Job Title: Principal Cyber Security Engineer Location: Barrow-In-Furness - We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Salary: Negotiable, depending on experience What you'll be doing: Manage and deliver a Submarines Business Unit Product Security Assurance Audit schedule within the scope of EPAD Be able to plan and manage work concurrently across multiple security work programmes Be able to select appropriate Product Security Assurance techniques which are consistent and repeatable for use across a programme Represent the EPAD at Design Reviews and other various engagements, to ensure that Product Security is appropriately considered at each stage of the design lifecycle Be able to contribute and influence the development of Product Security strategies, policies, guidance, good practices and awareness Ensure that Product Security activities within a programme, a project, system or equipment, are delivered and managed using recognised techniques and in accordance with the Submarines Product Security Management System (PsecMS) Provide regular updates on assurance status/progress in accordance with programme/project specific reporting cycles Your skills and experiences: Essential: Degree (or equivalent experience) in a relevant STEM subject or Information Security related. Relevant Professional certification such as CISSP, CISM or CCP SIRA status (or able to achieve) Desirable: Experience in Cyber Security in relation to DEFCON 658, DEFSTAN 05-138, MOD Accreditation/Secure by Design ISO 27001 Lead Auditor or Implementer Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive. The Engineering Product Assurance Department: The Product Security Assurance Principal Engineer will be a focal point for security and information risk matters within the Engineering Product Assurance Department (EPAD). They will have Governance, Risk and Compliance (GRC) subject matter expertise and will be responsible for development of the strategy within the scope of EPAD. The Principal Engineer will be able to apply their deep level of subject matter expertise and experience to ensure that submarine systems and products are delivered and can be managed and supported through-life. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks. Closing Date: 21st October 2025 We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible.
Oct 13, 2025
Full time
Job Title: Principal Cyber Security Engineer Location: Barrow-In-Furness - We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Salary: Negotiable, depending on experience What you'll be doing: Manage and deliver a Submarines Business Unit Product Security Assurance Audit schedule within the scope of EPAD Be able to plan and manage work concurrently across multiple security work programmes Be able to select appropriate Product Security Assurance techniques which are consistent and repeatable for use across a programme Represent the EPAD at Design Reviews and other various engagements, to ensure that Product Security is appropriately considered at each stage of the design lifecycle Be able to contribute and influence the development of Product Security strategies, policies, guidance, good practices and awareness Ensure that Product Security activities within a programme, a project, system or equipment, are delivered and managed using recognised techniques and in accordance with the Submarines Product Security Management System (PsecMS) Provide regular updates on assurance status/progress in accordance with programme/project specific reporting cycles Your skills and experiences: Essential: Degree (or equivalent experience) in a relevant STEM subject or Information Security related. Relevant Professional certification such as CISSP, CISM or CCP SIRA status (or able to achieve) Desirable: Experience in Cyber Security in relation to DEFCON 658, DEFSTAN 05-138, MOD Accreditation/Secure by Design ISO 27001 Lead Auditor or Implementer Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive. The Engineering Product Assurance Department: The Product Security Assurance Principal Engineer will be a focal point for security and information risk matters within the Engineering Product Assurance Department (EPAD). They will have Governance, Risk and Compliance (GRC) subject matter expertise and will be responsible for development of the strategy within the scope of EPAD. The Principal Engineer will be able to apply their deep level of subject matter expertise and experience to ensure that submarine systems and products are delivered and can be managed and supported through-life. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks. Closing Date: 21st October 2025 We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible.
Job Title: Principal Cyber Security Engineer Location: Barrow-In-Furness - We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Salary: Negotiable, depending on experience What you'll be doing: Manage and deliver a Submarines Business Unit Product Security Assurance Audit schedule within the scope of EPAD Be able to plan and manage work concurrently across multiple security work programmes Be able to select appropriate Product Security Assurance techniques which are consistent and repeatable for use across a programme Represent the EPAD at Design Reviews and other various engagements, to ensure that Product Security is appropriately considered at each stage of the design lifecycle Be able to contribute and influence the development of Product Security strategies, policies, guidance, good practices and awareness Ensure that Product Security activities within a programme, a project, system or equipment, are delivered and managed using recognised techniques and in accordance with the Submarines Product Security Management System (PsecMS) Provide regular updates on assurance status/progress in accordance with programme/project specific reporting cycles Your skills and experiences: Essential: Degree (or equivalent experience) in a relevant STEM subject or Information Security related. Relevant Professional certification such as CISSP, CISM or CCP SIRA status (or able to achieve) Desirable: Experience in Cyber Security in relation to DEFCON 658, DEFSTAN 05-138, MOD Accreditation/Secure by Design ISO 27001 Lead Auditor or Implementer Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive. The Engineering Product Assurance Department: The Product Security Assurance Principal Engineer will be a focal point for security and information risk matters within the Engineering Product Assurance Department (EPAD). They will have Governance, Risk and Compliance (GRC) subject matter expertise and will be responsible for development of the strategy within the scope of EPAD. The Principal Engineer will be able to apply their deep level of subject matter expertise and experience to ensure that submarine systems and products are delivered and can be managed and supported through-life. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks. Closing Date: 21st October 2025 We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible.
Oct 13, 2025
Full time
Job Title: Principal Cyber Security Engineer Location: Barrow-In-Furness - We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Salary: Negotiable, depending on experience What you'll be doing: Manage and deliver a Submarines Business Unit Product Security Assurance Audit schedule within the scope of EPAD Be able to plan and manage work concurrently across multiple security work programmes Be able to select appropriate Product Security Assurance techniques which are consistent and repeatable for use across a programme Represent the EPAD at Design Reviews and other various engagements, to ensure that Product Security is appropriately considered at each stage of the design lifecycle Be able to contribute and influence the development of Product Security strategies, policies, guidance, good practices and awareness Ensure that Product Security activities within a programme, a project, system or equipment, are delivered and managed using recognised techniques and in accordance with the Submarines Product Security Management System (PsecMS) Provide regular updates on assurance status/progress in accordance with programme/project specific reporting cycles Your skills and experiences: Essential: Degree (or equivalent experience) in a relevant STEM subject or Information Security related. Relevant Professional certification such as CISSP, CISM or CCP SIRA status (or able to achieve) Desirable: Experience in Cyber Security in relation to DEFCON 658, DEFSTAN 05-138, MOD Accreditation/Secure by Design ISO 27001 Lead Auditor or Implementer Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive. The Engineering Product Assurance Department: The Product Security Assurance Principal Engineer will be a focal point for security and information risk matters within the Engineering Product Assurance Department (EPAD). They will have Governance, Risk and Compliance (GRC) subject matter expertise and will be responsible for development of the strategy within the scope of EPAD. The Principal Engineer will be able to apply their deep level of subject matter expertise and experience to ensure that submarine systems and products are delivered and can be managed and supported through-life. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks. Closing Date: 21st October 2025 We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible.
Job Title: Principal Cyber Security Engineer Location: Barrow-In-Furness - We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Salary: Negotiable, depending on experience What you'll be doing: Manage and deliver a Submarines Business Unit Product Security Assurance Audit schedule within the scope of EPAD Be able to plan and manage work concurrently across multiple security work programmes Be able to select appropriate Product Security Assurance techniques which are consistent and repeatable for use across a programme Represent the EPAD at Design Reviews and other various engagements, to ensure that Product Security is appropriately considered at each stage of the design lifecycle Be able to contribute and influence the development of Product Security strategies, policies, guidance, good practices and awareness Ensure that Product Security activities within a programme, a project, system or equipment, are delivered and managed using recognised techniques and in accordance with the Submarines Product Security Management System (PsecMS) Provide regular updates on assurance status/progress in accordance with programme/project specific reporting cycles Your skills and experiences: Essential: Degree (or equivalent experience) in a relevant STEM subject or Information Security related. Relevant Professional certification such as CISSP, CISM or CCP SIRA status (or able to achieve) Desirable: Experience in Cyber Security in relation to DEFCON 658, DEFSTAN 05-138, MOD Accreditation/Secure by Design ISO 27001 Lead Auditor or Implementer Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive. The Engineering Product Assurance Department: The Product Security Assurance Principal Engineer will be a focal point for security and information risk matters within the Engineering Product Assurance Department (EPAD). They will have Governance, Risk and Compliance (GRC) subject matter expertise and will be responsible for development of the strategy within the scope of EPAD. The Principal Engineer will be able to apply their deep level of subject matter expertise and experience to ensure that submarine systems and products are delivered and can be managed and supported through-life. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks. Closing Date: 21st October 2025 We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible.
Oct 13, 2025
Full time
Job Title: Principal Cyber Security Engineer Location: Barrow-In-Furness - We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Salary: Negotiable, depending on experience What you'll be doing: Manage and deliver a Submarines Business Unit Product Security Assurance Audit schedule within the scope of EPAD Be able to plan and manage work concurrently across multiple security work programmes Be able to select appropriate Product Security Assurance techniques which are consistent and repeatable for use across a programme Represent the EPAD at Design Reviews and other various engagements, to ensure that Product Security is appropriately considered at each stage of the design lifecycle Be able to contribute and influence the development of Product Security strategies, policies, guidance, good practices and awareness Ensure that Product Security activities within a programme, a project, system or equipment, are delivered and managed using recognised techniques and in accordance with the Submarines Product Security Management System (PsecMS) Provide regular updates on assurance status/progress in accordance with programme/project specific reporting cycles Your skills and experiences: Essential: Degree (or equivalent experience) in a relevant STEM subject or Information Security related. Relevant Professional certification such as CISSP, CISM or CCP SIRA status (or able to achieve) Desirable: Experience in Cyber Security in relation to DEFCON 658, DEFSTAN 05-138, MOD Accreditation/Secure by Design ISO 27001 Lead Auditor or Implementer Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive. The Engineering Product Assurance Department: The Product Security Assurance Principal Engineer will be a focal point for security and information risk matters within the Engineering Product Assurance Department (EPAD). They will have Governance, Risk and Compliance (GRC) subject matter expertise and will be responsible for development of the strategy within the scope of EPAD. The Principal Engineer will be able to apply their deep level of subject matter expertise and experience to ensure that submarine systems and products are delivered and can be managed and supported through-life. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks. Closing Date: 21st October 2025 We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible.
Job Title: Principal Cyber Security Engineer Location: Barrow-In-Furness - We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Salary: Negotiable, depending on experience What you'll be doing: Manage and deliver a Submarines Business Unit Product Security Assurance Audit schedule within the scope of EPAD Be able to plan and manage work concurrently across multiple security work programmes Be able to select appropriate Product Security Assurance techniques which are consistent and repeatable for use across a programme Represent the EPAD at Design Reviews and other various engagements, to ensure that Product Security is appropriately considered at each stage of the design lifecycle Be able to contribute and influence the development of Product Security strategies, policies, guidance, good practices and awareness Ensure that Product Security activities within a programme, a project, system or equipment, are delivered and managed using recognised techniques and in accordance with the Submarines Product Security Management System (PsecMS) Provide regular updates on assurance status/progress in accordance with programme/project specific reporting cycles Your skills and experiences: Essential: Degree (or equivalent experience) in a relevant STEM subject or Information Security related. Relevant Professional certification such as CISSP, CISM or CCP SIRA status (or able to achieve) Desirable: Experience in Cyber Security in relation to DEFCON 658, DEFSTAN 05-138, MOD Accreditation/Secure by Design ISO 27001 Lead Auditor or Implementer Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive. The Engineering Product Assurance Department: The Product Security Assurance Principal Engineer will be a focal point for security and information risk matters within the Engineering Product Assurance Department (EPAD). They will have Governance, Risk and Compliance (GRC) subject matter expertise and will be responsible for development of the strategy within the scope of EPAD. The Principal Engineer will be able to apply their deep level of subject matter expertise and experience to ensure that submarine systems and products are delivered and can be managed and supported through-life. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks. Closing Date: 21st October 2025 We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible.
Oct 13, 2025
Full time
Job Title: Principal Cyber Security Engineer Location: Barrow-In-Furness - We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Salary: Negotiable, depending on experience What you'll be doing: Manage and deliver a Submarines Business Unit Product Security Assurance Audit schedule within the scope of EPAD Be able to plan and manage work concurrently across multiple security work programmes Be able to select appropriate Product Security Assurance techniques which are consistent and repeatable for use across a programme Represent the EPAD at Design Reviews and other various engagements, to ensure that Product Security is appropriately considered at each stage of the design lifecycle Be able to contribute and influence the development of Product Security strategies, policies, guidance, good practices and awareness Ensure that Product Security activities within a programme, a project, system or equipment, are delivered and managed using recognised techniques and in accordance with the Submarines Product Security Management System (PsecMS) Provide regular updates on assurance status/progress in accordance with programme/project specific reporting cycles Your skills and experiences: Essential: Degree (or equivalent experience) in a relevant STEM subject or Information Security related. Relevant Professional certification such as CISSP, CISM or CCP SIRA status (or able to achieve) Desirable: Experience in Cyber Security in relation to DEFCON 658, DEFSTAN 05-138, MOD Accreditation/Secure by Design ISO 27001 Lead Auditor or Implementer Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive. The Engineering Product Assurance Department: The Product Security Assurance Principal Engineer will be a focal point for security and information risk matters within the Engineering Product Assurance Department (EPAD). They will have Governance, Risk and Compliance (GRC) subject matter expertise and will be responsible for development of the strategy within the scope of EPAD. The Principal Engineer will be able to apply their deep level of subject matter expertise and experience to ensure that submarine systems and products are delivered and can be managed and supported through-life. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks. Closing Date: 21st October 2025 We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible.
Job Title: Principal Cyber Security Engineer Location: Barrow-In-Furness - We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Salary: Negotiable, depending on experience What you'll be doing: Manage and deliver a Submarines Business Unit Product Security Assurance Audit schedule within the scope of EPAD Be able to plan and manage work concurrently across multiple security work programmes Be able to select appropriate Product Security Assurance techniques which are consistent and repeatable for use across a programme Represent the EPAD at Design Reviews and other various engagements, to ensure that Product Security is appropriately considered at each stage of the design lifecycle Be able to contribute and influence the development of Product Security strategies, policies, guidance, good practices and awareness Ensure that Product Security activities within a programme, a project, system or equipment, are delivered and managed using recognised techniques and in accordance with the Submarines Product Security Management System (PsecMS) Provide regular updates on assurance status/progress in accordance with programme/project specific reporting cycles Your skills and experiences: Essential: Degree (or equivalent experience) in a relevant STEM subject or Information Security related. Relevant Professional certification such as CISSP, CISM or CCP SIRA status (or able to achieve) Desirable: Experience in Cyber Security in relation to DEFCON 658, DEFSTAN 05-138, MOD Accreditation/Secure by Design ISO 27001 Lead Auditor or Implementer Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive. The Engineering Product Assurance Department: The Product Security Assurance Principal Engineer will be a focal point for security and information risk matters within the Engineering Product Assurance Department (EPAD). They will have Governance, Risk and Compliance (GRC) subject matter expertise and will be responsible for development of the strategy within the scope of EPAD. The Principal Engineer will be able to apply their deep level of subject matter expertise and experience to ensure that submarine systems and products are delivered and can be managed and supported through-life. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks. Closing Date: 21st October 2025 We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible.
Oct 13, 2025
Full time
Job Title: Principal Cyber Security Engineer Location: Barrow-In-Furness - We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Salary: Negotiable, depending on experience What you'll be doing: Manage and deliver a Submarines Business Unit Product Security Assurance Audit schedule within the scope of EPAD Be able to plan and manage work concurrently across multiple security work programmes Be able to select appropriate Product Security Assurance techniques which are consistent and repeatable for use across a programme Represent the EPAD at Design Reviews and other various engagements, to ensure that Product Security is appropriately considered at each stage of the design lifecycle Be able to contribute and influence the development of Product Security strategies, policies, guidance, good practices and awareness Ensure that Product Security activities within a programme, a project, system or equipment, are delivered and managed using recognised techniques and in accordance with the Submarines Product Security Management System (PsecMS) Provide regular updates on assurance status/progress in accordance with programme/project specific reporting cycles Your skills and experiences: Essential: Degree (or equivalent experience) in a relevant STEM subject or Information Security related. Relevant Professional certification such as CISSP, CISM or CCP SIRA status (or able to achieve) Desirable: Experience in Cyber Security in relation to DEFCON 658, DEFSTAN 05-138, MOD Accreditation/Secure by Design ISO 27001 Lead Auditor or Implementer Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive. The Engineering Product Assurance Department: The Product Security Assurance Principal Engineer will be a focal point for security and information risk matters within the Engineering Product Assurance Department (EPAD). They will have Governance, Risk and Compliance (GRC) subject matter expertise and will be responsible for development of the strategy within the scope of EPAD. The Principal Engineer will be able to apply their deep level of subject matter expertise and experience to ensure that submarine systems and products are delivered and can be managed and supported through-life. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks. Closing Date: 21st October 2025 We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible.
Description Starling is the UK's first and leading digital bank on a mission to fix banking! Our vision is fast technology, fair service, and honest values. All at the tap of a phone, all the time. We are about giving customers a new way to spend, save and manage their money while taking better care of the planet which has seen us become a multi-award winning bank that now employs over 2800 across five offices in London, Cardiff, Dublin, Southampton, and Manchester. Our journey started in 2014, and since then we have surpassed 3.5 million accounts (and four account types!) with 350,000 business customers. We are a fully licensed UK bank but at the heart, we are a tech first company, enabling our platform to deliver brilliant products. Our technologists are at the very heart of Starling and enjoy working in a fast-paced environment that is all about building things, creating new stuff, and disruptive technology that keeps us on the cutting edge of fintech. We operate a flat structure to empower you to make decisions regardless of what your primary responsibilities may be, innovation and collaboration will be at the core of everything you do. Help is never far away in our open culture, you will find support in your team and from across the business, we are in this together! The way to thrive and shine within Starling is to be a self-driven individual and be able to take full ownership of everything around you: From building things, designing, discovering, to sharing knowledge with your colleagues and making sure all processes are efficient and productive to deliver the best possible results for our customers. Our purpose is underpinned by five Starling values: Listen, Keep It Simple, Do The Right Thing, Own It, and Aim For Greatness. Hybrid Working We have a Hybrid approach to working here at Starling - our preference is that you're located within a commutable distance of one of our offices so that we're able to interact and collaborate in person. In Technology, we're asking that you attend the office a minimum of 1 day per week. Here at Starling we are growing, and our first line Technology Risk (ITRM) Team is looking for an experienced, and talented Red Team Senior Operator to join our Cyber Resilience team to join our efforts in proactively identifying vulnerabilities within our systems and digital infrastructure to ensure continuous improvement in Starling's resilience. Reporting to the Technology Risk Adversarial & Cyber Resilience Testing Director, you will have responsibility for designing and executing red team operations and cyber resilience testing against Starling Bank. Operations will emulate real threat actors and target cutting edge technology in Starling Bank's platform as well as ranging across the endpoint estate. You will use emerging threat intelligence to inform and develop effective attacks. Key Responsibilities include: Red Team testing Lead the design and execution of red team operations against Starling Bank (including scoping, planning, payload/infrastructure development, execution, reporting and workshops) Identify complex vulnerabilities and build advanced exploits Continually improve the methodology and capability of the team Mentor junior team members and share expertise Develop and document reusable attack components using realistic TTPs Lead purple team exercises and collaborate with the SOC team to enhance detection capabilities Translate red team tactics into actionable intelligence for blue team operations Develop advanced threat models and 'worst case scenario' playbooks based on emerging global risks (APTs, insider threats, supply chain compromise) and simulate complex real-world scenarios Cyber Resilience Technical Testing Lead cyber resilience testing initiatives to assess the Bank's ability to withstand and recover from cyber attacks, including controlled attack scenarios (ransomware, DDoS, data corruption) to evaluate resilience and recovery capabilities Drive identification of vulnerabilities, improve defence strategies and validate recovery processes Analyse complex test results, validate breach scenarios, document findings and provide strategic actionable recommendations Coordinate multi-stage testing scenarios and lead cross-team activities Requirements You will need: Experience leading red team operations and deep understanding of the benefits and pitfalls of different adversarial techniques Ability to define rules of engagement and demonstrate strong discipline and steady judgement, working both independently and as part of a team Experience conducting advanced security testing against cloud environments (AWS, GCP, Azure) Advanced security testing certifications (e.g. OSCP, CRTO, OSMR, OSCE, OSEP, cloud security or similar) Deep familiarity with the cyber risks faced by Starling Bank and other financial institutions Expert-level network and operating system fundamentals (MacOS, Linux and Windows) Proficiency with modern software engineering paradigms (CI/CD, Infra as Code) Leadership and mentoring experience Capability to manage risk and controls around red team activities The following skills and experience are desirable: Expertise in AI/ML systems security, including LLMs, transformers and model interpretability Advanced certifications such as CSSAS, CSSAM, CCT or similar Extensive experience in incident response, threat intelligence, or ethical hacking at an enterprise level Strong background in regulatory environments (e.g. ISO 27001, SOCII, GDPR or AI Act compliance) Software engineering expertise (Java, Kotlin, Go ) or advanced reverse engineering expertise Proven track record in blogging and speaking both internally to educate staff and externally at conferences Experience developing innovative security testing methodologies Interview process: Interviewing is a two way process and we want you to have the time and opportunity to get to know us, as much as we are getting to know you! Our interviews are conversational and we want to get the best from you, so come with questions and be curious. In general you can expect the below, following a chat with one of our Talent Team: Stage 1 - 45 mins with one of the team Stage 2 - 60 mins technical interview with two team members Stage 3 - 45 min final with two executives Benefits 33 days holiday (including public holidays, which you can take when it works best for you) An extra day's holiday for your birthday Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off 16 hours paid volunteering time a year Salary sacrifice, company enhanced pension scheme Life insurance at 4x your salary & group income protection Private Medical Insurance with VitalityHealth including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton Generous family-friendly policies Incentives refer a friend scheme Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing About us You may be put off applying for a role because you don't tick every box. Forget that! While we can't accommodate every flexible working request, we're always open to discussion. So, if you're excited about working with us, but aren't sure if you're 100% there yet, get in touch anyway. We're on a mission to radically reshape banking - and that starts with our brilliant team. Whatever came before, we're proud to bring together people of all backgrounds and experiences who love working together to solve problems. Starling Bank is an equal opportunity employer, and we're proud of our ongoing efforts to foster diversity & inclusion in the workplace. Individuals seeking employment at Starling Bank are considered without regard to race, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, medical condition, ancestry, physical or mental disability, military or veteran status, or any other characteristic protected by applicable law. When you provide us with this information, you are doing so at your own consent, with full knowledge that we will process this personal data in accordance with our Privacy Notice. By submitting your application, you agree that Starling Bank may collect your personal data for recruiting and related purposes. Our Privacy Notice explains what personal information we may process, where we may process your personal information, its purposes for processing your personal information, and the rights you can exercise over our use of your personal information.
Oct 13, 2025
Full time
Description Starling is the UK's first and leading digital bank on a mission to fix banking! Our vision is fast technology, fair service, and honest values. All at the tap of a phone, all the time. We are about giving customers a new way to spend, save and manage their money while taking better care of the planet which has seen us become a multi-award winning bank that now employs over 2800 across five offices in London, Cardiff, Dublin, Southampton, and Manchester. Our journey started in 2014, and since then we have surpassed 3.5 million accounts (and four account types!) with 350,000 business customers. We are a fully licensed UK bank but at the heart, we are a tech first company, enabling our platform to deliver brilliant products. Our technologists are at the very heart of Starling and enjoy working in a fast-paced environment that is all about building things, creating new stuff, and disruptive technology that keeps us on the cutting edge of fintech. We operate a flat structure to empower you to make decisions regardless of what your primary responsibilities may be, innovation and collaboration will be at the core of everything you do. Help is never far away in our open culture, you will find support in your team and from across the business, we are in this together! The way to thrive and shine within Starling is to be a self-driven individual and be able to take full ownership of everything around you: From building things, designing, discovering, to sharing knowledge with your colleagues and making sure all processes are efficient and productive to deliver the best possible results for our customers. Our purpose is underpinned by five Starling values: Listen, Keep It Simple, Do The Right Thing, Own It, and Aim For Greatness. Hybrid Working We have a Hybrid approach to working here at Starling - our preference is that you're located within a commutable distance of one of our offices so that we're able to interact and collaborate in person. In Technology, we're asking that you attend the office a minimum of 1 day per week. Here at Starling we are growing, and our first line Technology Risk (ITRM) Team is looking for an experienced, and talented Red Team Senior Operator to join our Cyber Resilience team to join our efforts in proactively identifying vulnerabilities within our systems and digital infrastructure to ensure continuous improvement in Starling's resilience. Reporting to the Technology Risk Adversarial & Cyber Resilience Testing Director, you will have responsibility for designing and executing red team operations and cyber resilience testing against Starling Bank. Operations will emulate real threat actors and target cutting edge technology in Starling Bank's platform as well as ranging across the endpoint estate. You will use emerging threat intelligence to inform and develop effective attacks. Key Responsibilities include: Red Team testing Lead the design and execution of red team operations against Starling Bank (including scoping, planning, payload/infrastructure development, execution, reporting and workshops) Identify complex vulnerabilities and build advanced exploits Continually improve the methodology and capability of the team Mentor junior team members and share expertise Develop and document reusable attack components using realistic TTPs Lead purple team exercises and collaborate with the SOC team to enhance detection capabilities Translate red team tactics into actionable intelligence for blue team operations Develop advanced threat models and 'worst case scenario' playbooks based on emerging global risks (APTs, insider threats, supply chain compromise) and simulate complex real-world scenarios Cyber Resilience Technical Testing Lead cyber resilience testing initiatives to assess the Bank's ability to withstand and recover from cyber attacks, including controlled attack scenarios (ransomware, DDoS, data corruption) to evaluate resilience and recovery capabilities Drive identification of vulnerabilities, improve defence strategies and validate recovery processes Analyse complex test results, validate breach scenarios, document findings and provide strategic actionable recommendations Coordinate multi-stage testing scenarios and lead cross-team activities Requirements You will need: Experience leading red team operations and deep understanding of the benefits and pitfalls of different adversarial techniques Ability to define rules of engagement and demonstrate strong discipline and steady judgement, working both independently and as part of a team Experience conducting advanced security testing against cloud environments (AWS, GCP, Azure) Advanced security testing certifications (e.g. OSCP, CRTO, OSMR, OSCE, OSEP, cloud security or similar) Deep familiarity with the cyber risks faced by Starling Bank and other financial institutions Expert-level network and operating system fundamentals (MacOS, Linux and Windows) Proficiency with modern software engineering paradigms (CI/CD, Infra as Code) Leadership and mentoring experience Capability to manage risk and controls around red team activities The following skills and experience are desirable: Expertise in AI/ML systems security, including LLMs, transformers and model interpretability Advanced certifications such as CSSAS, CSSAM, CCT or similar Extensive experience in incident response, threat intelligence, or ethical hacking at an enterprise level Strong background in regulatory environments (e.g. ISO 27001, SOCII, GDPR or AI Act compliance) Software engineering expertise (Java, Kotlin, Go ) or advanced reverse engineering expertise Proven track record in blogging and speaking both internally to educate staff and externally at conferences Experience developing innovative security testing methodologies Interview process: Interviewing is a two way process and we want you to have the time and opportunity to get to know us, as much as we are getting to know you! Our interviews are conversational and we want to get the best from you, so come with questions and be curious. In general you can expect the below, following a chat with one of our Talent Team: Stage 1 - 45 mins with one of the team Stage 2 - 60 mins technical interview with two team members Stage 3 - 45 min final with two executives Benefits 33 days holiday (including public holidays, which you can take when it works best for you) An extra day's holiday for your birthday Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off 16 hours paid volunteering time a year Salary sacrifice, company enhanced pension scheme Life insurance at 4x your salary & group income protection Private Medical Insurance with VitalityHealth including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton Generous family-friendly policies Incentives refer a friend scheme Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing About us You may be put off applying for a role because you don't tick every box. Forget that! While we can't accommodate every flexible working request, we're always open to discussion. So, if you're excited about working with us, but aren't sure if you're 100% there yet, get in touch anyway. We're on a mission to radically reshape banking - and that starts with our brilliant team. Whatever came before, we're proud to bring together people of all backgrounds and experiences who love working together to solve problems. Starling Bank is an equal opportunity employer, and we're proud of our ongoing efforts to foster diversity & inclusion in the workplace. Individuals seeking employment at Starling Bank are considered without regard to race, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, medical condition, ancestry, physical or mental disability, military or veteran status, or any other characteristic protected by applicable law. When you provide us with this information, you are doing so at your own consent, with full knowledge that we will process this personal data in accordance with our Privacy Notice. By submitting your application, you agree that Starling Bank may collect your personal data for recruiting and related purposes. Our Privacy Notice explains what personal information we may process, where we may process your personal information, its purposes for processing your personal information, and the rights you can exercise over our use of your personal information.
Description Starling is the UK's first and leading digital bank on a mission to fix banking! Our vision is fast technology, fair service, and honest values. All at the tap of a phone, all the time. We are about giving customers a new way to spend, save and manage their money while taking better care of the planet which has seen us become a multi-award winning bank that now employs over 2800 across five offices in London, Cardiff, Dublin, Southampton, and Manchester. Our journey started in 2014, and since then we have surpassed 3.5 million accounts (and four account types!) with 350,000 business customers. We are a fully licensed UK bank but at the heart, we are a tech first company, enabling our platform to deliver brilliant products. Our technologists are at the very heart of Starling and enjoy working in a fast-paced environment that is all about building things, creating new stuff, and disruptive technology that keeps us on the cutting edge of fintech. We operate a flat structure to empower you to make decisions regardless of what your primary responsibilities may be, innovation and collaboration will be at the core of everything you do. Help is never far away in our open culture, you will find support in your team and from across the business, we are in this together! The way to thrive and shine within Starling is to be a self-driven individual and be able to take full ownership of everything around you: From building things, designing, discovering, to sharing knowledge with your colleagues and making sure all processes are efficient and productive to deliver the best possible results for our customers. Our purpose is underpinned by five Starling values: Listen, Keep It Simple, Do The Right Thing, Own It, and Aim For Greatness. Hybrid Working We have a Hybrid approach to working here at Starling - our preference is that you're located within a commutable distance of one of our offices so that we're able to interact and collaborate in person. In Technology, we're asking that you attend the office a minimum of 1 day per week. Here at Starling we are growing, and our first line Technology Risk (ITRM) Team is looking for an experienced, and talented Red Team Senior Operator to join our Cyber Resilience team to join our efforts in proactively identifying vulnerabilities within our systems and digital infrastructure to ensure continuous improvement in Starling's resilience. Reporting to the Technology Risk Adversarial & Cyber Resilience Testing Director, you will have responsibility for designing and executing red team operations and cyber resilience testing against Starling Bank. Operations will emulate real threat actors and target cutting edge technology in Starling Bank's platform as well as ranging across the endpoint estate. You will use emerging threat intelligence to inform and develop effective attacks. Key Responsibilities include: Red Team testing Support designing and executing red team operations against Starling Bank (including all scoping, planning, payload/infrastructure development execution, reporting and workshops) Identifying complex vulnerabilities and building exploits Continually improving the methodology and capability of the team Developing and documenting reusable attack components using realistic TTPs Conducting purple team exercises to validate and improve defensive measures by collaborating with the SOC team to enhance detection capabilities Assist in translating red team tactics into actionable intelligence for blue team operations Assist developing threat models and 'worst case scenario' playbooks based on emerging global risks, including APTs, insider threats and supply chain compromise and simulate real-world scenario to evaluate system and organisational resilience Cyber Resilience Technical Testing Assist cyber resilience technical testing initiatives to assess the Bank's ability to withstand and recover from cyber attacks and system disruptions, including technical simulations and controlled attack scenarios (e.g. ransomware, DDoS, data corruption) to evaluate resilience, incident response capabilities, back up integrity, failover procedures and recovery time objectives. Facilitate the identification of vulnerabilities, improvements to defence strategies and aid recovery process validation Analyse test results, validate breach scenarios, document findings and provide actionable recommendations to enhance Starling's overall cyber resilience posture Requirements You will need: Experience of working in a red team and understanding of the benefits and pitfalls of different adversarial techniques Ability to work to define rules of engagement and to show strong discipline and steady judgement, working both independently or as part of a team Experience conducting security testing against cloud environments (AWS, GCP, Azure) Relevant security testing certifications (e.g. OSCP, CRTO, OSMR, cloud security or similar) Familiarity with the cyber risks faced by Starling Bank and other financial institutions Sound network and operating system fundamentals (MacOS, Linux and Windows) Familiarity with modern software engineering paradigms (CI/CD, Infra as Code) The following skills and experience are desirable: Experience in Ai/Ml Systems Security, Including LLMs, transformers and model interpretability Certification such as OSCE, CCT, OSEP, OSMR or similar Prior experience in incident response, threat intelligence, or ethical hacking at an enterprise level Background in regulatory environments (e.g. ISO 27001, SOCII, GDPR or AI Act compliance) Software engineering expertise (Java, Kotlin, Go ) or reverse engineering expertise Experience and enthusiasm for blogging and speaking both internally to educate our staff and potentially externally Interview process: Interviewing is a two way process and we want you to have the time and opportunity to get to know us, as much as we are getting to know you! Our interviews are conversational and we want to get the best from you, so come with questions and be curious. In general you can expect the below, following a chat with one of our Talent Team: Stage 1 - 45 mins with one of the team Stage 2 - 60 mins technical interview with two team members Stage 3 - 45 min final with two executives Benefits 33 days holiday (including public holidays, which you can take when it works best for you) An extra day's holiday for your birthday Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off 16 hours paid volunteering time a year Salary sacrifice, company enhanced pension scheme Life insurance at 4x your salary & group income protection Private Medical Insurance with VitalityHealth including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton Generous family-friendly policies Incentives refer a friend scheme Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing About us You may be put off applying for a role because you don't tick every box. Forget that! While we can't accommodate every flexible working request, we're always open to discussion. So, if you're excited about working with us, but aren't sure if you're 100% there yet, get in touch anyway. We're on a mission to radically reshape banking - and that starts with our brilliant team. Whatever came before, we're proud to bring together people of all backgrounds and experiences who love working together to solve problems. Starling Bank is an equal opportunity employer, and we're proud of our ongoing efforts to foster diversity & inclusion in the workplace. Individuals seeking employment at Starling Bank are considered without regard to race, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, medical condition, ancestry, physical or mental disability, military or veteran status, or any other characteristic protected by applicable law. When you provide us with this information, you are doing so at your own consent, with full knowledge that we will process this personal data in accordance with our Privacy Notice. By submitting your application, you agree that Starling Bank may collect your personal data for recruiting and related purposes. Our Privacy Notice explains what personal information we may process, where we may process your personal information, its purposes for processing your personal information, and the rights you can exercise over our use of your personal information.
Oct 13, 2025
Full time
Description Starling is the UK's first and leading digital bank on a mission to fix banking! Our vision is fast technology, fair service, and honest values. All at the tap of a phone, all the time. We are about giving customers a new way to spend, save and manage their money while taking better care of the planet which has seen us become a multi-award winning bank that now employs over 2800 across five offices in London, Cardiff, Dublin, Southampton, and Manchester. Our journey started in 2014, and since then we have surpassed 3.5 million accounts (and four account types!) with 350,000 business customers. We are a fully licensed UK bank but at the heart, we are a tech first company, enabling our platform to deliver brilliant products. Our technologists are at the very heart of Starling and enjoy working in a fast-paced environment that is all about building things, creating new stuff, and disruptive technology that keeps us on the cutting edge of fintech. We operate a flat structure to empower you to make decisions regardless of what your primary responsibilities may be, innovation and collaboration will be at the core of everything you do. Help is never far away in our open culture, you will find support in your team and from across the business, we are in this together! The way to thrive and shine within Starling is to be a self-driven individual and be able to take full ownership of everything around you: From building things, designing, discovering, to sharing knowledge with your colleagues and making sure all processes are efficient and productive to deliver the best possible results for our customers. Our purpose is underpinned by five Starling values: Listen, Keep It Simple, Do The Right Thing, Own It, and Aim For Greatness. Hybrid Working We have a Hybrid approach to working here at Starling - our preference is that you're located within a commutable distance of one of our offices so that we're able to interact and collaborate in person. In Technology, we're asking that you attend the office a minimum of 1 day per week. Here at Starling we are growing, and our first line Technology Risk (ITRM) Team is looking for an experienced, and talented Red Team Senior Operator to join our Cyber Resilience team to join our efforts in proactively identifying vulnerabilities within our systems and digital infrastructure to ensure continuous improvement in Starling's resilience. Reporting to the Technology Risk Adversarial & Cyber Resilience Testing Director, you will have responsibility for designing and executing red team operations and cyber resilience testing against Starling Bank. Operations will emulate real threat actors and target cutting edge technology in Starling Bank's platform as well as ranging across the endpoint estate. You will use emerging threat intelligence to inform and develop effective attacks. Key Responsibilities include: Red Team testing Support designing and executing red team operations against Starling Bank (including all scoping, planning, payload/infrastructure development execution, reporting and workshops) Identifying complex vulnerabilities and building exploits Continually improving the methodology and capability of the team Developing and documenting reusable attack components using realistic TTPs Conducting purple team exercises to validate and improve defensive measures by collaborating with the SOC team to enhance detection capabilities Assist in translating red team tactics into actionable intelligence for blue team operations Assist developing threat models and 'worst case scenario' playbooks based on emerging global risks, including APTs, insider threats and supply chain compromise and simulate real-world scenario to evaluate system and organisational resilience Cyber Resilience Technical Testing Assist cyber resilience technical testing initiatives to assess the Bank's ability to withstand and recover from cyber attacks and system disruptions, including technical simulations and controlled attack scenarios (e.g. ransomware, DDoS, data corruption) to evaluate resilience, incident response capabilities, back up integrity, failover procedures and recovery time objectives. Facilitate the identification of vulnerabilities, improvements to defence strategies and aid recovery process validation Analyse test results, validate breach scenarios, document findings and provide actionable recommendations to enhance Starling's overall cyber resilience posture Requirements You will need: Experience of working in a red team and understanding of the benefits and pitfalls of different adversarial techniques Ability to work to define rules of engagement and to show strong discipline and steady judgement, working both independently or as part of a team Experience conducting security testing against cloud environments (AWS, GCP, Azure) Relevant security testing certifications (e.g. OSCP, CRTO, OSMR, cloud security or similar) Familiarity with the cyber risks faced by Starling Bank and other financial institutions Sound network and operating system fundamentals (MacOS, Linux and Windows) Familiarity with modern software engineering paradigms (CI/CD, Infra as Code) The following skills and experience are desirable: Experience in Ai/Ml Systems Security, Including LLMs, transformers and model interpretability Certification such as OSCE, CCT, OSEP, OSMR or similar Prior experience in incident response, threat intelligence, or ethical hacking at an enterprise level Background in regulatory environments (e.g. ISO 27001, SOCII, GDPR or AI Act compliance) Software engineering expertise (Java, Kotlin, Go ) or reverse engineering expertise Experience and enthusiasm for blogging and speaking both internally to educate our staff and potentially externally Interview process: Interviewing is a two way process and we want you to have the time and opportunity to get to know us, as much as we are getting to know you! Our interviews are conversational and we want to get the best from you, so come with questions and be curious. In general you can expect the below, following a chat with one of our Talent Team: Stage 1 - 45 mins with one of the team Stage 2 - 60 mins technical interview with two team members Stage 3 - 45 min final with two executives Benefits 33 days holiday (including public holidays, which you can take when it works best for you) An extra day's holiday for your birthday Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off 16 hours paid volunteering time a year Salary sacrifice, company enhanced pension scheme Life insurance at 4x your salary & group income protection Private Medical Insurance with VitalityHealth including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton Generous family-friendly policies Incentives refer a friend scheme Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing About us You may be put off applying for a role because you don't tick every box. Forget that! While we can't accommodate every flexible working request, we're always open to discussion. So, if you're excited about working with us, but aren't sure if you're 100% there yet, get in touch anyway. We're on a mission to radically reshape banking - and that starts with our brilliant team. Whatever came before, we're proud to bring together people of all backgrounds and experiences who love working together to solve problems. Starling Bank is an equal opportunity employer, and we're proud of our ongoing efforts to foster diversity & inclusion in the workplace. Individuals seeking employment at Starling Bank are considered without regard to race, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, medical condition, ancestry, physical or mental disability, military or veteran status, or any other characteristic protected by applicable law. When you provide us with this information, you are doing so at your own consent, with full knowledge that we will process this personal data in accordance with our Privacy Notice. By submitting your application, you agree that Starling Bank may collect your personal data for recruiting and related purposes. Our Privacy Notice explains what personal information we may process, where we may process your personal information, its purposes for processing your personal information, and the rights you can exercise over our use of your personal information.
Software Engineer (DV Security Clearance) Position Description Elevate your potential with CGI, a global technology service provider and premier business consultancy recognized by Forbes Magazine as a top 100 employer. Our mission is rooted in evolution, excelling in intricate challenges. Collaborating directly with our clients, we employ innovative technologies to revolutionize, empower, safeguard, and deliver critical mission systems. The Space, Defence and Intelligence business unit in CGI is a true IT Systems Integrator. We work, build and operate bespoke, technically complex, mission-critical systems which help our clients keep us all safe and secure. We bring innovation to our clients using proven and emerging technologies, agile delivery processes and our deep expertise across the breadth of space, defence, intelligence, aerospace and maritime, all underpinned by our end-to-end cyber capability. We work collaboratively with global technology companies, cutting edge SMEs and academia to deliver the optimal solution for each client. CGI was recognised in the Sunday Times Best Places to Work List 2023 and has been named one of the 'World's Best Employers' by Forbes magazine. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a member not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go. We are looking for a Software Developers to come and join our Secure Innovation & Advisory area which sits within the Space, Defence and Intelligence business unit here at CGI. The successful Senior Engineer can either be based out of either Gloucester or Manchester offices. Your future duties and responsibilities We are looking for experienced Software Engineers who are passionate about, and comfortable working with leading edge and bespoke technologies, delivering solutions to help keep our country safe. Our teams work alongside our clients to help them understand how to exploit technologies to maintain competitive advantage. Our systems are engineered for performance, security, reliability and scalability; built with modern CI and CD tooling and techniques. Required qualifications to be successful in this role As a minimum, candidates must have proven technical skills in at least one (ideally several) of the following: • Containerisation/Container Security; • Microservice Architectures; • API Development, REST, Swagger, OpenAPI, gRPC; • Cloud platforms and technologies, AWS, (e.g. Lambda, API Gateway, EKS), Azure, Google Cloud Platform (GCP); • Cloud native Apps, Kubernetes, OpenShift, MicroK8s; • Infrastructure as Code (IaC), automation & configuration management; • Ansible (plus Puppet, Saltstack), Terraform, CloudFormation; • NodeJS, REACT/MaterialUI (plus Angular), Python, JavaScript; • Big data processing and analysis, e.g. Apache Hadoop (CDH), Apache Spark; • RedHat Enterprise Linux, CentOS, Debian or Ubuntu. • Java 8, Spring framework (preferably Spring boot), AMQP - RabbitMQ, • Open source technologies; • Experience of Agile software development (SAFe, Scrum, Kanban, etc) • Experience writing technical documentation such as LLDs, user guides, release notes etc All applicants must hold or be prepared to undergo National Security Vetting (NSV) Security Check (SC) level. Any individual without security clearance is welcome to apply and will always be considered for this or wider opportunities in CGI, where appropriate. Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
Oct 13, 2025
Full time
Software Engineer (DV Security Clearance) Position Description Elevate your potential with CGI, a global technology service provider and premier business consultancy recognized by Forbes Magazine as a top 100 employer. Our mission is rooted in evolution, excelling in intricate challenges. Collaborating directly with our clients, we employ innovative technologies to revolutionize, empower, safeguard, and deliver critical mission systems. The Space, Defence and Intelligence business unit in CGI is a true IT Systems Integrator. We work, build and operate bespoke, technically complex, mission-critical systems which help our clients keep us all safe and secure. We bring innovation to our clients using proven and emerging technologies, agile delivery processes and our deep expertise across the breadth of space, defence, intelligence, aerospace and maritime, all underpinned by our end-to-end cyber capability. We work collaboratively with global technology companies, cutting edge SMEs and academia to deliver the optimal solution for each client. CGI was recognised in the Sunday Times Best Places to Work List 2023 and has been named one of the 'World's Best Employers' by Forbes magazine. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a member not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go. We are looking for a Software Developers to come and join our Secure Innovation & Advisory area which sits within the Space, Defence and Intelligence business unit here at CGI. The successful Senior Engineer can either be based out of either Gloucester or Manchester offices. Your future duties and responsibilities We are looking for experienced Software Engineers who are passionate about, and comfortable working with leading edge and bespoke technologies, delivering solutions to help keep our country safe. Our teams work alongside our clients to help them understand how to exploit technologies to maintain competitive advantage. Our systems are engineered for performance, security, reliability and scalability; built with modern CI and CD tooling and techniques. Required qualifications to be successful in this role As a minimum, candidates must have proven technical skills in at least one (ideally several) of the following: • Containerisation/Container Security; • Microservice Architectures; • API Development, REST, Swagger, OpenAPI, gRPC; • Cloud platforms and technologies, AWS, (e.g. Lambda, API Gateway, EKS), Azure, Google Cloud Platform (GCP); • Cloud native Apps, Kubernetes, OpenShift, MicroK8s; • Infrastructure as Code (IaC), automation & configuration management; • Ansible (plus Puppet, Saltstack), Terraform, CloudFormation; • NodeJS, REACT/MaterialUI (plus Angular), Python, JavaScript; • Big data processing and analysis, e.g. Apache Hadoop (CDH), Apache Spark; • RedHat Enterprise Linux, CentOS, Debian or Ubuntu. • Java 8, Spring framework (preferably Spring boot), AMQP - RabbitMQ, • Open source technologies; • Experience of Agile software development (SAFe, Scrum, Kanban, etc) • Experience writing technical documentation such as LLDs, user guides, release notes etc All applicants must hold or be prepared to undergo National Security Vetting (NSV) Security Check (SC) level. Any individual without security clearance is welcome to apply and will always be considered for this or wider opportunities in CGI, where appropriate. Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
Cloud Engineer (DV Security Clearance) Position Description CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named one of the 'World's Best Employers' by Forbes magazine. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a member not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go. The Space, Defence and Intelligence business unit in CGI is a true IT Systems Integrator. We work, build and operate bespoke, technically complex, mission-critical systems which help our clients keep us all safe and secure. We bring innovation to our clients using proven and emerging technologies, agile delivery processes and our deep expertise across the breadth of space, defence, intelligence, aerospace and maritime, all underpinned by our end-to-end cyber capability. We work collaboratively with global technology companies, cutting edge SMEs and academia to deliver the optimal solution for each client. Our roles are only available if you hold a UK Security Clearance and are a sole UK National due to the secure nature of the project. You will either hold a higher level clearance or be willing to obtain it. Any individual without security clearance is welcome to apply and will always be considered for this or wider opportunities in CGI, where appropriate. Your future duties and responsibilities The role offers fantastic opportunities to work on leading edge and bespoke technologies within an interesting and highly rewarding environment. We are heavily committed to developing our members and provide excellent learning and development opportunities to ensure that your knowledge and skills keep pace with the evolving technology landscape. We engender a culture of innovation, collaboration and ownership; highly motivated self-starters thrive within our organisation. Required qualifications to be successful in this role • Experience of working on Google Cloud Platform, including Google Workspace Admin (and ideally MDM) • Experience of working on AWS • Experience of Microsoft Intune and M365 administration (e.g. Entra) • Comfortable building and developing Infrastructure templates with Infrastructure as Code using either: Terraform, Cloudformation, Deployment Manager or ARM • Linux and Windows administration • Software development experience - ideally in Java, Kotlin, Python, Apps Script, JavaScript or C#/C++ • Containerisation experience such as Docker, Kubernetes or OpenShift • Experience of security protocols such as PKI, TLS etc • Virtualisation experience, KVM/Vmware • Good understanding of networking • Demonstrable troubleshooting and problem solving skills • A passion for learning new technologies and innovation Desirable: • Certifications on Amazon Web Services, including Solutions Architect, Developer, Google Cloud or Azure • Amazon Managed Grafana • JetBrains TeamCity • Google Apps Script • Agile Development Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
Oct 13, 2025
Full time
Cloud Engineer (DV Security Clearance) Position Description CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named one of the 'World's Best Employers' by Forbes magazine. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a member not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go. The Space, Defence and Intelligence business unit in CGI is a true IT Systems Integrator. We work, build and operate bespoke, technically complex, mission-critical systems which help our clients keep us all safe and secure. We bring innovation to our clients using proven and emerging technologies, agile delivery processes and our deep expertise across the breadth of space, defence, intelligence, aerospace and maritime, all underpinned by our end-to-end cyber capability. We work collaboratively with global technology companies, cutting edge SMEs and academia to deliver the optimal solution for each client. Our roles are only available if you hold a UK Security Clearance and are a sole UK National due to the secure nature of the project. You will either hold a higher level clearance or be willing to obtain it. Any individual without security clearance is welcome to apply and will always be considered for this or wider opportunities in CGI, where appropriate. Your future duties and responsibilities The role offers fantastic opportunities to work on leading edge and bespoke technologies within an interesting and highly rewarding environment. We are heavily committed to developing our members and provide excellent learning and development opportunities to ensure that your knowledge and skills keep pace with the evolving technology landscape. We engender a culture of innovation, collaboration and ownership; highly motivated self-starters thrive within our organisation. Required qualifications to be successful in this role • Experience of working on Google Cloud Platform, including Google Workspace Admin (and ideally MDM) • Experience of working on AWS • Experience of Microsoft Intune and M365 administration (e.g. Entra) • Comfortable building and developing Infrastructure templates with Infrastructure as Code using either: Terraform, Cloudformation, Deployment Manager or ARM • Linux and Windows administration • Software development experience - ideally in Java, Kotlin, Python, Apps Script, JavaScript or C#/C++ • Containerisation experience such as Docker, Kubernetes or OpenShift • Experience of security protocols such as PKI, TLS etc • Virtualisation experience, KVM/Vmware • Good understanding of networking • Demonstrable troubleshooting and problem solving skills • A passion for learning new technologies and innovation Desirable: • Certifications on Amazon Web Services, including Solutions Architect, Developer, Google Cloud or Azure • Amazon Managed Grafana • JetBrains TeamCity • Google Apps Script • Agile Development Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
Manual Tester (DV Security Clearance) Position Description Are you an experienced Test Analyst with a background in secure or classified programmes, ready to contribute to projects of national importance? Step into a role where you'll challenge the complex to strengthen security and help protect what matters most. As a DV Cleared Test Analyst, you'll work on highly sensitive programmes, ensuring the quality and reliability of systems that underpin the UK's national interests. The Space, Defence and Intelligence business unit in CGI is a true IT Systems Integrator. We work, build and operate bespoke, technically complex, mission-critical systems which help our clients keep us all safe and secure. We bring innovation to our clients using proven and emerging technologies, agile delivery processes and our deep expertise across the breadth of space, defence, intelligence, aerospace and maritime, all underpinned by our end-to-end cyber capability. We work collaboratively with global technology companies, cutting edge SMEs and academia to deliver the optimal solution for each client. CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named one of the 'World's Best Employers' by Forbes magazine. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a member not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go. Due to the highly secure nature of this role, you must either already hold, or be eligible to obtain, Developed Vetting (DV) - the highest level of UK Security Clearance. To be eligible, you must be a sole UK national (i.e. not hold dual nationality). Please note that this role is based full-time on a secure client site near Reading due to the sensitive nature of the work involved. Your future duties and responsibilities As a DV Cleared Manual Tester at CGI, you'll play a key role in ensuring the reliability and effectiveness of mission-critical systems within our Space, Defence and Intelligence business unit. You will be embedded within Agile delivery teams, collaborating closely with developers, infrastructure specialists and project managers to deliver high-quality solutions that make a real-world impact. This is an exciting opportunity to contribute to national security while working in a fast-paced, technically challenging environment. You will be responsible for designing and executing both manual and automated tests using the most appropriate tools for each task. A strong eye for detail and excellent analytical skills will be essential in identifying defects, conducting preliminary investigations, and working with teams to resolve issues. As part of a collaborative Agile setup, you'll attend daily stand-ups and planning sessions, ensuring testing is well-integrated into the development lifecycle. You'll thrive in this role if you enjoy problem-solving, continuously improving test coverage and quality, and working with cutting-edge technologies in highly secure environments. CGI will provide ongoing training and development to support your growth within the role, and you'll benefit from working on projects with real meaning and purpose. Key responsibilities include: Test Strategy & Planning • Define and maintain comprehensive test plans for infrastructure and DevOps workflows, including environment provisioning, CI/CD pipelines, container orchestration, and cloud services. • Collaborate with product owners, DevOps engineers, and architects during sprint planning to ensure test coverage aligns with user stories and infrastructure-as-code deliverables. Manual & Automated Test Development • Design, develop and execute manual tests for infrastructure components (e.g., server builds, network configurations, storage systems) and automated scripts for regression, integration, and acceptance testing. • Author and maintain automated test suites using tools such as Selenium, Robot Framework, or custom Python/Bash scripts, integrating seamlessly with Jenkins, GitLab CI/CD, or Azure DevOps pipelines. Infrastructure Testing & Validation • Provision and validate ephemeral test environments using Docker, Kubernetes, Terraform, or CloudFormation, ensuring consistency with production configurations. • Execute infrastructure smoke tests, configuration drift checks, and idempotency validations through IaC testing frameworks (e.g., Terratest, InSpec). CI/CD Integration • Embed automated test execution within build pipelines-triggering unit, integration, and end-to-end tests on code commits and pull-requests. • Monitor pipeline health and test results; collaborate with DevOps to optimize build times, parallelize tests, and reduce pipeline flakiness. Result Analysis & Root Cause • Analyze test outputs, system logs, and metrics (e.g., via ELK Stack or Prometheus/Grafana) to pinpoint failures and performance regressions. • Lead root-cause investigations for infrastructure incidents, producing clear post-mortem reports and remediation recommendations. Defect Management • Log, triage, and track defects in Jira (or equivalent), ensuring clear reproduction steps, priority ranking, and lifecycle management through to closure. • Collaborate with development and operations teams on bug fixes, retesting, and verifying patches in staging and production-mirroring environments. Quality & Best Practices • Champion infrastructure and security testing best practices, including vulnerability scanning (e.g., OWASP ZAP, Nessus), compliance checks, and disaster-recovery validations. • Contribute to continuous improvement by proposing new testing tools, frameworks, and process enhancements to raise overall system reliability and observability. Agile & Cross-Functional Collaboration • Actively participate in daily stand-ups, sprint reviews, backlog grooming, and retrospectives, bringing a testing perspective to ensure quality is "shifted left." • Work hand-in-hand with developers, SREs, and cloud engineers to embed test hooks, shared dashboards, and automated health checks into the delivery lifecycle. Required qualifications to be successful in this role To be successful in this role, you will have prior experience in a dedicated testing role, ideally within a secure or mission-critical environment. You'll bring a solid understanding of testing methodologies and a passion for ensuring software quality throughout the development lifecycle. Experience with Agile delivery frameworks, particularly SAFe, is highly desirable. You should be confident working with both manual and automated testing tools and have a proven ability to design effective test cases. Familiarity with test management tools such as ALM or TestRail will support you in documenting and tracking testing activity efficiently. An ISTQB Foundation Certification is a strong asset and shows your commitment to professional testing standards. A key part of this role involves problem investigation and root cause analysis, so strong analytical and communication skills are a must. You'll enjoy working as part of a collaborative team, contributing your insights to improve outcomes and drive quality. Given the sensitive nature of the work, a calm, professional approach and discretion are essential. You'll need: • A solid track record within a software testing role • Experience with Continuous Integration tools • Proven ability to design and run manual or automated tests • Proficiency with test management tools such as ALM or TestRail • ISTQB Foundation Certification • Familiarity with Agile frameworks such as SAFe Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
Oct 13, 2025
Full time
Manual Tester (DV Security Clearance) Position Description Are you an experienced Test Analyst with a background in secure or classified programmes, ready to contribute to projects of national importance? Step into a role where you'll challenge the complex to strengthen security and help protect what matters most. As a DV Cleared Test Analyst, you'll work on highly sensitive programmes, ensuring the quality and reliability of systems that underpin the UK's national interests. The Space, Defence and Intelligence business unit in CGI is a true IT Systems Integrator. We work, build and operate bespoke, technically complex, mission-critical systems which help our clients keep us all safe and secure. We bring innovation to our clients using proven and emerging technologies, agile delivery processes and our deep expertise across the breadth of space, defence, intelligence, aerospace and maritime, all underpinned by our end-to-end cyber capability. We work collaboratively with global technology companies, cutting edge SMEs and academia to deliver the optimal solution for each client. CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named one of the 'World's Best Employers' by Forbes magazine. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a member not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go. Due to the highly secure nature of this role, you must either already hold, or be eligible to obtain, Developed Vetting (DV) - the highest level of UK Security Clearance. To be eligible, you must be a sole UK national (i.e. not hold dual nationality). Please note that this role is based full-time on a secure client site near Reading due to the sensitive nature of the work involved. Your future duties and responsibilities As a DV Cleared Manual Tester at CGI, you'll play a key role in ensuring the reliability and effectiveness of mission-critical systems within our Space, Defence and Intelligence business unit. You will be embedded within Agile delivery teams, collaborating closely with developers, infrastructure specialists and project managers to deliver high-quality solutions that make a real-world impact. This is an exciting opportunity to contribute to national security while working in a fast-paced, technically challenging environment. You will be responsible for designing and executing both manual and automated tests using the most appropriate tools for each task. A strong eye for detail and excellent analytical skills will be essential in identifying defects, conducting preliminary investigations, and working with teams to resolve issues. As part of a collaborative Agile setup, you'll attend daily stand-ups and planning sessions, ensuring testing is well-integrated into the development lifecycle. You'll thrive in this role if you enjoy problem-solving, continuously improving test coverage and quality, and working with cutting-edge technologies in highly secure environments. CGI will provide ongoing training and development to support your growth within the role, and you'll benefit from working on projects with real meaning and purpose. Key responsibilities include: Test Strategy & Planning • Define and maintain comprehensive test plans for infrastructure and DevOps workflows, including environment provisioning, CI/CD pipelines, container orchestration, and cloud services. • Collaborate with product owners, DevOps engineers, and architects during sprint planning to ensure test coverage aligns with user stories and infrastructure-as-code deliverables. Manual & Automated Test Development • Design, develop and execute manual tests for infrastructure components (e.g., server builds, network configurations, storage systems) and automated scripts for regression, integration, and acceptance testing. • Author and maintain automated test suites using tools such as Selenium, Robot Framework, or custom Python/Bash scripts, integrating seamlessly with Jenkins, GitLab CI/CD, or Azure DevOps pipelines. Infrastructure Testing & Validation • Provision and validate ephemeral test environments using Docker, Kubernetes, Terraform, or CloudFormation, ensuring consistency with production configurations. • Execute infrastructure smoke tests, configuration drift checks, and idempotency validations through IaC testing frameworks (e.g., Terratest, InSpec). CI/CD Integration • Embed automated test execution within build pipelines-triggering unit, integration, and end-to-end tests on code commits and pull-requests. • Monitor pipeline health and test results; collaborate with DevOps to optimize build times, parallelize tests, and reduce pipeline flakiness. Result Analysis & Root Cause • Analyze test outputs, system logs, and metrics (e.g., via ELK Stack or Prometheus/Grafana) to pinpoint failures and performance regressions. • Lead root-cause investigations for infrastructure incidents, producing clear post-mortem reports and remediation recommendations. Defect Management • Log, triage, and track defects in Jira (or equivalent), ensuring clear reproduction steps, priority ranking, and lifecycle management through to closure. • Collaborate with development and operations teams on bug fixes, retesting, and verifying patches in staging and production-mirroring environments. Quality & Best Practices • Champion infrastructure and security testing best practices, including vulnerability scanning (e.g., OWASP ZAP, Nessus), compliance checks, and disaster-recovery validations. • Contribute to continuous improvement by proposing new testing tools, frameworks, and process enhancements to raise overall system reliability and observability. Agile & Cross-Functional Collaboration • Actively participate in daily stand-ups, sprint reviews, backlog grooming, and retrospectives, bringing a testing perspective to ensure quality is "shifted left." • Work hand-in-hand with developers, SREs, and cloud engineers to embed test hooks, shared dashboards, and automated health checks into the delivery lifecycle. Required qualifications to be successful in this role To be successful in this role, you will have prior experience in a dedicated testing role, ideally within a secure or mission-critical environment. You'll bring a solid understanding of testing methodologies and a passion for ensuring software quality throughout the development lifecycle. Experience with Agile delivery frameworks, particularly SAFe, is highly desirable. You should be confident working with both manual and automated testing tools and have a proven ability to design effective test cases. Familiarity with test management tools such as ALM or TestRail will support you in documenting and tracking testing activity efficiently. An ISTQB Foundation Certification is a strong asset and shows your commitment to professional testing standards. A key part of this role involves problem investigation and root cause analysis, so strong analytical and communication skills are a must. You'll enjoy working as part of a collaborative team, contributing your insights to improve outcomes and drive quality. Given the sensitive nature of the work, a calm, professional approach and discretion are essential. You'll need: • A solid track record within a software testing role • Experience with Continuous Integration tools • Proven ability to design and run manual or automated tests • Proficiency with test management tools such as ALM or TestRail • ISTQB Foundation Certification • Familiarity with Agile frameworks such as SAFe Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
Software Developer (DV Security Clearance) Position Description CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named one of the 'World's Best Employers' by Forbes magazine. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a member not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go. The Space, Defence and Intelligence business unit in CGI is a true IT Systems Integrator. We work, build and operate bespoke, technically complex, mission-critical systems which help our clients keep us all safe and secure. We bring innovation to our clients using proven and emerging technologies, agile delivery processes and our deep expertise across the breadth of space, defence, intelligence, aerospace and maritime, all underpinned by our end-to-end cyber capability. We work collaboratively with global technology companies, cutting edge SMEs and academia to deliver the optimal solution for each client. This role offers an exciting opportunity to engage with client technologies in a dynamic and rewarding environment. At CGI, we are deeply committed to the growth and development of our team members, offering extensive learning opportunities to help you stay at the forefront of an ever-evolving technology landscape. Our culture values innovation, collaboration, and ownership, making it an ideal environment for self-motivated individuals to thrive. Our roles are only available if you hold a UK Security Clearance and are a sole UK National due to the secure nature of the project. You will either hold a higher level clearance or be willing to obtain it. Any individual without security clearance is welcome to apply and will always be considered for this or wider opportunities in CGI, where appropriate. Your future duties and responsibilities As a Software Engineer in our Secure Innovation & Advisory division, you will play a key role in delivering innovative solutions to help safeguard our country. You will work closely with clients to exploit new and bespoke technologies, providing them with a competitive advantage. The systems you develop will be built for performance, security, reliability, and scalability, leveraging modern CI/CD tooling and practices. Required qualifications to be successful in this role Collaborate closely with clients and stakeholders to understand business requirements and translate them into effective technical solutions Design, develop, and deliver secure, scalable, and maintainable software applications Contribute to Agile delivery teams, ensuring high-quality outputs are achieved within tight project timelines Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
Oct 13, 2025
Full time
Software Developer (DV Security Clearance) Position Description CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named one of the 'World's Best Employers' by Forbes magazine. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a member not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go. The Space, Defence and Intelligence business unit in CGI is a true IT Systems Integrator. We work, build and operate bespoke, technically complex, mission-critical systems which help our clients keep us all safe and secure. We bring innovation to our clients using proven and emerging technologies, agile delivery processes and our deep expertise across the breadth of space, defence, intelligence, aerospace and maritime, all underpinned by our end-to-end cyber capability. We work collaboratively with global technology companies, cutting edge SMEs and academia to deliver the optimal solution for each client. This role offers an exciting opportunity to engage with client technologies in a dynamic and rewarding environment. At CGI, we are deeply committed to the growth and development of our team members, offering extensive learning opportunities to help you stay at the forefront of an ever-evolving technology landscape. Our culture values innovation, collaboration, and ownership, making it an ideal environment for self-motivated individuals to thrive. Our roles are only available if you hold a UK Security Clearance and are a sole UK National due to the secure nature of the project. You will either hold a higher level clearance or be willing to obtain it. Any individual without security clearance is welcome to apply and will always be considered for this or wider opportunities in CGI, where appropriate. Your future duties and responsibilities As a Software Engineer in our Secure Innovation & Advisory division, you will play a key role in delivering innovative solutions to help safeguard our country. You will work closely with clients to exploit new and bespoke technologies, providing them with a competitive advantage. The systems you develop will be built for performance, security, reliability, and scalability, leveraging modern CI/CD tooling and practices. Required qualifications to be successful in this role Collaborate closely with clients and stakeholders to understand business requirements and translate them into effective technical solutions Design, develop, and deliver secure, scalable, and maintainable software applications Contribute to Agile delivery teams, ensuring high-quality outputs are achieved within tight project timelines Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
Job Title: Principal Cyber Security Engineer Location: Barrow-In-Furness - We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Salary: Negotiable, depending on experience What you'll be doing: Manage and deliver a Submarines Business Unit Product Security Assurance Audit schedule within the scope of EPAD Be able to plan and manage work concurrently across multiple security work programmes Be able to select appropriate Product Security Assurance techniques which are consistent and repeatable for use across a programme Represent the EPAD at Design Reviews and other various engagements, to ensure that Product Security is appropriately considered at each stage of the design lifecycle Be able to contribute and influence the development of Product Security strategies, policies, guidance, good practices and awareness Ensure that Product Security activities within a programme, a project, system or equipment, are delivered and managed using recognised techniques and in accordance with the Submarines Product Security Management System (PsecMS) Provide regular updates on assurance status/progress in accordance with programme/project specific reporting cycles Your skills and experiences: Essential: Degree (or equivalent experience) in a relevant STEM subject or Information Security related. Relevant Professional certification such as CISSP, CISM or CCP SIRA status (or able to achieve) Desirable: Experience in Cyber Security in relation to DEFCON 658, DEFSTAN 05-138, MOD Accreditation/Secure by Design ISO 27001 Lead Auditor or Implementer Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive. The Engineering Product Assurance Department: The Product Security Assurance Principal Engineer will be a focal point for security and information risk matters within the Engineering Product Assurance Department (EPAD). They will have Governance, Risk and Compliance (GRC) subject matter expertise and will be responsible for development of the strategy within the scope of EPAD. The Principal Engineer will be able to apply their deep level of subject matter expertise and experience to ensure that submarine systems and products are delivered and can be managed and supported through-life. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks. Closing Date: 21st October 2025 We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible.
Oct 13, 2025
Full time
Job Title: Principal Cyber Security Engineer Location: Barrow-In-Furness - We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Salary: Negotiable, depending on experience What you'll be doing: Manage and deliver a Submarines Business Unit Product Security Assurance Audit schedule within the scope of EPAD Be able to plan and manage work concurrently across multiple security work programmes Be able to select appropriate Product Security Assurance techniques which are consistent and repeatable for use across a programme Represent the EPAD at Design Reviews and other various engagements, to ensure that Product Security is appropriately considered at each stage of the design lifecycle Be able to contribute and influence the development of Product Security strategies, policies, guidance, good practices and awareness Ensure that Product Security activities within a programme, a project, system or equipment, are delivered and managed using recognised techniques and in accordance with the Submarines Product Security Management System (PsecMS) Provide regular updates on assurance status/progress in accordance with programme/project specific reporting cycles Your skills and experiences: Essential: Degree (or equivalent experience) in a relevant STEM subject or Information Security related. Relevant Professional certification such as CISSP, CISM or CCP SIRA status (or able to achieve) Desirable: Experience in Cyber Security in relation to DEFCON 658, DEFSTAN 05-138, MOD Accreditation/Secure by Design ISO 27001 Lead Auditor or Implementer Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive. The Engineering Product Assurance Department: The Product Security Assurance Principal Engineer will be a focal point for security and information risk matters within the Engineering Product Assurance Department (EPAD). They will have Governance, Risk and Compliance (GRC) subject matter expertise and will be responsible for development of the strategy within the scope of EPAD. The Principal Engineer will be able to apply their deep level of subject matter expertise and experience to ensure that submarine systems and products are delivered and can be managed and supported through-life. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks. Closing Date: 21st October 2025 We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible.
Leidos Innovations UK Limited
Huntingdon, Cambridgeshire
Cyber Security Engineer Security Clearance Required - DV ('Developed Vetting') Location: Huntingdon, UK - 80% on-site requirements UNLEASH YOUR POTENTIAL At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers success click apply for full job details
Oct 13, 2025
Full time
Cyber Security Engineer Security Clearance Required - DV ('Developed Vetting') Location: Huntingdon, UK - 80% on-site requirements UNLEASH YOUR POTENTIAL At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers success click apply for full job details
Senior Consulting Engineer (Rapid7, SentinelOne, AWS) Crawley £60k - £80k Are you an experienced cybersecurity professional ready to lead complex projects and make a tangible impact? We're looking for a Senior Cyber Engineer, with experience in designing and deploying Rapid7 , SentinelOne, (or similar XDR, MDR, SIEM, ) in an AWS environment, for our clients growing team in Crawley click apply for full job details
Oct 13, 2025
Full time
Senior Consulting Engineer (Rapid7, SentinelOne, AWS) Crawley £60k - £80k Are you an experienced cybersecurity professional ready to lead complex projects and make a tangible impact? We're looking for a Senior Cyber Engineer, with experience in designing and deploying Rapid7 , SentinelOne, (or similar XDR, MDR, SIEM, ) in an AWS environment, for our clients growing team in Crawley click apply for full job details
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our IT team collaborates with every department. They develop, they explore and they implement the new ideas helping us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an IT role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations. This role is required to support the Digital Product Management team in embedding security requirements and best practices into new Digital Products and Services. You will work closely with the Digital Product Management and IT Security teams to establish and build the right security controls and quality state gates across the product lifecycle. This includes security tooling to manage these controls. In this busy and rewarding role, you'll also: Collaborate with software development teams to integrate security into the development lifecycle Own the cultural shift to a Security DevSecOps mindset Manage & implement security controls, tools, and processes to secure applications and infrastructure Monitor and respond to security incidents and threats in a timely manner Stay up-to-date with security trends and best practices to continuously improve security posture Automate security testing and deployment processes to ensure rapid and secure delivery of software Develop and maintain security documentation and training materials Develop and implement the product security strategy in alignment with organisational goals Integrate Application Security Tools within existing Development Processes Assist with the Planning & Execution of Application Penetration Tests Serve as a Subject Matter Expert (SME) in the field of Application Security Define security NFR's and ensure these are met Report on compliance with security standards You'll be someone with: Strong experience in software development and security Proficient in scripting languages such as Powershell, YAML, JASON, etc. Collaborate with development teams to integrate security best practices into the secure software development lifecycle (SDLC) and ensure products are built securely Oversee vulnerability management and remediation efforts, including leading responses to pen test findings and security assessments Experience conducting risk assessments and threat modelling for software development and advise where necessary Experience in software security design review Strong knowledge of Agile, DevSecOps, System Engineer and or equivalent Knowledge of security standards and secure development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience with Azure DevOps, particularly CI/CD and backlog management Prepare and present regular security reports to senior management, ensuring compliance with security standards and regulations Expertise with security tools and familiarity with DevSecOps processes Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field (preferable) You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suit you, your teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
Oct 13, 2025
Full time
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our IT team collaborates with every department. They develop, they explore and they implement the new ideas helping us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an IT role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations. This role is required to support the Digital Product Management team in embedding security requirements and best practices into new Digital Products and Services. You will work closely with the Digital Product Management and IT Security teams to establish and build the right security controls and quality state gates across the product lifecycle. This includes security tooling to manage these controls. In this busy and rewarding role, you'll also: Collaborate with software development teams to integrate security into the development lifecycle Own the cultural shift to a Security DevSecOps mindset Manage & implement security controls, tools, and processes to secure applications and infrastructure Monitor and respond to security incidents and threats in a timely manner Stay up-to-date with security trends and best practices to continuously improve security posture Automate security testing and deployment processes to ensure rapid and secure delivery of software Develop and maintain security documentation and training materials Develop and implement the product security strategy in alignment with organisational goals Integrate Application Security Tools within existing Development Processes Assist with the Planning & Execution of Application Penetration Tests Serve as a Subject Matter Expert (SME) in the field of Application Security Define security NFR's and ensure these are met Report on compliance with security standards You'll be someone with: Strong experience in software development and security Proficient in scripting languages such as Powershell, YAML, JASON, etc. Collaborate with development teams to integrate security best practices into the secure software development lifecycle (SDLC) and ensure products are built securely Oversee vulnerability management and remediation efforts, including leading responses to pen test findings and security assessments Experience conducting risk assessments and threat modelling for software development and advise where necessary Experience in software security design review Strong knowledge of Agile, DevSecOps, System Engineer and or equivalent Knowledge of security standards and secure development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience with Azure DevOps, particularly CI/CD and backlog management Prepare and present regular security reports to senior management, ensuring compliance with security standards and regulations Expertise with security tools and familiarity with DevSecOps processes Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field (preferable) You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suit you, your teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
Overview Do you want to be at the heart of some of the biggest and most ambitious programmes undertaken to keep our country safe? We are proud of the impact we have with Defence and Security clients, the strength of our relationships, and the variety of our skills and expertise that we bring to help them achieve their mission. We're growing our team. If you are cleared to SC or DV level, we are very keen to hear from you. Connect to your career at Deloitte Deloitte drives progress. Using our vast range of expertise, we help our clients become leaders wherever they choose to compete. To do this, we invest in outstanding people. We build teams of future thinkers, with diverse talents and backgrounds, and empower them all to reach for and achieve more. What brings us all together at Deloitte? It's how we approach the thousands of decisions we make everyday. How we behave, our beliefs and our attitudes. In other words: our values. Whatever we do, wherever we are in the world, we lead the way, serve with integrity, take care of each other, foster inclusion, and collaborate for measurable impact. These five shared values lead every decision we make and action we take, guiding us to deliver impact how and where it matters most. Connect to your opportunity Our projects vary greatly and your responsibility as a consultant will differ based on the focus of the client engagement and your skillset, but could include and may require you to: Assist in the design, implementation, and maintenance of IAM solutions, including integration with other systems and applications. Support the development and enforcement of IAM policies and procedures. Participate in access control and identity management activities. Supporting the monitoring and analysis of access management systems, including investigation and resolution of issues. Participating in IAM-related audits and compliance activities. Supporting the documentation of IAM processes and procedures. Assisting in the development and delivery of IAM training and awareness programmes. Collaborating with cross-functional teams to ensure effective IAM implementation and operation. Stay up to date with emerging security threats, technologies, and industry best practices, and provide recommendations for improvement. Communicate solutions to both a technical and non-technical audience. Qualifications and professional experience All applicants must have UK security clearance to Security Check (SC) or Developed Vetting (DV) level. We recognise our strength is in the diversity of our teams experience, background and culture. We are looking for talented individuals who are passionate about the work they do, prepared to think differently, are pragmatic and able to work with others to influence outcomes. We value those who aren't afraid to challenge the status-quo to help us improve. We deliver value to our clients, colleagues, and community in the way we plan, deliver, and reflect on our work, as a team. Diversity of thought is equally important to us and we are looking for applicants from all backgrounds. If you have experience in some of the areas we are looking for but aren't yet an expert in your field, that's fine. You must have some hands-on technical experience, but we are looking for team members who are at the early stages of their career who also want to grow and learn more. We will provide further training in Cloud Security, Vulnerability Management, Agile Security methodology and more, so you gain hands-on experience in areas you are not yet experienced in in a safe environment with empathetic and supportive feedback. Candidates will be able demonstrate relevant knowledge & experience through a combination of qualifications and evidence of work history such as: Certifications in IAM technologies such as CIAM or equivalent. Experience with SAML, OAuth and OpenID Connect. Practices, including securing cloud-based infrastructure and services. Experience working in or with Government organisations, including the handling of assets subject to the Government Security Classification Policy. Secure by Design, JSP 440. Connect to your business - Technology and Transformation Distinctive thinking, deep expertise, innovation and collaborative working. That's what connects us. That's what makes us Deloitte. If you want to help solve some of the biggest tech and transformational challenges around, join us. Together, we'll make an impact that matters. Cyber The modern world is more complex than ever before, and we are navigating an ever-changing landscape. We help clients to operate with resilience and grow with confidence to secure success and minimise risk. Personal independence Regulation and controls are standard practice in our industry and Deloitte is no exception. These controls provide important legal protection for both you and the firm. We are subject to a number of audit regulations, one of which requires that certain colleagues abide by specific personal independence constraints. The recruitment team will provide further detail as you progress through the recruitment process or you can contact the Independence team upon request. Connect with your colleagues "Join Deloitte and you'll be guiding major clients to their best technology and process decisions. You'll work at the cutting edge, with some of the finest minds in this field, and be able to take your career in any direction." "At Deloitte, is collaboration that sets us apart. Our scale and structure mean you can draw on all kinds of expertise from across our entire global business and behave as a true business partner for your clients." Our hybrid working policy You'll be based in Bristol or London with hybrid working. At Deloitte we understand the importance of balancing your career alongside your home life. That's why we'll support you to work flexibly through our hybrid working policy. Depending on the requirements of your role, you'll have the opportunity to work in your local office, virtual collaboration spaces, client sites and remotely. You'll get the chance to meet face to face when needed, while you collaborate and learn from colleagues, share your experiences, and build the relationships that will fuel your career and prioritise your wellbeing. Please check with your recruiter for the specific working requirements that may apply for your role. Our commitment to you Making an impact is more than just what we do: it's why we're here. So we work hard to create an environment where you can experience a purpose you believe in, the freedom to be you, and the capacity to go further than ever before. We want you. The true you. Your own strengths, perspective and personality. So we're nurturing a culture where everyone belongs, feels supported and heard, and is empowered to make a valuable, personal contribution. You can be sure we'll take your wellbeing seriously, too. Because it's only when you're comfortable and at your best that you can make the kind of impact you, and we, live for. Your expertise is our capability, so we'll make sure it never stops growing. Whether it's from the complex work you do, or the people you collaborate with, you'll learn every day. Through world-class development, you'll gain invaluable technical and personal skills. Whatever your level, you'll learn how to lead. Connect to your next step A career at Deloitte is an opportunity to develop in any direction you choose. Join us and you'll experience a purpose you can believe in and an impact you can see. You'll be free to bring your true self to work every day. And you'll never stop growing, whatever your level. Discover more reasons to connect with us, our people and purpose-driven culture at deloitte.co.uk/careers
Oct 13, 2025
Full time
Overview Do you want to be at the heart of some of the biggest and most ambitious programmes undertaken to keep our country safe? We are proud of the impact we have with Defence and Security clients, the strength of our relationships, and the variety of our skills and expertise that we bring to help them achieve their mission. We're growing our team. If you are cleared to SC or DV level, we are very keen to hear from you. Connect to your career at Deloitte Deloitte drives progress. Using our vast range of expertise, we help our clients become leaders wherever they choose to compete. To do this, we invest in outstanding people. We build teams of future thinkers, with diverse talents and backgrounds, and empower them all to reach for and achieve more. What brings us all together at Deloitte? It's how we approach the thousands of decisions we make everyday. How we behave, our beliefs and our attitudes. In other words: our values. Whatever we do, wherever we are in the world, we lead the way, serve with integrity, take care of each other, foster inclusion, and collaborate for measurable impact. These five shared values lead every decision we make and action we take, guiding us to deliver impact how and where it matters most. Connect to your opportunity Our projects vary greatly and your responsibility as a consultant will differ based on the focus of the client engagement and your skillset, but could include and may require you to: Assist in the design, implementation, and maintenance of IAM solutions, including integration with other systems and applications. Support the development and enforcement of IAM policies and procedures. Participate in access control and identity management activities. Supporting the monitoring and analysis of access management systems, including investigation and resolution of issues. Participating in IAM-related audits and compliance activities. Supporting the documentation of IAM processes and procedures. Assisting in the development and delivery of IAM training and awareness programmes. Collaborating with cross-functional teams to ensure effective IAM implementation and operation. Stay up to date with emerging security threats, technologies, and industry best practices, and provide recommendations for improvement. Communicate solutions to both a technical and non-technical audience. Qualifications and professional experience All applicants must have UK security clearance to Security Check (SC) or Developed Vetting (DV) level. We recognise our strength is in the diversity of our teams experience, background and culture. We are looking for talented individuals who are passionate about the work they do, prepared to think differently, are pragmatic and able to work with others to influence outcomes. We value those who aren't afraid to challenge the status-quo to help us improve. We deliver value to our clients, colleagues, and community in the way we plan, deliver, and reflect on our work, as a team. Diversity of thought is equally important to us and we are looking for applicants from all backgrounds. If you have experience in some of the areas we are looking for but aren't yet an expert in your field, that's fine. You must have some hands-on technical experience, but we are looking for team members who are at the early stages of their career who also want to grow and learn more. We will provide further training in Cloud Security, Vulnerability Management, Agile Security methodology and more, so you gain hands-on experience in areas you are not yet experienced in in a safe environment with empathetic and supportive feedback. Candidates will be able demonstrate relevant knowledge & experience through a combination of qualifications and evidence of work history such as: Certifications in IAM technologies such as CIAM or equivalent. Experience with SAML, OAuth and OpenID Connect. Practices, including securing cloud-based infrastructure and services. Experience working in or with Government organisations, including the handling of assets subject to the Government Security Classification Policy. Secure by Design, JSP 440. Connect to your business - Technology and Transformation Distinctive thinking, deep expertise, innovation and collaborative working. That's what connects us. That's what makes us Deloitte. If you want to help solve some of the biggest tech and transformational challenges around, join us. Together, we'll make an impact that matters. Cyber The modern world is more complex than ever before, and we are navigating an ever-changing landscape. We help clients to operate with resilience and grow with confidence to secure success and minimise risk. Personal independence Regulation and controls are standard practice in our industry and Deloitte is no exception. These controls provide important legal protection for both you and the firm. We are subject to a number of audit regulations, one of which requires that certain colleagues abide by specific personal independence constraints. The recruitment team will provide further detail as you progress through the recruitment process or you can contact the Independence team upon request. Connect with your colleagues "Join Deloitte and you'll be guiding major clients to their best technology and process decisions. You'll work at the cutting edge, with some of the finest minds in this field, and be able to take your career in any direction." "At Deloitte, is collaboration that sets us apart. Our scale and structure mean you can draw on all kinds of expertise from across our entire global business and behave as a true business partner for your clients." Our hybrid working policy You'll be based in Bristol or London with hybrid working. At Deloitte we understand the importance of balancing your career alongside your home life. That's why we'll support you to work flexibly through our hybrid working policy. Depending on the requirements of your role, you'll have the opportunity to work in your local office, virtual collaboration spaces, client sites and remotely. You'll get the chance to meet face to face when needed, while you collaborate and learn from colleagues, share your experiences, and build the relationships that will fuel your career and prioritise your wellbeing. Please check with your recruiter for the specific working requirements that may apply for your role. Our commitment to you Making an impact is more than just what we do: it's why we're here. So we work hard to create an environment where you can experience a purpose you believe in, the freedom to be you, and the capacity to go further than ever before. We want you. The true you. Your own strengths, perspective and personality. So we're nurturing a culture where everyone belongs, feels supported and heard, and is empowered to make a valuable, personal contribution. You can be sure we'll take your wellbeing seriously, too. Because it's only when you're comfortable and at your best that you can make the kind of impact you, and we, live for. Your expertise is our capability, so we'll make sure it never stops growing. Whether it's from the complex work you do, or the people you collaborate with, you'll learn every day. Through world-class development, you'll gain invaluable technical and personal skills. Whatever your level, you'll learn how to lead. Connect to your next step A career at Deloitte is an opportunity to develop in any direction you choose. Join us and you'll experience a purpose you can believe in and an impact you can see. You'll be free to bring your true self to work every day. And you'll never stop growing, whatever your level. Discover more reasons to connect with us, our people and purpose-driven culture at deloitte.co.uk/careers
Overview Do you want to be at the heart of some of the biggest and most ambitious programmes undertaken to keep our country safe? We are proud of the impact we have with Defence and Security clients, the strength of our relationships, and the variety of our skills and expertise that we bring to help them achieve their mission. We're growing our team. If you are cleared to SC or DV level, we are very keen to hear from you. Connect to your career at Deloitte Deloitte drives progress. Using our vast range of expertise, we help our clients become leaders wherever they choose to compete. To do this, we invest in outstanding people. We build teams of future thinkers, with diverse talents and backgrounds, and empower them all to reach for and achieve more. What brings us all together at Deloitte? It's how we approach the thousands of decisions we make everyday. How we behave, our beliefs and our attitudes. In other words: our values. Whatever we do, wherever we are in the world, we lead the way, serve with integrity, take care of each other, foster inclusion, and collaborate for measurable impact. These five shared values lead every decision we make and action we take, guiding us to deliver impact how and where it matters most. Connect to your opportunity Our projects vary greatly and your responsibility as a consultant will differ based on the focus of the client engagement and your skillset, but could include and may require you to: Assist in the design, implementation, and maintenance of IAM solutions, including integration with other systems and applications. Support the development and enforcement of IAM policies and procedures. Participate in access control and identity management activities. Supporting the monitoring and analysis of access management systems, including investigation and resolution of issues. Participating in IAM-related audits and compliance activities. Supporting the documentation of IAM processes and procedures. Assisting in the development and delivery of IAM training and awareness programmes. Collaborating with cross-functional teams to ensure effective IAM implementation and operation. Stay up to date with emerging security threats, technologies, and industry best practices, and provide recommendations for improvement. Communicate solutions to both a technical and non-technical audience. Qualifications and professional experience All applicants must have UK security clearance to Security Check (SC) or Developed Vetting (DV) level. We recognise our strength is in the diversity of our teams experience, background and culture. We are looking for talented individuals who are passionate about the work they do, prepared to think differently, are pragmatic and able to work with others to influence outcomes. We value those who aren't afraid to challenge the status-quo to help us improve. We deliver value to our clients, colleagues, and community in the way we plan, deliver, and reflect on our work, as a team. Diversity of thought is equally important to us and we are looking for applicants from all backgrounds. If you have experience in some of the areas we are looking for but aren't yet an expert in your field, that's fine. You must have some hands-on technical experience, but we are looking for team members who are at the early stages of their career who also want to grow and learn more. We will provide further training in Cloud Security, Vulnerability Management, Agile Security methodology and more, so you gain hands-on experience in areas you are not yet experienced in in a safe environment with empathetic and supportive feedback. Candidates will be able demonstrate relevant knowledge & experience through a combination of qualifications and evidence of work history such as: Certifications in IAM technologies such as CIAM or equivalent. Experience with SAML, OAuth and OpenID Connect. Practices, including securing cloud-based infrastructure and services. Experience working in or with Government organisations, including the handling of assets subject to the Government Security Classification Policy. Secure by Design, JSP 440. Connect to your business - Technology and Transformation Distinctive thinking, deep expertise, innovation and collaborative working. That's what connects us. That's what makes us Deloitte. If you want to help solve some of the biggest tech and transformational challenges around, join us. Together, we'll make an impact that matters. Cyber The modern world is more complex than ever before, and we are navigating an ever-changing landscape. We help clients to operate with resilience and grow with confidence to secure success and minimise risk. Personal independence Regulation and controls are standard practice in our industry and Deloitte is no exception. These controls provide important legal protection for both you and the firm. We are subject to a number of audit regulations, one of which requires that certain colleagues abide by specific personal independence constraints. The recruitment team will provide further detail as you progress through the recruitment process or you can contact the Independence team upon request. Connect with your colleagues "Join Deloitte and you'll be guiding major clients to their best technology and process decisions. You'll work at the cutting edge, with some of the finest minds in this field, and be able to take your career in any direction." "At Deloitte, is collaboration that sets us apart. Our scale and structure mean you can draw on all kinds of expertise from across our entire global business and behave as a true business partner for your clients." Our hybrid working policy You'll be based in Bristol or London with hybrid working. At Deloitte we understand the importance of balancing your career alongside your home life. That's why we'll support you to work flexibly through our hybrid working policy. Depending on the requirements of your role, you'll have the opportunity to work in your local office, virtual collaboration spaces, client sites and remotely. You'll get the chance to meet face to face when needed, while you collaborate and learn from colleagues, share your experiences, and build the relationships that will fuel your career and prioritise your wellbeing. Please check with your recruiter for the specific working requirements that may apply for your role. Our commitment to you Making an impact is more than just what we do: it's why we're here. So we work hard to create an environment where you can experience a purpose you believe in, the freedom to be you, and the capacity to go further than ever before. We want you. The true you. Your own strengths, perspective and personality. So we're nurturing a culture where everyone belongs, feels supported and heard, and is empowered to make a valuable, personal contribution. You can be sure we'll take your wellbeing seriously, too. Because it's only when you're comfortable and at your best that you can make the kind of impact you, and we, live for. Your expertise is our capability, so we'll make sure it never stops growing. Whether it's from the complex work you do, or the people you collaborate with, you'll learn every day. Through world-class development, you'll gain invaluable technical and personal skills. Whatever your level, you'll learn how to lead. Connect to your next step A career at Deloitte is an opportunity to develop in any direction you choose. Join us and you'll experience a purpose you can believe in and an impact you can see. You'll be free to bring your true self to work every day. And you'll never stop growing, whatever your level. Discover more reasons to connect with us, our people and purpose-driven culture at deloitte.co.uk/careers
Oct 13, 2025
Full time
Overview Do you want to be at the heart of some of the biggest and most ambitious programmes undertaken to keep our country safe? We are proud of the impact we have with Defence and Security clients, the strength of our relationships, and the variety of our skills and expertise that we bring to help them achieve their mission. We're growing our team. If you are cleared to SC or DV level, we are very keen to hear from you. Connect to your career at Deloitte Deloitte drives progress. Using our vast range of expertise, we help our clients become leaders wherever they choose to compete. To do this, we invest in outstanding people. We build teams of future thinkers, with diverse talents and backgrounds, and empower them all to reach for and achieve more. What brings us all together at Deloitte? It's how we approach the thousands of decisions we make everyday. How we behave, our beliefs and our attitudes. In other words: our values. Whatever we do, wherever we are in the world, we lead the way, serve with integrity, take care of each other, foster inclusion, and collaborate for measurable impact. These five shared values lead every decision we make and action we take, guiding us to deliver impact how and where it matters most. Connect to your opportunity Our projects vary greatly and your responsibility as a consultant will differ based on the focus of the client engagement and your skillset, but could include and may require you to: Assist in the design, implementation, and maintenance of IAM solutions, including integration with other systems and applications. Support the development and enforcement of IAM policies and procedures. Participate in access control and identity management activities. Supporting the monitoring and analysis of access management systems, including investigation and resolution of issues. Participating in IAM-related audits and compliance activities. Supporting the documentation of IAM processes and procedures. Assisting in the development and delivery of IAM training and awareness programmes. Collaborating with cross-functional teams to ensure effective IAM implementation and operation. Stay up to date with emerging security threats, technologies, and industry best practices, and provide recommendations for improvement. Communicate solutions to both a technical and non-technical audience. Qualifications and professional experience All applicants must have UK security clearance to Security Check (SC) or Developed Vetting (DV) level. We recognise our strength is in the diversity of our teams experience, background and culture. We are looking for talented individuals who are passionate about the work they do, prepared to think differently, are pragmatic and able to work with others to influence outcomes. We value those who aren't afraid to challenge the status-quo to help us improve. We deliver value to our clients, colleagues, and community in the way we plan, deliver, and reflect on our work, as a team. Diversity of thought is equally important to us and we are looking for applicants from all backgrounds. If you have experience in some of the areas we are looking for but aren't yet an expert in your field, that's fine. You must have some hands-on technical experience, but we are looking for team members who are at the early stages of their career who also want to grow and learn more. We will provide further training in Cloud Security, Vulnerability Management, Agile Security methodology and more, so you gain hands-on experience in areas you are not yet experienced in in a safe environment with empathetic and supportive feedback. Candidates will be able demonstrate relevant knowledge & experience through a combination of qualifications and evidence of work history such as: Certifications in IAM technologies such as CIAM or equivalent. Experience with SAML, OAuth and OpenID Connect. Practices, including securing cloud-based infrastructure and services. Experience working in or with Government organisations, including the handling of assets subject to the Government Security Classification Policy. Secure by Design, JSP 440. Connect to your business - Technology and Transformation Distinctive thinking, deep expertise, innovation and collaborative working. That's what connects us. That's what makes us Deloitte. If you want to help solve some of the biggest tech and transformational challenges around, join us. Together, we'll make an impact that matters. Cyber The modern world is more complex than ever before, and we are navigating an ever-changing landscape. We help clients to operate with resilience and grow with confidence to secure success and minimise risk. Personal independence Regulation and controls are standard practice in our industry and Deloitte is no exception. These controls provide important legal protection for both you and the firm. We are subject to a number of audit regulations, one of which requires that certain colleagues abide by specific personal independence constraints. The recruitment team will provide further detail as you progress through the recruitment process or you can contact the Independence team upon request. Connect with your colleagues "Join Deloitte and you'll be guiding major clients to their best technology and process decisions. You'll work at the cutting edge, with some of the finest minds in this field, and be able to take your career in any direction." "At Deloitte, is collaboration that sets us apart. Our scale and structure mean you can draw on all kinds of expertise from across our entire global business and behave as a true business partner for your clients." Our hybrid working policy You'll be based in Bristol or London with hybrid working. At Deloitte we understand the importance of balancing your career alongside your home life. That's why we'll support you to work flexibly through our hybrid working policy. Depending on the requirements of your role, you'll have the opportunity to work in your local office, virtual collaboration spaces, client sites and remotely. You'll get the chance to meet face to face when needed, while you collaborate and learn from colleagues, share your experiences, and build the relationships that will fuel your career and prioritise your wellbeing. Please check with your recruiter for the specific working requirements that may apply for your role. Our commitment to you Making an impact is more than just what we do: it's why we're here. So we work hard to create an environment where you can experience a purpose you believe in, the freedom to be you, and the capacity to go further than ever before. We want you. The true you. Your own strengths, perspective and personality. So we're nurturing a culture where everyone belongs, feels supported and heard, and is empowered to make a valuable, personal contribution. You can be sure we'll take your wellbeing seriously, too. Because it's only when you're comfortable and at your best that you can make the kind of impact you, and we, live for. Your expertise is our capability, so we'll make sure it never stops growing. Whether it's from the complex work you do, or the people you collaborate with, you'll learn every day. Through world-class development, you'll gain invaluable technical and personal skills. Whatever your level, you'll learn how to lead. Connect to your next step A career at Deloitte is an opportunity to develop in any direction you choose. Join us and you'll experience a purpose you can believe in and an impact you can see. You'll be free to bring your true self to work every day. And you'll never stop growing, whatever your level. Discover more reasons to connect with us, our people and purpose-driven culture at deloitte.co.uk/careers
Senior IT Support Engineer / Lead IT Technician who is highly technical with a solid IT infrastructure / IT support background covering Microsoft Windows, Networks, Cybersecurity, Cloud Computing and knowledge of emerging technologies such as AI, who also have team management and leadership skills is required for a well-established company based in Hull, East Yorkshire click apply for full job details
Oct 13, 2025
Full time
Senior IT Support Engineer / Lead IT Technician who is highly technical with a solid IT infrastructure / IT support background covering Microsoft Windows, Networks, Cybersecurity, Cloud Computing and knowledge of emerging technologies such as AI, who also have team management and leadership skills is required for a well-established company based in Hull, East Yorkshire click apply for full job details
About Us Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact. To succeed, organizations must blend digital and human capabilities. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures-and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. About BCG Platinion BCG Platinion's presence spans across the globe, with offices in Asia, Europe, and South and North America. We achieve digital excellence for clients with sustained solutions to the most complex and time-sensitive challenge. We guide clients into the future to push the status quo, overcome tech limitations, and enable our clients to go further in their digital journeys than what has ever been possible in the past. At BCG Platinion, we deliver business value through the innovative use of technology at a rapid pace. We roll up our sleeves to transform business, revolutionize approaches, satisfy customers, and change the game through Architecture, Cybersecurity, Digital Transformation, Enterprise Application and Risk functions. We balance vision with a pragmatic path to change transforming strategies into leading-edge tech platforms, at scale. Practice Area BCG Platinion launched in Germany in 2000 to add deep technical expertise to the Boston Consulting Group's existing capabilities. Today, our presence spans across the globe, with offices in Asia, Europe, and South and North America. Our New York-based North American team began in 2014 and in 2017 acquired MAYA Design, a Pittsburgh-based digital design and innovation lab, to grow our capabilities around technology and design. We support our clients' total digital transformation through technology, design, cybersecurity, and risk management & financial engineering capabilities. And together with BCG, BCG Platinion's interdisciplinary team of technical experts enable customized technical solutions and accelerate delivery value through new business platforms, application consolidations, and major system implementations. What You'll Do We are seeking an experienced ERP transformation leader to join our Enterprise Solutions practice, focusing on sourcing, business case development, and strategic PMO for complex digital transformations. You will guide clients through the full ERP transformation lifecycle - from strategic framing and roadmap creation to implementation and value realisation - with a particular focus on SAP-enabled programmes. Key Responsibilities Programme Leadership: Lead large-scale ERP transformation programmes, overseeing multiple workstreams or modules through the full delivery lifecycle. Strategic PMO: Establish and run programme governance structures, ensuring delivery excellence, de-risking, and alignment to business value. Business Case & Value Management: Shape and deliver robust business cases, linking technology outcomes to tangible business benefits. Methodology Leadership: Apply leading methodologies such as SAP Activate, and best practices in template management, release management, and process modelling. End-to-End Process Integration: Design and govern integrated processes across SAP LoBs, covering key value streams (Purchase-to-Pay, Order-to-Cash, Record-to-Report, Hire-to-Retire etc.) Stakeholder Engagement: Operate as the primary interface with senior business stakeholders, influencing decision-making in large organisations. Team Leadership: Directly or indirectly manage sizeable delivery teams across vendors & geographies. What You'll Bring Consulting experience from a Tier 1/Tier 2 strategy firm or an SI with demonstrable leadership of end-to-end ERP programme delivery. Led ERP modules or workstreams end-to-end through the full delivery lifecycle. SAP functional knowledge across business units (e.g. Finance, Supply Chain, Procurement etc.), with understanding of cross-module integration. Strong experience in business case development and value management. Familiarity with both Agile and traditional ERP delivery methods. Additional info Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws. BCG is an E - Verify Employer. For more information on E-Verify.
Oct 13, 2025
Full time
About Us Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact. To succeed, organizations must blend digital and human capabilities. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures-and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. About BCG Platinion BCG Platinion's presence spans across the globe, with offices in Asia, Europe, and South and North America. We achieve digital excellence for clients with sustained solutions to the most complex and time-sensitive challenge. We guide clients into the future to push the status quo, overcome tech limitations, and enable our clients to go further in their digital journeys than what has ever been possible in the past. At BCG Platinion, we deliver business value through the innovative use of technology at a rapid pace. We roll up our sleeves to transform business, revolutionize approaches, satisfy customers, and change the game through Architecture, Cybersecurity, Digital Transformation, Enterprise Application and Risk functions. We balance vision with a pragmatic path to change transforming strategies into leading-edge tech platforms, at scale. Practice Area BCG Platinion launched in Germany in 2000 to add deep technical expertise to the Boston Consulting Group's existing capabilities. Today, our presence spans across the globe, with offices in Asia, Europe, and South and North America. Our New York-based North American team began in 2014 and in 2017 acquired MAYA Design, a Pittsburgh-based digital design and innovation lab, to grow our capabilities around technology and design. We support our clients' total digital transformation through technology, design, cybersecurity, and risk management & financial engineering capabilities. And together with BCG, BCG Platinion's interdisciplinary team of technical experts enable customized technical solutions and accelerate delivery value through new business platforms, application consolidations, and major system implementations. What You'll Do We are seeking an experienced ERP transformation leader to join our Enterprise Solutions practice, focusing on sourcing, business case development, and strategic PMO for complex digital transformations. You will guide clients through the full ERP transformation lifecycle - from strategic framing and roadmap creation to implementation and value realisation - with a particular focus on SAP-enabled programmes. Key Responsibilities Programme Leadership: Lead large-scale ERP transformation programmes, overseeing multiple workstreams or modules through the full delivery lifecycle. Strategic PMO: Establish and run programme governance structures, ensuring delivery excellence, de-risking, and alignment to business value. Business Case & Value Management: Shape and deliver robust business cases, linking technology outcomes to tangible business benefits. Methodology Leadership: Apply leading methodologies such as SAP Activate, and best practices in template management, release management, and process modelling. End-to-End Process Integration: Design and govern integrated processes across SAP LoBs, covering key value streams (Purchase-to-Pay, Order-to-Cash, Record-to-Report, Hire-to-Retire etc.) Stakeholder Engagement: Operate as the primary interface with senior business stakeholders, influencing decision-making in large organisations. Team Leadership: Directly or indirectly manage sizeable delivery teams across vendors & geographies. What You'll Bring Consulting experience from a Tier 1/Tier 2 strategy firm or an SI with demonstrable leadership of end-to-end ERP programme delivery. Led ERP modules or workstreams end-to-end through the full delivery lifecycle. SAP functional knowledge across business units (e.g. Finance, Supply Chain, Procurement etc.), with understanding of cross-module integration. Strong experience in business case development and value management. Familiarity with both Agile and traditional ERP delivery methods. Additional info Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws. BCG is an E - Verify Employer. For more information on E-Verify.
Training Programme Director - Rheumatology (East) An outstanding individual is sought to fulfil the role of Training Programme Director for Rheumatology East. The post will be available on the basis of a secondment arrangement to NHS England remunerated on the NHS Consultant Pay Scale - 0.5 PA / 2 hours per week. All work undertaken is to be incorporated into the Consultant Job Plan. The role of Training Programme Director is to work and support the Head of School in leading the delivery of a wide range of functions, aligned to the NHS England mandate. The Training Programme Director is professionally and managerially accountable to the Head of School. The Training Programme Director will focus on improvement of learner supervision, assessment and experience, engagement of faculty and ensuring effective educational outcomes, both now and in the future. The role is evolving and will also focus on whole workforce transformation and developing multi-professional links as well as innovative ways of curriculum delivery and workforce well-being strategies. To support the Postgraduate Dean, Training Programme Directors work across the spectrum of health and where relevant, social care, within the context of a team, so that the provision of education reflects changing service models. This will deliver an integrated workforce comprising individuals from a spectrum if professional and other backgrounds. Main duties of the job Engaging People/Key Working Relationships Development of an effective network of communication and collaboration of all relevant stakeholders on a local, regional and national basis: Head of School Staff at all levels across the geographical area covered by the local office Practices and schemes Associate and deputy deans Clinical Faculty Other Heads of Schools Other Training Programme Directors, where appropriate Royal Colleges Professional and regulatory bodies Wider Stakeholder Network Local Medical and Dental Schools Providers and commissioners across the region Directors of Education Higher Educational Institutions Delivering Results/ Functional Responsibilities Ensuring high standards of education and training as defined by the General Medicine Council and other national bodies with respect to training posts and other educational programmes in the Yorkshire and the Humber. Commitment to national vision, policies and processes for effective educational quality management. Ensuring that objectives are met within budget and proportionate contribution to budget savings when required Ensuring that Code of Practice Guidelines are met Giving accurate guidance to trainees on OOP/ IDTs/ LTFT/ Acting up applications About us Our work supports the NHS to deliver high quality services for patients and best value for taxpayers. Our staff bring expertise across hundreds of specialisms including clinical, operational, commissioning, technology, data science, cyber security, software engineering, education, and commercial enabling us to design and deliver high-quality NHS services. We lead the NHS in England by: Enabling local systems and providers to improve the health of their people and patients and reduce health inequalities Making the NHS a great place to work, where our people can make a difference and achieve their potential Working collaboratively to ensure our healthcare workforce has the right knowledge, skills, values and behaviours to deliver accessible, compassionate care Optimising the use of digital technology, research, and innovation Earlier this year, the Government announced that NHS England will gradually merge with the Department of Health and Social Care, leading to full integration. The aim is to create a smaller, more strategic centre that reduces duplication and eliminates waste. If successful at interview, we will initiate an Inter Authority Transfer (IAT) via the Electronic Staff Record (ESR). This retrieves key data from your current or previous NHS employer to support onboarding, including competency status, Continuous Service Dates (CSD), and annual leave entitlement. You may opt out at any stage of the recruitment process. Job responsibilities Leadership To provide effective clinical leadership. To work on behalf of Yorkshire and the Humber Deanery, providing expert advice on specialty-specific matters. Quality and safety to implement the NHSE Quality Framework and Education and Training Quality Improvement and Performance. School Programme Management Specialty-specific matters and trainee/trainer concerns. Recruitment to training posts and programmes. Postgraduate programme management, including assessments, progression, rotations, support and remediation, OOP management, trainee management, careers support, less than full-time training, inter-deanery transfer, academic training and other related work-streams. To attend School meetings within the structure and other relevant meetings. To meet Code of Practice requirements Educational and Workforce Development To advise and support in educational and workforce development elements. Strategic Workforce Development and Commissioning To develop educational programmes where needed to support achievement of curriculum competencies. Finance To ensure compliance with procurement requirements. You can find further details about the job, organisational structure, recruitment profile, expected outcomes and benefits information in the attached Job Description and other supporting documents. Secondments Applicants from within the NHS will be offered on a secondment basis only, agreement should be obtained from their employer prior to submitting the application. Person Specification Qualifications Primary medical qualification or On the Specialist Register Membership/Fellowship of a College, Faculty, Professional Association and/or Regulatory Body Experience Experience of working with learners or doctors in training in educational context Experience of clinical and educational leadership Demonstrable track record of delivery in service and education Skills Leadership Problem solving Strong interpersonal, communication, written and presentation skills Depending on experienceIn line with TPD sessional payments
Oct 13, 2025
Full time
Training Programme Director - Rheumatology (East) An outstanding individual is sought to fulfil the role of Training Programme Director for Rheumatology East. The post will be available on the basis of a secondment arrangement to NHS England remunerated on the NHS Consultant Pay Scale - 0.5 PA / 2 hours per week. All work undertaken is to be incorporated into the Consultant Job Plan. The role of Training Programme Director is to work and support the Head of School in leading the delivery of a wide range of functions, aligned to the NHS England mandate. The Training Programme Director is professionally and managerially accountable to the Head of School. The Training Programme Director will focus on improvement of learner supervision, assessment and experience, engagement of faculty and ensuring effective educational outcomes, both now and in the future. The role is evolving and will also focus on whole workforce transformation and developing multi-professional links as well as innovative ways of curriculum delivery and workforce well-being strategies. To support the Postgraduate Dean, Training Programme Directors work across the spectrum of health and where relevant, social care, within the context of a team, so that the provision of education reflects changing service models. This will deliver an integrated workforce comprising individuals from a spectrum if professional and other backgrounds. Main duties of the job Engaging People/Key Working Relationships Development of an effective network of communication and collaboration of all relevant stakeholders on a local, regional and national basis: Head of School Staff at all levels across the geographical area covered by the local office Practices and schemes Associate and deputy deans Clinical Faculty Other Heads of Schools Other Training Programme Directors, where appropriate Royal Colleges Professional and regulatory bodies Wider Stakeholder Network Local Medical and Dental Schools Providers and commissioners across the region Directors of Education Higher Educational Institutions Delivering Results/ Functional Responsibilities Ensuring high standards of education and training as defined by the General Medicine Council and other national bodies with respect to training posts and other educational programmes in the Yorkshire and the Humber. Commitment to national vision, policies and processes for effective educational quality management. Ensuring that objectives are met within budget and proportionate contribution to budget savings when required Ensuring that Code of Practice Guidelines are met Giving accurate guidance to trainees on OOP/ IDTs/ LTFT/ Acting up applications About us Our work supports the NHS to deliver high quality services for patients and best value for taxpayers. Our staff bring expertise across hundreds of specialisms including clinical, operational, commissioning, technology, data science, cyber security, software engineering, education, and commercial enabling us to design and deliver high-quality NHS services. We lead the NHS in England by: Enabling local systems and providers to improve the health of their people and patients and reduce health inequalities Making the NHS a great place to work, where our people can make a difference and achieve their potential Working collaboratively to ensure our healthcare workforce has the right knowledge, skills, values and behaviours to deliver accessible, compassionate care Optimising the use of digital technology, research, and innovation Earlier this year, the Government announced that NHS England will gradually merge with the Department of Health and Social Care, leading to full integration. The aim is to create a smaller, more strategic centre that reduces duplication and eliminates waste. If successful at interview, we will initiate an Inter Authority Transfer (IAT) via the Electronic Staff Record (ESR). This retrieves key data from your current or previous NHS employer to support onboarding, including competency status, Continuous Service Dates (CSD), and annual leave entitlement. You may opt out at any stage of the recruitment process. Job responsibilities Leadership To provide effective clinical leadership. To work on behalf of Yorkshire and the Humber Deanery, providing expert advice on specialty-specific matters. Quality and safety to implement the NHSE Quality Framework and Education and Training Quality Improvement and Performance. School Programme Management Specialty-specific matters and trainee/trainer concerns. Recruitment to training posts and programmes. Postgraduate programme management, including assessments, progression, rotations, support and remediation, OOP management, trainee management, careers support, less than full-time training, inter-deanery transfer, academic training and other related work-streams. To attend School meetings within the structure and other relevant meetings. To meet Code of Practice requirements Educational and Workforce Development To advise and support in educational and workforce development elements. Strategic Workforce Development and Commissioning To develop educational programmes where needed to support achievement of curriculum competencies. Finance To ensure compliance with procurement requirements. You can find further details about the job, organisational structure, recruitment profile, expected outcomes and benefits information in the attached Job Description and other supporting documents. Secondments Applicants from within the NHS will be offered on a secondment basis only, agreement should be obtained from their employer prior to submitting the application. Person Specification Qualifications Primary medical qualification or On the Specialist Register Membership/Fellowship of a College, Faculty, Professional Association and/or Regulatory Body Experience Experience of working with learners or doctors in training in educational context Experience of clinical and educational leadership Demonstrable track record of delivery in service and education Skills Leadership Problem solving Strong interpersonal, communication, written and presentation skills Depending on experienceIn line with TPD sessional payments
