JOB DESCRIPTION Job Title Resilience Advisor (Business Continuity) Department Environment and Neighbourhoods (E&N Hub) Section or Service Resilience " Grade G DESIGNATION: Responsible to: Resilience Manager Employees directly supervised (if applicable): None 1. JOB PURPOSE: Lead Practitioner for Business Continuity: Support the Executive Management Team (EMT) and Council Directors with business continuity planning. Collaborate across all departments including during incidents and disruptions, ensuring alignment with national and regional guidelines, standards, andולים best practices. Manage Implementation: Awareness and advise as appropriate on the Business Continuity Plans and Procedures across all Directorates in the Council, as well as Disaster Recovery operations bonne federated the Council. Minimise Impact: Take necessary actions to minimise and control the impact of major business disruptions on the Council.Communicate and Coordinate: Maintain the Council's Business Continuity policy, plan, risk register, and impact analysis. Coordinate the Council's business continuity planning programme in line with ISO22301 standards and provide advice to local businesses and voluntary organisations as per the Civil Contingencies Act 2004. Emergency Response: To act as the 24/7 on-call Resilienceaule Res സ്വക ര്യ as part of an emergency rota and 'Tactical Local Authority Liaison Officer (LALO) when coordinating the Council's response from the incident scene in major and serious incidents in the Borough. 2. DESCRIPTION OF DUTIES: Achieve compliance with ISO 22301 and the Civil Contingencies Act 2004 by communicating and coordinating comprehensive business continuity plans at all levels. Ensure the continual effectiveness and compliance of all business continuity plans for unmittelbar service areas, business functions, and IT applications, guaranteeing their effectiveness. Maintain uninterrupted service delivery during disruptive incidents by coordinating necessary activities and ensuring the Council's operational resilience. Provide advice on ways to enhance business continuity plans through collaboration with corporate, departmental, and service levels, mitigating disruption effects to ensure essential services for residents. Drive continuous improvement by conducting periodic reviews and tests of business continuity plans and procedures, reporting findings to management, and recommending enhancements. Provide the Executive Management Team (EMT) with analysis through annual reviews of the Corporate Business Continuity Strategy and periodic dashboard updates on business continuity activities across the Council. Ensure the Council's Corporate Business Continuity Plan and Corporate Statement of Risk Appetite are up-to-date and integrated within the overall suite of contingency planning documents. Optimise organisational resilience by being a lead user of the Business Impact Analysis (Bпри system, ensuring its effective use across departments and services, and исследования other corporate services. Strengthen the alignment between business continuity and corporate risk management by liaising closely with the Council's Strategic Risk function. Support all council departments and services in producing, regularly reviewing, testing, and recommending amendments to Service Area Business Continuity Plans, ensuring their effectiveness and consistency with corporate resilience arrangements. Make recommendations for enhancements to business continuity plans and procedures across the Council through an annual training and exercise programme, involving external partners where appropriate. Empower departmental and service area staff_nbue by designing and delivering training sessions and exercises as part of the business continuity training and exercise programme. Maintain up-to-date service area plans by managing the administration of the Council business continuity system, the Riskonnect System. Contribute to the corporate risk register by linking corporate and departmental/service risks to business continuity plans where appropriate. Ensure readiness for significant and major incidents by participating in the Resilience team rota, providing in-person coordination and support during emergencies. Act as Tactical LALO during major emergencies, coordinating and leading on the Council's response and supporting efforts at the incident scene, engaging with the emergency services to make decisions on the Council's behalf. Foster a collaborative and supportive environment by working with and supporting other staff members in the Resilience Team in emergency preparedness and incident response situations. Maintain accurate records, prepare agendas, and take minutes of relevant Resilience and emergency meetings. Attend various meetings to represent the Council or the team on emergency preparedness, response, and business continuity, and coordinate with internal departments and external organisations. Undertake additional duties as required, commensurate with your grade, to support the Council's resilience and business continuity efforts. SELECTION CRITERIA/PERSON SPECIFICATION Job Title: Resilience Advisor (Business Continuity) Conditions to Note: Candidates: When completing your application form, please address your answers directly to each of the selection criteria below. This will allow the panel to assess your ability to meet each criterion. It is essential that you give at least one example of your ability to meet each of the four Values and Behaviours: Putting Communities First, Respect, Integrity and Working Together. Recruiting Managers: The following values and behaviours are essential criteria for every post and must be addressed directly by candidates. The Guidance Notes on values and behaviours for managers give example questions for the interview and application stages INTERNET recruitment process. Values & Behaviours The Royal Borough of Kensington and Chelsea has identified four key behaviours and values that should be demonstrated by all council employees. Successful candidates will show the ability to meet these behaviours. Candidates applying for managerial/leadership roles should also demonstrate two additional leadership behaviours. A Equal Opportunities Demonstrate an understanding of and commitment to Council labo policies in relation to Equal Opportunity, Customer Care and service delivery, and the ability to implement these policies in the workplace. B Qualifications: Essential: Qualifications gained in Business Continuity Planning and/or training, or Certified Member of the Business Continuity Institute. Support to be fully qualified can be offered (subject to performance) by RBKC. C Skills; Experience and Attitude Essential: Knowledge of the contingency planning legislative requirements for local authorities brought about by the Civil Contingencies Act 2004 and an international standard for Business Continuity Management Systems (BCMS) ISO 22301. Experience of developing business continuity contingency plans and procedures. Experience of developing, planning, and delivering training and exercises on business406 Continuity to a wide range of people, at all levels and externally to businesses and voluntary organisations. Ability to assimilate, evaluate and collate information on business continuity planning priorities and resources. Presenting recommendations in clear and concise reports to all levels of stakeholders. Ability to communicate effectively with colleagues, Councillors, residents and the general public, and coordinate work efficiently and effectively with service areas in numerous locations. Strong administrative and project management skills, with effectiveness in developing and managing tasks to achieve target dates. Ability to use IT equipment and packages (e.g. Microsoft Office and Outlook, Geographic Information System (GIS . Ability to be responsive and be a leader in emergency response. Ability to remain calm under pressure when dealing with emergencies. Self motivated and able to work on your own initiative with minimal supervision. Ability to work in and develop teams and partnerships in business continuity. Able to work outside normal office hours on occasions for training, meetings, when responding to emergencies as part of an emergency rota. Strong organisational and interpersonal skills with ability to react to changing priorities in calm and efficient manner. Strong analytical, organisational, decision making and problem solving skills. Understand the critical importance of equality, diversity, and inclusion in planning and responding to emergencies. Our Values & Behaviours D PUTTING COMMUNITIES FIRST We put local people at the heart of decision making in everything we do. We seek to include and involve: all voices matter. We provide quality services that are responsive, effective and efficient. The following examples are indicators of effective behaviour: I actively involve and include the communities that I serve in my work. I shall express the views of the communities in my daily work. I shall improve the service I provide through seeking feedback from others. Our residents will feel that: I have been included. I can see how my views have been taken into account. I can see improvements and developments based on my input. . click apply for full job details
Mar 09, 2026
Full time
JOB DESCRIPTION Job Title Resilience Advisor (Business Continuity) Department Environment and Neighbourhoods (E&N Hub) Section or Service Resilience " Grade G DESIGNATION: Responsible to: Resilience Manager Employees directly supervised (if applicable): None 1. JOB PURPOSE: Lead Practitioner for Business Continuity: Support the Executive Management Team (EMT) and Council Directors with business continuity planning. Collaborate across all departments including during incidents and disruptions, ensuring alignment with national and regional guidelines, standards, andולים best practices. Manage Implementation: Awareness and advise as appropriate on the Business Continuity Plans and Procedures across all Directorates in the Council, as well as Disaster Recovery operations bonne federated the Council. Minimise Impact: Take necessary actions to minimise and control the impact of major business disruptions on the Council.Communicate and Coordinate: Maintain the Council's Business Continuity policy, plan, risk register, and impact analysis. Coordinate the Council's business continuity planning programme in line with ISO22301 standards and provide advice to local businesses and voluntary organisations as per the Civil Contingencies Act 2004. Emergency Response: To act as the 24/7 on-call Resilienceaule Res സ്വക ര്യ as part of an emergency rota and 'Tactical Local Authority Liaison Officer (LALO) when coordinating the Council's response from the incident scene in major and serious incidents in the Borough. 2. DESCRIPTION OF DUTIES: Achieve compliance with ISO 22301 and the Civil Contingencies Act 2004 by communicating and coordinating comprehensive business continuity plans at all levels. Ensure the continual effectiveness and compliance of all business continuity plans for unmittelbar service areas, business functions, and IT applications, guaranteeing their effectiveness. Maintain uninterrupted service delivery during disruptive incidents by coordinating necessary activities and ensuring the Council's operational resilience. Provide advice on ways to enhance business continuity plans through collaboration with corporate, departmental, and service levels, mitigating disruption effects to ensure essential services for residents. Drive continuous improvement by conducting periodic reviews and tests of business continuity plans and procedures, reporting findings to management, and recommending enhancements. Provide the Executive Management Team (EMT) with analysis through annual reviews of the Corporate Business Continuity Strategy and periodic dashboard updates on business continuity activities across the Council. Ensure the Council's Corporate Business Continuity Plan and Corporate Statement of Risk Appetite are up-to-date and integrated within the overall suite of contingency planning documents. Optimise organisational resilience by being a lead user of the Business Impact Analysis (Bпри system, ensuring its effective use across departments and services, and исследования other corporate services. Strengthen the alignment between business continuity and corporate risk management by liaising closely with the Council's Strategic Risk function. Support all council departments and services in producing, regularly reviewing, testing, and recommending amendments to Service Area Business Continuity Plans, ensuring their effectiveness and consistency with corporate resilience arrangements. Make recommendations for enhancements to business continuity plans and procedures across the Council through an annual training and exercise programme, involving external partners where appropriate. Empower departmental and service area staff_nbue by designing and delivering training sessions and exercises as part of the business continuity training and exercise programme. Maintain up-to-date service area plans by managing the administration of the Council business continuity system, the Riskonnect System. Contribute to the corporate risk register by linking corporate and departmental/service risks to business continuity plans where appropriate. Ensure readiness for significant and major incidents by participating in the Resilience team rota, providing in-person coordination and support during emergencies. Act as Tactical LALO during major emergencies, coordinating and leading on the Council's response and supporting efforts at the incident scene, engaging with the emergency services to make decisions on the Council's behalf. Foster a collaborative and supportive environment by working with and supporting other staff members in the Resilience Team in emergency preparedness and incident response situations. Maintain accurate records, prepare agendas, and take minutes of relevant Resilience and emergency meetings. Attend various meetings to represent the Council or the team on emergency preparedness, response, and business continuity, and coordinate with internal departments and external organisations. Undertake additional duties as required, commensurate with your grade, to support the Council's resilience and business continuity efforts. SELECTION CRITERIA/PERSON SPECIFICATION Job Title: Resilience Advisor (Business Continuity) Conditions to Note: Candidates: When completing your application form, please address your answers directly to each of the selection criteria below. This will allow the panel to assess your ability to meet each criterion. It is essential that you give at least one example of your ability to meet each of the four Values and Behaviours: Putting Communities First, Respect, Integrity and Working Together. Recruiting Managers: The following values and behaviours are essential criteria for every post and must be addressed directly by candidates. The Guidance Notes on values and behaviours for managers give example questions for the interview and application stages INTERNET recruitment process. Values & Behaviours The Royal Borough of Kensington and Chelsea has identified four key behaviours and values that should be demonstrated by all council employees. Successful candidates will show the ability to meet these behaviours. Candidates applying for managerial/leadership roles should also demonstrate two additional leadership behaviours. A Equal Opportunities Demonstrate an understanding of and commitment to Council labo policies in relation to Equal Opportunity, Customer Care and service delivery, and the ability to implement these policies in the workplace. B Qualifications: Essential: Qualifications gained in Business Continuity Planning and/or training, or Certified Member of the Business Continuity Institute. Support to be fully qualified can be offered (subject to performance) by RBKC. C Skills; Experience and Attitude Essential: Knowledge of the contingency planning legislative requirements for local authorities brought about by the Civil Contingencies Act 2004 and an international standard for Business Continuity Management Systems (BCMS) ISO 22301. Experience of developing business continuity contingency plans and procedures. Experience of developing, planning, and delivering training and exercises on business406 Continuity to a wide range of people, at all levels and externally to businesses and voluntary organisations. Ability to assimilate, evaluate and collate information on business continuity planning priorities and resources. Presenting recommendations in clear and concise reports to all levels of stakeholders. Ability to communicate effectively with colleagues, Councillors, residents and the general public, and coordinate work efficiently and effectively with service areas in numerous locations. Strong administrative and project management skills, with effectiveness in developing and managing tasks to achieve target dates. Ability to use IT equipment and packages (e.g. Microsoft Office and Outlook, Geographic Information System (GIS . Ability to be responsive and be a leader in emergency response. Ability to remain calm under pressure when dealing with emergencies. Self motivated and able to work on your own initiative with minimal supervision. Ability to work in and develop teams and partnerships in business continuity. Able to work outside normal office hours on occasions for training, meetings, when responding to emergencies as part of an emergency rota. Strong organisational and interpersonal skills with ability to react to changing priorities in calm and efficient manner. Strong analytical, organisational, decision making and problem solving skills. Understand the critical importance of equality, diversity, and inclusion in planning and responding to emergencies. Our Values & Behaviours D PUTTING COMMUNITIES FIRST We put local people at the heart of decision making in everything we do. We seek to include and involve: all voices matter. We provide quality services that are responsive, effective and efficient. The following examples are indicators of effective behaviour: I actively involve and include the communities that I serve in my work. I shall express the views of the communities in my daily work. I shall improve the service I provide through seeking feedback from others. Our residents will feel that: I have been included. I can see how my views have been taken into account. I can see improvements and developments based on my input. . click apply for full job details
Engineering - Project Management - Vice President - London Job Description ABOUT CORE ENGINEERING & SRE Site Reliability Engineering (SRE) at Goldman Sachs combines software and systems engineering to build, improve, and operate the firm's most critical, large scale, fault tolerant platforms. SRE is responsible for the availability, reliability, and resilience of foundational services used across thousands of internal engineers daily, spanning on prem data centres and multiple public cloud environments. SRE defines and implements firm wide standards for digital resilience, observability, incident response, SLIs/SLOs, production readiness, and operational excellence. The team provides platforms such as central logging, monitoring, alerting, orchestration, deployment automation, and tools for capacity planning, operational readiness, incident postmortems, and reliability insights. These capabilities underpin the reliability of every product shipped across Engineering. ROLE OVERVIEW We are seeking a Vice President Programme & Change Manager to lead a major cross Engineering transformation initiative within SRE. This role drives strategic change that enhances the firm's reliability posture, operational resilience, and engineering efficiency. You will operate at the intersection of programme leadership, engineering transformation, and organisational change, partnering with senior stakeholders across Engineering, SRE Product Owners, Cloud Enablement Engineering, Cloud, Security, Architecture, and our revenue aligned engineering teams. This leader will run a complex, multi year, firm wide flagship programme, ensuring SRE's strategic agenda is delivered consistently, transparently, and with strong execution discipline. HOW YOU WILL FULFILL YOUR POTENTIAL Lead SRE wide and Core Engineering strategic programmes Drive large, cross divisional change initiative that evolves the firm's reliability posture, observability strategy, cloud adoption readiness, incident management maturity, capacity planning, and production tooling ecosystem. Partner with SRE technical leaders to translate strategy into programme scope, milestones, outcomes, and measurement frameworks. Provide transparent reporting, executive updates, risk escalation, and budget tracking for senior Engineering leadership. Run forums and ensure alignment with firm wide engineering standards and regulatory expectations. Risk & issue management Identify programme level risks and impediments, drive mitigation plans, and escalation appropriately to ensure programme health. Cross functional coordination & delivery execution Work with Product, Design, Engineering, Site Reliability Engineering, Cloud teams, Security, and revenue aligned engineering to execute front to back change initiatives. Operational excellence & transformation tooling Promote SRE best practices and modern programme tooling for transparency and roadmap management. Support test strategy development, production readiness checks, and post implementation reviews. Champion SRE's mission Embed SRE principles-reliability, observability, incident learning, automation, and continuous improvement-into all programme plans and change frameworks. Ensure technology, process, and organisational changes align with SRE's core mission of delivering resilient, scalable, and sustainable production systems. SKILLS & EXPERIENCE WE'RE LOOKING FOR Basic Qualifications 7-10+ years of programme management, transformation leadership, or large scale engineering change experience. Proven track record delivering cross functional programmes involving teams from many disciplines. Strong communication skills with ability to influence senior technical and non technical stakeholders. Experience managing risk, budgets, multi team dependencies, and programme governance. Preferred Qualifications Strong growth mindset and drive to make a difference. Understanding of SRE principles, production operations, digital resilience, observability tooling, incident management, and cloud native platforms. Experience in large engineering organisations or technology led transformation. Familiarity with Agile delivery, OKRs, JIRA/Confluence, testing frameworks, and enterprise planning tooling. Ability to work in fast paced engineering environments with multiple competing priorities. ABOUT GOLDMAN SACHS At Goldman Sachs, we commit our people, capital and ideas to help our clients, shareholders and the communities we serve to grow. Founded in 1869, we are a leading global investment banking, securities and investment management firm. Headquartered in New York, we maintain offices around the world. We believe who you are makes you better at what you do. We're committed to fostering and advancing diversity and inclusion in our own workplace and beyond by ensuring every individual within our firm has a number of opportunities to grow professionally and personally, from our training and development opportunities and firmwide networks to benefits, wellness and personal finance offerings and mindfulness programs. Learn more about our culture, benefits, and people at We're committed to finding reasonable accommodations for candidates with special needs or disabilities during our recruiting process. Learn more: Goldman Sachs is an equal opportunity employer and does not discriminate on the basis of race, color, religion, sex, national origin, age, veterans status, disability, or any other characteristic protected by applicable law. Job Info Job Identification 161060 Job Category Vice President Posting Date 03/03/2026, 02:09 PM Locations London, Greater London, England, United Kingdom Healthcare & Medical Services We believe who you are makes you better at what you do. We're committed to fostering and advancing diversity and inclusion in our own workplace and beyond by ensuring every individual within our firm has a number of opportunities to grow professionally and personally We offer competitive vacation policies based on employee level and office location. We promote time off from work to recharge by providing generous vacation entitlements and a minimum of three weeks expected vacation usage each year. Financial Wellness & Retirement We assist employees in saving and planning for retirement, offer financial support for higher education, and provide a number of benefits to help employees prepare for the unexpected. We offer live financial education and content on a variety of topics to address the spectrum of employees' priorities. Health We offer a medical advocacy service for employees and family members facing critical health situations, and counseling and referral services through the Employee Assistance Program (EAP). We provide Global Medical, Security and Travel Assistance and a Workplace Ergonomics Program. We also offer state of the art on site health centers in certain offices. Fitness To encourage employees to live a healthy and active lifestyle, some of our offices feature on site fitness centers. For eligible employees we typically reimburse fees paid for a fitness club membership or activity (up to a pre approved amount). We offer on site child care centers that provide full time and emergency back up care, as well as mother and baby rooms and homework rooms. In every office, we provide advice and counseling services, expectant parent resources and transitional programs for parents returning from parental leave. Adoption, surrogacy, egg donation and egg retrieval stipends are also available. Benefits at Goldman Sachs Read more about the full suite of class leading benefits our firm has to offer. Learn More
Mar 05, 2026
Full time
Engineering - Project Management - Vice President - London Job Description ABOUT CORE ENGINEERING & SRE Site Reliability Engineering (SRE) at Goldman Sachs combines software and systems engineering to build, improve, and operate the firm's most critical, large scale, fault tolerant platforms. SRE is responsible for the availability, reliability, and resilience of foundational services used across thousands of internal engineers daily, spanning on prem data centres and multiple public cloud environments. SRE defines and implements firm wide standards for digital resilience, observability, incident response, SLIs/SLOs, production readiness, and operational excellence. The team provides platforms such as central logging, monitoring, alerting, orchestration, deployment automation, and tools for capacity planning, operational readiness, incident postmortems, and reliability insights. These capabilities underpin the reliability of every product shipped across Engineering. ROLE OVERVIEW We are seeking a Vice President Programme & Change Manager to lead a major cross Engineering transformation initiative within SRE. This role drives strategic change that enhances the firm's reliability posture, operational resilience, and engineering efficiency. You will operate at the intersection of programme leadership, engineering transformation, and organisational change, partnering with senior stakeholders across Engineering, SRE Product Owners, Cloud Enablement Engineering, Cloud, Security, Architecture, and our revenue aligned engineering teams. This leader will run a complex, multi year, firm wide flagship programme, ensuring SRE's strategic agenda is delivered consistently, transparently, and with strong execution discipline. HOW YOU WILL FULFILL YOUR POTENTIAL Lead SRE wide and Core Engineering strategic programmes Drive large, cross divisional change initiative that evolves the firm's reliability posture, observability strategy, cloud adoption readiness, incident management maturity, capacity planning, and production tooling ecosystem. Partner with SRE technical leaders to translate strategy into programme scope, milestones, outcomes, and measurement frameworks. Provide transparent reporting, executive updates, risk escalation, and budget tracking for senior Engineering leadership. Run forums and ensure alignment with firm wide engineering standards and regulatory expectations. Risk & issue management Identify programme level risks and impediments, drive mitigation plans, and escalation appropriately to ensure programme health. Cross functional coordination & delivery execution Work with Product, Design, Engineering, Site Reliability Engineering, Cloud teams, Security, and revenue aligned engineering to execute front to back change initiatives. Operational excellence & transformation tooling Promote SRE best practices and modern programme tooling for transparency and roadmap management. Support test strategy development, production readiness checks, and post implementation reviews. Champion SRE's mission Embed SRE principles-reliability, observability, incident learning, automation, and continuous improvement-into all programme plans and change frameworks. Ensure technology, process, and organisational changes align with SRE's core mission of delivering resilient, scalable, and sustainable production systems. SKILLS & EXPERIENCE WE'RE LOOKING FOR Basic Qualifications 7-10+ years of programme management, transformation leadership, or large scale engineering change experience. Proven track record delivering cross functional programmes involving teams from many disciplines. Strong communication skills with ability to influence senior technical and non technical stakeholders. Experience managing risk, budgets, multi team dependencies, and programme governance. Preferred Qualifications Strong growth mindset and drive to make a difference. Understanding of SRE principles, production operations, digital resilience, observability tooling, incident management, and cloud native platforms. Experience in large engineering organisations or technology led transformation. Familiarity with Agile delivery, OKRs, JIRA/Confluence, testing frameworks, and enterprise planning tooling. Ability to work in fast paced engineering environments with multiple competing priorities. ABOUT GOLDMAN SACHS At Goldman Sachs, we commit our people, capital and ideas to help our clients, shareholders and the communities we serve to grow. Founded in 1869, we are a leading global investment banking, securities and investment management firm. Headquartered in New York, we maintain offices around the world. We believe who you are makes you better at what you do. We're committed to fostering and advancing diversity and inclusion in our own workplace and beyond by ensuring every individual within our firm has a number of opportunities to grow professionally and personally, from our training and development opportunities and firmwide networks to benefits, wellness and personal finance offerings and mindfulness programs. Learn more about our culture, benefits, and people at We're committed to finding reasonable accommodations for candidates with special needs or disabilities during our recruiting process. Learn more: Goldman Sachs is an equal opportunity employer and does not discriminate on the basis of race, color, religion, sex, national origin, age, veterans status, disability, or any other characteristic protected by applicable law. Job Info Job Identification 161060 Job Category Vice President Posting Date 03/03/2026, 02:09 PM Locations London, Greater London, England, United Kingdom Healthcare & Medical Services We believe who you are makes you better at what you do. We're committed to fostering and advancing diversity and inclusion in our own workplace and beyond by ensuring every individual within our firm has a number of opportunities to grow professionally and personally We offer competitive vacation policies based on employee level and office location. We promote time off from work to recharge by providing generous vacation entitlements and a minimum of three weeks expected vacation usage each year. Financial Wellness & Retirement We assist employees in saving and planning for retirement, offer financial support for higher education, and provide a number of benefits to help employees prepare for the unexpected. We offer live financial education and content on a variety of topics to address the spectrum of employees' priorities. Health We offer a medical advocacy service for employees and family members facing critical health situations, and counseling and referral services through the Employee Assistance Program (EAP). We provide Global Medical, Security and Travel Assistance and a Workplace Ergonomics Program. We also offer state of the art on site health centers in certain offices. Fitness To encourage employees to live a healthy and active lifestyle, some of our offices feature on site fitness centers. For eligible employees we typically reimburse fees paid for a fitness club membership or activity (up to a pre approved amount). We offer on site child care centers that provide full time and emergency back up care, as well as mother and baby rooms and homework rooms. In every office, we provide advice and counseling services, expectant parent resources and transitional programs for parents returning from parental leave. Adoption, surrogacy, egg donation and egg retrieval stipends are also available. Benefits at Goldman Sachs Read more about the full suite of class leading benefits our firm has to offer. Learn More
Head of Compliance - Job Description Department: Compliance & Security Reports To: Head of Compliance and Security Location: Hybrid, UK (London) Role Purpose As Head of Compliance, you will lead the enterprise compliance strategy and ensure that the organisation meets all regulatory, contractual and internal control requirements across our data center campuses and corporate environment. You will oversee regulatory compliance, policy management, internal controls, audit readiness, third party assurance, data governance alignment and risk management. This role ensures the compliance framework strengthens operational resilience, protects the organisation from sanctions and reputational risk, and supports customer trust and market differentiation. Key Responsibilities Strategy & Governance Define the enterprise compliance strategy, roadmap and operating model; align to ERM, security and resilience frameworks. Develop and maintain the compliance management system, ensuring governance across all business units. Set compliance KPIs and coordinate reporting to executive and board level committees. Ensure policies and procedures remain current, effective and aligned with regulatory expectations. Certification & Regulatory Management Own compliance across relevant regulatory frameworks (e.g., NIS2, GDPR, environmental and energy reporting obligations, critical infrastructure rules) with support from departmental leaders. Own compliance across company certifications such as ISO standards, PCI DSS, SOC1 and SOC2. Monitor emerging regulations across the UK, EU and global markets; provide impact assessments and implementation guidance. Includes working alongside Legal developing and managing the Verne registers. Lead engagement with regulators, auditors and external bodies. Audit, Controls and Assurance Lead internal and external audit programs and ensure evidence, findings and remediation actions are managed effectively. Maintain internal control frameworks, including RACI documents, control inventories, testing schedules and corrective action plans. Coordinate compliance assurance activities across Verne and support InfoSec, ESG, H&S, Development and Operations. Lead and support case management across the company, including incidents, corrective actions plans, risk control plans and maintaining the Compliance Tracker. Policy, Risk & Incident Management Own the compliance policy framework combined with supporting ESG efforts across ethics, anti bribery, anti corruption, conflicts of interest, supplier conduct and data governance. Maintain the enterprise risk register and ensure alignment with all risk owners. Partner with InfoSec, Safety, ESG, Legal, Development and Operations on incident investigations, reporting requirements and regulatory notifications. Vendor and Customer Compliance Support Procurement with supplier compliance due diligence across high risk categories. Support customer audits, RFP responses, contract negotiations and compliance related queries. Ensure compliance clauses and obligations are embedded into supplier and customer contracts in partnership with Legal. Training and Culture Develop and maintain compliance training programs across ethics, code of conduct, security, data handling and operational obligations. Embed a culture of compliance and accountability across all departments. Leadership & Budget Build and lead a high performing compliance team across regions. Secure and manage budgets for audits, legal support, training and compliance systems. Influence senior stakeholders to ensure compliance integration into business decisions. Required Qualifications & Experience Bachelor's degree in a relevant subject or similar experience and professional certification required. Master's degree or level 7 equivalent preferred. 10+ years of progressive management experience in Compliance and/or related disciplines. 5+ years compliance leadership experience within data centres, critical infrastructure, telecoms, financial services or similarly regulated industries. Strong understanding of regulatory frameworks including GDPR, NIS2 and critical infrastructure requirements. Strong understanding and proven delivery of maintaining certification schemes such as ISO standards, PCI DSS, SOC1 and SOC2. Experience working with audit bodies, regulators and external assurance providers. Knowledge of operational processes across DC environments, including security, H&S and ESG intersections is seen as a plus. Relevant Industry certifications, memberships and auditor status expected or willingness to achieve.
Feb 28, 2026
Full time
Head of Compliance - Job Description Department: Compliance & Security Reports To: Head of Compliance and Security Location: Hybrid, UK (London) Role Purpose As Head of Compliance, you will lead the enterprise compliance strategy and ensure that the organisation meets all regulatory, contractual and internal control requirements across our data center campuses and corporate environment. You will oversee regulatory compliance, policy management, internal controls, audit readiness, third party assurance, data governance alignment and risk management. This role ensures the compliance framework strengthens operational resilience, protects the organisation from sanctions and reputational risk, and supports customer trust and market differentiation. Key Responsibilities Strategy & Governance Define the enterprise compliance strategy, roadmap and operating model; align to ERM, security and resilience frameworks. Develop and maintain the compliance management system, ensuring governance across all business units. Set compliance KPIs and coordinate reporting to executive and board level committees. Ensure policies and procedures remain current, effective and aligned with regulatory expectations. Certification & Regulatory Management Own compliance across relevant regulatory frameworks (e.g., NIS2, GDPR, environmental and energy reporting obligations, critical infrastructure rules) with support from departmental leaders. Own compliance across company certifications such as ISO standards, PCI DSS, SOC1 and SOC2. Monitor emerging regulations across the UK, EU and global markets; provide impact assessments and implementation guidance. Includes working alongside Legal developing and managing the Verne registers. Lead engagement with regulators, auditors and external bodies. Audit, Controls and Assurance Lead internal and external audit programs and ensure evidence, findings and remediation actions are managed effectively. Maintain internal control frameworks, including RACI documents, control inventories, testing schedules and corrective action plans. Coordinate compliance assurance activities across Verne and support InfoSec, ESG, H&S, Development and Operations. Lead and support case management across the company, including incidents, corrective actions plans, risk control plans and maintaining the Compliance Tracker. Policy, Risk & Incident Management Own the compliance policy framework combined with supporting ESG efforts across ethics, anti bribery, anti corruption, conflicts of interest, supplier conduct and data governance. Maintain the enterprise risk register and ensure alignment with all risk owners. Partner with InfoSec, Safety, ESG, Legal, Development and Operations on incident investigations, reporting requirements and regulatory notifications. Vendor and Customer Compliance Support Procurement with supplier compliance due diligence across high risk categories. Support customer audits, RFP responses, contract negotiations and compliance related queries. Ensure compliance clauses and obligations are embedded into supplier and customer contracts in partnership with Legal. Training and Culture Develop and maintain compliance training programs across ethics, code of conduct, security, data handling and operational obligations. Embed a culture of compliance and accountability across all departments. Leadership & Budget Build and lead a high performing compliance team across regions. Secure and manage budgets for audits, legal support, training and compliance systems. Influence senior stakeholders to ensure compliance integration into business decisions. Required Qualifications & Experience Bachelor's degree in a relevant subject or similar experience and professional certification required. Master's degree or level 7 equivalent preferred. 10+ years of progressive management experience in Compliance and/or related disciplines. 5+ years compliance leadership experience within data centres, critical infrastructure, telecoms, financial services or similarly regulated industries. Strong understanding of regulatory frameworks including GDPR, NIS2 and critical infrastructure requirements. Strong understanding and proven delivery of maintaining certification schemes such as ISO standards, PCI DSS, SOC1 and SOC2. Experience working with audit bodies, regulators and external assurance providers. Knowledge of operational processes across DC environments, including security, H&S and ESG intersections is seen as a plus. Relevant Industry certifications, memberships and auditor status expected or willingness to achieve.
The Opportunity We're seeking a forward-thinking IT Security and Compliance Manager to play a key role in protecting and shaping our technology environment while supporting our continued business growth. Reporting to the Chief Information Officer, you will lead the security, governance and operational delivery of our IT services, ensuring systems remain secure, compliant and resilient. This is a highly visible role where you'll partner with internal teams, customers and third-party providers to strengthen cyber security, drive certification and audit readiness, and support the development of scalable, reliable IT services. If you enjoy combining strategic security leadership with hands on operational oversight in a collaborative and evolving environment, this is an exciting opportunity to make a genuine impact. Who We Are OpenWorks is a rapidly growing business operating globally with a passion for exceptional engineering and building on a legacy of defence innovation in the North East of England. Our products provide ultra high performance, real time detection, tracking, identification and targeting of dynamic aerial threats. They have been deployed internationally to protect high profile military and civilian assets, and contribute towards the defeat of nuisance, misguided and maliciously deployed drones during operations. We are very proud to have supported a wide range of law enforcement and military operators, protecting many of the most high profile sites and individuals around the world. The amazing things we do are only possible because of a dedicated and passionate team. Why You'll Love Working With Us Join a high energy, collaborative where great ideas thrive, challenges are embraced and people truly love what they do. Here's what our benefits have to offer: Competitive remuneration package, with performance related bonuses and clear progression opportunities. 25 days' holiday + public holidays, with long service rewards and the option to buy up to 5 additional days. Free breakfast and freshly cooked lunches every day, courtesy of Chef Mark and his team. Private healthcare through Aviva, keeping you feeling your best. Life assurance for peace of mind. Salary sacrifice schemes - including EV car and Cycle to Work options for easy, sustainable travel. Paid team socials - from quiz nights and football to board games and more; we love to have fun together. Pension plan with up to 4% employer matched contributions to help you plan for the future. A culture that empowers - we enable change, encourage challenge, and celebrate personal growth. What you'll be doing: Cyber Security and Compliance Policy & Standards: Develop and maintain cyber security policies, standards and procedures. ISMS Management: Own and continuously improve the Information Security Management System. Certification & Frameworks: Lead Cyber Essentials Plus and maintain alignment with recognised security frameworks. Audit Leadership: Manage customer and external cyber security audits and evidence preparation. Governance Alignment: Partner with Contracts, Compliance and Quality teams to meet governance and contractual requirements. Risk & Assurance: Conduct internal audits of systems, suppliers and contractors to identify and manage risk. Incident Management: Lead security incident response, remediation and lessons learned. Threat & Regulatory Monitoring: Track emerging threats, regulatory changes and industry best practice. Customer & Bid Support: Provide cyber security expertise for bids, customer engagements and contract negotiations. Access & Data Protection: Oversee governance of system usage, access controls and data protection. IT Service Delivery and Operational Management Service Performance: Oversee reliable and effective day to day IT service delivery. Escalation Management: Act as the primary escalation point for IT service issues. Supplier Management: Manage and optimise Managed Service Provider performance. Infrastructure Growth: Support scalable and resilient IT infrastructure development. Microsoft 365 Management: Oversee Microsoft 365 and collaboration platforms. Project Delivery: Support IT projects, ensuring security and resilience are embedded. Stakeholder Support: Provide technical guidance to promote secure and effective system use. What we're looking for: IT Security Leadership: Experience in an IT Security, Information Security or IT Management role with responsibility for secure service delivery. Governance & Compliance: Strong understanding of cyber security frameworks, policy development, audits and certification, ideally in regulated industries such as defence or aerospace. ISMS & Risk Management: Proven experience implementing or managing cyber security management systems, risk assessments, and security assurance programmes. Microsoft 365 & Cloud Security: Experience managing or supporting Microsoft 365 environments and associated security controls. Stakeholder & Communication Skills: Ability to engage stakeholders and clearly translate technical risks into business impact. Strategic & Operational Balance: Comfortable balancing hands on IT operational delivery with longer term security and governance objectives. Problem Solving & Adaptability: Strong analytical skills, proactive and self motivated, able to thrive in a growing and evolving organisation. Qualifications and Certifications Essential Relevant degree or equivalent professional experience in IT, Cyber Security or Information Security. Desirable Cyber Essentials / Cyber Essentials Plus training or certification. Experience implementing and maintaining DCC and NIST cyber security accreditations in partnership with external consultants. What you'll get: As a small, fast growing company with over 70 people which is continually expanding, we offer the opportunity for a professional to have autonomy and responsibility. You'll directly see the impact of your efforts. More about us: Vision Help protect the territory and airspace of NATO countries and their allies. Mission Be a world leading provider of autonomous technology for Surveillance applications and Defence. Values Be a Good Egg: Earn respect, have mutual trust and be honest. Do cool stuff: We develop cool tech with an awesome team, and we get stuff done. Be empowered: We are autonomous, reliable and take personal responsibility. We are one team: Look out for each other and the team. Things go wrong: Fail fast, learn and move on. Have fun: We're doing amazing things with passionate people.
Feb 27, 2026
Full time
The Opportunity We're seeking a forward-thinking IT Security and Compliance Manager to play a key role in protecting and shaping our technology environment while supporting our continued business growth. Reporting to the Chief Information Officer, you will lead the security, governance and operational delivery of our IT services, ensuring systems remain secure, compliant and resilient. This is a highly visible role where you'll partner with internal teams, customers and third-party providers to strengthen cyber security, drive certification and audit readiness, and support the development of scalable, reliable IT services. If you enjoy combining strategic security leadership with hands on operational oversight in a collaborative and evolving environment, this is an exciting opportunity to make a genuine impact. Who We Are OpenWorks is a rapidly growing business operating globally with a passion for exceptional engineering and building on a legacy of defence innovation in the North East of England. Our products provide ultra high performance, real time detection, tracking, identification and targeting of dynamic aerial threats. They have been deployed internationally to protect high profile military and civilian assets, and contribute towards the defeat of nuisance, misguided and maliciously deployed drones during operations. We are very proud to have supported a wide range of law enforcement and military operators, protecting many of the most high profile sites and individuals around the world. The amazing things we do are only possible because of a dedicated and passionate team. Why You'll Love Working With Us Join a high energy, collaborative where great ideas thrive, challenges are embraced and people truly love what they do. Here's what our benefits have to offer: Competitive remuneration package, with performance related bonuses and clear progression opportunities. 25 days' holiday + public holidays, with long service rewards and the option to buy up to 5 additional days. Free breakfast and freshly cooked lunches every day, courtesy of Chef Mark and his team. Private healthcare through Aviva, keeping you feeling your best. Life assurance for peace of mind. Salary sacrifice schemes - including EV car and Cycle to Work options for easy, sustainable travel. Paid team socials - from quiz nights and football to board games and more; we love to have fun together. Pension plan with up to 4% employer matched contributions to help you plan for the future. A culture that empowers - we enable change, encourage challenge, and celebrate personal growth. What you'll be doing: Cyber Security and Compliance Policy & Standards: Develop and maintain cyber security policies, standards and procedures. ISMS Management: Own and continuously improve the Information Security Management System. Certification & Frameworks: Lead Cyber Essentials Plus and maintain alignment with recognised security frameworks. Audit Leadership: Manage customer and external cyber security audits and evidence preparation. Governance Alignment: Partner with Contracts, Compliance and Quality teams to meet governance and contractual requirements. Risk & Assurance: Conduct internal audits of systems, suppliers and contractors to identify and manage risk. Incident Management: Lead security incident response, remediation and lessons learned. Threat & Regulatory Monitoring: Track emerging threats, regulatory changes and industry best practice. Customer & Bid Support: Provide cyber security expertise for bids, customer engagements and contract negotiations. Access & Data Protection: Oversee governance of system usage, access controls and data protection. IT Service Delivery and Operational Management Service Performance: Oversee reliable and effective day to day IT service delivery. Escalation Management: Act as the primary escalation point for IT service issues. Supplier Management: Manage and optimise Managed Service Provider performance. Infrastructure Growth: Support scalable and resilient IT infrastructure development. Microsoft 365 Management: Oversee Microsoft 365 and collaboration platforms. Project Delivery: Support IT projects, ensuring security and resilience are embedded. Stakeholder Support: Provide technical guidance to promote secure and effective system use. What we're looking for: IT Security Leadership: Experience in an IT Security, Information Security or IT Management role with responsibility for secure service delivery. Governance & Compliance: Strong understanding of cyber security frameworks, policy development, audits and certification, ideally in regulated industries such as defence or aerospace. ISMS & Risk Management: Proven experience implementing or managing cyber security management systems, risk assessments, and security assurance programmes. Microsoft 365 & Cloud Security: Experience managing or supporting Microsoft 365 environments and associated security controls. Stakeholder & Communication Skills: Ability to engage stakeholders and clearly translate technical risks into business impact. Strategic & Operational Balance: Comfortable balancing hands on IT operational delivery with longer term security and governance objectives. Problem Solving & Adaptability: Strong analytical skills, proactive and self motivated, able to thrive in a growing and evolving organisation. Qualifications and Certifications Essential Relevant degree or equivalent professional experience in IT, Cyber Security or Information Security. Desirable Cyber Essentials / Cyber Essentials Plus training or certification. Experience implementing and maintaining DCC and NIST cyber security accreditations in partnership with external consultants. What you'll get: As a small, fast growing company with over 70 people which is continually expanding, we offer the opportunity for a professional to have autonomy and responsibility. You'll directly see the impact of your efforts. More about us: Vision Help protect the territory and airspace of NATO countries and their allies. Mission Be a world leading provider of autonomous technology for Surveillance applications and Defence. Values Be a Good Egg: Earn respect, have mutual trust and be honest. Do cool stuff: We develop cool tech with an awesome team, and we get stuff done. Be empowered: We are autonomous, reliable and take personal responsibility. We are one team: Look out for each other and the team. Things go wrong: Fail fast, learn and move on. Have fun: We're doing amazing things with passionate people.
Career Choices Dewis Gyrfa Ltd
Manchester, Lancashire
Exciting Times at GMCA Land & Property The GMCA Land and Property team is growing We're looking for passionate professionals to join us as we manage & oversee existing estates and transform buildings and land. This is a unique opportunity to be part of a team that manages GMCA's own estate while working hand-in-hand with local authorities and health partners across Greater Manchester. Together, we shape strategic estates that enable the transformation of public services and deliver lasting public value. Our work goes beyond buildings and land. We: Put our community and customers at the centre of strategic and operational asset management Don't settle for average as property professionals, we are purpose driven and delivery focused, translating strategy into outputs and value Raise professional standards across the public estate Drive decarbonisation and support Greater Manchester's net zero ambitions Unlock land to create social, economic and environmental value for communities Ensure investment is rooted in the heart of our neighbourhoods Champion collaboration and the efficient use of public buildings and resources By joining the GMCA Land and Property team, you'll play a direct role in shaping places, supporting frontline services, and making better use of public assets for the benefit of the public. If you're motivated by purpose, collaboration and impact there's never been a better time to join us. Be part of the team transforming public estates across Greater Manchester. Permanent roles currently being recruited are: Project Manager Capital Works Major Projects Manager (New Builds) Your impact These roles are more than property roles; they are an opportunity to build the foundations of a safer, stronger Greater Manchester. You will help build the infrastructure that enables us to serve every community in Greater Manchester with confidence and professionalism. You will make a difference not only to the organisation but to the wider region it supports. You will be at the heart of the Greater Manchester Fire & Rescue Service s transformation, enabling us to deliver on our four strategic pillars: Prevent & Protect Safer buildings, stronger communities. Respond Outstanding emergency response supported by world-class facilities. People & Culture Modern, inclusive workplaces that promote wellbeing and excellence. Excellence & Value Sustainable, efficient estate management that maximises public value. About You You are a strategic thinker who can see how a well-managed estate can support service readiness, firefighter welfare and improve community protection. You will thrive if you bring: Exceptional experience in property, estates or mission-critical environments. Understand the importance of risk compliance services and statutory frameworks. Proven ability to deliver capital programmes and modern FM projects and models, at scale who can convert ideas into measurable outcomes. Strong commercial acumen and supplier management skills. Able to manage complex contracts budgets and supply chain partners. Confidence in collaborating with Senior Leaders, partners and operational teams through an effective leadership style, who can influence at various operational team and senior levels. Hold a relevant technical or professional qualification with membership of a recognised body such as RICS, IWFM or equivalents is essential. Why Join GMCA and what sets GMFRS apart? We are building for the future. The organisation is undergoing significant positive change and these roles will be integral to shaping new standards of performance and capability. Your impact will help shape the infrastructure that us to protect every community. If you are looking for challenge responsibility and a chance to build something meaningful this is the environment for you. Your work will have a knock-on effect across the region supporting growth resilience and community outcomes and your leadership will influence Greater Manchester's wider growth agenda, supporting initiatives such as the Greater Manchester Strategy, Housing First, Vision Zero, and the Live Well strategy. Benefits Generous pension provision Access to NHS Fleet and vehicle arrangements Hybrid working where role requirements allow Paternity leave benefit of five weeks Professional development and leadership exposure within a modernising organisation How to Apply N.B Residing in GM and/or willing to commute frequently to our GM based sites is a desirable criteria for the application Applications close Sunday 15th March 2026 . Submit your CV to register your interest or request an initial confidential discussion. If you have any questions, feel free to contact Hamza.Buttgreatermanchester-ca.gov.uk Mandatory Information: Artificial Intelligence (AI) We embrace AI to enhance our operations and to innovate our services. However, we value human talent and are looking for passionate individuals to join our organisation. Please ensure you personally complete your application and read all the instructions carefully to maximise your chances of success. Applications that rely too heavily on AI may be rejected during shortlisting, however we understand that AI may be used as a reasonable adjustment, if using AI to support your application, please give a brief explanation why to help ensure fair selection process. Privacy Notice (Click here) Employees on the redeployment register will be given priority for any vacancies in the first instance. If employees are identified as a match from the register then the vacancy may be withdrawn or put on hold pending an outcome. For this opportunity, you must be able to prove you have the right to work in the UK if in doubt please visit the following link Employers' right to work checklist GOV.UK () . Please note we are not a licenced sponsor. Hybrid working This role is part of GMCA's hybrid working scheme. As part of our commitment to 'Build Back Fairer' in Greater Manchester following the Covid-19 pandemic, we have evolved our management methods by trusting and empowering staff to deliver their work in the best way that suits the business and their individual needs, and supports health and wellbeing. Our hybrid working policy sets out a flexible approach, combining attendance at our on-site locations with remote working, typically from home; the location of work is primarily dictated by the needs of the business: 'Do what is right for you and the business on that day'. If appointed to the role you will work with your manager to agree and regularly review the best working pattern for you, your team and your work. GM Elevate Programme If you have completed the GM Elevate (Leadership Development) Programme within the last two years, please indicate this within the 'About You' or 'Supporting Statement' section of your application? Supporting Documents Project Manager Capital Works Calculate your take home pay. Use this service to estimate how much Income Tax and National Insurance you should pay for the current tax year. Employment could affect your benefits, find out more here. Jobs are provided by the Find a Job Service from the Department for Work and Pensions (DWP).
Feb 27, 2026
Full time
Exciting Times at GMCA Land & Property The GMCA Land and Property team is growing We're looking for passionate professionals to join us as we manage & oversee existing estates and transform buildings and land. This is a unique opportunity to be part of a team that manages GMCA's own estate while working hand-in-hand with local authorities and health partners across Greater Manchester. Together, we shape strategic estates that enable the transformation of public services and deliver lasting public value. Our work goes beyond buildings and land. We: Put our community and customers at the centre of strategic and operational asset management Don't settle for average as property professionals, we are purpose driven and delivery focused, translating strategy into outputs and value Raise professional standards across the public estate Drive decarbonisation and support Greater Manchester's net zero ambitions Unlock land to create social, economic and environmental value for communities Ensure investment is rooted in the heart of our neighbourhoods Champion collaboration and the efficient use of public buildings and resources By joining the GMCA Land and Property team, you'll play a direct role in shaping places, supporting frontline services, and making better use of public assets for the benefit of the public. If you're motivated by purpose, collaboration and impact there's never been a better time to join us. Be part of the team transforming public estates across Greater Manchester. Permanent roles currently being recruited are: Project Manager Capital Works Major Projects Manager (New Builds) Your impact These roles are more than property roles; they are an opportunity to build the foundations of a safer, stronger Greater Manchester. You will help build the infrastructure that enables us to serve every community in Greater Manchester with confidence and professionalism. You will make a difference not only to the organisation but to the wider region it supports. You will be at the heart of the Greater Manchester Fire & Rescue Service s transformation, enabling us to deliver on our four strategic pillars: Prevent & Protect Safer buildings, stronger communities. Respond Outstanding emergency response supported by world-class facilities. People & Culture Modern, inclusive workplaces that promote wellbeing and excellence. Excellence & Value Sustainable, efficient estate management that maximises public value. About You You are a strategic thinker who can see how a well-managed estate can support service readiness, firefighter welfare and improve community protection. You will thrive if you bring: Exceptional experience in property, estates or mission-critical environments. Understand the importance of risk compliance services and statutory frameworks. Proven ability to deliver capital programmes and modern FM projects and models, at scale who can convert ideas into measurable outcomes. Strong commercial acumen and supplier management skills. Able to manage complex contracts budgets and supply chain partners. Confidence in collaborating with Senior Leaders, partners and operational teams through an effective leadership style, who can influence at various operational team and senior levels. Hold a relevant technical or professional qualification with membership of a recognised body such as RICS, IWFM or equivalents is essential. Why Join GMCA and what sets GMFRS apart? We are building for the future. The organisation is undergoing significant positive change and these roles will be integral to shaping new standards of performance and capability. Your impact will help shape the infrastructure that us to protect every community. If you are looking for challenge responsibility and a chance to build something meaningful this is the environment for you. Your work will have a knock-on effect across the region supporting growth resilience and community outcomes and your leadership will influence Greater Manchester's wider growth agenda, supporting initiatives such as the Greater Manchester Strategy, Housing First, Vision Zero, and the Live Well strategy. Benefits Generous pension provision Access to NHS Fleet and vehicle arrangements Hybrid working where role requirements allow Paternity leave benefit of five weeks Professional development and leadership exposure within a modernising organisation How to Apply N.B Residing in GM and/or willing to commute frequently to our GM based sites is a desirable criteria for the application Applications close Sunday 15th March 2026 . Submit your CV to register your interest or request an initial confidential discussion. If you have any questions, feel free to contact Hamza.Buttgreatermanchester-ca.gov.uk Mandatory Information: Artificial Intelligence (AI) We embrace AI to enhance our operations and to innovate our services. However, we value human talent and are looking for passionate individuals to join our organisation. Please ensure you personally complete your application and read all the instructions carefully to maximise your chances of success. Applications that rely too heavily on AI may be rejected during shortlisting, however we understand that AI may be used as a reasonable adjustment, if using AI to support your application, please give a brief explanation why to help ensure fair selection process. Privacy Notice (Click here) Employees on the redeployment register will be given priority for any vacancies in the first instance. If employees are identified as a match from the register then the vacancy may be withdrawn or put on hold pending an outcome. For this opportunity, you must be able to prove you have the right to work in the UK if in doubt please visit the following link Employers' right to work checklist GOV.UK () . Please note we are not a licenced sponsor. Hybrid working This role is part of GMCA's hybrid working scheme. As part of our commitment to 'Build Back Fairer' in Greater Manchester following the Covid-19 pandemic, we have evolved our management methods by trusting and empowering staff to deliver their work in the best way that suits the business and their individual needs, and supports health and wellbeing. Our hybrid working policy sets out a flexible approach, combining attendance at our on-site locations with remote working, typically from home; the location of work is primarily dictated by the needs of the business: 'Do what is right for you and the business on that day'. If appointed to the role you will work with your manager to agree and regularly review the best working pattern for you, your team and your work. GM Elevate Programme If you have completed the GM Elevate (Leadership Development) Programme within the last two years, please indicate this within the 'About You' or 'Supporting Statement' section of your application? Supporting Documents Project Manager Capital Works Calculate your take home pay. Use this service to estimate how much Income Tax and National Insurance you should pay for the current tax year. Employment could affect your benefits, find out more here. Jobs are provided by the Find a Job Service from the Department for Work and Pensions (DWP).
Job Title: Senior Head of Health & Safety Events Reporting To: Event Experience Director Function: Event Experience Direct Reports: 3 Location: London Bridge, with UK-wide travel Working Pattern: Hybrid working minimum 2 days per week in the office Hours: Office hours with flexibility required to support events Salary: £90,000 plus 10% performance bonus Role Overview Our client, an events company, is seeking a Senior Head of Health & Safety to provide organisation-wide strategic leadership for health, safety, wellbeing, and compliance across the company, its subsidiaries, and selected partner entities. This role sets the vision for a proactive, prevention-focused safety culture and ensures that all premises, people, and event operations adhere to the highest standards of legal compliance and risk management. The Senior Head of Health & Safety will oversee Event Safety, Security, Traffic Management, Medical functions, and Safeguarding across the client s event portfolio, ensuring safe, compliant, and resilient delivery during planning, build, live, and break phases. The role works closely with event planning teams, freelancers, contractors, and a wide range of external stakeholders. Responsibilities include developing and implementing safe working practices, reviewing and testing contingency plans, and coordinating with blue light services and local councils to deliver secure, compliant, and resilient events. A strong background in events and large-scale operations is essential. Key Responsibilities Strategic Leadership Set and refine the organisational strategy for health and safety across offices, warehouses, event sites, and group companies. Act as principal adviser to the Board, Executive Team, and senior leaders. Lead the development of a unified safety culture built on collaboration and continual improvement. Policy, Governance & Compliance Continue to develop the Group Safety Management System (SMS). Lead creation and assurance of H&S policies for workplace, event, contractor, and incident management. Oversee group audit, inspection, and assurance across the organisation. Ensure compliance with Martyn s Law and building safety legislation. Workplace, Building & Facilities Health & Safety Provide strategic oversight of building safety and facilities-related H&S across offices and warehouses. Partner with the Head of Workspace & Properties to define responsibilities and governance. Oversee fire safety, maintenance-related risk, contractor management, and workspace assessments. Event Safety, Security & Medical Operations Take ownership of emergency response and crisis management for events. Work with the Event Experience Director on business continuity planning to ensure robust preparedness and resilience. Lead the Event Safety & Security Manager, Coordinator, and Medical Manager. Oversee medical governance, provider performance, and operational readiness. Direct family liaison and safeguarding practices in collaboration with the Event Experience Director. Oversee security planning with a focus on protective security measures and counter-terrorism. Maintain planning documentation, RAMS, contingency plans, and compliance with the Purple Guide, Green Guide, and Martyn s Law. Build and maintain strong relationships with Safety Advisory Groups (SAGs), blue light services, and local authorities. Traffic Management Leadership Lead the Traffic Planning Manager and Traffic Management Planner. Oversee traffic plans, road closures, sterile route design, and hostile vehicle mitigation (HVM) deployment. Group-Wide Risk Management Direct risk assessments across offices, warehouses, events, and subsidiaries. Lead investigations and regulatory reporting. Ensure the organisation meets all legal reporting duties, including RIDDOR. Culture, Engagement & Training Champion health and safety training and induction programmes. Mentor managers and build health and safety capability across teams. Required Skills & Experience Essential Level 6 Occupational Health & Safety Diploma. NEBOSH General Certificate (minimum); NEBOSH Diploma preferred. Experience leading health and safety across multi-site organisations, including offices, warehouses, and events. Strong knowledge of CDM regulations, Purple Guide, Green Guide, traffic management, and medical governance. Proven leadership in large-scale event safety planning. Security management experience. Fire safety and environmental experience. Experience working with emergency services, SAGs, and regulators. Desired Level 4 Spectator Safety Safety Officer qualification. Experience supporting subsidiaries or partner companies. Training, mentoring, and coaching experience. Crowd dynamics and mass participation event experience.
Feb 26, 2026
Full time
Job Title: Senior Head of Health & Safety Events Reporting To: Event Experience Director Function: Event Experience Direct Reports: 3 Location: London Bridge, with UK-wide travel Working Pattern: Hybrid working minimum 2 days per week in the office Hours: Office hours with flexibility required to support events Salary: £90,000 plus 10% performance bonus Role Overview Our client, an events company, is seeking a Senior Head of Health & Safety to provide organisation-wide strategic leadership for health, safety, wellbeing, and compliance across the company, its subsidiaries, and selected partner entities. This role sets the vision for a proactive, prevention-focused safety culture and ensures that all premises, people, and event operations adhere to the highest standards of legal compliance and risk management. The Senior Head of Health & Safety will oversee Event Safety, Security, Traffic Management, Medical functions, and Safeguarding across the client s event portfolio, ensuring safe, compliant, and resilient delivery during planning, build, live, and break phases. The role works closely with event planning teams, freelancers, contractors, and a wide range of external stakeholders. Responsibilities include developing and implementing safe working practices, reviewing and testing contingency plans, and coordinating with blue light services and local councils to deliver secure, compliant, and resilient events. A strong background in events and large-scale operations is essential. Key Responsibilities Strategic Leadership Set and refine the organisational strategy for health and safety across offices, warehouses, event sites, and group companies. Act as principal adviser to the Board, Executive Team, and senior leaders. Lead the development of a unified safety culture built on collaboration and continual improvement. Policy, Governance & Compliance Continue to develop the Group Safety Management System (SMS). Lead creation and assurance of H&S policies for workplace, event, contractor, and incident management. Oversee group audit, inspection, and assurance across the organisation. Ensure compliance with Martyn s Law and building safety legislation. Workplace, Building & Facilities Health & Safety Provide strategic oversight of building safety and facilities-related H&S across offices and warehouses. Partner with the Head of Workspace & Properties to define responsibilities and governance. Oversee fire safety, maintenance-related risk, contractor management, and workspace assessments. Event Safety, Security & Medical Operations Take ownership of emergency response and crisis management for events. Work with the Event Experience Director on business continuity planning to ensure robust preparedness and resilience. Lead the Event Safety & Security Manager, Coordinator, and Medical Manager. Oversee medical governance, provider performance, and operational readiness. Direct family liaison and safeguarding practices in collaboration with the Event Experience Director. Oversee security planning with a focus on protective security measures and counter-terrorism. Maintain planning documentation, RAMS, contingency plans, and compliance with the Purple Guide, Green Guide, and Martyn s Law. Build and maintain strong relationships with Safety Advisory Groups (SAGs), blue light services, and local authorities. Traffic Management Leadership Lead the Traffic Planning Manager and Traffic Management Planner. Oversee traffic plans, road closures, sterile route design, and hostile vehicle mitigation (HVM) deployment. Group-Wide Risk Management Direct risk assessments across offices, warehouses, events, and subsidiaries. Lead investigations and regulatory reporting. Ensure the organisation meets all legal reporting duties, including RIDDOR. Culture, Engagement & Training Champion health and safety training and induction programmes. Mentor managers and build health and safety capability across teams. Required Skills & Experience Essential Level 6 Occupational Health & Safety Diploma. NEBOSH General Certificate (minimum); NEBOSH Diploma preferred. Experience leading health and safety across multi-site organisations, including offices, warehouses, and events. Strong knowledge of CDM regulations, Purple Guide, Green Guide, traffic management, and medical governance. Proven leadership in large-scale event safety planning. Security management experience. Fire safety and environmental experience. Experience working with emergency services, SAGs, and regulators. Desired Level 4 Spectator Safety Safety Officer qualification. Experience supporting subsidiaries or partner companies. Training, mentoring, and coaching experience. Crowd dynamics and mass participation event experience.
Overview Ready to be pushed beyond what you think you're capable of? At Coinbase, our mission is to increase economic freedom in the world. It's a massive, ambitious opportunity that demands the best of us, every day, as we build the emerging onchain platform - and with it, the future global financial system. To achieve our mission, we're seeking a very specific candidate. We want someone who is passionate about our mission and who believes in the power of crypto and blockchain technology to update the financial system. We want someone who is eager to leave their mark on the world, who relishes the pressure and privilege of working with high caliber colleagues, and who actively seeks feedback to keep leveling up. We want someone who will run towards, not away from, solving the company's hardest problems. Our work culture is intense and isn't for everyone. If you want to build the future alongside others who excel in their disciplines and expect the same from you, there's no better place to be. While many roles at Coinbase are remote-first, we are not remote-only. In-person participation is required throughout the year. Team and company-wide offsites are held multiple times annually to foster collaboration, connection, and alignment. Attendance is expected and fully supported. At Coinbase, we are committed to setting the global standard for the secure custody and safeguarding of client assets. Role and responsibilities Head of Global Safeguarding / Client Asset Management leads a high performing, cross regional team responsible for ensuring the safe custody, segregation, and regulatory compliance of client assets across all Coinbase entities and products. This is a critical leadership role with significant visibility to senior executives, Boards, and regulators, and it will shape how Coinbase designs and operates its global safeguarding framework for both fiat and digital assets. You will own the end to end safeguarding lifecycle - from policy design and control frameworks, through daily reconciliations and rebalancing, to incident management, regulatory reporting, and audit - ensuring that Coinbase protects client assets with institutional grade rigor in every jurisdiction where we operate. What you'll be doing: Set the global strategy and framework for client asset safeguarding, defining the vision, target operating model, and key performance / risk indicators for safeguarding and segregation of client assets across all Coinbase entities and products. Lead and develop a global safeguarding/client asset management team, including managers and subject matter experts across regions, fostering a culture of operational excellence, accountability, and continuous improvement. Own the Global Safeguarding Control Framework, including policies, standards, procedures, and control objectives that ensure compliance with applicable regulations (e.g., EMRs/PSRs, MiCA, CSSF, FCA and other local regimes), as well as internal risk appetite and governance expectations. Oversee daily safeguarding, reconciliation, and rebalancing processes globally, ensuring: Client assets are fully and appropriately segregated from firm assets in books and records. Safeguarding and custody wallet balances align with client obligations at all times. Exceptions are promptly identified, investigated, escalated, and remediated. Provide executive level oversight of reconciliation break investigation and resolution, acting as the primary escalation point for complex issues, driving robust root cause analysis, sustainable remediation, and thematic control enhancements. Act as (or oversee) the Directly Responsible Individual / designated safeguarding owner(s) for relevant entities, ensuring: A complete, accurate, and current global client asset incident log is maintained. Safeguarding incidents are triaged, escalated, and communicated internally and externally in line with regulatory expectations. Regulatory notifications and remedial action plans are timely, accurate, and well controlled. Lead preparation of management information and insights for Boards and governance forums (e.g., Risk, Audit, and Compliance Committees) across entities, including: Safeguarding performance, KPI/KRI trends, and incident themes. Control testing outcomes, remediation status, and upcoming regulatory or audit milestones. Oversee global regulatory reporting related to client asset safeguarding, ensuring reports are complete, accurate, consistent across entities, and submitted in line with local requirements and internal governance timelines. Partner closely with Treasury, Accounting, Finance, Product, Engineering, Legal, Compliance, and Risk to: Embed safeguarding and segregation requirements into product design, payment flows, wallet architecture, and ledger constructs "by design". Assess the safeguarding implications of new products, jurisdictions, counterparties, and banking/custody arrangements before launch. Lead internal and external audit engagements on safeguarding and client asset arrangements globally, including: Scoping and readiness. Management of requests and walkthroughs. Response to findings and implementation of management action plans. Design and deliver global training and awareness on safeguarding and client asset management, tailored for: First line operational teams responsible for daily reconciliations and custody processes. Second and third line partners (Risk, Compliance, Internal Audit). Leadership and Boards who need clear, decision useful views of safeguarding risk. Continuously improve data, systems, and automation underpinning safeguarding, including: Enhancing data quality and lineage between on chain and off chain systems, ledgers, and reporting. Reducing manual touch points and spreadsheet risk through scalable tooling, dashboards, and controls. Qualifications What we look for in you (ie. job requirements) Extensive leadership experience (typically 10+ years) in financial services, asset custody, payments, or a highly regulated environment, with a strong track record of owning safeguarding, client asset, or closely related operations at scale. Deep, hands on expertise in client asset safeguarding and/or regulatory asset protection regimes (for example EMRs/PSRs, FCA safeguarding rules, MiCA, CSSF, or comparable frameworks in other jurisdictions), including practical experience designing and operating control frameworks, reconciliations, and segregation models. Proven ability to lead global, cross functional teams and manage complex, multi entity operating models, including remote teams across time zones and matrixed reporting lines. Demonstrated success building and maturing control frameworks, including: Policy and standard setting. Control design and implementation. Testing, monitoring, and issue remediation. Audit and regulatory engagement. Strong technical and analytical acumen in reconciliation, rebalancing, and custody operations (fiat and/or digital assets), with the ability to dive into detail while maintaining an enterprise level perspective on risk. Exceptional stakeholder management and communication skills, with experience: Presenting to Boards, regulators, and senior executives. Translating complex operational and regulatory topics into clear, actionable narratives for non experts. Influencing decisions across Product, Engineering, Finance, Legal, Compliance, and Risk. Proven incident management experience, including: Leading end to end response to safeguarding or control failures. Coordinating across first, second, and third lines of defense. Designing sustainable remediation and demonstrating closure to auditors and regulators. Demonstrated ability to operate in high growth, fast paced, and ambiguous environments, with a builder mindset and comfort balancing strategic design with hands on problem solving. High integrity and sound judgment, with a strong sense of ownership over client outcomes and a commitment to Coinbase's mission and values. Nice to have Experience in crypto / digital assets, payment institutions, or e money institutions, especially where safeguarding frameworks intersect with on chain activity and wallet architectures. Experience working with global banking and custody partners, and familiarity with ISAE 3000 / SOC type assurance over safeguarding or client asset arrangements. Prior leadership responsibility for multi jurisdictional regulatory portfolios, including direct engagement with regulators on safeguarding, client assets, or operational resilience matters. Professional qualifications in accounting, risk, compliance, or audit (e.g., CPA, CA, ACCA, CFA, FRM, CAMS) and/or relevant regulatory or operations certifications. Join us and help set the global benchmark for how client assets are safeguarded, as we continue to build the future of finance at Coinbase. Pay Transparency Notice: Depending on your work location, the target annual salary for this position can range from GBP €115,020 to €127,800 + target bonus + target equity + benefits Base salary range shown. Total compensation also includes equity and bonus eligibility and benefits: £115,020-£127,800 GBP Commitment to Equal Opportunity . click apply for full job details
Feb 26, 2026
Full time
Overview Ready to be pushed beyond what you think you're capable of? At Coinbase, our mission is to increase economic freedom in the world. It's a massive, ambitious opportunity that demands the best of us, every day, as we build the emerging onchain platform - and with it, the future global financial system. To achieve our mission, we're seeking a very specific candidate. We want someone who is passionate about our mission and who believes in the power of crypto and blockchain technology to update the financial system. We want someone who is eager to leave their mark on the world, who relishes the pressure and privilege of working with high caliber colleagues, and who actively seeks feedback to keep leveling up. We want someone who will run towards, not away from, solving the company's hardest problems. Our work culture is intense and isn't for everyone. If you want to build the future alongside others who excel in their disciplines and expect the same from you, there's no better place to be. While many roles at Coinbase are remote-first, we are not remote-only. In-person participation is required throughout the year. Team and company-wide offsites are held multiple times annually to foster collaboration, connection, and alignment. Attendance is expected and fully supported. At Coinbase, we are committed to setting the global standard for the secure custody and safeguarding of client assets. Role and responsibilities Head of Global Safeguarding / Client Asset Management leads a high performing, cross regional team responsible for ensuring the safe custody, segregation, and regulatory compliance of client assets across all Coinbase entities and products. This is a critical leadership role with significant visibility to senior executives, Boards, and regulators, and it will shape how Coinbase designs and operates its global safeguarding framework for both fiat and digital assets. You will own the end to end safeguarding lifecycle - from policy design and control frameworks, through daily reconciliations and rebalancing, to incident management, regulatory reporting, and audit - ensuring that Coinbase protects client assets with institutional grade rigor in every jurisdiction where we operate. What you'll be doing: Set the global strategy and framework for client asset safeguarding, defining the vision, target operating model, and key performance / risk indicators for safeguarding and segregation of client assets across all Coinbase entities and products. Lead and develop a global safeguarding/client asset management team, including managers and subject matter experts across regions, fostering a culture of operational excellence, accountability, and continuous improvement. Own the Global Safeguarding Control Framework, including policies, standards, procedures, and control objectives that ensure compliance with applicable regulations (e.g., EMRs/PSRs, MiCA, CSSF, FCA and other local regimes), as well as internal risk appetite and governance expectations. Oversee daily safeguarding, reconciliation, and rebalancing processes globally, ensuring: Client assets are fully and appropriately segregated from firm assets in books and records. Safeguarding and custody wallet balances align with client obligations at all times. Exceptions are promptly identified, investigated, escalated, and remediated. Provide executive level oversight of reconciliation break investigation and resolution, acting as the primary escalation point for complex issues, driving robust root cause analysis, sustainable remediation, and thematic control enhancements. Act as (or oversee) the Directly Responsible Individual / designated safeguarding owner(s) for relevant entities, ensuring: A complete, accurate, and current global client asset incident log is maintained. Safeguarding incidents are triaged, escalated, and communicated internally and externally in line with regulatory expectations. Regulatory notifications and remedial action plans are timely, accurate, and well controlled. Lead preparation of management information and insights for Boards and governance forums (e.g., Risk, Audit, and Compliance Committees) across entities, including: Safeguarding performance, KPI/KRI trends, and incident themes. Control testing outcomes, remediation status, and upcoming regulatory or audit milestones. Oversee global regulatory reporting related to client asset safeguarding, ensuring reports are complete, accurate, consistent across entities, and submitted in line with local requirements and internal governance timelines. Partner closely with Treasury, Accounting, Finance, Product, Engineering, Legal, Compliance, and Risk to: Embed safeguarding and segregation requirements into product design, payment flows, wallet architecture, and ledger constructs "by design". Assess the safeguarding implications of new products, jurisdictions, counterparties, and banking/custody arrangements before launch. Lead internal and external audit engagements on safeguarding and client asset arrangements globally, including: Scoping and readiness. Management of requests and walkthroughs. Response to findings and implementation of management action plans. Design and deliver global training and awareness on safeguarding and client asset management, tailored for: First line operational teams responsible for daily reconciliations and custody processes. Second and third line partners (Risk, Compliance, Internal Audit). Leadership and Boards who need clear, decision useful views of safeguarding risk. Continuously improve data, systems, and automation underpinning safeguarding, including: Enhancing data quality and lineage between on chain and off chain systems, ledgers, and reporting. Reducing manual touch points and spreadsheet risk through scalable tooling, dashboards, and controls. Qualifications What we look for in you (ie. job requirements) Extensive leadership experience (typically 10+ years) in financial services, asset custody, payments, or a highly regulated environment, with a strong track record of owning safeguarding, client asset, or closely related operations at scale. Deep, hands on expertise in client asset safeguarding and/or regulatory asset protection regimes (for example EMRs/PSRs, FCA safeguarding rules, MiCA, CSSF, or comparable frameworks in other jurisdictions), including practical experience designing and operating control frameworks, reconciliations, and segregation models. Proven ability to lead global, cross functional teams and manage complex, multi entity operating models, including remote teams across time zones and matrixed reporting lines. Demonstrated success building and maturing control frameworks, including: Policy and standard setting. Control design and implementation. Testing, monitoring, and issue remediation. Audit and regulatory engagement. Strong technical and analytical acumen in reconciliation, rebalancing, and custody operations (fiat and/or digital assets), with the ability to dive into detail while maintaining an enterprise level perspective on risk. Exceptional stakeholder management and communication skills, with experience: Presenting to Boards, regulators, and senior executives. Translating complex operational and regulatory topics into clear, actionable narratives for non experts. Influencing decisions across Product, Engineering, Finance, Legal, Compliance, and Risk. Proven incident management experience, including: Leading end to end response to safeguarding or control failures. Coordinating across first, second, and third lines of defense. Designing sustainable remediation and demonstrating closure to auditors and regulators. Demonstrated ability to operate in high growth, fast paced, and ambiguous environments, with a builder mindset and comfort balancing strategic design with hands on problem solving. High integrity and sound judgment, with a strong sense of ownership over client outcomes and a commitment to Coinbase's mission and values. Nice to have Experience in crypto / digital assets, payment institutions, or e money institutions, especially where safeguarding frameworks intersect with on chain activity and wallet architectures. Experience working with global banking and custody partners, and familiarity with ISAE 3000 / SOC type assurance over safeguarding or client asset arrangements. Prior leadership responsibility for multi jurisdictional regulatory portfolios, including direct engagement with regulators on safeguarding, client assets, or operational resilience matters. Professional qualifications in accounting, risk, compliance, or audit (e.g., CPA, CA, ACCA, CFA, FRM, CAMS) and/or relevant regulatory or operations certifications. Join us and help set the global benchmark for how client assets are safeguarded, as we continue to build the future of finance at Coinbase. Pay Transparency Notice: Depending on your work location, the target annual salary for this position can range from GBP €115,020 to €127,800 + target bonus + target equity + benefits Base salary range shown. Total compensation also includes equity and bonus eligibility and benefits: £115,020-£127,800 GBP Commitment to Equal Opportunity . click apply for full job details
Location: Stevenage OR Bolton (2 days per week onsite) Competitive Salary Role details: Our client, a prominent organisation within the defence and security sector, is seeking a skilled Incident Responder to join their team in Stevenage or Bolton. This role is focused on leading digital forensics and incident response activities, while also advancing adversarial exposure validation through red and purple team exercises. The successful individual will be critical in enhancing threat detection, response, and control strategies against real-world cyber threats within a high-security environment. Key Responsibilities: Lead digital forensics and incident response (DFIR) activities, maintaining lab readiness and artefact management to meet forensic objectives. Develop and update forensic tools and environments to ensure operational capability (e.g., Magnet Axiom, Autopsy). Conduct in-depth forensic analysis, malware reverse engineering, and cyber investigations of complex incidents. Ensure proper chain of custody, evidence handling, and accurate documentation of forensic activities. Lead tabletop exercises to test and improve incident response plans and forensic readiness. Investigate network and endpoint security events, including AV scans and incident remediation, validating security alerts. Collaborate with security teams and external authorities to improve incident reporting, detection, and response capabilities. Support the development and maintenance of security policies, standards, and incident response playbooks. Job Requirements: Significant experience in digital forensics, incident response, and malware analysis. Understanding of cyber threat intelligence, adversarial emulation tools, and common TTPs (Threat, Techniques, Procedures). Experience with forensic software such as Magnet Axiom or Autopsy. Proven ability to handle complex security incidents including ransomware, business email compromise, and large-scale phishing attacks. Familiarity with network and endpoint investigation techniques, and security alert validation. Knowledge of threat scenarios and advanced testing of detection platforms like SIEM, EDR, and XDR. Experience in managing incident cases and developing mitigation strategies. Effective communication skills, with ability to advise leadership and produce technical and executive reports. Desirable Skills & Experience: Proficiency in adversarial emulation tools such as Caldera, Atomic Red Team, AttackIQ, Cobalt Strike. Ability to translate threat intelligence into actionable testing and validation exercises. Experience in producing detection coverage metrics and forensic reports to support organisational maturity. Knowledge of emerging security trends, tools, and methodologies within cyber defence. Experience working within or alongside security operations centres (SOC). Understanding of UK security clearance processes and working within high-security environments. What we can offer you: A competitive salary aligned with experience. Hybrid working model with a minimum of two days on-site per week. Additional benefits including a company bonus, pension contributions, paid overtime, and flexible leave options. Enhanced parental leave policies and access to excellent site facilities. Healthcare Cash Plan for everyday health expenses. Opportunities to develop your skills within a purpose-driven organisation contributing to national security. If you're an experienced Incident Responder with a passion for cyber threat mitigation and forensic analysis, this is your next move. Apply now to become part of a team vital to safeguarding national security and pushing cyber resilience forward.
Feb 17, 2026
Full time
Location: Stevenage OR Bolton (2 days per week onsite) Competitive Salary Role details: Our client, a prominent organisation within the defence and security sector, is seeking a skilled Incident Responder to join their team in Stevenage or Bolton. This role is focused on leading digital forensics and incident response activities, while also advancing adversarial exposure validation through red and purple team exercises. The successful individual will be critical in enhancing threat detection, response, and control strategies against real-world cyber threats within a high-security environment. Key Responsibilities: Lead digital forensics and incident response (DFIR) activities, maintaining lab readiness and artefact management to meet forensic objectives. Develop and update forensic tools and environments to ensure operational capability (e.g., Magnet Axiom, Autopsy). Conduct in-depth forensic analysis, malware reverse engineering, and cyber investigations of complex incidents. Ensure proper chain of custody, evidence handling, and accurate documentation of forensic activities. Lead tabletop exercises to test and improve incident response plans and forensic readiness. Investigate network and endpoint security events, including AV scans and incident remediation, validating security alerts. Collaborate with security teams and external authorities to improve incident reporting, detection, and response capabilities. Support the development and maintenance of security policies, standards, and incident response playbooks. Job Requirements: Significant experience in digital forensics, incident response, and malware analysis. Understanding of cyber threat intelligence, adversarial emulation tools, and common TTPs (Threat, Techniques, Procedures). Experience with forensic software such as Magnet Axiom or Autopsy. Proven ability to handle complex security incidents including ransomware, business email compromise, and large-scale phishing attacks. Familiarity with network and endpoint investigation techniques, and security alert validation. Knowledge of threat scenarios and advanced testing of detection platforms like SIEM, EDR, and XDR. Experience in managing incident cases and developing mitigation strategies. Effective communication skills, with ability to advise leadership and produce technical and executive reports. Desirable Skills & Experience: Proficiency in adversarial emulation tools such as Caldera, Atomic Red Team, AttackIQ, Cobalt Strike. Ability to translate threat intelligence into actionable testing and validation exercises. Experience in producing detection coverage metrics and forensic reports to support organisational maturity. Knowledge of emerging security trends, tools, and methodologies within cyber defence. Experience working within or alongside security operations centres (SOC). Understanding of UK security clearance processes and working within high-security environments. What we can offer you: A competitive salary aligned with experience. Hybrid working model with a minimum of two days on-site per week. Additional benefits including a company bonus, pension contributions, paid overtime, and flexible leave options. Enhanced parental leave policies and access to excellent site facilities. Healthcare Cash Plan for everyday health expenses. Opportunities to develop your skills within a purpose-driven organisation contributing to national security. If you're an experienced Incident Responder with a passion for cyber threat mitigation and forensic analysis, this is your next move. Apply now to become part of a team vital to safeguarding national security and pushing cyber resilience forward.
Head of Application Operations Department: Engineering Employment Type: Full Time Location: London Reporting To: VP Platform Engineering & Technical Operations Compensation: £115,000 - £120,000 / year Description Reward Gateway and Edenred are global leaders in employee benefits and engagement, helping organisations attract, engage and retain talent through a unified employee experience platform. Guided by the missions "Making the World a Better Place to Work" and "Enriching connections, for good", we focus on improving employee engagement and building resilient workplaces that enhance people's daily lives. As Director of Application Operations, you will partner with the VP PETO to shape and deliver the support and operability vision, ensuring our applications and platforms are well operated, and the experience of our users globally has the correct priority, whilst enabling our Engineering teams to innovate. You will lead a key domain within the PETO organisation, driving high quality and timely technical support operations while embedding modern engineering practices and striving for continual improvement. Your domain will be a key enabler in delivering great service to our customers and to our Engineering teams, and you will drive this through effective KPIs and metrics. You will liaise closely with your peers across the PETO organisation, including Data, Platform & Infrastructure to drive a coherent strategy. You will align priorities with business goals to deliver reliable, high quality experiences for our customers, merchants and their employees. Key Responsibilities Lead the Application Operations strategy with PETO leadership, redesigning ITIL processes, ticket flows and the operating model to build a best in class function. Re engineer Jira Service Management workflows, queues, automations, and implement a unified Service Catalogue mapping services to owners, SLAs/SLOs, request types, runbooks and escalation paths. Establish strong intake and triage controls, with clear priority/severity definitions, escalation criteria and evidence standards to increase L2 first time resolution and protect L3 capacity. Own end to end incident management, embedding industry standard major incident practices, command roles, stakeholder communications, status pages and high quality post incident reviews. Build and run the Problem Management function, driving RCA and preventative actions that reduce recurrence and improve system resilience. Shift Technical Operations toward proactive protections (SLOs, error budgets, early warning signals, auto remediation, runbook automation) while maintaining excellent reactive response. Define the PETO TechOps model, standardising incident, problem and change processes and integrating change enablement with JSM/Service Catalogue guardrails to reduce change failure rate. Build and maintain a knowledge base and operability standards-runbooks, playbooks, ownership models, on call readiness-to support shift left and consistent operational quality. Define and manage data driven KPIs (MTTR, MTTD, recurrence, L2 resolution %, SLO/SLA compliance, CSAT), using insights to drive prioritisation and improvement. Develop the team from L2 to L2.5 capability through automation, safe configuration changes, feature flag operations and scripted runbooks to reduce escalations. Lead and grow senior operations engineers, establishing career pathways, succession planning and a culture of excellence and accountability. Partner with executives and cross functional teams to align Technical Operations impact with product and customer value, balancing technical debt and business priorities. Skills, Knowledge and Experience Expert ITIL practitioner with experience designing and maturing Incident, Problem and Change Management in agile, product led environments. Deep Jira Service Management expertise (workflows, queues, automations, SLAs), plus strong Service Catalogue and Confluence knowledge management capability. Skilled in building triage and escalation models that maximise L2 resolution, protect L3 focus and ensure high quality, reproducible handoffs. Experienced major incident lead, proficient in incident command, stakeholder communications, status page practices and driving effective RCAs. Strong Problem Management and RCA facilitation with a track record of implementing preventative actions that reduce operational risk. Proficient with observability and ITSM tooling to enable proactive monitoring, SLO/SLA definition and data driven operational dashboards. Strong people leadership with experience organising teams for fast execution, accountability and healthy on call practices. Clear, concise communicator able to translate complex technical issues for all stakeholder levels. Strong background in integrating ITIL practices into modern Agile, product centric ways of working. Solid commercial and product understanding with the ability to balance operational readiness, technical debt and delivery priorities. Experience advancing support teams toward L2.5 capabilities through automation, runbooks and safe operational guardrails. Familiarity with cloud native and API first architectures, partner integrations and ecosystem level monitoring. Experience establishing OKRs and operational performance metrics (including DORA) to drive continuous improvement. The interview process Online interview with the Talent Acquisition Partner Interview with the VP Platform Engineering & Technical Operations & VP Engineering At Reward Gateway Edenred we are committed to ensuring an inclusive and accessible recruitment process for all candidates. If you have any specific requirements or need reasonable adjustments at any stage of the recruitment journey, please let your Talent Acquisition Partner know. Your needs are important to us, and we want to ensure an equitable experience for every candidate. Be comfortable. Be you. At Reward Gateway, we want all our employees to feel comfortable bringing their passion, creativity and individuality to work. We value all cultures, backgrounds, and experiences, as we truly believe that diversity drives innovation. Express yourself, join our community and help us Make the World a Better Place to Work.
Feb 15, 2026
Full time
Head of Application Operations Department: Engineering Employment Type: Full Time Location: London Reporting To: VP Platform Engineering & Technical Operations Compensation: £115,000 - £120,000 / year Description Reward Gateway and Edenred are global leaders in employee benefits and engagement, helping organisations attract, engage and retain talent through a unified employee experience platform. Guided by the missions "Making the World a Better Place to Work" and "Enriching connections, for good", we focus on improving employee engagement and building resilient workplaces that enhance people's daily lives. As Director of Application Operations, you will partner with the VP PETO to shape and deliver the support and operability vision, ensuring our applications and platforms are well operated, and the experience of our users globally has the correct priority, whilst enabling our Engineering teams to innovate. You will lead a key domain within the PETO organisation, driving high quality and timely technical support operations while embedding modern engineering practices and striving for continual improvement. Your domain will be a key enabler in delivering great service to our customers and to our Engineering teams, and you will drive this through effective KPIs and metrics. You will liaise closely with your peers across the PETO organisation, including Data, Platform & Infrastructure to drive a coherent strategy. You will align priorities with business goals to deliver reliable, high quality experiences for our customers, merchants and their employees. Key Responsibilities Lead the Application Operations strategy with PETO leadership, redesigning ITIL processes, ticket flows and the operating model to build a best in class function. Re engineer Jira Service Management workflows, queues, automations, and implement a unified Service Catalogue mapping services to owners, SLAs/SLOs, request types, runbooks and escalation paths. Establish strong intake and triage controls, with clear priority/severity definitions, escalation criteria and evidence standards to increase L2 first time resolution and protect L3 capacity. Own end to end incident management, embedding industry standard major incident practices, command roles, stakeholder communications, status pages and high quality post incident reviews. Build and run the Problem Management function, driving RCA and preventative actions that reduce recurrence and improve system resilience. Shift Technical Operations toward proactive protections (SLOs, error budgets, early warning signals, auto remediation, runbook automation) while maintaining excellent reactive response. Define the PETO TechOps model, standardising incident, problem and change processes and integrating change enablement with JSM/Service Catalogue guardrails to reduce change failure rate. Build and maintain a knowledge base and operability standards-runbooks, playbooks, ownership models, on call readiness-to support shift left and consistent operational quality. Define and manage data driven KPIs (MTTR, MTTD, recurrence, L2 resolution %, SLO/SLA compliance, CSAT), using insights to drive prioritisation and improvement. Develop the team from L2 to L2.5 capability through automation, safe configuration changes, feature flag operations and scripted runbooks to reduce escalations. Lead and grow senior operations engineers, establishing career pathways, succession planning and a culture of excellence and accountability. Partner with executives and cross functional teams to align Technical Operations impact with product and customer value, balancing technical debt and business priorities. Skills, Knowledge and Experience Expert ITIL practitioner with experience designing and maturing Incident, Problem and Change Management in agile, product led environments. Deep Jira Service Management expertise (workflows, queues, automations, SLAs), plus strong Service Catalogue and Confluence knowledge management capability. Skilled in building triage and escalation models that maximise L2 resolution, protect L3 focus and ensure high quality, reproducible handoffs. Experienced major incident lead, proficient in incident command, stakeholder communications, status page practices and driving effective RCAs. Strong Problem Management and RCA facilitation with a track record of implementing preventative actions that reduce operational risk. Proficient with observability and ITSM tooling to enable proactive monitoring, SLO/SLA definition and data driven operational dashboards. Strong people leadership with experience organising teams for fast execution, accountability and healthy on call practices. Clear, concise communicator able to translate complex technical issues for all stakeholder levels. Strong background in integrating ITIL practices into modern Agile, product centric ways of working. Solid commercial and product understanding with the ability to balance operational readiness, technical debt and delivery priorities. Experience advancing support teams toward L2.5 capabilities through automation, runbooks and safe operational guardrails. Familiarity with cloud native and API first architectures, partner integrations and ecosystem level monitoring. Experience establishing OKRs and operational performance metrics (including DORA) to drive continuous improvement. The interview process Online interview with the Talent Acquisition Partner Interview with the VP Platform Engineering & Technical Operations & VP Engineering At Reward Gateway Edenred we are committed to ensuring an inclusive and accessible recruitment process for all candidates. If you have any specific requirements or need reasonable adjustments at any stage of the recruitment journey, please let your Talent Acquisition Partner know. Your needs are important to us, and we want to ensure an equitable experience for every candidate. Be comfortable. Be you. At Reward Gateway, we want all our employees to feel comfortable bringing their passion, creativity and individuality to work. We value all cultures, backgrounds, and experiences, as we truly believe that diversity drives innovation. Express yourself, join our community and help us Make the World a Better Place to Work.
Director - Cybersecurity - Cyber Resilience, TC, UKI Location: London Other locations: Primary Location Only Date: 27 Jan 2026 Requisition ID: At EY, we're all in to shape your future with confidence. We'll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world. Job Title: Director - Cybersecurity - Cyber Resilience About EY: At EY, we are committed to building a better working world. Our Cybersecurity Consulting Practice is rapidly expanding, and we are investing in our capabilities to meet the increasing demand for cybersecurity solutions. Join us and be part of a global team of over 13,000 professionals dedicated to delivering cutting-edge security transformation programs and services. The Opportunity: As a Director in Cybersecurity - Cyber Resilience, you will bring diverse perspectives and deep subject matter expertise to deliver high quality insights and outcomes for our clients. You will play a strategic leadership role in shaping and overseeing complex cybersecurity resilience engagements, strengthening senior client relationships, and guiding teams to develop innovative, practical solutions that help build greater resilience into their businesses. Key Responsibilities: Lead and deliver cyber resilience transformation programmes, owning end-to-end engagement delivery (scope, quality, timeline, budget) and ensuring outcomes measurably improve preparedness, response, and recovery. Design, run, and continuously enhance cyber crisis simulations and tabletop exercises for executives and operational teams-ensuring scenarios reflect the current threat landscape, sector trends, and the client's critical business services. Act as an outstanding facilitator and "crisis conductor": guide senior leaders through high pressure decision making, inject realistic developments, challenge assumptions, and drive clear actions, owners, and lessons learned. Translate threat intelligence and emerging attacker tactics into practical resilience improvements-linking likely threats to business impact, critical dependencies, and control or capability gaps. Integrate cyber response and recovery into wider enterprise resilience plans, including business continuity, IT disaster recovery, operational resilience, third-party resilience, and enterprise risk management-ensuring cyber is embedded, not bolted on. Partner with C-suite and functional leaders (CIO, CISO, COO, Risk, Legal, Comms, HR, Ops) to strengthen organisational readiness, clarify risk appetite, and improve cross-functional coordination during incidents. Build capability roadmaps and investment cases for resilience (people/process/technology), prioritising initiatives that reduce time-to-detect, time-to-respond, and time-to-recover for critical services. Shape and grow a cyber resilience offering: originate opportunities, develop proposals, create market-facing materials, and contribute thought leadership aligned to evolving resilience and regulatory expectations. Lead, coach, and inspire a high-performing cyber resilience team-developing facilitation skills, incident leadership, scenario design expertise, and client advisory confidence. Skills and Attributes for Success: Exceptional facilitator and communicator-able to run engaging, high-impact workshops and crisis simulations, influencing senior audiences across business, technology, and risk. Deep understanding of the cyber threat landscape and attacker behaviours, with the ability to convert threat insight into relevant scenarios, decision points, and resilience improvements. Strong resilience practitioner mindset: comfortable operating in ambiguity, steering complex stakeholder groups, and driving structured outcomes under time pressure. Strategic problem solver-able to diagnose resilience gaps, design pragmatic target-state capabilities, and secure executive buy-in by linking cyber resilience to business continuity and critical service delivery. Experienced programme and engagement leader-able to structure and manage large, complex initiatives and deliver measurable resilience outcomes. Commercially astute and quality-driven-balancing pace with rigour, managing delivery risk, and protecting client and firm reputation. Collaborative leader-builds trusted relationships, develops talent through coaching and mentoring, and fosters a culture of continuous learning and accountability. Confident advisor at board/exec level-able to discuss governance, risk appetite, crisis communications, regulatory considerations, and operational resilience expectations. Strong market access and trusted relationships, leveraging established sector networks and senior level contacts to originate opportunities, shape market conversations, and strengthen the firm's position with key decision makers. To Qualify for the Role, You Must Have Proven experience leading cyber resilience, incident readiness, and/or crisis management programmes-demonstrating tangible improvements in preparedness, response effectiveness, and recovery capability. Strong track record designing and facilitating cyber crisis simulations and tabletop exercises for senior stakeholders, including scenario development, exercise delivery, and after-action reporting with actionable remediation plans. Experience building or enhancing incident response and recovery operating models: governance, roles, processes, playbooks, communications, and integration with ITDR/BCP. Demonstrable ability to embed cyber into wider business resilience frameworks (e.g., business continuity, operational resilience, third-party resilience) and align cyber capabilities to critical business services and impact tolerances. Ability to develop compelling investment cases and prioritised roadmaps for resilience capability uplift, aligned to organisational goals and risk appetite. Robust knowledge of relevant security and resilience frameworks and regulations (e.g., NIST CSF, NIS/NIS2, sector-specific resilience expectations), and practical experience translating these into implementable capabilities and controls. Strong stakeholder management experience across C-suite, technology, operations, legal, risk, and communications-ensuring coherent decision-making before, during, and after incidents. Ideally, You'll Also Have: Security-related qualifications such as CISSP, CISM, CISMP, CIISEC. Experience operating within an NCSC Assured Cyber Consultancy. Sector experience in one or more of the following: Government & Public Sector, Energy & Utilities, Retail and Consumer Products, Life Sciences, Telecoms, Media and Technology, or Transport. Professional services experience with market-leading organisations in delivering cybersecurity solutions. Join Us: At EY, you'll have the chance to build a meaningful and fulfilling career, supported by an inclusive culture and cutting-edge technology. Together, we can create a better working world for all. What we look for We're interested in people with integrity who can collaborate with people from a diverse range of backgrounds and crucially a growth mindset. What we offer We offer a competitive remuneration package where you'll be rewarded for your individual and team performance. Our comprehensive Total Rewards package includes support for flexible working and career development, and with FlexEY you can select benefits that suit your needs, covering holidays, health and well-being, insurance, savings and a wide range of discounts, offers and promotions. Plus, we offer: Continuous learning: You'll develop the mindset and skills to navigate whatever comes next. Success as defined by you: We'll provide the tools and flexibility, so you can make a meaningful impact, your way. Transformative leadership: We'll give you the insights, coaching and confidence to be the leader the world needs. Diverse and inclusive culture: You'll be embraced for who you are and empowered to use your voice to help others find theirs. If you can demonstrate that you meet the criteria above, please contact us as soon as possible. Apply Now
Feb 14, 2026
Full time
Director - Cybersecurity - Cyber Resilience, TC, UKI Location: London Other locations: Primary Location Only Date: 27 Jan 2026 Requisition ID: At EY, we're all in to shape your future with confidence. We'll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world. Job Title: Director - Cybersecurity - Cyber Resilience About EY: At EY, we are committed to building a better working world. Our Cybersecurity Consulting Practice is rapidly expanding, and we are investing in our capabilities to meet the increasing demand for cybersecurity solutions. Join us and be part of a global team of over 13,000 professionals dedicated to delivering cutting-edge security transformation programs and services. The Opportunity: As a Director in Cybersecurity - Cyber Resilience, you will bring diverse perspectives and deep subject matter expertise to deliver high quality insights and outcomes for our clients. You will play a strategic leadership role in shaping and overseeing complex cybersecurity resilience engagements, strengthening senior client relationships, and guiding teams to develop innovative, practical solutions that help build greater resilience into their businesses. Key Responsibilities: Lead and deliver cyber resilience transformation programmes, owning end-to-end engagement delivery (scope, quality, timeline, budget) and ensuring outcomes measurably improve preparedness, response, and recovery. Design, run, and continuously enhance cyber crisis simulations and tabletop exercises for executives and operational teams-ensuring scenarios reflect the current threat landscape, sector trends, and the client's critical business services. Act as an outstanding facilitator and "crisis conductor": guide senior leaders through high pressure decision making, inject realistic developments, challenge assumptions, and drive clear actions, owners, and lessons learned. Translate threat intelligence and emerging attacker tactics into practical resilience improvements-linking likely threats to business impact, critical dependencies, and control or capability gaps. Integrate cyber response and recovery into wider enterprise resilience plans, including business continuity, IT disaster recovery, operational resilience, third-party resilience, and enterprise risk management-ensuring cyber is embedded, not bolted on. Partner with C-suite and functional leaders (CIO, CISO, COO, Risk, Legal, Comms, HR, Ops) to strengthen organisational readiness, clarify risk appetite, and improve cross-functional coordination during incidents. Build capability roadmaps and investment cases for resilience (people/process/technology), prioritising initiatives that reduce time-to-detect, time-to-respond, and time-to-recover for critical services. Shape and grow a cyber resilience offering: originate opportunities, develop proposals, create market-facing materials, and contribute thought leadership aligned to evolving resilience and regulatory expectations. Lead, coach, and inspire a high-performing cyber resilience team-developing facilitation skills, incident leadership, scenario design expertise, and client advisory confidence. Skills and Attributes for Success: Exceptional facilitator and communicator-able to run engaging, high-impact workshops and crisis simulations, influencing senior audiences across business, technology, and risk. Deep understanding of the cyber threat landscape and attacker behaviours, with the ability to convert threat insight into relevant scenarios, decision points, and resilience improvements. Strong resilience practitioner mindset: comfortable operating in ambiguity, steering complex stakeholder groups, and driving structured outcomes under time pressure. Strategic problem solver-able to diagnose resilience gaps, design pragmatic target-state capabilities, and secure executive buy-in by linking cyber resilience to business continuity and critical service delivery. Experienced programme and engagement leader-able to structure and manage large, complex initiatives and deliver measurable resilience outcomes. Commercially astute and quality-driven-balancing pace with rigour, managing delivery risk, and protecting client and firm reputation. Collaborative leader-builds trusted relationships, develops talent through coaching and mentoring, and fosters a culture of continuous learning and accountability. Confident advisor at board/exec level-able to discuss governance, risk appetite, crisis communications, regulatory considerations, and operational resilience expectations. Strong market access and trusted relationships, leveraging established sector networks and senior level contacts to originate opportunities, shape market conversations, and strengthen the firm's position with key decision makers. To Qualify for the Role, You Must Have Proven experience leading cyber resilience, incident readiness, and/or crisis management programmes-demonstrating tangible improvements in preparedness, response effectiveness, and recovery capability. Strong track record designing and facilitating cyber crisis simulations and tabletop exercises for senior stakeholders, including scenario development, exercise delivery, and after-action reporting with actionable remediation plans. Experience building or enhancing incident response and recovery operating models: governance, roles, processes, playbooks, communications, and integration with ITDR/BCP. Demonstrable ability to embed cyber into wider business resilience frameworks (e.g., business continuity, operational resilience, third-party resilience) and align cyber capabilities to critical business services and impact tolerances. Ability to develop compelling investment cases and prioritised roadmaps for resilience capability uplift, aligned to organisational goals and risk appetite. Robust knowledge of relevant security and resilience frameworks and regulations (e.g., NIST CSF, NIS/NIS2, sector-specific resilience expectations), and practical experience translating these into implementable capabilities and controls. Strong stakeholder management experience across C-suite, technology, operations, legal, risk, and communications-ensuring coherent decision-making before, during, and after incidents. Ideally, You'll Also Have: Security-related qualifications such as CISSP, CISM, CISMP, CIISEC. Experience operating within an NCSC Assured Cyber Consultancy. Sector experience in one or more of the following: Government & Public Sector, Energy & Utilities, Retail and Consumer Products, Life Sciences, Telecoms, Media and Technology, or Transport. Professional services experience with market-leading organisations in delivering cybersecurity solutions. Join Us: At EY, you'll have the chance to build a meaningful and fulfilling career, supported by an inclusive culture and cutting-edge technology. Together, we can create a better working world for all. What we look for We're interested in people with integrity who can collaborate with people from a diverse range of backgrounds and crucially a growth mindset. What we offer We offer a competitive remuneration package where you'll be rewarded for your individual and team performance. Our comprehensive Total Rewards package includes support for flexible working and career development, and with FlexEY you can select benefits that suit your needs, covering holidays, health and well-being, insurance, savings and a wide range of discounts, offers and promotions. Plus, we offer: Continuous learning: You'll develop the mindset and skills to navigate whatever comes next. Success as defined by you: We'll provide the tools and flexibility, so you can make a meaningful impact, your way. Transformative leadership: We'll give you the insights, coaching and confidence to be the leader the world needs. Diverse and inclusive culture: You'll be embraced for who you are and empowered to use your voice to help others find theirs. If you can demonstrate that you meet the criteria above, please contact us as soon as possible. Apply Now
Director, Cybersecurity, Cyber Resilience, TC, UKI Location: London Job Title: Director - Cybersecurity - Cyber Resilience About EY: At EY, we are committed to building a better working world. Our Cybersecurity Consulting Practice is rapidly expanding, and we are investing in our capabilities to meet the increasing demand for cybersecurity solutions. Join us and be part of a global team of over 13,000 professionals dedicated to delivering cutting edge security transformation programs and services. The Opportunity: As a Director in Cybersecurity - Cyber Resilience, you will bring diverse perspectives and deep subject matter expertise to deliver high quality insights and outcomes for our clients. You will play a strategic leadership role in shaping and overseeing complex cybersecurity resilience engagements, strengthening senior client relationships, and guiding teams to develop innovative, practical solutions that help build greater resilience into their businesses. Key Responsibilities: Lead and deliver cyber resilience transformation programmes, owning end to end engagement delivery (scope, quality, timeline, budget) and ensuring outcomes measurably improve preparedness, response, and recovery. Design, run, and continuously enhance cyber crisis simulations and tabletop exercises for executives and operational teams-ensuring scenarios reflect the current threat landscape, sector trends, and the client's critical business services. Act as an outstanding facilitator and "crisis conductor": guide senior leaders through high pressure decision making, inject realistic developments, challenge assumptions, and drive clear actions, owners, and lessons learned. Translate threat intelligence and emerging attacker tactics into practical resilience improvements-linking likely threats to business impact, critical dependencies, and control or capability gaps. Integrate cyber response and recovery into wider enterprise resilience plans, including business continuity, IT disaster recovery, operational resilience, third party resilience, and enterprise risk management-ensuring cyber is embedded, not bolted on. Partner with C suite and functional leaders (CIO, CISO, COO, Risk, Legal, Comms, HR, Ops) to strengthen organisational readiness, clarify risk appetite, and improve cross functional coordination during incidents. Build capability roadmaps and investment cases for resilience (people/process/technology), prioritising initiatives that reduce time to detect, time to respond, and time to recover for critical services. Shape and grow a cyber resilience offering: originate opportunities, develop proposals, create market facing materials, and contribute thought leadership aligned to evolving resilience and regulatory expectations. Lead, coach, and inspire a high performing cyber resilience team-developing facilitation skills, incident leadership, scenario design expertise, and client advisory confidence. Skills and Attributes for Success Exceptional facilitator and communicator-able to run engaging, high impact workshops and crisis simulations, influencing senior audiences across business, technology, and risk. Deep understanding of the cyber threat landscape and attacker behaviours, with the ability to convert threat insight into relevant scenarios, decision points, and resilience improvements. Strong resilience practitioner mindset: comfortable operating in ambiguity, steering complex stakeholder groups, and driving structured outcomes under time pressure. Strategic problem solver-able to diagnose resilience gaps, design pragmatic target state capabilities, and secure executive buy in by linking cyber resilience to business continuity and critical service delivery. Experienced programme and engagement leader-able to structure and manage large, complex initiatives and deliver measurable resilience outcomes. Commercially astute and quality driven-balancing pace with rigour, managing delivery risk, and protecting client and firm reputation. Collaborative leader-builds trusted relationships, develops talent through coaching and mentoring, and fosters a culture of continuous learning and accountability. Confident advisor at board/exec level-able to discuss governance, risk appetite, crisis communications, regulatory considerations, and operational resilience expectations. Strong market access and trusted relationships, leveraging established sector networks and senior level contacts to originate opportunities, shape market conversations, and strengthen the firm's position with key decision makers. To Qualify for the Role, You Must Have Proven experience leading cyber resilience, incident readiness, and/or crisis management programmes-demonstrating tangible improvements in preparedness, response effectiveness, and recovery capability. Strong track record designing and facilitating cyber crisis simulations and tabletop exercises for senior stakeholders, including scenario development, exercise delivery, and after action reporting with actionable remediation plans. Experience building or enhancing incident response and recovery operating models: governance, roles, processes, playbooks, communications, and integration with ITDR/BCP. Demonstrable ability to embed cyber into wider business resilience frameworks (e.g., business continuity, operational resilience, third party resilience) and align cyber capabilities to critical business services and impact tolerances. Ability to develop compelling investment cases and prioritised roadmaps for resilience capability uplift, aligned to organisational goals and risk appetite. Robust knowledge of relevant security and resilience frameworks and regulations (e.g., NIST CSF, NIS/NIS2, sector specific resilience expectations), and practical experience translating these into implementable capabilities and controls. Strong stakeholder management experience across C suite, technology, operations, legal, risk, and communications-ensuring coherent decision making before, during, and after incidents. Ideally, You'll Also Have: Security related qualifications such as CISSP, CISM, CISMP, CIISEC. Experience operating within an NCSC Assured Cyber Consultancy. Sector experience in one or more of the following: Government & Public Sector, Energy & Utilities, Retail and Consumer Products, Life Sciences, Telecoms, Media and Technology, or Transport. Professional services experience with market leading organisations in delivering cybersecurity solutions. Join Us: At EY, you'll have the chance to build a meaningful and fulfilling career, supported by an inclusive culture and cutting edge technology. Together, we can create a better working world for all. What we look for We're interested in people with integrity who can collaborate with people from a diverse range of backgrounds and crucially a growth mindset. What we offer We offer a competitive remuneration package where you'll be rewarded for your individual and team performance. Our comprehensive Total Rewards package includes support for flexible working and career development, and with FlexEY you can select benefits that suit your needs, covering holidays, health and well being, insurance, savings and a wide range of discounts, offers and promotions. Plus, we offer: Continuous learning: You'll develop the mindset and skills to navigate whatever comes next. Success as defined by you: We'll provide the tools and flexibility, so you can make a meaningful impact, your way. Transformative leadership: We'll give you the insights, coaching and confidence to be the leader the world needs. Diverse and inclusive culture: You'll be embraced for who you are and empowered to use your voice to help others find theirs. If you can demonstrate that you meet the criteria above, please contact us as soon as possible. Apply Now TCCyberUKI2026 Cyber2026 EY Building a better working world
Feb 12, 2026
Full time
Director, Cybersecurity, Cyber Resilience, TC, UKI Location: London Job Title: Director - Cybersecurity - Cyber Resilience About EY: At EY, we are committed to building a better working world. Our Cybersecurity Consulting Practice is rapidly expanding, and we are investing in our capabilities to meet the increasing demand for cybersecurity solutions. Join us and be part of a global team of over 13,000 professionals dedicated to delivering cutting edge security transformation programs and services. The Opportunity: As a Director in Cybersecurity - Cyber Resilience, you will bring diverse perspectives and deep subject matter expertise to deliver high quality insights and outcomes for our clients. You will play a strategic leadership role in shaping and overseeing complex cybersecurity resilience engagements, strengthening senior client relationships, and guiding teams to develop innovative, practical solutions that help build greater resilience into their businesses. Key Responsibilities: Lead and deliver cyber resilience transformation programmes, owning end to end engagement delivery (scope, quality, timeline, budget) and ensuring outcomes measurably improve preparedness, response, and recovery. Design, run, and continuously enhance cyber crisis simulations and tabletop exercises for executives and operational teams-ensuring scenarios reflect the current threat landscape, sector trends, and the client's critical business services. Act as an outstanding facilitator and "crisis conductor": guide senior leaders through high pressure decision making, inject realistic developments, challenge assumptions, and drive clear actions, owners, and lessons learned. Translate threat intelligence and emerging attacker tactics into practical resilience improvements-linking likely threats to business impact, critical dependencies, and control or capability gaps. Integrate cyber response and recovery into wider enterprise resilience plans, including business continuity, IT disaster recovery, operational resilience, third party resilience, and enterprise risk management-ensuring cyber is embedded, not bolted on. Partner with C suite and functional leaders (CIO, CISO, COO, Risk, Legal, Comms, HR, Ops) to strengthen organisational readiness, clarify risk appetite, and improve cross functional coordination during incidents. Build capability roadmaps and investment cases for resilience (people/process/technology), prioritising initiatives that reduce time to detect, time to respond, and time to recover for critical services. Shape and grow a cyber resilience offering: originate opportunities, develop proposals, create market facing materials, and contribute thought leadership aligned to evolving resilience and regulatory expectations. Lead, coach, and inspire a high performing cyber resilience team-developing facilitation skills, incident leadership, scenario design expertise, and client advisory confidence. Skills and Attributes for Success Exceptional facilitator and communicator-able to run engaging, high impact workshops and crisis simulations, influencing senior audiences across business, technology, and risk. Deep understanding of the cyber threat landscape and attacker behaviours, with the ability to convert threat insight into relevant scenarios, decision points, and resilience improvements. Strong resilience practitioner mindset: comfortable operating in ambiguity, steering complex stakeholder groups, and driving structured outcomes under time pressure. Strategic problem solver-able to diagnose resilience gaps, design pragmatic target state capabilities, and secure executive buy in by linking cyber resilience to business continuity and critical service delivery. Experienced programme and engagement leader-able to structure and manage large, complex initiatives and deliver measurable resilience outcomes. Commercially astute and quality driven-balancing pace with rigour, managing delivery risk, and protecting client and firm reputation. Collaborative leader-builds trusted relationships, develops talent through coaching and mentoring, and fosters a culture of continuous learning and accountability. Confident advisor at board/exec level-able to discuss governance, risk appetite, crisis communications, regulatory considerations, and operational resilience expectations. Strong market access and trusted relationships, leveraging established sector networks and senior level contacts to originate opportunities, shape market conversations, and strengthen the firm's position with key decision makers. To Qualify for the Role, You Must Have Proven experience leading cyber resilience, incident readiness, and/or crisis management programmes-demonstrating tangible improvements in preparedness, response effectiveness, and recovery capability. Strong track record designing and facilitating cyber crisis simulations and tabletop exercises for senior stakeholders, including scenario development, exercise delivery, and after action reporting with actionable remediation plans. Experience building or enhancing incident response and recovery operating models: governance, roles, processes, playbooks, communications, and integration with ITDR/BCP. Demonstrable ability to embed cyber into wider business resilience frameworks (e.g., business continuity, operational resilience, third party resilience) and align cyber capabilities to critical business services and impact tolerances. Ability to develop compelling investment cases and prioritised roadmaps for resilience capability uplift, aligned to organisational goals and risk appetite. Robust knowledge of relevant security and resilience frameworks and regulations (e.g., NIST CSF, NIS/NIS2, sector specific resilience expectations), and practical experience translating these into implementable capabilities and controls. Strong stakeholder management experience across C suite, technology, operations, legal, risk, and communications-ensuring coherent decision making before, during, and after incidents. Ideally, You'll Also Have: Security related qualifications such as CISSP, CISM, CISMP, CIISEC. Experience operating within an NCSC Assured Cyber Consultancy. Sector experience in one or more of the following: Government & Public Sector, Energy & Utilities, Retail and Consumer Products, Life Sciences, Telecoms, Media and Technology, or Transport. Professional services experience with market leading organisations in delivering cybersecurity solutions. Join Us: At EY, you'll have the chance to build a meaningful and fulfilling career, supported by an inclusive culture and cutting edge technology. Together, we can create a better working world for all. What we look for We're interested in people with integrity who can collaborate with people from a diverse range of backgrounds and crucially a growth mindset. What we offer We offer a competitive remuneration package where you'll be rewarded for your individual and team performance. Our comprehensive Total Rewards package includes support for flexible working and career development, and with FlexEY you can select benefits that suit your needs, covering holidays, health and well being, insurance, savings and a wide range of discounts, offers and promotions. Plus, we offer: Continuous learning: You'll develop the mindset and skills to navigate whatever comes next. Success as defined by you: We'll provide the tools and flexibility, so you can make a meaningful impact, your way. Transformative leadership: We'll give you the insights, coaching and confidence to be the leader the world needs. Diverse and inclusive culture: You'll be embraced for who you are and empowered to use your voice to help others find theirs. If you can demonstrate that you meet the criteria above, please contact us as soon as possible. Apply Now TCCyberUKI2026 Cyber2026 EY Building a better working world
Compliance Lead London - Hybrid £75,000 - £80,000 Why this role exists Onsi operates in a highly regulated environment where trust, security, and regulatory integrity are foundational to our growth. As we scale our enterprise partnerships and insurance operations across markets, maintaining a robust, scalable compliance and risk framework is critical-not just to meet regulatory expectations, but to enable the business to move with confidence. This role exists to own enterprise risk, compliance, and legal governance across the business; ensuring we remain compliant, audit-ready, and resilient as we grow across markets. Why this role matters As Compliance Lead, you will be a senior steward of Onsi's regulatory posture. You'll provide governance, oversight, and assurance-ensuring that compliance, security and legal-related requirements are consistently met across the organisation. Reporting to the COO, you will partner closely with Engineering, Product (financial and digital), Operations, Information Security, and leadership teams while maintaining independent oversight and challenge. Your focus is not day to day delivery, but ensuring that what Onsi builds, sells, and operates stands up to regulatory scrutiny and best practice-particularly across financial service regulation, data protection, cybersecurity and operational risk. Why Onsi, why now With strategic backing from Zurich Insurance and investors behind Deliveroo, Zoopla, and Delivery Hero, Onsi is entering its next phase of growth. As we scale, we're intentionally building small, high-impact teams that own real problems end to end. Reporting line & team Reports to: COO Line management: 1 direct report (Compliance Specialist) Operating model: You set strategy, priorities, governance and assurance; your Compliance Specialist runs day to day programme execution (e.g., control testing coordination, evidence collection, documentation maintenance, audit preparation support), working cross functionally with Product, Engineering, Ops and InfoSec. Key Responsibilities Enterprise Risk and Compliance Framework Own and evolve a group wide compliance and risk framework that supports regulatory compliance, operational resilience, and scale. Define risk appetite/thresholds (where appropriate), maintain the enterprise risk register, and ensure clear escalation and decision making pathways. Regulatory Engagement & Horizon Scanning (FCA, AFM, DFSA) Act as Onsi's primary compliance interface with regulators (e.g., UK FCA, Dutch AFM and Danish FSA), as appropriate to our operating model and permissions. Lead horizon scanning, regulatory change management, and early response to new or evolving obligations- translating requirements into practical controls and delivery expectations. Policy, Controls & Governance Oversight Ensure clear, practical compliance, legal, and security policies are in place, understood, and operating effectively across the business. Establish a governance cadence (forums, reporting, attestations) that provides leadership with clear visibility of compliance posture and issues. Audit, Assurance & Due Diligence (Carriers / Lloyd's / Enterprise / Regulatory) Own readiness for audits and reviews by insurance carriers and Lloyd's, and support other assurance activity (enterprise security reviews, regulatory reviews, customer due diligence). Set the standard for documentation quality and evidence expectations; ensure controls are demonstrably operating and issues are remediated with pace and rigour. Oversee third party and partner risk governance from a compliance, cyber, and legal risk perspective (including outsourced service considerations). Insurance Operations Governance Oversee compliance standards, governance protocols, and regulatory obligations relating to insurance operations and partners. Ensure partner expectations and delegated requirements (where applicable) are met and evidenced. Delivery Compliance & KYC Oversight Provide oversight of KYC, onboarding, and delivery side compliance requirements, ensuring proportionate controls without slowing execution. Ensure ownership is clear across teams and that compliance requirements are embedded early in delivery, not bolted on at the end. GDPR & Data Protection Governance Own oversight of GDPR compliance, ensuring appropriate governance around privacy by design, DPIAs/assessments where required, incident readiness, and third party processing risk. Partner with Product, Engineering, and InfoSec to ensure privacy and security controls remain effective and auditable. ISO 27001 Oversight & Certification Maintenance Provide senior ownership of ISO 27001 certification maintenance and audit readiness, ensuring governance, internal assurance, management review inputs, and corrective actions are operating effectively. Work closely with InfoSec and Engineering while maintaining independence of oversight and assurance. Team Leadership & Capability Building Line manage and develop the Compliance Specialist, setting priorities, coaching on execution, and ensuring high quality programme outputs. Build scalable ways of working-tooling, templates, playbooks, and reporting-that reduce friction and improve consistency over time. Compliance Training & Culture Set direction for compliance training and promote a practical, values led compliance culture across Onsi. Enable teams to understand requirements and make good decisions without creating bottlenecks. The successful candidate is expected to follow all Onsi security policies and procedures. What you bring A recognised professional qualification in compliance, data protection, risk, or security governance (or equivalent senior experience delivering these outcomes in practice). Senior experience in compliance, risk, and/or legal governance within regulated environments (financial services, insurance, fintech, or adjacent). Strong working knowledge of regulatory, legal, cybersecurity, and data protection frameworks, including UK GDPR, ISO 27001, Cyber Essentials, and operational resilience expectations. Experience designing and operating regulatory and legal risk frameworks, including horizon scanning and regulatory change management. Credible experience preparing organisations for audits, regulatory reviews, enterprise due diligence, and legal scrutiny-and engaging confidently with regulators, insurers, auditors, and external stakeholders. Experience overseeing third party and partner risk, including compliance, cyber, and legal risk assessments. Strong judgement and communication skills, with the confidence to challenge constructively and escalat when needed, while staying pragmatic and delivery oriented. Is This Role a Fit for You? This role is a great match if you thrive on ownership, embrace ambiguity as a chance to grow, and celebrate small wins while keeping the big picture in sight. Most importantly, you believe there's no I in Onsi - we always win as a team. It's probably not for you if you prefer rigid structure, narrowly defined roles, or working fully remote. We're hands on generalists who adapt quickly and learn best by collaborating in person. What will you get in return? Compensation & Financial Benefits Pension contributions (UK) with matching up to 7% Access to Onsi ODP & Marketplace: Get hands on with our own product including early wage access and savings plus exclusive offers through Onsi Marketplace. Cycle Schemes: CycleSaver subscription: save up to 47% on shared cycles (Lime, Forest, Beryl, Dott, Voi, Santander) with flexible salary sacrifice Cycle to Work scheme buy a bike or e bike via salary sacrifice and save on tax Time Off & Leave ️ 25 days annual leave + UK bank holidays (rising to 35 days with tenure) Birthday day off Up to 3 extra days for weddings or moving house ️ 1-month paid sabbatical after 5 years of service Enhanced parental leave (enhanced pay + staggered return) Family leave: fertility treatment, appointments & growing your family Growth & Learning Personal development budget: £500 per year, increasing to £1,500 after 3 years to invest in your growth (courses, books, coaching) Learning & Development Days: 12 dedicated days each year for professional growth, training, or upskilling Knowledge sharing culture: Regular Lunch & Learns, Monthly Speaker Series, cross team workshops, and company offsites to expand your perspective and keep learning ️ Health & Wellbeing ️ PT-Link Fitness App: Personalised training plans, nutrition guidance, and habit coaching at your fingertips 24/7 GP access: Virtual doctor appointments anytime, anywhere Mental health support: Counselling, resources, and wellbeing check ins to help you Culture & Perks Hybrid working: Choose flexibility - split your time between home and our London or Amsterdam or Cape Town offices Work from abroad: up to 20 days per year Social culture: Regular team lunches, coffee catch ups, after work drinks . click apply for full job details
Feb 11, 2026
Full time
Compliance Lead London - Hybrid £75,000 - £80,000 Why this role exists Onsi operates in a highly regulated environment where trust, security, and regulatory integrity are foundational to our growth. As we scale our enterprise partnerships and insurance operations across markets, maintaining a robust, scalable compliance and risk framework is critical-not just to meet regulatory expectations, but to enable the business to move with confidence. This role exists to own enterprise risk, compliance, and legal governance across the business; ensuring we remain compliant, audit-ready, and resilient as we grow across markets. Why this role matters As Compliance Lead, you will be a senior steward of Onsi's regulatory posture. You'll provide governance, oversight, and assurance-ensuring that compliance, security and legal-related requirements are consistently met across the organisation. Reporting to the COO, you will partner closely with Engineering, Product (financial and digital), Operations, Information Security, and leadership teams while maintaining independent oversight and challenge. Your focus is not day to day delivery, but ensuring that what Onsi builds, sells, and operates stands up to regulatory scrutiny and best practice-particularly across financial service regulation, data protection, cybersecurity and operational risk. Why Onsi, why now With strategic backing from Zurich Insurance and investors behind Deliveroo, Zoopla, and Delivery Hero, Onsi is entering its next phase of growth. As we scale, we're intentionally building small, high-impact teams that own real problems end to end. Reporting line & team Reports to: COO Line management: 1 direct report (Compliance Specialist) Operating model: You set strategy, priorities, governance and assurance; your Compliance Specialist runs day to day programme execution (e.g., control testing coordination, evidence collection, documentation maintenance, audit preparation support), working cross functionally with Product, Engineering, Ops and InfoSec. Key Responsibilities Enterprise Risk and Compliance Framework Own and evolve a group wide compliance and risk framework that supports regulatory compliance, operational resilience, and scale. Define risk appetite/thresholds (where appropriate), maintain the enterprise risk register, and ensure clear escalation and decision making pathways. Regulatory Engagement & Horizon Scanning (FCA, AFM, DFSA) Act as Onsi's primary compliance interface with regulators (e.g., UK FCA, Dutch AFM and Danish FSA), as appropriate to our operating model and permissions. Lead horizon scanning, regulatory change management, and early response to new or evolving obligations- translating requirements into practical controls and delivery expectations. Policy, Controls & Governance Oversight Ensure clear, practical compliance, legal, and security policies are in place, understood, and operating effectively across the business. Establish a governance cadence (forums, reporting, attestations) that provides leadership with clear visibility of compliance posture and issues. Audit, Assurance & Due Diligence (Carriers / Lloyd's / Enterprise / Regulatory) Own readiness for audits and reviews by insurance carriers and Lloyd's, and support other assurance activity (enterprise security reviews, regulatory reviews, customer due diligence). Set the standard for documentation quality and evidence expectations; ensure controls are demonstrably operating and issues are remediated with pace and rigour. Oversee third party and partner risk governance from a compliance, cyber, and legal risk perspective (including outsourced service considerations). Insurance Operations Governance Oversee compliance standards, governance protocols, and regulatory obligations relating to insurance operations and partners. Ensure partner expectations and delegated requirements (where applicable) are met and evidenced. Delivery Compliance & KYC Oversight Provide oversight of KYC, onboarding, and delivery side compliance requirements, ensuring proportionate controls without slowing execution. Ensure ownership is clear across teams and that compliance requirements are embedded early in delivery, not bolted on at the end. GDPR & Data Protection Governance Own oversight of GDPR compliance, ensuring appropriate governance around privacy by design, DPIAs/assessments where required, incident readiness, and third party processing risk. Partner with Product, Engineering, and InfoSec to ensure privacy and security controls remain effective and auditable. ISO 27001 Oversight & Certification Maintenance Provide senior ownership of ISO 27001 certification maintenance and audit readiness, ensuring governance, internal assurance, management review inputs, and corrective actions are operating effectively. Work closely with InfoSec and Engineering while maintaining independence of oversight and assurance. Team Leadership & Capability Building Line manage and develop the Compliance Specialist, setting priorities, coaching on execution, and ensuring high quality programme outputs. Build scalable ways of working-tooling, templates, playbooks, and reporting-that reduce friction and improve consistency over time. Compliance Training & Culture Set direction for compliance training and promote a practical, values led compliance culture across Onsi. Enable teams to understand requirements and make good decisions without creating bottlenecks. The successful candidate is expected to follow all Onsi security policies and procedures. What you bring A recognised professional qualification in compliance, data protection, risk, or security governance (or equivalent senior experience delivering these outcomes in practice). Senior experience in compliance, risk, and/or legal governance within regulated environments (financial services, insurance, fintech, or adjacent). Strong working knowledge of regulatory, legal, cybersecurity, and data protection frameworks, including UK GDPR, ISO 27001, Cyber Essentials, and operational resilience expectations. Experience designing and operating regulatory and legal risk frameworks, including horizon scanning and regulatory change management. Credible experience preparing organisations for audits, regulatory reviews, enterprise due diligence, and legal scrutiny-and engaging confidently with regulators, insurers, auditors, and external stakeholders. Experience overseeing third party and partner risk, including compliance, cyber, and legal risk assessments. Strong judgement and communication skills, with the confidence to challenge constructively and escalat when needed, while staying pragmatic and delivery oriented. Is This Role a Fit for You? This role is a great match if you thrive on ownership, embrace ambiguity as a chance to grow, and celebrate small wins while keeping the big picture in sight. Most importantly, you believe there's no I in Onsi - we always win as a team. It's probably not for you if you prefer rigid structure, narrowly defined roles, or working fully remote. We're hands on generalists who adapt quickly and learn best by collaborating in person. What will you get in return? Compensation & Financial Benefits Pension contributions (UK) with matching up to 7% Access to Onsi ODP & Marketplace: Get hands on with our own product including early wage access and savings plus exclusive offers through Onsi Marketplace. Cycle Schemes: CycleSaver subscription: save up to 47% on shared cycles (Lime, Forest, Beryl, Dott, Voi, Santander) with flexible salary sacrifice Cycle to Work scheme buy a bike or e bike via salary sacrifice and save on tax Time Off & Leave ️ 25 days annual leave + UK bank holidays (rising to 35 days with tenure) Birthday day off Up to 3 extra days for weddings or moving house ️ 1-month paid sabbatical after 5 years of service Enhanced parental leave (enhanced pay + staggered return) Family leave: fertility treatment, appointments & growing your family Growth & Learning Personal development budget: £500 per year, increasing to £1,500 after 3 years to invest in your growth (courses, books, coaching) Learning & Development Days: 12 dedicated days each year for professional growth, training, or upskilling Knowledge sharing culture: Regular Lunch & Learns, Monthly Speaker Series, cross team workshops, and company offsites to expand your perspective and keep learning ️ Health & Wellbeing ️ PT-Link Fitness App: Personalised training plans, nutrition guidance, and habit coaching at your fingertips 24/7 GP access: Virtual doctor appointments anytime, anywhere Mental health support: Counselling, resources, and wellbeing check ins to help you Culture & Perks Hybrid working: Choose flexibility - split your time between home and our London or Amsterdam or Cape Town offices Work from abroad: up to 20 days per year Social culture: Regular team lunches, coffee catch ups, after work drinks . click apply for full job details
