduct rules and standard policies and procedures Sets the annual plans and budgets for the department and full accountability for P and L lines relating to the function Puts in place strategies that relate to fraud prevention (application fraud and Falcon), third party fraud (prevention and processing and chargebacks), first party fraud (prevention), financial crime (police liaison, screening, and AML transactional monitoring), disputes (processing disputes and chargebacks). Ensuring all key performance indicators are achieved. Leads the Fraud management team to effectively manage the daily fraud detection and prevention activities ensuring all relevant policies, procedures and standards are being implemented and met. Leads and develops the Fraud management team to develop a highly productive and motivated team of individuals who achieve and exceed targets and ultimately manages the level of fraud losses and recoveries Understand the significance of regulatory factors within the team and ensure processes adhere to relevant legislation Understand the commercial impact which fraud processes will have on the business so that they meet business risk appetite Build best-in-class fraud prevention processes to support the effective management of cyber security risks Please note, should feedback not be received within 28 days due to the large volume of applications, unfortunately, your application has been unsuccessful. However, we may be in touch with similar relevant opportunities. If you would like this job advertisement in an alternative format, please contact MERJE directly.
Apr 29, 2024
Full time
Head of Fraud and Financial Crime - London or West Yorkshire - flexible hybrid working with 1 day in the office Our client, a leading FS business, is looking to recruit a new Head of Fraud and Financial Crime into their senior leadership team In the role you will be responsible for leading fraud strategy and the fraud and FC ops functions, ensuring the need to balance protecting customers and the business against fraud whilst ensuring the customer experience is 1st class and the business is complying with regulatory requirements KEY RESPONSIBILITIES Lead the Fraud Department in delivering exceptional advisory, operational and fraud risk support to the business Develop and maintain a fraud strategy to protect customers and the Group. This includes fraud prevention, risk appetite, systems and controls roadmap, industry partnership and collaboration, analytics and rules management and operational task management Ensure all regulatory and compliance requirements are met and maintained including, AML-related transaction monitoring and reporting of suspicious activity to the nominated officer, analysis of fraudulent activity, resolution of disputed transactions, identification of efficiencies and productivity improvements Ensure that the Group can respond to financial crime threats as these emerge and evolve Implement customer fraud awareness strategies to inform the customer base of nationwide industry threats Accountable for all outsourced fraud set up, oversight and on-going management Ensure that fraud strategy and practice adhere to current and adjusts to future legislation/regulation Maintain a strong industry network to understand industry best practises and ensure the Group is industry leading Keep up to date with new technology to improve processes where necessary within the Group and understand how to combat cyber-crime. Full accountability and management of profit and loss budgets across Fraud and Financial Crime Lead the Disputes team to provide exceptional services to customers, meet SLA's and minimise loss to the Group Operational execution of Financial Crime alerts covering customer screening, transaction monitoring, suspicious activity reporting, information requests from law enforcement, and identification of enhancements/ efficiencies Ensure a risk-based and proportionate quality control framework is operated across all operational processes, to give management confidence that activities are being completed in an effective and compliant way Plays a lead role in the design, implementation and maintenance of effective systems and controls related to the investigation and reporting of potential suspicious activity to the Nominated Officer, and identification of PEPs or customers subject to economic sanctions. Resolutions for claims against section 75 of the Consumer Credit Act. Work closely with the MLRO to drive the operational strategy for the Group's customer due diligence checks and anti-money laundering requirements. Contribute to the AML strategy through identification of risks, trends and typologies Work closely with key stakeholders to ensure we have a consistent, joined up view on the totality of losses reported through our credit loss lines. KNOWLEDGE & EXPERTISE Senior management experience, specifically managing a team of financial crime/fraud specialists Demonstrable insights and understanding gained from experience of the financial services market and credit card industry Demonstrable understanding of the key fraud, money laundering, terrorist financing and sanctions risks faced by the Group Detailed understanding of risk management and FCA/PRA regulations and approach Analytical capability to build effective, statistically relevant fraud prevention strategies Understanding of mathematical modelling and machine learning techniques, and technical knowledge of analysis through SAS / SQL PROBLEM SOLVING Leads the development of the vision for the Group's fraud strategy to ensure our customers and the Group are protected from fraud loss Maintains excellent up to date knowledge through external networking on fraud trends and identifies what risks these present. Informing stakeholders and ensuring clear steps are agreed through strategy and investment planning to ensure the protection of our customers and the Group from fraud loss is achieved. Liaison with industry bodies including the FCA, PRA, SOCA, CIFAS, APACS to identify appropriate operations challenges and emerging financial crime risks and influence industry initiatives against Fraud and Financial Crime Develops and implements innovative analysis and investigative techniques to enhance the ability to detect and report emerging fraud risk in a timely manner. Continually assess the operational risks associated with the role and taking into account changing economic, legal, technological and regulatory environments and captures through the Risk Frameworks. LEADERSHIP RESPONSIBILITIES Leads and inspires the Fraud and Financial Crime department both on/offshore, working towards achieving and exceeding key performance indicators Ensures that the teams have a clear line of sight between their individual roles and the aims and ambitions of the departments and company objectives as a whole Creates a culture where the team can flourish and reach their full potential Inspires others through own actions, to ensure that regular and meaningful communications take place at the right time and using the right channels Leads by example and ensures all relevant performance management processes are carried out in line with the Group's conduct rules and standard policies and procedures Sets the annual plans and budgets for the department and full accountability for P and L lines relating to the function Puts in place strategies that relate to fraud prevention (application fraud and Falcon), third party fraud (prevention and processing and chargebacks), first party fraud (prevention), financial crime (police liaison, screening, and AML transactional monitoring), disputes (processing disputes and chargebacks). Ensuring all key performance indicators are achieved. Leads the Fraud management team to effectively manage the daily fraud detection and prevention activities ensuring all relevant policies, procedures and standards are being implemented and met. Leads and develops the Fraud management team to develop a highly productive and motivated team of individuals who achieve and exceed targets and ultimately manages the level of fraud losses and recoveries Understand the significance of regulatory factors within the team and ensure processes adhere to relevant legislation Understand the commercial impact which fraud processes will have on the business so that they meet business risk appetite Build best-in-class fraud prevention processes to support the effective management of cyber security risks Please note, should feedback not be received within 28 days due to the large volume of applications, unfortunately, your application has been unsuccessful. However, we may be in touch with similar relevant opportunities. If you would like this job advertisement in an alternative format, please contact MERJE directly.
Our client, a Defence Supplier is looking for a Logistics Operative to join them on a permanent basis at their brand-new site in Maidenhead. All candidates must be able to obtain and maintain SC security clearance and hold a sole British nationality. Fully onsite due to the nature of the role. Competitive salary. Key Responsibilities: Goods Receipt Receiving and management of deliveries. Performing prescribed checks upon receipt of goods and registering receipts on the ERP system. To quarantine items under query and maintain the quarantine register. To issue shortages to the Production team upon arrival. To put away inventory in accordance with the appropriate storage conditions in relation to the product. To receipt non-inventory order lines in accordance with the prescribed process. Inventory Management Maintaining the accuracy of the ERP system to demonstrate a record of the stock that has either had a change of storage locations, lot numbers and quantities. Performing regular stock checks and transacting any stock adjustments in accordance with the approvals process. Picking shop orders and material requisitions. Delivering these to Production in an accurate and timely manner. Ensuring inventory is securely packaged and is stored in accordance with the prescribed storage conditions, including security classification. The prompt and accurate supply of inventory to production. The management of quarantined items by working with stakeholders to resolve any queries. Packing & Despatch Receiving Finished Goods from the Production team and liaising with Quality Assurance and Compliance teams where appropriate for final checks before items are dispatched. Packing goods securely to reduce any possible risk of damage during transit. Booking outward customer shipments with our Logistics partners eg, FedEx. Overseeing the safe loading of Goods out. Maintaining despatch records in the ERP system to be able to trace items that have been despatched from Cyber Limited, in addition to demonstrating proof of delivery General Keeping the stores and surrounding area clean and tidy to promote good Health and Safety practices. To manage security of information as defined in the Security manual. Required Experience & Skills: Proven experience in a stores/inventory role. Experience in packing of finished goods, including involvement in defining the appropriate packing required. Experience in handling and storing parts, including electronic devices with ESD requirements. Previous experience within an Aerospace and Defense stores environment desirable Understanding of Security Classifications Commitment to the highest standards of Customer Service. Flexible approach to work, willingness to take on extra responsibilities to support the team. Competent in use of ERP systems Competent in use of Microsoft Office Products. Trained or willing to train in MOD packing procedures. Trained or willing to train in shipping of Dangerous Goods Previous Manual Handling training. Trained or willing to undergo COSHH training. Trained or willing to undergo FOD training.
Apr 29, 2024
Full time
Our client, a Defence Supplier is looking for a Logistics Operative to join them on a permanent basis at their brand-new site in Maidenhead. All candidates must be able to obtain and maintain SC security clearance and hold a sole British nationality. Fully onsite due to the nature of the role. Competitive salary. Key Responsibilities: Goods Receipt Receiving and management of deliveries. Performing prescribed checks upon receipt of goods and registering receipts on the ERP system. To quarantine items under query and maintain the quarantine register. To issue shortages to the Production team upon arrival. To put away inventory in accordance with the appropriate storage conditions in relation to the product. To receipt non-inventory order lines in accordance with the prescribed process. Inventory Management Maintaining the accuracy of the ERP system to demonstrate a record of the stock that has either had a change of storage locations, lot numbers and quantities. Performing regular stock checks and transacting any stock adjustments in accordance with the approvals process. Picking shop orders and material requisitions. Delivering these to Production in an accurate and timely manner. Ensuring inventory is securely packaged and is stored in accordance with the prescribed storage conditions, including security classification. The prompt and accurate supply of inventory to production. The management of quarantined items by working with stakeholders to resolve any queries. Packing & Despatch Receiving Finished Goods from the Production team and liaising with Quality Assurance and Compliance teams where appropriate for final checks before items are dispatched. Packing goods securely to reduce any possible risk of damage during transit. Booking outward customer shipments with our Logistics partners eg, FedEx. Overseeing the safe loading of Goods out. Maintaining despatch records in the ERP system to be able to trace items that have been despatched from Cyber Limited, in addition to demonstrating proof of delivery General Keeping the stores and surrounding area clean and tidy to promote good Health and Safety practices. To manage security of information as defined in the Security manual. Required Experience & Skills: Proven experience in a stores/inventory role. Experience in packing of finished goods, including involvement in defining the appropriate packing required. Experience in handling and storing parts, including electronic devices with ESD requirements. Previous experience within an Aerospace and Defense stores environment desirable Understanding of Security Classifications Commitment to the highest standards of Customer Service. Flexible approach to work, willingness to take on extra responsibilities to support the team. Competent in use of ERP systems Competent in use of Microsoft Office Products. Trained or willing to train in MOD packing procedures. Trained or willing to train in shipping of Dangerous Goods Previous Manual Handling training. Trained or willing to undergo COSHH training. Trained or willing to undergo FOD training.
Head of Cyber Set up in 2011, Synoptix is rapidly becoming recognised as one of the UK s most capable suppliers of systems engineering expertise and know-how. We have built up an enviable customer base in aerospace and defence and are now seeking to extend our presence and influence in the rail, transportation and public utility sectors all of which are showing a growing appetite for the type of rigorous system engineering we advocate. We contribute to some of the foremost engineering projects in the UK, typically supporting large and complex engineering programmes through the application of systems engineering principles. Some of our key projects include MBSE support to various submarine programmes, adaptive camouflage for the British Army, Architectural support on Typhoon and F-35 platforms, Cyber Security support to EW systems. Our customers benefit from lean delivery of agile projects, utilising best practices developed across a range of industries. The Role Key Responsibilities Support the Sales and Business Development team in winning work through the generation of proposals and support to sales meetings. Lead and deliver Cybersecurity work packages on behalf of Synoptix clients or as part of internal delivery programmes. This may include: Development of Security Management Plans Understanding and defining the capability context Performance of Risk Assessments (System Driven or Component Driven) Define and architect of Security Controls Development of SyOps Development of CoCos Vulnerability Management Planning Development of Key / Certificate Management Plans Development of Security Case Reports. Support to Security Working Groups Management (but not delivery of) Penetration Testing and/or TEMPEST Testing Act as an SME for security requirements. Assist in the further development of the Synoptix Cybersecurity capability. Lead Cybersecurity related research programmes with Academia. Represent Synoptix at conferences, symposia and trade shows. Skills and Knowledge We are interested in any experience of the following skills but they are not essential for you to apply: Knowledge and application of UK Information Assurance Standards, Frameworks and supporting guidance: HMG IS1 & IS2 ISO27000 Series JSP440 JSP604 NCSC Guidance Material Secure by Design DefStan 05-139 Knowledge and application of non-UK Information Assurance Standards NIST SP800 (in particular NIST SP 800-53, NIST SP 800-37, NIST SP (Apply online only NIST Guidance Material Knowledge of encryption standards, technologies and key/certificate management. Extensive experience in embedding security best practices within multi-disciplinary product teams. Experience in conducting security risk assessments. Experience of Security Management Plan (SMP) Generation Experience of Security Case / Security Case Report Generation Strong communication and stakeholder management skills. Strong analytical and problem-solving skills. Experience scoping and management of Penetration Testing and TEMPEST Testing (nice to have) Knowledge of operating systems, firmware and software security controls (nice to have) Model Based Systems Engineering Experience (nice to have) Qualifications NCSC Recognised Qualification e.g. Certified Information Systems Security Professional (CISSP) Full Membership of ISC2 or CIISe Security Clearance SC (minimum) DV (preferred) Benefits Annual Company Bonus 25 Days holiday not including bank holidays with option to buy/sell up to 5 days Flexible working arrangements Bike to work scheme Electric car scheme Private health care Job well done scheme Employee Assistance scheme Please note that due to the nature of our projects we can only accept UK National candidates who will need to be eligible to obtain UK Security Clearance. By applying to this position, you are confirming that you consent to the retention of your personal data. Your data is held securely on our own premises and under the terms of the Data Protection Act (2018). It will be treated as confidential, and will not be transferred to any third party, or to any other jurisdiction without your consent. We will not hold any data for any longer than is necessary for us to fulfil our obligations and will remove any data at your written request.
Apr 29, 2024
Full time
Head of Cyber Set up in 2011, Synoptix is rapidly becoming recognised as one of the UK s most capable suppliers of systems engineering expertise and know-how. We have built up an enviable customer base in aerospace and defence and are now seeking to extend our presence and influence in the rail, transportation and public utility sectors all of which are showing a growing appetite for the type of rigorous system engineering we advocate. We contribute to some of the foremost engineering projects in the UK, typically supporting large and complex engineering programmes through the application of systems engineering principles. Some of our key projects include MBSE support to various submarine programmes, adaptive camouflage for the British Army, Architectural support on Typhoon and F-35 platforms, Cyber Security support to EW systems. Our customers benefit from lean delivery of agile projects, utilising best practices developed across a range of industries. The Role Key Responsibilities Support the Sales and Business Development team in winning work through the generation of proposals and support to sales meetings. Lead and deliver Cybersecurity work packages on behalf of Synoptix clients or as part of internal delivery programmes. This may include: Development of Security Management Plans Understanding and defining the capability context Performance of Risk Assessments (System Driven or Component Driven) Define and architect of Security Controls Development of SyOps Development of CoCos Vulnerability Management Planning Development of Key / Certificate Management Plans Development of Security Case Reports. Support to Security Working Groups Management (but not delivery of) Penetration Testing and/or TEMPEST Testing Act as an SME for security requirements. Assist in the further development of the Synoptix Cybersecurity capability. Lead Cybersecurity related research programmes with Academia. Represent Synoptix at conferences, symposia and trade shows. Skills and Knowledge We are interested in any experience of the following skills but they are not essential for you to apply: Knowledge and application of UK Information Assurance Standards, Frameworks and supporting guidance: HMG IS1 & IS2 ISO27000 Series JSP440 JSP604 NCSC Guidance Material Secure by Design DefStan 05-139 Knowledge and application of non-UK Information Assurance Standards NIST SP800 (in particular NIST SP 800-53, NIST SP 800-37, NIST SP (Apply online only NIST Guidance Material Knowledge of encryption standards, technologies and key/certificate management. Extensive experience in embedding security best practices within multi-disciplinary product teams. Experience in conducting security risk assessments. Experience of Security Management Plan (SMP) Generation Experience of Security Case / Security Case Report Generation Strong communication and stakeholder management skills. Strong analytical and problem-solving skills. Experience scoping and management of Penetration Testing and TEMPEST Testing (nice to have) Knowledge of operating systems, firmware and software security controls (nice to have) Model Based Systems Engineering Experience (nice to have) Qualifications NCSC Recognised Qualification e.g. Certified Information Systems Security Professional (CISSP) Full Membership of ISC2 or CIISe Security Clearance SC (minimum) DV (preferred) Benefits Annual Company Bonus 25 Days holiday not including bank holidays with option to buy/sell up to 5 days Flexible working arrangements Bike to work scheme Electric car scheme Private health care Job well done scheme Employee Assistance scheme Please note that due to the nature of our projects we can only accept UK National candidates who will need to be eligible to obtain UK Security Clearance. By applying to this position, you are confirming that you consent to the retention of your personal data. Your data is held securely on our own premises and under the terms of the Data Protection Act (2018). It will be treated as confidential, and will not be transferred to any third party, or to any other jurisdiction without your consent. We will not hold any data for any longer than is necessary for us to fulfil our obligations and will remove any data at your written request.
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high-growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our IT team collaborates with every department. They develop, they explore and they implement the new ideas helping us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an IT role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. The Security Operations Manager role is integral to BDO, ensuring that we protect our colleagues, clients and partners information as we rapidly expand our digital footprint. Reporting into the Head of IT Security, you'll ensure the delivery of cybersecurity improvement initiatives, operational excellence, technical security assurance and develop a talent pipeline. You'll work closely alongside the Head of IT Security to instill the right structure and processes to support the delivery of continual Cybersecurity improvements across BDO and will have direct line management responsibilities of 3x Cybersecurity Analysts where you will conduct performance reviews, and provide leadership and coaching, including technical and personal development programs for team members. You'll also: Deliver security operations technology roadmaps in conjunction with the wider Cybersecurity strategy. Propose changes to existing policies, procedures and configurations to ensure operating efficiency and regulatory compliance. Contribute to the security strategy, ensuring that technical and structural considerations regarding design, build and run components are considered. Aid the Head of IT Security in chairing various defined security management working groups, ensuring that reporting against progress vs plan is developed. Manage security operational production incidents and participate in problem and change management forums. Serve as an active participant in the information security governance process, working with Business Analysts, Governance and PMO functions in order to ensure that cyber risks are accurately reported, assessed and mitigated. Consult with IT and support staff to ensure that security is factored into the evaluation, selection, installation and configuration of new products and services. Report on the implementation of technical controls to support and enforce defined security policies. Report on the technical aspects of security management against pre-defined Cybersecurity operational metrics. Engage with the MSSP re Service Level Agreements (SLA's), monitoring metrics, including contract and performance metrics Own day-to-day management IT Security Service Requests and tickets, including: Reporting, Knowledge Management, Root Cause Analysis and Proactive Problem Repetition Avoidance. Contribute to a Cybersecurity knowledgebase comprising technical reference libraries, security advisories and alerts, information on security trends and practices, and laws and regulations. Ensure audit trails, system logs and other monitoring data sources are reviewed periodically and are in compliance with policies and audit requirements. Contribute to the development of a Cybersecurity Operations Resource and Capacity planner managed through BDO's Azure DevOps environment. Oversee incident response, threat detection, and mitigation efforts You'll be someone with: A good understanding of monitoring frameworks eg MITRE ATT&CK and SIEM technologies eg Microsoft Sentinel An interest in automation of Security operation function including artificial intelligence An understanding of Microsoft security product portfolio CISSP/CISM (Desired) CCSP/SSCP (Desired) Proven experience in Cybersecurity and IT Operations (Required) DLP, EDR/XDR, CASB, E-mail Security, SWG and ZTNA/SASE You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suit you, your teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
Apr 29, 2024
Full time
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high-growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our IT team collaborates with every department. They develop, they explore and they implement the new ideas helping us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an IT role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. The Security Operations Manager role is integral to BDO, ensuring that we protect our colleagues, clients and partners information as we rapidly expand our digital footprint. Reporting into the Head of IT Security, you'll ensure the delivery of cybersecurity improvement initiatives, operational excellence, technical security assurance and develop a talent pipeline. You'll work closely alongside the Head of IT Security to instill the right structure and processes to support the delivery of continual Cybersecurity improvements across BDO and will have direct line management responsibilities of 3x Cybersecurity Analysts where you will conduct performance reviews, and provide leadership and coaching, including technical and personal development programs for team members. You'll also: Deliver security operations technology roadmaps in conjunction with the wider Cybersecurity strategy. Propose changes to existing policies, procedures and configurations to ensure operating efficiency and regulatory compliance. Contribute to the security strategy, ensuring that technical and structural considerations regarding design, build and run components are considered. Aid the Head of IT Security in chairing various defined security management working groups, ensuring that reporting against progress vs plan is developed. Manage security operational production incidents and participate in problem and change management forums. Serve as an active participant in the information security governance process, working with Business Analysts, Governance and PMO functions in order to ensure that cyber risks are accurately reported, assessed and mitigated. Consult with IT and support staff to ensure that security is factored into the evaluation, selection, installation and configuration of new products and services. Report on the implementation of technical controls to support and enforce defined security policies. Report on the technical aspects of security management against pre-defined Cybersecurity operational metrics. Engage with the MSSP re Service Level Agreements (SLA's), monitoring metrics, including contract and performance metrics Own day-to-day management IT Security Service Requests and tickets, including: Reporting, Knowledge Management, Root Cause Analysis and Proactive Problem Repetition Avoidance. Contribute to a Cybersecurity knowledgebase comprising technical reference libraries, security advisories and alerts, information on security trends and practices, and laws and regulations. Ensure audit trails, system logs and other monitoring data sources are reviewed periodically and are in compliance with policies and audit requirements. Contribute to the development of a Cybersecurity Operations Resource and Capacity planner managed through BDO's Azure DevOps environment. Oversee incident response, threat detection, and mitigation efforts You'll be someone with: A good understanding of monitoring frameworks eg MITRE ATT&CK and SIEM technologies eg Microsoft Sentinel An interest in automation of Security operation function including artificial intelligence An understanding of Microsoft security product portfolio CISSP/CISM (Desired) CCSP/SSCP (Desired) Proven experience in Cybersecurity and IT Operations (Required) DLP, EDR/XDR, CASB, E-mail Security, SWG and ZTNA/SASE You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suit you, your teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
Hybrid / Flexible base locations 36 hours per week - flexible working supported Permanent London - 97,414 to 121,767per annum plus 5,000 car allowance National - 86,016 to 107,519 per annum plus 5,000 car allowance This is a really exciting time for Clarion's Group Technology Team; we're recruiting for a variety of new Tech roles and we're looking to you to join our growing team. This is an amazing opportunity for you to join us, an organisation which has ambitious plans to deliver technology solutions which truly deliver customer-centred outcomes. Our vision is to harness technology to build a better future for Clarion, its people, and communities. At Clarion, we understand how important technology is for the success of our business and are proud of the progress we have made to date in building a modern technology platform. Join our team and you'll be part of a group of talented, enthusiastic and supportive people who have a passion for bringing technology to life for social good. We're looking for an experienced Head of Information Security to lead and manage the Clarion security function, managing, reviewing, and maturing the design, selection of and implementation of security controls to improve resilience and reduce security risk to Clarions information assets. You'll develop and foster security awareness throughout Clarion and provide governance and assurances on the effectiveness of the security program, influencing stakeholders across the organisation to win support for security and resilience initiatives. Highly experienced in the application of information security standards and frameworks, you'll have extensive hands-on technical experience in at least one IT or cyber security discipline and be skilled in determining, establishing, and maintaining appropriate security strategies, policies, standards, and procedures for protecting Clarion's information security assets. With extensive knowledge of security technologies, including network, application, identity and access management and encryption you'll develop and lead an effective, high-performance Information Security team and support your Director to establish clear and measurable strategic plans, budgets and targets with robust and fit-for-purpose operational procedures to deliver measurable service improvements and ensure that all elements of the service are the best value for money. Capable of influencing change in areas of business outside of direct authority and with experience of managing or investigating information security incidents and investigations at all levels, you'll advise Clarion senior leadership and other relevant stakeholders to enable effective decision making on information security matters. You'll develop and deliver the Clarion information security strategy and solutions, aligned with wider business goals and industry frameworks, mature and maintain organisational security policies, standards, and processes to protect information assets, enforce compliance, and lead incident response and disaster recovery efforts in the event of security compromise or incidents. With hybrid working, base locations across England and flexible working arrangements this could be the opportunity you've been looking for! What you can expect from us Here at Clarion we're dedicated to rewarding hard work and commitment and providing benefits that support you and your lifestyle. As standard we offer;- Competitive salaries that are benchmarked regularly against current market rates Initial 25 Days annual leave (plus bank holiday), increasing to 30 days after 3 years' service. A flexible benefit scheme tailored to you, inclusive of healthcare options, dental insurance, restaurant card and cycle to work along with 1% of your salary to spend on whichever approved benefit you like! Matched pension contributions of up to 7.5% of your salary with generous life assurance Flexible and agile working for the majority of our employees. Other perks Company Bonus Scheme Eye care vouchers Holiday trading scheme allowing you to buy and sell leave Free counselling and legal advice scheme for you and your family Interest free loans for season ticket and study leave Our commitment to equality and diversity means that we are keen to help you maintain a healthy work-life balance, including but not limited to part-time working and job share, enhanced maternity, paternity and adoption leave, and compassionate leave. To find out more please visit our website. Closing Date: Wednesday 8 th May 2024 at midnight. For further details on this vacancy and to download the role profile please visit our website or click 'apply'. This is a hybrid role with base locations offered at our offices across England. Candidates will be expected to travel to our London offices as required, approximately twice per month. You must be eligible to work in the UK to apply for this vacancy; Clarion are not able to offer visa sponsorship. You are required to reside in England or Wales for the duration of your employment.
Apr 29, 2024
Full time
Hybrid / Flexible base locations 36 hours per week - flexible working supported Permanent London - 97,414 to 121,767per annum plus 5,000 car allowance National - 86,016 to 107,519 per annum plus 5,000 car allowance This is a really exciting time for Clarion's Group Technology Team; we're recruiting for a variety of new Tech roles and we're looking to you to join our growing team. This is an amazing opportunity for you to join us, an organisation which has ambitious plans to deliver technology solutions which truly deliver customer-centred outcomes. Our vision is to harness technology to build a better future for Clarion, its people, and communities. At Clarion, we understand how important technology is for the success of our business and are proud of the progress we have made to date in building a modern technology platform. Join our team and you'll be part of a group of talented, enthusiastic and supportive people who have a passion for bringing technology to life for social good. We're looking for an experienced Head of Information Security to lead and manage the Clarion security function, managing, reviewing, and maturing the design, selection of and implementation of security controls to improve resilience and reduce security risk to Clarions information assets. You'll develop and foster security awareness throughout Clarion and provide governance and assurances on the effectiveness of the security program, influencing stakeholders across the organisation to win support for security and resilience initiatives. Highly experienced in the application of information security standards and frameworks, you'll have extensive hands-on technical experience in at least one IT or cyber security discipline and be skilled in determining, establishing, and maintaining appropriate security strategies, policies, standards, and procedures for protecting Clarion's information security assets. With extensive knowledge of security technologies, including network, application, identity and access management and encryption you'll develop and lead an effective, high-performance Information Security team and support your Director to establish clear and measurable strategic plans, budgets and targets with robust and fit-for-purpose operational procedures to deliver measurable service improvements and ensure that all elements of the service are the best value for money. Capable of influencing change in areas of business outside of direct authority and with experience of managing or investigating information security incidents and investigations at all levels, you'll advise Clarion senior leadership and other relevant stakeholders to enable effective decision making on information security matters. You'll develop and deliver the Clarion information security strategy and solutions, aligned with wider business goals and industry frameworks, mature and maintain organisational security policies, standards, and processes to protect information assets, enforce compliance, and lead incident response and disaster recovery efforts in the event of security compromise or incidents. With hybrid working, base locations across England and flexible working arrangements this could be the opportunity you've been looking for! What you can expect from us Here at Clarion we're dedicated to rewarding hard work and commitment and providing benefits that support you and your lifestyle. As standard we offer;- Competitive salaries that are benchmarked regularly against current market rates Initial 25 Days annual leave (plus bank holiday), increasing to 30 days after 3 years' service. A flexible benefit scheme tailored to you, inclusive of healthcare options, dental insurance, restaurant card and cycle to work along with 1% of your salary to spend on whichever approved benefit you like! Matched pension contributions of up to 7.5% of your salary with generous life assurance Flexible and agile working for the majority of our employees. Other perks Company Bonus Scheme Eye care vouchers Holiday trading scheme allowing you to buy and sell leave Free counselling and legal advice scheme for you and your family Interest free loans for season ticket and study leave Our commitment to equality and diversity means that we are keen to help you maintain a healthy work-life balance, including but not limited to part-time working and job share, enhanced maternity, paternity and adoption leave, and compassionate leave. To find out more please visit our website. Closing Date: Wednesday 8 th May 2024 at midnight. For further details on this vacancy and to download the role profile please visit our website or click 'apply'. This is a hybrid role with base locations offered at our offices across England. Candidates will be expected to travel to our London offices as required, approximately twice per month. You must be eligible to work in the UK to apply for this vacancy; Clarion are not able to offer visa sponsorship. You are required to reside in England or Wales for the duration of your employment.
Make an impact with your next career move Employment Full-time Location London (Canary Wharf) Office / hybrid Function Professional Services The Company RiverSafe is a premier Cyber Security consultancy based in the heart of Canary Wharf and we are meeting the huge demand we have seen head on! We have a proven track record of delivering services to a well-known client base including FTSE 100 companies and are partnered with market leading technology vendors including Splunk, Palo Alto, Exabeam and AWS. The Role A Cyber Defence Principal Consultant finds solutions to ensure enterprise deployments make the deepest impact possible across an organisation. Our principals solve organisation's most challenging problems, including the ones they didn't know existed. They are self-motivated, have an insatiable thirst to learn new technologies and thrive in a fast-paced environment. Successful RiverSafe security principals feel comfortable mastering new technologies and come from a variety of business, analytic and technology backgrounds with experience managing diverse teams and clients. RiverSafe is an incredibly innovative consultancy with a range of offerings which delivers fast time to value for Security, Big Data Analytics, and Operational Intelligence use cases. Key Responsibilities As a Principal Consultant in RiverSafe, you will be working within our Cyber Defence and Big Data practice and will have exposure to a variety of security technologies delivering security implementations or remediation programmes. Highly motivated and experienced in managing teams and engagement with clients, you will be a team player who recognises the value in working and building the experience levels of the teams you manage. Working across a portfolio of cyber engagements with our clients and responsible for the day-to-day completion of security assessments or technical delivery elements of a security transformation programme. Working with your team members you will create high quality reports, ensuring they meet the high requirements of our customers. Where possible, you will identify opportunities for RiverSafe to assist our clients further and escalate these potential areas to the engagement manager. Establishing and building a network of contacts within our clients. Working with our Service Delivery Team you will assist with the planning and delivery phases of engagements. Contributing to the creation of proposals and marketing material. Ensuring your work is delivered on time and on budget. Contributing to the development of the existing team by sharing knowledge, leading by example, and helping team members to develop. Skills Experience in managing security consultants. Demonstrable consulting experience, trusted advisor, working in partnership with customers and a good relationship builder. Previous experience of working with SIEM products like Splunk, Exabeam, ArcSight, Sentinel, Cisco Sourcefire or other IPS/IDS products is essential Security transformation programmes - design and management of security solution implementations and / or remediation programmes to address risks across AV, patching, secure build, vulnerability scanning & remediation, logging, and monitoring, & threat management. Security around emerging technology platforms - primarily Cloud security & Big Data Analytics. Breach and incident management, design and implementation of breach and major incident management practices. Experience in working within agile development environments to embed security successfully into systems prior to product / production release. Security architecture - creating secure architecture designs for solutions, designing secure patterns for reuse and the delivery of architectural reviews. Experience with both the Unix and Windows operating systems; must be very comfortable on the command line interface. Excellent networking fundamentals. Solid communication skills and expertise to translate technical jargon into business familiar language Ability to quickly explore, examine and understand complex problems and how these relate to the customer's business. Able to quickly understand and interpret customer problems and navigate complex organisations. What We Offer Great culture in an exciting and fast-growing company Welcoming, modern office with games, and a fully stocked fridge with snacks/drinks Regular company socials, events and dinners A diverse and collaborate environment where everyone's opinion matters An opportunity to grow and lead the marketing function as the business grows Paid holiday (22 days + Bank Hols) Personal learning & development fund Private healthcare - including mental health support and wellbeing reward scheme Pension Scheme Cycle to Work Scheme Apply For This Role First name Last name Email Phone number Role Interested In Upload CV Riversafe Ltd needs the contact information you provide to us to contact you about our products and services. You may unsubscribe from these communications at any time. For information on how to unsubscribe, as well as our privacy practices and commitment to protecting your privacy, please review our Privacy Policy.
Apr 28, 2024
Full time
Make an impact with your next career move Employment Full-time Location London (Canary Wharf) Office / hybrid Function Professional Services The Company RiverSafe is a premier Cyber Security consultancy based in the heart of Canary Wharf and we are meeting the huge demand we have seen head on! We have a proven track record of delivering services to a well-known client base including FTSE 100 companies and are partnered with market leading technology vendors including Splunk, Palo Alto, Exabeam and AWS. The Role A Cyber Defence Principal Consultant finds solutions to ensure enterprise deployments make the deepest impact possible across an organisation. Our principals solve organisation's most challenging problems, including the ones they didn't know existed. They are self-motivated, have an insatiable thirst to learn new technologies and thrive in a fast-paced environment. Successful RiverSafe security principals feel comfortable mastering new technologies and come from a variety of business, analytic and technology backgrounds with experience managing diverse teams and clients. RiverSafe is an incredibly innovative consultancy with a range of offerings which delivers fast time to value for Security, Big Data Analytics, and Operational Intelligence use cases. Key Responsibilities As a Principal Consultant in RiverSafe, you will be working within our Cyber Defence and Big Data practice and will have exposure to a variety of security technologies delivering security implementations or remediation programmes. Highly motivated and experienced in managing teams and engagement with clients, you will be a team player who recognises the value in working and building the experience levels of the teams you manage. Working across a portfolio of cyber engagements with our clients and responsible for the day-to-day completion of security assessments or technical delivery elements of a security transformation programme. Working with your team members you will create high quality reports, ensuring they meet the high requirements of our customers. Where possible, you will identify opportunities for RiverSafe to assist our clients further and escalate these potential areas to the engagement manager. Establishing and building a network of contacts within our clients. Working with our Service Delivery Team you will assist with the planning and delivery phases of engagements. Contributing to the creation of proposals and marketing material. Ensuring your work is delivered on time and on budget. Contributing to the development of the existing team by sharing knowledge, leading by example, and helping team members to develop. Skills Experience in managing security consultants. Demonstrable consulting experience, trusted advisor, working in partnership with customers and a good relationship builder. Previous experience of working with SIEM products like Splunk, Exabeam, ArcSight, Sentinel, Cisco Sourcefire or other IPS/IDS products is essential Security transformation programmes - design and management of security solution implementations and / or remediation programmes to address risks across AV, patching, secure build, vulnerability scanning & remediation, logging, and monitoring, & threat management. Security around emerging technology platforms - primarily Cloud security & Big Data Analytics. Breach and incident management, design and implementation of breach and major incident management practices. Experience in working within agile development environments to embed security successfully into systems prior to product / production release. Security architecture - creating secure architecture designs for solutions, designing secure patterns for reuse and the delivery of architectural reviews. Experience with both the Unix and Windows operating systems; must be very comfortable on the command line interface. Excellent networking fundamentals. Solid communication skills and expertise to translate technical jargon into business familiar language Ability to quickly explore, examine and understand complex problems and how these relate to the customer's business. Able to quickly understand and interpret customer problems and navigate complex organisations. What We Offer Great culture in an exciting and fast-growing company Welcoming, modern office with games, and a fully stocked fridge with snacks/drinks Regular company socials, events and dinners A diverse and collaborate environment where everyone's opinion matters An opportunity to grow and lead the marketing function as the business grows Paid holiday (22 days + Bank Hols) Personal learning & development fund Private healthcare - including mental health support and wellbeing reward scheme Pension Scheme Cycle to Work Scheme Apply For This Role First name Last name Email Phone number Role Interested In Upload CV Riversafe Ltd needs the contact information you provide to us to contact you about our products and services. You may unsubscribe from these communications at any time. For information on how to unsubscribe, as well as our privacy practices and commitment to protecting your privacy, please review our Privacy Policy.
Hybrid / Flexible base locations 36 hours per week - flexible working supported Permanent London - £97,414 to £121,767per annum plus £5,000 car allowance National - £86,016 to £107,519 per annum plus £5,000 car allowance This is a really exciting time for Clarion's Group Technology Team; we're recruiting for a variety of new Tech roles and we're looking to you to join our growing team. This is an amazing opportunity for you to join us, an organisation which has ambitious plans to deliver technology solutions which truly deliver customer-centred outcomes. Our vision is to harness technology to build a better future for Clarion, its people, and communities. At Clarion, we understand how important technology is for the success of our business and are proud of the progress we have made to date in building a modern technology platform. Join our team and you'll be part of a group of talented, enthusiastic and supportive people who have a passion for bringing technology to life for social good. We're looking for an experienced Head of Information Security to lead and manage the Clarion security function, managing, reviewing, and maturing the design, selection of and implementation of security controls to improve resilience and reduce security risk to Clarions information assets. You'll develop and foster security awareness throughout Clarion and provide governance and assurances on the effectiveness of the security program, influencing stakeholders across the organisation to win support for security and resilience initiatives. Highly experienced in the application of information security standards and frameworks, you'll have extensive hands-on technical experience in at least one IT or cyber security discipline and be skilled in determining, establishing, and maintaining appropriate security strategies, policies, standards, and procedures for protecting Clarion's information security assets. With extensive knowledge of security technologies, including network, application, identity and access management and encryption you'll develop and lead an effective, high-performance Information Security team and support your Director to establish clear and measurable strategic plans, budgets and targets with robust and fit-for-purpose operational procedures to deliver measurable service improvements and ensure that all elements of the service are the best value for money. Capable of influencing change in areas of business outside of direct authority and with experience of managing or investigating information security incidents and investigations at all levels, you'll advise Clarion senior leadership and other relevant stakeholders to enable effective decision making on information security matters. You'll develop and deliver the Clarion information security strategy and solutions, aligned with wider business goals and industry frameworks, mature and maintain organisational security policies, standards, and processes to protect information assets, enforce compliance, and lead incident response and disaster recovery efforts in the event of security compromise or incidents. With hybrid working, base locations across England and flexible working arrangements this could be the opportunity you've been looking for! What you can expect from us Here at Clarion we're dedicated to rewarding hard work and commitment and providing benefits that support you and your lifestyle. As standard we offer;- Competitive salaries that are benchmarked regularly against current market rates? Initial 25 Days annual leave (plus bank holiday), increasing to 30 days after 3 years' service. A flexible benefit scheme tailored to you, inclusive of healthcare options, dental insurance, restaurant card and cycle to work along with 1% of your salary to spend on whichever approved benefit you like! Matched pension contributions of up to 7.5% of your salary with generous life assurance Flexible and agile working?for the majority of our employees. Other perks Company Bonus Scheme Eye care vouchers Holiday trading scheme allowing you to buy and sell leave Free counselling and legal advice scheme for you and your family Interest free loans for season ticket and study leave Our commitment to equality and diversity means that we are keen to help you maintain a healthy work-life balance, including but not limited to part-time working and job share, enhanced maternity, paternity and adoption leave, and compassionate leave. To find out more please visit our website. Closing Date: Wednesday 8 th May 2024 at midnight. For further details on this vacancy and to download the role profile please visit our website or click 'apply'. This is a hybrid role with base locations offered at our offices across England. Candidates will be expected to travel to our London offices as required, approximately twice per month. You must be eligible to work in the UK to apply for this vacancy; Clarion are not able to offer visa sponsorship. You are required to reside in England or Wales for the duration of your employment.
Apr 28, 2024
Full time
Hybrid / Flexible base locations 36 hours per week - flexible working supported Permanent London - £97,414 to £121,767per annum plus £5,000 car allowance National - £86,016 to £107,519 per annum plus £5,000 car allowance This is a really exciting time for Clarion's Group Technology Team; we're recruiting for a variety of new Tech roles and we're looking to you to join our growing team. This is an amazing opportunity for you to join us, an organisation which has ambitious plans to deliver technology solutions which truly deliver customer-centred outcomes. Our vision is to harness technology to build a better future for Clarion, its people, and communities. At Clarion, we understand how important technology is for the success of our business and are proud of the progress we have made to date in building a modern technology platform. Join our team and you'll be part of a group of talented, enthusiastic and supportive people who have a passion for bringing technology to life for social good. We're looking for an experienced Head of Information Security to lead and manage the Clarion security function, managing, reviewing, and maturing the design, selection of and implementation of security controls to improve resilience and reduce security risk to Clarions information assets. You'll develop and foster security awareness throughout Clarion and provide governance and assurances on the effectiveness of the security program, influencing stakeholders across the organisation to win support for security and resilience initiatives. Highly experienced in the application of information security standards and frameworks, you'll have extensive hands-on technical experience in at least one IT or cyber security discipline and be skilled in determining, establishing, and maintaining appropriate security strategies, policies, standards, and procedures for protecting Clarion's information security assets. With extensive knowledge of security technologies, including network, application, identity and access management and encryption you'll develop and lead an effective, high-performance Information Security team and support your Director to establish clear and measurable strategic plans, budgets and targets with robust and fit-for-purpose operational procedures to deliver measurable service improvements and ensure that all elements of the service are the best value for money. Capable of influencing change in areas of business outside of direct authority and with experience of managing or investigating information security incidents and investigations at all levels, you'll advise Clarion senior leadership and other relevant stakeholders to enable effective decision making on information security matters. You'll develop and deliver the Clarion information security strategy and solutions, aligned with wider business goals and industry frameworks, mature and maintain organisational security policies, standards, and processes to protect information assets, enforce compliance, and lead incident response and disaster recovery efforts in the event of security compromise or incidents. With hybrid working, base locations across England and flexible working arrangements this could be the opportunity you've been looking for! What you can expect from us Here at Clarion we're dedicated to rewarding hard work and commitment and providing benefits that support you and your lifestyle. As standard we offer;- Competitive salaries that are benchmarked regularly against current market rates? Initial 25 Days annual leave (plus bank holiday), increasing to 30 days after 3 years' service. A flexible benefit scheme tailored to you, inclusive of healthcare options, dental insurance, restaurant card and cycle to work along with 1% of your salary to spend on whichever approved benefit you like! Matched pension contributions of up to 7.5% of your salary with generous life assurance Flexible and agile working?for the majority of our employees. Other perks Company Bonus Scheme Eye care vouchers Holiday trading scheme allowing you to buy and sell leave Free counselling and legal advice scheme for you and your family Interest free loans for season ticket and study leave Our commitment to equality and diversity means that we are keen to help you maintain a healthy work-life balance, including but not limited to part-time working and job share, enhanced maternity, paternity and adoption leave, and compassionate leave. To find out more please visit our website. Closing Date: Wednesday 8 th May 2024 at midnight. For further details on this vacancy and to download the role profile please visit our website or click 'apply'. This is a hybrid role with base locations offered at our offices across England. Candidates will be expected to travel to our London offices as required, approximately twice per month. You must be eligible to work in the UK to apply for this vacancy; Clarion are not able to offer visa sponsorship. You are required to reside in England or Wales for the duration of your employment.
We are heading up a recruitment drive on behalf of a leading IT consultancy that require a XXX to join their team on a major government project that is based remotely. VMWare Server Administrator 6 months (Likely to extend) Mandated PAYE Only Telford - 4 days on site minimum One stage interview on site We are currently looking for a VMWare/Server Administrator with a proven track record in managing and implementing complex IT solutions. The ideal candidate will have extensive experience in MS Windows Server, VMware vSphere (ESXi and vCentre), NSX-T, VMware Cloud Director, Horizon View 8, VDI, Physical and Virtual infrastructure, FC-SAN, Windows Server AD/DS, DNS, DHCP, Remote Desktop Services (RDS), VMware NSX Advanced Load Balancer, a full understanding of PKI and relevant infrastructure, LAN/WAN technologies, Patch management, Linux distros such as Ubuntu, RHEL, third-line support, broad understanding of IT CyberSecurity, Change Control, PowerShell, and Bash Scripting. Responsibilities: Design, deploy, and maintain Microsoft Windows Server environments to ensure optimal performance and reliability. Manage VMware vSphere infrastructure, including vSphere/ESXi, vCenter, NSX-T, and VMware Cloud Director. Implement and support Horizon View 8 and VDI solutions to meet the business requirements. Oversee both physical and virtual infrastructure components, ensuring seamless integration and efficient operation. Administer FC-SAN environments, optimising storage solutions for performance and scalability. Maintain and enhance Windows Server Active Directory (AD) and Domain Services (DS) for seamless user authentication and access control. Manage DNS and DHCP services to ensure network stability and efficient IP address management. Implement and support Remote Desktop Services (RDS) to facilitate secure remote access for end-users. Configure and maintain VMware NSX Advanced Load Balancer services for optimal application delivery and load balancing. Demonstrate a full understanding of Public Key Infrastructure (PKI) and relevant infrastructure to ensure secure communication. Expertise in LAN/WAN technologies, ensuring a robust and reliable network infrastructure. Implement and oversee patch management processes to maintain system security and compliance. Provide third-line support for escalated technical issues, collaborating with other teams to ensure timely resolutions. Apply a broad understanding of IT Cybersecurity principles to identify and mitigate potential security threats proactively. Enforce Change Control procedures to manage and document changes in the IT environment. Develop and maintain PowerShell and Bash scripts to automate routine tasks and streamline system management processes. Proven experience as an IT contractor in a senior role, with a focus on Microsoft Windows Server and VMware technologies. In-depth knowledge of FC-SAN, AD/DS, DNS, DHCP, RDS, PKI, LAN/WAN technologies, Patch management, Linux distros (Ubuntu, RHEL, CentOS), and cybersecurity. Hands-on experience with VMware vSphere, NSX-T, and Cloud Director. Proficiency in implementing and supporting Horizon View 8 and VDI environments. Strong understanding of physical and virtual infrastructure components. Excellent problem-solving skills and the ability to work well under pressure. Effective communication skills, with the ability to convey technical information to both technical and non-technical stakeholders.
Apr 26, 2024
Contractor
We are heading up a recruitment drive on behalf of a leading IT consultancy that require a XXX to join their team on a major government project that is based remotely. VMWare Server Administrator 6 months (Likely to extend) Mandated PAYE Only Telford - 4 days on site minimum One stage interview on site We are currently looking for a VMWare/Server Administrator with a proven track record in managing and implementing complex IT solutions. The ideal candidate will have extensive experience in MS Windows Server, VMware vSphere (ESXi and vCentre), NSX-T, VMware Cloud Director, Horizon View 8, VDI, Physical and Virtual infrastructure, FC-SAN, Windows Server AD/DS, DNS, DHCP, Remote Desktop Services (RDS), VMware NSX Advanced Load Balancer, a full understanding of PKI and relevant infrastructure, LAN/WAN technologies, Patch management, Linux distros such as Ubuntu, RHEL, third-line support, broad understanding of IT CyberSecurity, Change Control, PowerShell, and Bash Scripting. Responsibilities: Design, deploy, and maintain Microsoft Windows Server environments to ensure optimal performance and reliability. Manage VMware vSphere infrastructure, including vSphere/ESXi, vCenter, NSX-T, and VMware Cloud Director. Implement and support Horizon View 8 and VDI solutions to meet the business requirements. Oversee both physical and virtual infrastructure components, ensuring seamless integration and efficient operation. Administer FC-SAN environments, optimising storage solutions for performance and scalability. Maintain and enhance Windows Server Active Directory (AD) and Domain Services (DS) for seamless user authentication and access control. Manage DNS and DHCP services to ensure network stability and efficient IP address management. Implement and support Remote Desktop Services (RDS) to facilitate secure remote access for end-users. Configure and maintain VMware NSX Advanced Load Balancer services for optimal application delivery and load balancing. Demonstrate a full understanding of Public Key Infrastructure (PKI) and relevant infrastructure to ensure secure communication. Expertise in LAN/WAN technologies, ensuring a robust and reliable network infrastructure. Implement and oversee patch management processes to maintain system security and compliance. Provide third-line support for escalated technical issues, collaborating with other teams to ensure timely resolutions. Apply a broad understanding of IT Cybersecurity principles to identify and mitigate potential security threats proactively. Enforce Change Control procedures to manage and document changes in the IT environment. Develop and maintain PowerShell and Bash scripts to automate routine tasks and streamline system management processes. Proven experience as an IT contractor in a senior role, with a focus on Microsoft Windows Server and VMware technologies. In-depth knowledge of FC-SAN, AD/DS, DNS, DHCP, RDS, PKI, LAN/WAN technologies, Patch management, Linux distros (Ubuntu, RHEL, CentOS), and cybersecurity. Hands-on experience with VMware vSphere, NSX-T, and Cloud Director. Proficiency in implementing and supporting Horizon View 8 and VDI environments. Strong understanding of physical and virtual infrastructure components. Excellent problem-solving skills and the ability to work well under pressure. Effective communication skills, with the ability to convey technical information to both technical and non-technical stakeholders.
CBSbutler Holdings Limited trading as CBSbutler
Romsey, Hampshire
DevOps Engineer +SC cleared role +up to 60 k +Hybrid working - Romsey Hampshire Skills: +DevOps experience +Azure / AWS +Programming +SC clearance is essential We are currently looking for a passionate DevOps Engineer with Software Development experience to become an aggregated part of our clients Defence Information Advantage team. Your Role In this role you will work with software developers, users, project and project managers, heads of engineering, quality assurance and IT colleagues. You will oversee code releases, deployments, and support operational systems. The role calls for both technical skills and soft skills to communicate effectively with colleagues at different levels in the organization in a collaborative and holistic environment. What you'll bring As a DevOps Engineer, you will have a degree level qualification in a STEM subject, or an equivalent level of practical experience. Depending on your level of ability/experience, you will have familiarity, competence or expertise in a subset of these areas: Cloud technologies: Azure AWS Programming languages: Java Python node.js SQL Data technologies: Relational databases (e.g. PostgreSQL) NoSQL databases (e.g. MongoDB) Data streaming (e.g. kafka) Big data (e.g. Hadoop) Cyber security Vulnerability management (e.g. tenable) IDAM (e.g Azure AD, Keycloak) Static and Dynamic Analysis (e.g. SonarQube) Architectural styles Microservices Serverless On premise virtualization Cloud Edge compute Containerisation (e.g. Docker, Podman) Container management (e.g. Kubernetes) APIs (e.g. RESTful) DevSecOps tooling Version control (e.g. Git) Continuous Integration/Deployment (e.g. Gitlab CI/CD) Unit testing (e.g. JUnit) Behaviour Driven Development (e.g. Cucumber) Infrastructure as code (e.g. Terraform, Puppet, Ansible) If you would like to discuss this DevOps Engineer role in more detail, please send your updated CV to (url removed) and I will get in touch.
Apr 26, 2024
Full time
DevOps Engineer +SC cleared role +up to 60 k +Hybrid working - Romsey Hampshire Skills: +DevOps experience +Azure / AWS +Programming +SC clearance is essential We are currently looking for a passionate DevOps Engineer with Software Development experience to become an aggregated part of our clients Defence Information Advantage team. Your Role In this role you will work with software developers, users, project and project managers, heads of engineering, quality assurance and IT colleagues. You will oversee code releases, deployments, and support operational systems. The role calls for both technical skills and soft skills to communicate effectively with colleagues at different levels in the organization in a collaborative and holistic environment. What you'll bring As a DevOps Engineer, you will have a degree level qualification in a STEM subject, or an equivalent level of practical experience. Depending on your level of ability/experience, you will have familiarity, competence or expertise in a subset of these areas: Cloud technologies: Azure AWS Programming languages: Java Python node.js SQL Data technologies: Relational databases (e.g. PostgreSQL) NoSQL databases (e.g. MongoDB) Data streaming (e.g. kafka) Big data (e.g. Hadoop) Cyber security Vulnerability management (e.g. tenable) IDAM (e.g Azure AD, Keycloak) Static and Dynamic Analysis (e.g. SonarQube) Architectural styles Microservices Serverless On premise virtualization Cloud Edge compute Containerisation (e.g. Docker, Podman) Container management (e.g. Kubernetes) APIs (e.g. RESTful) DevSecOps tooling Version control (e.g. Git) Continuous Integration/Deployment (e.g. Gitlab CI/CD) Unit testing (e.g. JUnit) Behaviour Driven Development (e.g. Cucumber) Infrastructure as code (e.g. Terraform, Puppet, Ansible) If you would like to discuss this DevOps Engineer role in more detail, please send your updated CV to (url removed) and I will get in touch.
Head of Cyber Security - Hybrid - Cardiff - London - Leadership Yolk Recruitment are seeking a Head of Cyber Security for a dynamic specialist mortgage lender backed by a global financial institution, where our mantra is simple: "Help People Succeed." We're seeking a Head of Cyber Security to join our innovative IT team, operating remotely or from our vibrant Cardiff or London offices. What sets us apart? It's our people - the driving force behind our success. As part of our team, you'll play a pivotal role in safeguarding our technology estate, ensuring cyber security is embedded in every facet of our operations. Why join? People-Centric Culture: Our people are our greatest asset. We're committed to fostering an environment where every individual can thrive. Innovative Approach: As a pioneer in the mortgage industry, we're constantly pushing boundaries and embracing cutting-edge technology to stay ahead of the curve. Impactful Work: Join a team dedicated to making a difference. By protecting our technology infrastructure, you'll directly contribute to our mission of empowering customers, brokers, and colleagues alike. Responsibilities: As the Head of Cyber Security, you'll lead a talented team and spearhead the operational implementation of technical controls to fortify our technology ecosystem. Your duties will include: Strategic Oversight: Drive the development and execution of cyber security strategies aligned with our business objectives. Governance and Compliance: Establish robust security systems, controls, and governance frameworks to ensure adherence to regulatory requirements and industry best practices. Auditing and Risk Management: Serve as the primary point of contact for all Infosec and Cyber audits, coordinating responses and mitigating potential risks. Stakeholder Engagement: Collaborate with internal stakeholders to provide guidance on information processing risks and deliver comprehensive training programs to enhance cyber security awareness across the organization. Skills and Experience: Stakeholder Management: Proven track record of effectively engaging stakeholders at all levels. Communication: Strong verbal and written communication skills, with the ability to articulate complex technical concepts to diverse audiences. Technical Proficiency: Extensive knowledge of cyber security technologies and policies, with expertise in cloud security, particularly Azure. Leadership: Experience in managing complex cyber security solutions and programs of work. Certifications: CISSP/CISM certification or equivalent, with familiarity with NIST and ISO27001 frameworks preferred. Industry Experience: Background in technology or related fields, with a solid understanding of information risk analysis and management.
Apr 25, 2024
Full time
Head of Cyber Security - Hybrid - Cardiff - London - Leadership Yolk Recruitment are seeking a Head of Cyber Security for a dynamic specialist mortgage lender backed by a global financial institution, where our mantra is simple: "Help People Succeed." We're seeking a Head of Cyber Security to join our innovative IT team, operating remotely or from our vibrant Cardiff or London offices. What sets us apart? It's our people - the driving force behind our success. As part of our team, you'll play a pivotal role in safeguarding our technology estate, ensuring cyber security is embedded in every facet of our operations. Why join? People-Centric Culture: Our people are our greatest asset. We're committed to fostering an environment where every individual can thrive. Innovative Approach: As a pioneer in the mortgage industry, we're constantly pushing boundaries and embracing cutting-edge technology to stay ahead of the curve. Impactful Work: Join a team dedicated to making a difference. By protecting our technology infrastructure, you'll directly contribute to our mission of empowering customers, brokers, and colleagues alike. Responsibilities: As the Head of Cyber Security, you'll lead a talented team and spearhead the operational implementation of technical controls to fortify our technology ecosystem. Your duties will include: Strategic Oversight: Drive the development and execution of cyber security strategies aligned with our business objectives. Governance and Compliance: Establish robust security systems, controls, and governance frameworks to ensure adherence to regulatory requirements and industry best practices. Auditing and Risk Management: Serve as the primary point of contact for all Infosec and Cyber audits, coordinating responses and mitigating potential risks. Stakeholder Engagement: Collaborate with internal stakeholders to provide guidance on information processing risks and deliver comprehensive training programs to enhance cyber security awareness across the organization. Skills and Experience: Stakeholder Management: Proven track record of effectively engaging stakeholders at all levels. Communication: Strong verbal and written communication skills, with the ability to articulate complex technical concepts to diverse audiences. Technical Proficiency: Extensive knowledge of cyber security technologies and policies, with expertise in cloud security, particularly Azure. Leadership: Experience in managing complex cyber security solutions and programs of work. Certifications: CISSP/CISM certification or equivalent, with familiarity with NIST and ISO27001 frameworks preferred. Industry Experience: Background in technology or related fields, with a solid understanding of information risk analysis and management.
Title: Cyber Security Assurance Manager (Technical) - Penetration Testing Manager Location: Crawley (3 days in office, 2 days from home) Salary: Up to 80,000 plus bonus (depending on experience) Reports: Circa 8 heads Our client, an award winning Power Utilities company, is currently seeking a Cyber Security Technical Assurance Manager to join their team. Reporting to the Head of Cyber Security you will play a vital role across the business in building new processes and growing out the team. In this role, you will be responsible for maintaining the cyber security posture across the company's IT estate. You will identify cyber security weaknesses and vulnerabilities, guide actions to mitigate risks, and prevent disruptions to critical IT services. You will also develop and implement cyber security policies, standards, and best practices. Key Responsibilities: Define and deliver the cyber security technical assurance strategy Manage the cyber security technical assurance team Establish and improve penetration testing and vulnerability management processes, including red team and purple team exercises Develop and implement IT disaster recovery and business continuity plans Deputise for the Head of Cyber Security and Technology Risk when required If you have experience in managing technical assurance teams and activities, especially in an OT/IT environment then this would give you an amazing opportunity to make your mark on this organisation as they grow their security team and implement new processes. If it sounds of interest, please apply for more information.
Apr 25, 2024
Full time
Title: Cyber Security Assurance Manager (Technical) - Penetration Testing Manager Location: Crawley (3 days in office, 2 days from home) Salary: Up to 80,000 plus bonus (depending on experience) Reports: Circa 8 heads Our client, an award winning Power Utilities company, is currently seeking a Cyber Security Technical Assurance Manager to join their team. Reporting to the Head of Cyber Security you will play a vital role across the business in building new processes and growing out the team. In this role, you will be responsible for maintaining the cyber security posture across the company's IT estate. You will identify cyber security weaknesses and vulnerabilities, guide actions to mitigate risks, and prevent disruptions to critical IT services. You will also develop and implement cyber security policies, standards, and best practices. Key Responsibilities: Define and deliver the cyber security technical assurance strategy Manage the cyber security technical assurance team Establish and improve penetration testing and vulnerability management processes, including red team and purple team exercises Develop and implement IT disaster recovery and business continuity plans Deputise for the Head of Cyber Security and Technology Risk when required If you have experience in managing technical assurance teams and activities, especially in an OT/IT environment then this would give you an amazing opportunity to make your mark on this organisation as they grow their security team and implement new processes. If it sounds of interest, please apply for more information.
Due to growth our client is seeking an experienced Cyber Security Engineer for their team in Reading. For this exciting role we are seeking an engineer who has gained knowledge and experience in web application security, web application firewalls, vulnerability management and penetration testing. They are also looking for experience working with cloud hosting providers, managing application testing and working with system owners/developers to improve application security. The Senior Cyber Security Engineer role will be challenged with researching and implementing the latest technologies in the industry. This environment is highly technical and collaborative. You will work closely with the Head of Cyber Security, and join other Senior Cyber Security Engineers, to implement effective security solutions and harden existing systems. As a Senior Cyber Security Engineer, you will: Carry out daily security engineering/ operation tasks under an ITIL framework Using strong technical knowledge, continuously analyse and make recommendations to implement effective security controls, system hardening and security improvement projects with a particular focus in application/web hosting security. Develop an understanding of the threats, risks, vulnerabilities and evolving attack vectors facing the business. Assist with timely security incident investigation to recover service in complex cross-technology environments. Work to defined SLAs & KPIs. Represent Information Security as required at IT meetings. Assist in the management of patching, vulnerability analysis and penetration testing to ensure recommendations are risk assessed and implemented in a timely manner. Assist in group security training, reviewing the market for effective information security solutions, annual reviews of supplier's information security processes, client information and assist IT with Security Administration. The person: Security Engineering, Network security and/or SOC experience. Experienced engineer with demonstrable detailed knowledge of security products, Web Application Firewalls, SASE, access control, SIEM, AV, email and web security gateways, firewalls, load-balancers, ACLs, TCP/IP, routing and switching. Strong understanding of Security Infrastructure design, IT Security best practice and hardening standards Strong understanding of common IT protocols, infrastructure and systems e.g. Networks, Domain management and virtualised infrastructure Understanding of security operations and keen to learn Strong communication skills and able to work collaboratively with IT and other stakeholders Has, or is working towards, higher level qualifications in Information Security e.g. CISSP, SANS GCIA, Comptia Security+ and/or CCNA/CCNP or equivalent qualifications Computer Science degree, or relevant experience. Knowledge of ISO27001, Cyber Essentials and AAF control frameworks would be highly desirable Benefits: Competitive salary Participation in a Discretionary Bonus Scheme 25 days holiday A set of core benefits including pension plan, life assurance, employee assistance programme, access to a qualified, practicing GP 24 hours a day, 365 days a year A comprehensive range of voluntary and flexible benefits to suit you and your lifestyle including holiday trading, tech scheme, cycle to work scheme, dental cover, healthcare cash plan, critical illness cover, private medical cover for self and family, travel insurance and a broad range of discounts at hundreds of retailers.
Apr 25, 2024
Full time
Due to growth our client is seeking an experienced Cyber Security Engineer for their team in Reading. For this exciting role we are seeking an engineer who has gained knowledge and experience in web application security, web application firewalls, vulnerability management and penetration testing. They are also looking for experience working with cloud hosting providers, managing application testing and working with system owners/developers to improve application security. The Senior Cyber Security Engineer role will be challenged with researching and implementing the latest technologies in the industry. This environment is highly technical and collaborative. You will work closely with the Head of Cyber Security, and join other Senior Cyber Security Engineers, to implement effective security solutions and harden existing systems. As a Senior Cyber Security Engineer, you will: Carry out daily security engineering/ operation tasks under an ITIL framework Using strong technical knowledge, continuously analyse and make recommendations to implement effective security controls, system hardening and security improvement projects with a particular focus in application/web hosting security. Develop an understanding of the threats, risks, vulnerabilities and evolving attack vectors facing the business. Assist with timely security incident investigation to recover service in complex cross-technology environments. Work to defined SLAs & KPIs. Represent Information Security as required at IT meetings. Assist in the management of patching, vulnerability analysis and penetration testing to ensure recommendations are risk assessed and implemented in a timely manner. Assist in group security training, reviewing the market for effective information security solutions, annual reviews of supplier's information security processes, client information and assist IT with Security Administration. The person: Security Engineering, Network security and/or SOC experience. Experienced engineer with demonstrable detailed knowledge of security products, Web Application Firewalls, SASE, access control, SIEM, AV, email and web security gateways, firewalls, load-balancers, ACLs, TCP/IP, routing and switching. Strong understanding of Security Infrastructure design, IT Security best practice and hardening standards Strong understanding of common IT protocols, infrastructure and systems e.g. Networks, Domain management and virtualised infrastructure Understanding of security operations and keen to learn Strong communication skills and able to work collaboratively with IT and other stakeholders Has, or is working towards, higher level qualifications in Information Security e.g. CISSP, SANS GCIA, Comptia Security+ and/or CCNA/CCNP or equivalent qualifications Computer Science degree, or relevant experience. Knowledge of ISO27001, Cyber Essentials and AAF control frameworks would be highly desirable Benefits: Competitive salary Participation in a Discretionary Bonus Scheme 25 days holiday A set of core benefits including pension plan, life assurance, employee assistance programme, access to a qualified, practicing GP 24 hours a day, 365 days a year A comprehensive range of voluntary and flexible benefits to suit you and your lifestyle including holiday trading, tech scheme, cycle to work scheme, dental cover, healthcare cash plan, critical illness cover, private medical cover for self and family, travel insurance and a broad range of discounts at hundreds of retailers.
My client is a very exciting not-for-profit organisation that are focused on developing the blockchain/DLT ecosystem, finding product-market fit and bringing industry, academia, and regulators together. They are now looking for an Engineering Lead to head up their cross functional team of Data & Software Engineers. Working closely with Senior Stakeholders the Engineering Lead will help to establish processes, standards and appropriate architectures for optimal performance. You will keep up-to-date with industry trends and technological advancements to ensure the organisation remains relevant and innovative as well as training stakeholders on IT and technology policies. This is a hands-on role and the successful candidate will need to have strong Data Engineering experience with Python. Functional Areas Work closely with the product team for feature design and implementation. Manage and lead a small team of engineers, prioritising tasks and making decisions based on changing business priorities. Plan sprints reflecting business priorities and continuously improve sprint planning. Coordinate with internal stakeholders for technical requirements translation. Manage relationships with technology vendors and explore strategic partnerships. Data Collection: Ensure robust data management systems are in place, overseeing secure collection, storage, and processing of data, and compliance with data protection regulations. Code/Analytics: Adjust, improve, and optimise the efficiency and performance of codes developed by the R&D team for production readiness. Frontend: Supervise the development of Web-dashboard and mobile apps UX: Oversee the creation of intuitive, user-friendly interfaces for easy navigation and understanding of data by clients. UI: Oversee the development of user interfaces, including visual design aspects like layout, colour schemes, typography, and graphics. Admin Dashboard Development: Responsible for a comprehensive admin dashboard Setting Code Review Standards and Processes: Establish standards and processes for code review, including coding standards, review procedures, and quality benchmarks. Skills Required Strong leadership skills with the ability to manage and motivate a diverse team of engineers. Strong Data Analytics experience Exp with Python for Data Engineering Experience with TypeScript AWS, PostgreSQL Database An understanding of Nuxt.js framework & Supabase, Excellent communication skills to articulate complex technical information to non-technical stakeholders. Ability to align technological solutions with organizational goals and strategic planning. Strong problem-solving skills with a focus on innovative and creative solutions in a fast-paced environment. Desirable, but not mandatory Proficiency in blockchain technologies, distributed systems, and data analytics. Experience in cybersecurity and risk management. In return they offer a competitive salary and the opportunity to be at the forefront of an innovative organisation as they grow.
Apr 25, 2024
Full time
My client is a very exciting not-for-profit organisation that are focused on developing the blockchain/DLT ecosystem, finding product-market fit and bringing industry, academia, and regulators together. They are now looking for an Engineering Lead to head up their cross functional team of Data & Software Engineers. Working closely with Senior Stakeholders the Engineering Lead will help to establish processes, standards and appropriate architectures for optimal performance. You will keep up-to-date with industry trends and technological advancements to ensure the organisation remains relevant and innovative as well as training stakeholders on IT and technology policies. This is a hands-on role and the successful candidate will need to have strong Data Engineering experience with Python. Functional Areas Work closely with the product team for feature design and implementation. Manage and lead a small team of engineers, prioritising tasks and making decisions based on changing business priorities. Plan sprints reflecting business priorities and continuously improve sprint planning. Coordinate with internal stakeholders for technical requirements translation. Manage relationships with technology vendors and explore strategic partnerships. Data Collection: Ensure robust data management systems are in place, overseeing secure collection, storage, and processing of data, and compliance with data protection regulations. Code/Analytics: Adjust, improve, and optimise the efficiency and performance of codes developed by the R&D team for production readiness. Frontend: Supervise the development of Web-dashboard and mobile apps UX: Oversee the creation of intuitive, user-friendly interfaces for easy navigation and understanding of data by clients. UI: Oversee the development of user interfaces, including visual design aspects like layout, colour schemes, typography, and graphics. Admin Dashboard Development: Responsible for a comprehensive admin dashboard Setting Code Review Standards and Processes: Establish standards and processes for code review, including coding standards, review procedures, and quality benchmarks. Skills Required Strong leadership skills with the ability to manage and motivate a diverse team of engineers. Strong Data Analytics experience Exp with Python for Data Engineering Experience with TypeScript AWS, PostgreSQL Database An understanding of Nuxt.js framework & Supabase, Excellent communication skills to articulate complex technical information to non-technical stakeholders. Ability to align technological solutions with organizational goals and strategic planning. Strong problem-solving skills with a focus on innovative and creative solutions in a fast-paced environment. Desirable, but not mandatory Proficiency in blockchain technologies, distributed systems, and data analytics. Experience in cybersecurity and risk management. In return they offer a competitive salary and the opportunity to be at the forefront of an innovative organisation as they grow.
The Cyber Security unit is accountable and responsible for safeguarding our company's critical infrastructure, intellectual property, and customer data against evolving cyber threats, ensuring no interruption to operations. We take a proactive approach to building, deploying, and operating our Cyber capabilities to fortify our defenses, employing innovative and cutting-edge cyber technologies. Our duties span cyber threat management, real-time attack detection and prevention, and swift remediation, integrated with advanced artificial intelligence and machine learning. Additionally, we leverage Cyber DevOps automations to facilitate rapid deployment and threat mitigation, ensuring the resilience of our Operational Technology (OT), IT, and digital infrastructure in the face of emerging challenges. We are responsible for defining and setting the Cyber framework and Security compliance policies across the company, including the development of robust Business continuity plans, disaster recovery, and critical management plans to ensure the resilience of our operations in the face of cyber threats and other emergencies. Key Competencies Technical Significant experience in Cyber Security engineering and delivery with a broad understanding of OT and IT services Subject matter expertise in Cyber Security for protecting IT, OT, and IP networks, including IPSec VPNs, Firewalls, SIEM, IPS/IDS, AV/EDR solutions, LDAP/AD, etc. Expertise in Privileged Access Management and related tools High level of expertise in Vulnerability and Compliance Management; DDOS protection Hands-on experience in Cyber Security engineering and design of cloud solutions (such as AWS, Azure, etc.), including open-source tools, DevOps, and automation capabilities to enhance cyber defense (such as Zabbix, ELK, Grafana, Netbox, Netmiko, Ansible, Alienvault, OpenVas, etc.) Professional-level knowledge in public clouds, such as AWS security services and architectures. Extensive knowledge of Private Clouds and related transferable skills are highly desirable. Non-Technical Ability to collaborate effectively with others to drive forward key security objectives and goals Strong communication skills, including presentation and documentation writing (for both technical and business audiences) An aptitude for autonomous learning as required by business demands Proven track record of problem-solving abilities Assertiveness and the ability to drive through change, complex projects, and transformations Excellent teamwork skills, including the ability to work effectively within a geographically disparate team (nationally and internationally Desirable but not essential: Knowledge of policy frameworks and understanding of policies, procedures, guideline structure, and regulatory landscapes, such as NERC CIP, NIST, NIS2, GDPR, EPCIP, etc. Virtualization technology, including containerization (e.g., Docker, Kubernetes, Linux, etc.) Host-based security products (threat detection, mitigations, end-user detection and response, micro-segmentation, zero trust) Experience working within an ITIL environment or structured platform management, particularly change and incident management Professional certifications, e.g., CISSP, CISM, CCNP, CCIE, AWS Certified Security, etc. Key Accountabilities Technical Design lead for end-to-end cyber capabilities for operational technology (OT) and Information Technology (IT), as per Cyber goals and company's strategy Technical leadership and subject matter expertise in Cyber Security Design security capabilities and tools for new infrastructure & digital deployments, and the existing ones Design and dynamically readjust cyber capabilities based on the cyber threat landscape Support to set, and potentially lead NOC/SOC operational team Lead Cyber incident response, conduct post-incident reviews (PIRs), root-cause-analysis (RCAs), and deploy mitigating solutions. Report on Cyber incidents and manage related action plans Proactive capacity management of the cyber platforms to ensure sufficient capacity is available at any time Design Cyber solutions that are well-integrated with the IT and OT platforms Data design for Cyber logs, reports, and incidents to align with the digitization strategy, intertwined with AI and ML Knowledge and experience of agile and DevOps methodologies Own development and implementation of policies and procedures, including operational cyber defense processes Provide cyber 2nd and 3rd line support as required to maintain service availability during cyber incidents Strategic Work as part of the wider team to drive automation and data mining, as per cyber goals and wider strategy, to support the company's digitization transformation Put in place and drive the cyber roadmap for platform development and threat mitigation, aligned with the unit's cyber vision and strategy Continually develop professional cyber skills and awareness, remaining ahead of cyber attacks Lead on a number of complex technical deliverables ensuring work is completed on time and within budget Work and deliver under general direction within a clear framework of accountability Assume substantial personal responsibilities and autonomy Plan own work, engage stakeholders, and work with teams in the business to deliver on commitments Become a recognized expert in Cyber technologies GCS is acting as an Employment Agency in relation to this vacancy.
Apr 25, 2024
Full time
The Cyber Security unit is accountable and responsible for safeguarding our company's critical infrastructure, intellectual property, and customer data against evolving cyber threats, ensuring no interruption to operations. We take a proactive approach to building, deploying, and operating our Cyber capabilities to fortify our defenses, employing innovative and cutting-edge cyber technologies. Our duties span cyber threat management, real-time attack detection and prevention, and swift remediation, integrated with advanced artificial intelligence and machine learning. Additionally, we leverage Cyber DevOps automations to facilitate rapid deployment and threat mitigation, ensuring the resilience of our Operational Technology (OT), IT, and digital infrastructure in the face of emerging challenges. We are responsible for defining and setting the Cyber framework and Security compliance policies across the company, including the development of robust Business continuity plans, disaster recovery, and critical management plans to ensure the resilience of our operations in the face of cyber threats and other emergencies. Key Competencies Technical Significant experience in Cyber Security engineering and delivery with a broad understanding of OT and IT services Subject matter expertise in Cyber Security for protecting IT, OT, and IP networks, including IPSec VPNs, Firewalls, SIEM, IPS/IDS, AV/EDR solutions, LDAP/AD, etc. Expertise in Privileged Access Management and related tools High level of expertise in Vulnerability and Compliance Management; DDOS protection Hands-on experience in Cyber Security engineering and design of cloud solutions (such as AWS, Azure, etc.), including open-source tools, DevOps, and automation capabilities to enhance cyber defense (such as Zabbix, ELK, Grafana, Netbox, Netmiko, Ansible, Alienvault, OpenVas, etc.) Professional-level knowledge in public clouds, such as AWS security services and architectures. Extensive knowledge of Private Clouds and related transferable skills are highly desirable. Non-Technical Ability to collaborate effectively with others to drive forward key security objectives and goals Strong communication skills, including presentation and documentation writing (for both technical and business audiences) An aptitude for autonomous learning as required by business demands Proven track record of problem-solving abilities Assertiveness and the ability to drive through change, complex projects, and transformations Excellent teamwork skills, including the ability to work effectively within a geographically disparate team (nationally and internationally Desirable but not essential: Knowledge of policy frameworks and understanding of policies, procedures, guideline structure, and regulatory landscapes, such as NERC CIP, NIST, NIS2, GDPR, EPCIP, etc. Virtualization technology, including containerization (e.g., Docker, Kubernetes, Linux, etc.) Host-based security products (threat detection, mitigations, end-user detection and response, micro-segmentation, zero trust) Experience working within an ITIL environment or structured platform management, particularly change and incident management Professional certifications, e.g., CISSP, CISM, CCNP, CCIE, AWS Certified Security, etc. Key Accountabilities Technical Design lead for end-to-end cyber capabilities for operational technology (OT) and Information Technology (IT), as per Cyber goals and company's strategy Technical leadership and subject matter expertise in Cyber Security Design security capabilities and tools for new infrastructure & digital deployments, and the existing ones Design and dynamically readjust cyber capabilities based on the cyber threat landscape Support to set, and potentially lead NOC/SOC operational team Lead Cyber incident response, conduct post-incident reviews (PIRs), root-cause-analysis (RCAs), and deploy mitigating solutions. Report on Cyber incidents and manage related action plans Proactive capacity management of the cyber platforms to ensure sufficient capacity is available at any time Design Cyber solutions that are well-integrated with the IT and OT platforms Data design for Cyber logs, reports, and incidents to align with the digitization strategy, intertwined with AI and ML Knowledge and experience of agile and DevOps methodologies Own development and implementation of policies and procedures, including operational cyber defense processes Provide cyber 2nd and 3rd line support as required to maintain service availability during cyber incidents Strategic Work as part of the wider team to drive automation and data mining, as per cyber goals and wider strategy, to support the company's digitization transformation Put in place and drive the cyber roadmap for platform development and threat mitigation, aligned with the unit's cyber vision and strategy Continually develop professional cyber skills and awareness, remaining ahead of cyber attacks Lead on a number of complex technical deliverables ensuring work is completed on time and within budget Work and deliver under general direction within a clear framework of accountability Assume substantial personal responsibilities and autonomy Plan own work, engage stakeholders, and work with teams in the business to deliver on commitments Become a recognized expert in Cyber technologies GCS is acting as an Employment Agency in relation to this vacancy.