Location(s):UK, Europe & Africa : UK : London UK, Europe & Africa : UK : Leeds BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. Job Title: Threat Intelligence Analyst Requisition ID: 122576 Location: London - We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Grade: GG11 Referral Bonus: £5,000 Role description To undertake the day to day operation of (and incremental improvement of) a dedicated Security Operations Centre (SOC) to support the defence of a major UK CNI organisation. The networks protected are predominantly hosted in Azure cloud platforms, with many systems within these environments that must be protected. The customer is committed to development of this improved SOC to be a benchmark of best practice and excellence in reflection of the significant threat that the protected systems are subject to. The SOC Analyst roles are 'hands on' shift based roles, working as part of a 24/7 operation with four shift teams working in a standard rotation. They are responsible for utilising the SOC's SIEM and SOAR toolsets to detect and investigate potential Security and Service Incidents occurring within the monitored networks. These roles require a minimum of SC clearance. Due to timelines for the start of operations, it will not be possible to sponsor new clearances so candidates must have existing clearances. Responsibilities Produce and maintain threat assessments to provide a clear understanding of the customer threat landscape. Maintain the IoC database tailored to the monitored environment and threats and ensure changes are pushed to the detection systems in a timely manner. Maintain threat profiles and threat modelling and applicability to the monitored estate along with updating the modelling to detail what detection and controls are in place to mitigate the threats. Gather and maintain a set of TI requirements that define the threats that will be monitored, tracked and researched by the TI Team. Oversee the collection, collation and maintenance of threat data collected from open and closed sources and ensure it appropriately validated. Conduct analysis and research to determine the identity, motivations, relationships, targets / victims, capabilities, tooling and infrastructure of threat groups relevant to customer. Requirements Technical Working in a Threat Intelligence team developing threat intelligence products for technical and non-technical audiences. Performing malware analysis and reverse engineering. Conducting threat assessments and defining threat intelligence requirements. Developing and maintaining threat data sources. Advanced knowledge of Windows and Linux operating systems and use of the command line. Advanced knowledge of core networking concepts and technologies e.g. TCP/IP. Intermediate knowledge of malware behaviour and techniques employed by attackers to evade security controls. Intermediate knowledge of malware analysis and reverse engineering techniques. Non-technical Client side consulting, including stakeholder engagement and the ability to communicate insights and concepts to others (including briefing skills and report writing). Able to understand and adapt to different cultures and hierarchical structures. Team player and adept at working in multi disciplinary and diverse teams. Proven analytical skills capable of solving new and complex technical problems. Excellent written and verbal communication skills with the ability to communicate the impact and importance of detailed technical information to non technical and senior audiences. Leading and managing small teams of highly skilled technical people. Managing and building relationships with customer and internal stakeholders. Self motivated and motivates others keeping morale and performance high. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome candidates from all backgrounds and particularly from sections of the community who are currently underrepresented within our industry, including women, ethnic minorities, people with disabilities and LGBTQ+ individuals. We also want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. Life at BAE Systems Digital Intelligence We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day. By embracing technology, we can interact, collaborate and create together, even when we're working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance well being. Diversity and inclusion are integral to the success of BAE Systems Digital Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds - the best and brightest minds - can work together to achieve excellence and realise individual and organisational potential. Division overview: Government At BAE Systems Digital Intelligence, we pride ourselves in being a leader in the cyber defence industry, and Government contracts are an area we have many decades of experience in. Government and key infrastructure networks are critical targets to defend as the effects of these networks being breached can be devastating. As a member of the Government business unit, you will defend the connected world and ensure the protection of nations. We all have a role to play in defending our clients, and this is yours. This vacancy is eligible for the UK Employee Referral Scheme. Amount: £5,000
Jan 10, 2026
Full time
Location(s):UK, Europe & Africa : UK : London UK, Europe & Africa : UK : Leeds BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. Job Title: Threat Intelligence Analyst Requisition ID: 122576 Location: London - We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Grade: GG11 Referral Bonus: £5,000 Role description To undertake the day to day operation of (and incremental improvement of) a dedicated Security Operations Centre (SOC) to support the defence of a major UK CNI organisation. The networks protected are predominantly hosted in Azure cloud platforms, with many systems within these environments that must be protected. The customer is committed to development of this improved SOC to be a benchmark of best practice and excellence in reflection of the significant threat that the protected systems are subject to. The SOC Analyst roles are 'hands on' shift based roles, working as part of a 24/7 operation with four shift teams working in a standard rotation. They are responsible for utilising the SOC's SIEM and SOAR toolsets to detect and investigate potential Security and Service Incidents occurring within the monitored networks. These roles require a minimum of SC clearance. Due to timelines for the start of operations, it will not be possible to sponsor new clearances so candidates must have existing clearances. Responsibilities Produce and maintain threat assessments to provide a clear understanding of the customer threat landscape. Maintain the IoC database tailored to the monitored environment and threats and ensure changes are pushed to the detection systems in a timely manner. Maintain threat profiles and threat modelling and applicability to the monitored estate along with updating the modelling to detail what detection and controls are in place to mitigate the threats. Gather and maintain a set of TI requirements that define the threats that will be monitored, tracked and researched by the TI Team. Oversee the collection, collation and maintenance of threat data collected from open and closed sources and ensure it appropriately validated. Conduct analysis and research to determine the identity, motivations, relationships, targets / victims, capabilities, tooling and infrastructure of threat groups relevant to customer. Requirements Technical Working in a Threat Intelligence team developing threat intelligence products for technical and non-technical audiences. Performing malware analysis and reverse engineering. Conducting threat assessments and defining threat intelligence requirements. Developing and maintaining threat data sources. Advanced knowledge of Windows and Linux operating systems and use of the command line. Advanced knowledge of core networking concepts and technologies e.g. TCP/IP. Intermediate knowledge of malware behaviour and techniques employed by attackers to evade security controls. Intermediate knowledge of malware analysis and reverse engineering techniques. Non-technical Client side consulting, including stakeholder engagement and the ability to communicate insights and concepts to others (including briefing skills and report writing). Able to understand and adapt to different cultures and hierarchical structures. Team player and adept at working in multi disciplinary and diverse teams. Proven analytical skills capable of solving new and complex technical problems. Excellent written and verbal communication skills with the ability to communicate the impact and importance of detailed technical information to non technical and senior audiences. Leading and managing small teams of highly skilled technical people. Managing and building relationships with customer and internal stakeholders. Self motivated and motivates others keeping morale and performance high. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome candidates from all backgrounds and particularly from sections of the community who are currently underrepresented within our industry, including women, ethnic minorities, people with disabilities and LGBTQ+ individuals. We also want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. Life at BAE Systems Digital Intelligence We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day. By embracing technology, we can interact, collaborate and create together, even when we're working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance well being. Diversity and inclusion are integral to the success of BAE Systems Digital Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds - the best and brightest minds - can work together to achieve excellence and realise individual and organisational potential. Division overview: Government At BAE Systems Digital Intelligence, we pride ourselves in being a leader in the cyber defence industry, and Government contracts are an area we have many decades of experience in. Government and key infrastructure networks are critical targets to defend as the effects of these networks being breached can be devastating. As a member of the Government business unit, you will defend the connected world and ensure the protection of nations. We all have a role to play in defending our clients, and this is yours. This vacancy is eligible for the UK Employee Referral Scheme. Amount: £5,000
Our client is an independent management consultancy mostly specialized in regulatory compliance and risk finance. The firm is present in Singapore, Hong-Kong, London, Paris, Luxemburg and Lisbon. Its positioning aims to respond in a more targeted way to increased market demand in this segment with: A strong footprint in the Data, Compliance and Risk areas. Expert consultants with a minimum of 10 years' experience from the bank's various operational business lines, with a proven track record in managing major projects and/or teams. SMEs able to work on the following subjects: framework, policy, guidance, regulatory remediation program , internal risk, standards, protection and security, IT, etc. The development of a DNA focused on innovation in these areas (launch of two REGTECHs on KYC/KYS data). The company has 4 main practices: Finance and Risk; Regulatory compliance and Data; Transformation and Operational efficiency; Banking Innovation. Tier 1 banks remain their main and long-standing clients: the firm has in-depth knowledge of their group's culture, processes, businesses, and entities. The company is a service provider referenced by main French banks. The Data Management practice is run jointly with the Regulatory practice, given the cross-functional aspects and the need for profiles with diverse expertise, including PRIVACY. What to expect Our client is currently seeking an experienced consultant (5/8 years of experience). As an expert/analyst in data management, protection and ethical use, you will join their Data and Regulatory team to actively contribute to the development of their practice and will participate in strategic and challenging projects for key clients and leaders of the banking industry. As a senior consultant, you will: Contribute with your project, digital, regulatory or risk management expertise to strengthen our working group. Coordinate with other major internal players (RISK, LEGAL, IT) to build and monitor projects and contribute to establishing risk-based approaches. Contribute to strengthening the cybersecurity standards of their clients by taking an active part in the IT sector's work on Data Loss Prevention and Data Discovery. Provide advice to their clients on the use of data (including classification, transfer, storage, sharing, etc.) in compliance with regulatory and business constraints. Support their clients in value-creation initiatives (AI projects, digital projects, cross-selling, beyond banking, etc.) in compliance with internal ethical and regulatory standards. Represent the firm at industry meetings on specific areas of expertise and work with CDOs (Chief Data Officers) and DPOs (Data Protection Officers). Contribute to acculturation initiatives aimed at employees, enabling them to develop and maintain their level of awareness and expertise over the long term. Your profile Our search is mainly oriented to senior profiles having a good knowledge of: Data Privacy and Protection Regulations (GDPR, DPA, ePrivacy ). AI, Data Quality and Data management concepts. Cybersecurity concepts and that can prove experience or a large contribution in: "First line of defence operations" (Permanent Control Processes design and implementation), including control plan design, Risk and Control Self-Assessment (RCSA) formalization, control execution "Second line of defence " operations (permanent control framework review) with a solid knowledge of privacy and risk-based approaches, check and challenge, independent testing and recommendations, taxonomy review IT Privacy-related operations, including IT studies or projects to operationalize Personal Data Protection and Security mechanisms, Anonymization, Classification, and Data management. with the ability to: Perform analytical analysis (such as risk assessments) and drive risk-based or business process study. Offer proactive behavior and good interpersonal skills to manage transversal issues, advise other subject matter experts and report efficiently to management. Understand Banking Business Lines activities (Retail, investment banking essentially) and their internal organization. Help management in Committees. Provide awareness-raising and assistance to staff, Draft training content. English speakers (second language: French) Ability to work in the UK (the position will be based in London) BAC +3/5 university or business/engineering schools - Bachelor/Master Level in risk finance, banking operations, or data management.
Jan 09, 2026
Full time
Our client is an independent management consultancy mostly specialized in regulatory compliance and risk finance. The firm is present in Singapore, Hong-Kong, London, Paris, Luxemburg and Lisbon. Its positioning aims to respond in a more targeted way to increased market demand in this segment with: A strong footprint in the Data, Compliance and Risk areas. Expert consultants with a minimum of 10 years' experience from the bank's various operational business lines, with a proven track record in managing major projects and/or teams. SMEs able to work on the following subjects: framework, policy, guidance, regulatory remediation program , internal risk, standards, protection and security, IT, etc. The development of a DNA focused on innovation in these areas (launch of two REGTECHs on KYC/KYS data). The company has 4 main practices: Finance and Risk; Regulatory compliance and Data; Transformation and Operational efficiency; Banking Innovation. Tier 1 banks remain their main and long-standing clients: the firm has in-depth knowledge of their group's culture, processes, businesses, and entities. The company is a service provider referenced by main French banks. The Data Management practice is run jointly with the Regulatory practice, given the cross-functional aspects and the need for profiles with diverse expertise, including PRIVACY. What to expect Our client is currently seeking an experienced consultant (5/8 years of experience). As an expert/analyst in data management, protection and ethical use, you will join their Data and Regulatory team to actively contribute to the development of their practice and will participate in strategic and challenging projects for key clients and leaders of the banking industry. As a senior consultant, you will: Contribute with your project, digital, regulatory or risk management expertise to strengthen our working group. Coordinate with other major internal players (RISK, LEGAL, IT) to build and monitor projects and contribute to establishing risk-based approaches. Contribute to strengthening the cybersecurity standards of their clients by taking an active part in the IT sector's work on Data Loss Prevention and Data Discovery. Provide advice to their clients on the use of data (including classification, transfer, storage, sharing, etc.) in compliance with regulatory and business constraints. Support their clients in value-creation initiatives (AI projects, digital projects, cross-selling, beyond banking, etc.) in compliance with internal ethical and regulatory standards. Represent the firm at industry meetings on specific areas of expertise and work with CDOs (Chief Data Officers) and DPOs (Data Protection Officers). Contribute to acculturation initiatives aimed at employees, enabling them to develop and maintain their level of awareness and expertise over the long term. Your profile Our search is mainly oriented to senior profiles having a good knowledge of: Data Privacy and Protection Regulations (GDPR, DPA, ePrivacy ). AI, Data Quality and Data management concepts. Cybersecurity concepts and that can prove experience or a large contribution in: "First line of defence operations" (Permanent Control Processes design and implementation), including control plan design, Risk and Control Self-Assessment (RCSA) formalization, control execution "Second line of defence " operations (permanent control framework review) with a solid knowledge of privacy and risk-based approaches, check and challenge, independent testing and recommendations, taxonomy review IT Privacy-related operations, including IT studies or projects to operationalize Personal Data Protection and Security mechanisms, Anonymization, Classification, and Data management. with the ability to: Perform analytical analysis (such as risk assessments) and drive risk-based or business process study. Offer proactive behavior and good interpersonal skills to manage transversal issues, advise other subject matter experts and report efficiently to management. Understand Banking Business Lines activities (Retail, investment banking essentially) and their internal organization. Help management in Committees. Provide awareness-raising and assistance to staff, Draft training content. English speakers (second language: French) Ability to work in the UK (the position will be based in London) BAC +3/5 university or business/engineering schools - Bachelor/Master Level in risk finance, banking operations, or data management.
Senior Cyber Operations Analyst £65,000 - 75,000 GBP Hybrid WORKING Location: Central London, Greater London - United Kingdom Type: Permanent Senior Cyber Operations Analyst - UK (London, Manchester, or Bristol) Salary: £65,000-£75,000 per year (depending on location and experience) Working Model: Hybrid/Onsite as required A leading UK government and defence-focused technology organisation is seeking click apply for full job details
Jan 07, 2026
Full time
Senior Cyber Operations Analyst £65,000 - 75,000 GBP Hybrid WORKING Location: Central London, Greater London - United Kingdom Type: Permanent Senior Cyber Operations Analyst - UK (London, Manchester, or Bristol) Salary: £65,000-£75,000 per year (depending on location and experience) Working Model: Hybrid/Onsite as required A leading UK government and defence-focused technology organisation is seeking click apply for full job details
Permanent Full time / 37 hours a week Huntingdon / Hybrid Anglian Water offers a flexible approach, this role provides you the flexibility to work from home and from Lancaster House. Protecting our people, systems, and services - your leadership will be at the heart of our cyber resilience. The Security Operations Manager plays a critical role in safeguarding the organisation's digital infrastructure (IT and OT) by leading the real-time detection, response, and mitigation of cyber threats.This role oversees the Security Operations Centre (SOC), ensuring continuous monitoring of security events and alerts across the enterprise. The manager is responsible for orchestrating cyber incident response efforts, from initial detection through containment, remediation, and post-incident analysis.A key part of the role involves managing and fine-tuning security monitoring tools such as SIEM platforms to ensure optimal visibility and threat detection. The Security Operations Manager collaborates with IT, infrastructure, and platform teams to coordinate responses to vulnerabilities and ensure swift resolution of incidents.They also maintain and regularly test incident response plans, being central to simulation exercises to ensure readiness.This role demands a high level of technical expertise, leadership, and the ability to remain calm and decisive under pressure. The Security Operations Manager is the frontline defender of the organisation's cyber resilience, ensuring that threats are swiftly neutralised and that the business can operate securely and with confidence. What you'll be doing As our Cyber Security Operations Manager , you'll be at the forefront of safeguarding Anglian Water's digital infrastructure - ensuring our systems, data, and services remain protected against evolving cyber threats.You'll: Lead and manage our outsourced Security Operations Centre (SOC) provider, ensuring high performance, continuous improvement, and alignment with business priorities. Oversee real-time threat detection, triage, and response - driving swift, effective action when incidents occur. Own and maintain the organisation's Cyber Incident Response Plan, coordinating major incident responses and ensuring lessons learned translate into stronger defences. Manage and optimise key technical controls, including SIEM, SOAR, PKI, and email security tools, to maintain robust detection and response capabilities. Collaborate with delivery partners and internal teams to improve service quality, mitigate risks, and enhance security posture. Drive the continuous maturity and modernisation of our detective controls and SOC operations, ensuring alignment with the NIST framework. Provide clear reporting and insights to senior stakeholders, ensuring informed decisions and proactive risk management. As a valued employee, you'll be entitled to: Full private healthcare with no excess 26 days leave, rising with service + Bank Holidays, with the option to swap Christmas and Easter holidays for those celebrated by your religion A flexible working culture Competitive pension scheme - we double-match your contributions up to 6% Life Assurance at eight times your salary Personal Accident cover - up to 5x your salary Bonus Scheme What does it take to be the Cyber Security Operations Manager You'll be a calm, confident leader with excellent interpersonal and communication skills - someone who thrives under pressure and brings clarity and composure to complex situations.You'll have a strong people leadership style , capable of guiding teams and partners with empathy, direction, and accountability. With your deep problem-solving skills and pragmatic mindset , you'll find balanced, effective solutions in fast-moving or high-stakes environments.You'll also be skilled at translating technical concepts into plain English , making complex issues clear and actionable for senior leaders and stakeholders. Confident in managing conflict and competing priorities , you'll foster collaboration and maintain focus on achieving the best outcomes for the organisation. Skills and Qualifications: Qualified to Degree level or equivalent Technical qualifications such as CISM, CISSP, CIPPE,CCSP, GICSP Experienced in SecOps Relationship building with team, colleagues, internal customers and external suppliers Significant experience in Security Operations and Incident Response Broad technical competence in IT and Cyber Broad technical competence in OT Solid understanding of SIEM/SOAR especially SentinelAt Anglian Water, we play a vital role in safeguarding one of life's most essential resources - and protecting the systems that keep it flowing is critical to our mission. As our Security Operations Manager , you'll be at the heart of that protection, leading the defence of our digital infrastructure that underpins services for millions of customers every day.You'll have the opportunity to shape how we detect, respond to, and recover from cyber threats - influencing strategic decisions and driving continuous improvement across our security landscape.In return, you'll join a forward-thinking, inclusive organisation that values innovation, personal growth, and work-life balance. You'll work alongside passionate professionals, gain exposure to cutting-edge technology, and make a genuine difference in protecting essential services that communities rely on. Closing date: 11 January 2026 Circa £76,000 (Depende nt on skills and experience) We are committed to reflect the diversity of the communities we serve in both our workforce and our supply chain partners to help us to understand and meet the needs of our customers. We are passionate and dedicated to the learning and development of our people, making sure they have the right skills and knowledge to be successful and to help achieve their potential.We want to give everyone equal access to our recruitment process. If you have a disability or long-term condition, including neurodiversity and mental health conditions, we'll support you throughout your application, and make any adjustments to make sure your disability or long-term condition is not a barrier to recruitment. If you need any support, please get reach out to our team 'To apply, you'll need your up-to-date CV, we also recommend uploading a cover letter - tell us what has made you apply and what skills you can bring to the position. We will be in touch after your application has been reviewed, following the closing date.If you are offered a job with us, you'll be subject to the relevant employment checks for your role, which could include references, driving licence check, DBS Check as well as your right to work in the UK. More information about how we look after and use your information can be found in our .Become a part of Anglian Water's future and join us on our journey as we live through our values to build trust, do the right thing, and are always exploring, to bring environmental and social prosperity to the region.
Jan 01, 2026
Full time
Permanent Full time / 37 hours a week Huntingdon / Hybrid Anglian Water offers a flexible approach, this role provides you the flexibility to work from home and from Lancaster House. Protecting our people, systems, and services - your leadership will be at the heart of our cyber resilience. The Security Operations Manager plays a critical role in safeguarding the organisation's digital infrastructure (IT and OT) by leading the real-time detection, response, and mitigation of cyber threats.This role oversees the Security Operations Centre (SOC), ensuring continuous monitoring of security events and alerts across the enterprise. The manager is responsible for orchestrating cyber incident response efforts, from initial detection through containment, remediation, and post-incident analysis.A key part of the role involves managing and fine-tuning security monitoring tools such as SIEM platforms to ensure optimal visibility and threat detection. The Security Operations Manager collaborates with IT, infrastructure, and platform teams to coordinate responses to vulnerabilities and ensure swift resolution of incidents.They also maintain and regularly test incident response plans, being central to simulation exercises to ensure readiness.This role demands a high level of technical expertise, leadership, and the ability to remain calm and decisive under pressure. The Security Operations Manager is the frontline defender of the organisation's cyber resilience, ensuring that threats are swiftly neutralised and that the business can operate securely and with confidence. What you'll be doing As our Cyber Security Operations Manager , you'll be at the forefront of safeguarding Anglian Water's digital infrastructure - ensuring our systems, data, and services remain protected against evolving cyber threats.You'll: Lead and manage our outsourced Security Operations Centre (SOC) provider, ensuring high performance, continuous improvement, and alignment with business priorities. Oversee real-time threat detection, triage, and response - driving swift, effective action when incidents occur. Own and maintain the organisation's Cyber Incident Response Plan, coordinating major incident responses and ensuring lessons learned translate into stronger defences. Manage and optimise key technical controls, including SIEM, SOAR, PKI, and email security tools, to maintain robust detection and response capabilities. Collaborate with delivery partners and internal teams to improve service quality, mitigate risks, and enhance security posture. Drive the continuous maturity and modernisation of our detective controls and SOC operations, ensuring alignment with the NIST framework. Provide clear reporting and insights to senior stakeholders, ensuring informed decisions and proactive risk management. As a valued employee, you'll be entitled to: Full private healthcare with no excess 26 days leave, rising with service + Bank Holidays, with the option to swap Christmas and Easter holidays for those celebrated by your religion A flexible working culture Competitive pension scheme - we double-match your contributions up to 6% Life Assurance at eight times your salary Personal Accident cover - up to 5x your salary Bonus Scheme What does it take to be the Cyber Security Operations Manager You'll be a calm, confident leader with excellent interpersonal and communication skills - someone who thrives under pressure and brings clarity and composure to complex situations.You'll have a strong people leadership style , capable of guiding teams and partners with empathy, direction, and accountability. With your deep problem-solving skills and pragmatic mindset , you'll find balanced, effective solutions in fast-moving or high-stakes environments.You'll also be skilled at translating technical concepts into plain English , making complex issues clear and actionable for senior leaders and stakeholders. Confident in managing conflict and competing priorities , you'll foster collaboration and maintain focus on achieving the best outcomes for the organisation. Skills and Qualifications: Qualified to Degree level or equivalent Technical qualifications such as CISM, CISSP, CIPPE,CCSP, GICSP Experienced in SecOps Relationship building with team, colleagues, internal customers and external suppliers Significant experience in Security Operations and Incident Response Broad technical competence in IT and Cyber Broad technical competence in OT Solid understanding of SIEM/SOAR especially SentinelAt Anglian Water, we play a vital role in safeguarding one of life's most essential resources - and protecting the systems that keep it flowing is critical to our mission. As our Security Operations Manager , you'll be at the heart of that protection, leading the defence of our digital infrastructure that underpins services for millions of customers every day.You'll have the opportunity to shape how we detect, respond to, and recover from cyber threats - influencing strategic decisions and driving continuous improvement across our security landscape.In return, you'll join a forward-thinking, inclusive organisation that values innovation, personal growth, and work-life balance. You'll work alongside passionate professionals, gain exposure to cutting-edge technology, and make a genuine difference in protecting essential services that communities rely on. Closing date: 11 January 2026 Circa £76,000 (Depende nt on skills and experience) We are committed to reflect the diversity of the communities we serve in both our workforce and our supply chain partners to help us to understand and meet the needs of our customers. We are passionate and dedicated to the learning and development of our people, making sure they have the right skills and knowledge to be successful and to help achieve their potential.We want to give everyone equal access to our recruitment process. If you have a disability or long-term condition, including neurodiversity and mental health conditions, we'll support you throughout your application, and make any adjustments to make sure your disability or long-term condition is not a barrier to recruitment. If you need any support, please get reach out to our team 'To apply, you'll need your up-to-date CV, we also recommend uploading a cover letter - tell us what has made you apply and what skills you can bring to the position. We will be in touch after your application has been reviewed, following the closing date.If you are offered a job with us, you'll be subject to the relevant employment checks for your role, which could include references, driving licence check, DBS Check as well as your right to work in the UK. More information about how we look after and use your information can be found in our .Become a part of Anglian Water's future and join us on our journey as we live through our values to build trust, do the right thing, and are always exploring, to bring environmental and social prosperity to the region.
Senior Security Engineer Belfast Permanent Full-Time Hybrid This is an exceptional opportunity to be part of a security-first culture where protecting client data isn't just a compliance requirement - it's foundational to the firm's global reputation and trusted partnerships. Security receives full senior leadership backing, and the team continues to evolve in line with industry-leading frameworks and best practice. About the Team The Information Security function forms a central pillar of the organisation's wider technology landscape. With a blend of mature and emerging capabilities, the team covers all core elements of cyber defence, engineering, operations, governance, and risk. Security strategy aligns to globally recognised frameworks such as NIST, ISO27001, and SOC2, ensuring the organisation remains resilient in the face of an ever-shifting threat landscape. You'll also benefit from collaboration with security specialists across the business - including teams who advise international clients on cyber risk and incident response, offering rich insight and knowledge-sharing. What You Will Do The Senior Security Engineer plays a crucial role in designing, deploying, and enhancing the firm's security infrastructure. The position combines hands on engineering with strategic input, incident response, and continuous improvement of monitoring and defensive capabilities. Security Engineering & Infrastructure Support the build, deployment, and maintenance of secure infrastructure across the organisation. Manage and optimise SIEM and SOAR platforms to strengthen detection and response capabilities. Troubleshoot and resolve issues across the wider technology stack. Security Consultation & Collaboration Provide engineering guidance to teams across the business, supported by senior security colleagues. Partner with IT, managed service providers, and global teams to ensure consistent application of controls. Automation & Operational Efficiency Contribute to the automation of security processes, reducing manual overheads and increasing efficiency. Track KPIs and performance metrics to measure control effectiveness and inform future improvements. Security Architecture & Strategy Assist in shaping a robust, scalable security architecture alongside senior engineers and trusted partners. Support delivery of the security engineering roadmap aligned to wider business and technology objectives. Monitor and report progress on key security engineering initiatives. Incident Response & Vulnerability Management Help enhance monitoring and detection alongside the Cyber Defence and wider security teams. Participate in incident investigations, remediation, and post incident analysis. Collaborate with vulnerability management teams to address findings and strengthen overall posture. What You Will Bring Strong hands on experience in information security or infrastructure engineering, including time spent in a Security Engineering capacity. Solid understanding of networking fundamentals such as TCP/IP and key services like DNS and SMTP. Practical operational experience in multiple areas, including: SIEM and SOAR Detection rules, playbooks, and use cases Ansible Firewalls / IDS / IPS Windows and Linux platforms Cloud security or CNAPP AWS or Azure Strong analytical and problem solving skills, with the ability to interpret complex data flows and events. Excellent communication and collaboration skills across technical and non technical teams. A proactive, ethical, and detail driven approach, with a commitment to ongoing learning. You'll Stand Out If You Bring A degree in Information Security, Computer Science, Engineering, or related discipline. Recognised industry certifications such as: CISSP CEH CISM CompTIA Security+ What's on Offer A generous package designed to support wellbeing, development, and work life balance, including: Pension and income protection Private medical insurance Increasing holiday entitlement Flexible benefits, lifestyle discounts, and reward schemes To speak in absolute confidence about this opportunity please send an up to date CV via the link provided or contact Senior Recruitment Consultant Stuart Kennedy at MCS Group on or . Even if this position is not right for you, we may have others that are. Please visit MCS Group to view a wide selection of our current jobs.
Jan 01, 2026
Full time
Senior Security Engineer Belfast Permanent Full-Time Hybrid This is an exceptional opportunity to be part of a security-first culture where protecting client data isn't just a compliance requirement - it's foundational to the firm's global reputation and trusted partnerships. Security receives full senior leadership backing, and the team continues to evolve in line with industry-leading frameworks and best practice. About the Team The Information Security function forms a central pillar of the organisation's wider technology landscape. With a blend of mature and emerging capabilities, the team covers all core elements of cyber defence, engineering, operations, governance, and risk. Security strategy aligns to globally recognised frameworks such as NIST, ISO27001, and SOC2, ensuring the organisation remains resilient in the face of an ever-shifting threat landscape. You'll also benefit from collaboration with security specialists across the business - including teams who advise international clients on cyber risk and incident response, offering rich insight and knowledge-sharing. What You Will Do The Senior Security Engineer plays a crucial role in designing, deploying, and enhancing the firm's security infrastructure. The position combines hands on engineering with strategic input, incident response, and continuous improvement of monitoring and defensive capabilities. Security Engineering & Infrastructure Support the build, deployment, and maintenance of secure infrastructure across the organisation. Manage and optimise SIEM and SOAR platforms to strengthen detection and response capabilities. Troubleshoot and resolve issues across the wider technology stack. Security Consultation & Collaboration Provide engineering guidance to teams across the business, supported by senior security colleagues. Partner with IT, managed service providers, and global teams to ensure consistent application of controls. Automation & Operational Efficiency Contribute to the automation of security processes, reducing manual overheads and increasing efficiency. Track KPIs and performance metrics to measure control effectiveness and inform future improvements. Security Architecture & Strategy Assist in shaping a robust, scalable security architecture alongside senior engineers and trusted partners. Support delivery of the security engineering roadmap aligned to wider business and technology objectives. Monitor and report progress on key security engineering initiatives. Incident Response & Vulnerability Management Help enhance monitoring and detection alongside the Cyber Defence and wider security teams. Participate in incident investigations, remediation, and post incident analysis. Collaborate with vulnerability management teams to address findings and strengthen overall posture. What You Will Bring Strong hands on experience in information security or infrastructure engineering, including time spent in a Security Engineering capacity. Solid understanding of networking fundamentals such as TCP/IP and key services like DNS and SMTP. Practical operational experience in multiple areas, including: SIEM and SOAR Detection rules, playbooks, and use cases Ansible Firewalls / IDS / IPS Windows and Linux platforms Cloud security or CNAPP AWS or Azure Strong analytical and problem solving skills, with the ability to interpret complex data flows and events. Excellent communication and collaboration skills across technical and non technical teams. A proactive, ethical, and detail driven approach, with a commitment to ongoing learning. You'll Stand Out If You Bring A degree in Information Security, Computer Science, Engineering, or related discipline. Recognised industry certifications such as: CISSP CEH CISM CompTIA Security+ What's on Offer A generous package designed to support wellbeing, development, and work life balance, including: Pension and income protection Private medical insurance Increasing holiday entitlement Flexible benefits, lifestyle discounts, and reward schemes To speak in absolute confidence about this opportunity please send an up to date CV via the link provided or contact Senior Recruitment Consultant Stuart Kennedy at MCS Group on or . Even if this position is not right for you, we may have others that are. Please visit MCS Group to view a wide selection of our current jobs.
Insight Investment are seeking a Senior Cyber Defence Operations Analyst to be a part of the CISO function reporting to the Cyber Defence Operations Lead. The role will be to maintain and update alerts/rules within Insight Investment's monitoring solution, conduct vulnerability management with various stakeholders, continually ensure compliance with regulatory requirements, generate new security controls as required, and be responsible for incident response within the firm. The candidate will lead incident response activity as required. Role Responsibilities Lead, investigate, record and respond to SIEM alerts, determine scope and severity of incidents, and coordinate containment and remediation efforts. Define, implement and continuously improve operational security processes and runbooks to align with compliance standards and evolving threats. Assist with integrating and configuring security tooling, ensuring effective data ingestion, enrichment and alerting across the environment. Lead threat hunting activities to proactively identify suspicious behaviour and improve detection coverage. Deliver effective vulnerability management: analyse scanning outputs, coordinate with technology teams and ensure timely notification and remediation tracking. Participate in the out-of-hours, on-call rotation, supporting incident response efforts during non-core hours. Enforce security processes and requirements across the business. Experience Required Previous ownership of the incident response, vulnerability management or SIEM monitoring solution processes and procedures. Knowledge of SIEM tooling, designing and implementing use cases & documenting KBAs. Strong knowledge of KQL. Proven experience in incident response and handling. Experience contributing to cybersecurity operations in a professional or structured environment. Demonstrated commitment to continuous self-study. Experience working with an MSSP. Technical knowledge of access management and security controls. Strong collaboration skills with the ability to work across teams and stakeholders. A strong desire to drive security innovation across the firm. Advantageous Relevant technical cyber security certifications are desirable. Knowledge on task automation/scripting would be hugely beneficial. Experience with Microsoft suite (Defender/Azure), query-based SIEM (e.g. Sentinel, Splunk) and orchestration platforms. Experience in financial services or other highly regulated environments. Prior involvement in threat hunting activities. About Insight Investment Insight Investment is a leading asset manager focused on designing investment solutions to meet its clients' needs. Founded in 2002, Insight's collaborative approach has delivered both investment performance and growth in assets under management. Insight manages assets across its core liability-driven investment, risk management, full-spectrum fixed income, currency and absolute return capabilities. Insight has a global network of operations in the UK, Ireland, Germany, US, Japan and Australia. More information about Insight Investment can be found at:
Jan 01, 2026
Full time
Insight Investment are seeking a Senior Cyber Defence Operations Analyst to be a part of the CISO function reporting to the Cyber Defence Operations Lead. The role will be to maintain and update alerts/rules within Insight Investment's monitoring solution, conduct vulnerability management with various stakeholders, continually ensure compliance with regulatory requirements, generate new security controls as required, and be responsible for incident response within the firm. The candidate will lead incident response activity as required. Role Responsibilities Lead, investigate, record and respond to SIEM alerts, determine scope and severity of incidents, and coordinate containment and remediation efforts. Define, implement and continuously improve operational security processes and runbooks to align with compliance standards and evolving threats. Assist with integrating and configuring security tooling, ensuring effective data ingestion, enrichment and alerting across the environment. Lead threat hunting activities to proactively identify suspicious behaviour and improve detection coverage. Deliver effective vulnerability management: analyse scanning outputs, coordinate with technology teams and ensure timely notification and remediation tracking. Participate in the out-of-hours, on-call rotation, supporting incident response efforts during non-core hours. Enforce security processes and requirements across the business. Experience Required Previous ownership of the incident response, vulnerability management or SIEM monitoring solution processes and procedures. Knowledge of SIEM tooling, designing and implementing use cases & documenting KBAs. Strong knowledge of KQL. Proven experience in incident response and handling. Experience contributing to cybersecurity operations in a professional or structured environment. Demonstrated commitment to continuous self-study. Experience working with an MSSP. Technical knowledge of access management and security controls. Strong collaboration skills with the ability to work across teams and stakeholders. A strong desire to drive security innovation across the firm. Advantageous Relevant technical cyber security certifications are desirable. Knowledge on task automation/scripting would be hugely beneficial. Experience with Microsoft suite (Defender/Azure), query-based SIEM (e.g. Sentinel, Splunk) and orchestration platforms. Experience in financial services or other highly regulated environments. Prior involvement in threat hunting activities. About Insight Investment Insight Investment is a leading asset manager focused on designing investment solutions to meet its clients' needs. Founded in 2002, Insight's collaborative approach has delivered both investment performance and growth in assets under management. Insight manages assets across its core liability-driven investment, risk management, full-spectrum fixed income, currency and absolute return capabilities. Insight has a global network of operations in the UK, Ireland, Germany, US, Japan and Australia. More information about Insight Investment can be found at:
Location(s): UK, Europe & Africa: UK: London UK, Europe & Africa: UK: Leeds BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Grade: GG11 Referral Bonus: £5,000 SOC Engineering Lead Role description BAE Systems are bidding to undertake the day to day operation of (and incremental improvement of) a dedicated Security Operations Centre (SOC) to support the defence of a major UK CNI organisation. The networks protected are predominantly hosted in Azure cloud platforms, with many systems within these environments that must be protected. The customer is committed to development of this improved SOC to be a benchmark of best practice and excellence in reflection of the significant threat that the protected systems are subject to. The SOC will be staffed by a blend of customer and BAE Systems staff, based in multiple locations, but with the day to day operations both remotely and in the customer's premises. These roles require a minimum of SC clearance. Due to timelines for the start of operations, it will not be possible to sponsor new clearances so candidates must have existing clearances. The SOC Engineering lead is responsible for planning and managing development, testing and implementation activities for both day to day activities - delivering new / updated rules and analytics for the Azure SIEM and SOAR platforms, and production of playbooks leading the Analytics and Rules (A&R) Teams prioritising and coordinating their activities across the various projects / releases - as well as long term improvement upgrades and activities. The day-to-day focus of the Engineering team which you will manage day to day is working with the Protective Monitoring, Threat Intelligence and wider SOC operations Teams to scope and define the requirements for tuning existing security use cases and creating new detection content. This includes planning each release and overseeing all design, development, testing and implementation activities. The strategic focus of the Engineering Lead is to ensure that the detection and monitoring technology remains optimised, current and tailored to the changing threat landscape, authority risk position and technology in use. The SOC Engineering Lead is an IT and cyber technical specialist with deep knowledge of the Cyber Monitoring technologies and cyber threat tools, tactics, techniques and procedures and demonstrable experience of prior SOC Engineering roles of a similar nature, with clear understanding of how engineering impacts the people and process aspects of a SOC. Responsibilities You will help grow and evolve the customer SOC capability by documenting the platforms, feeding back lessons learned and working with the wider team in establishing best practices and repeatable engineering processes. You will feed back requirements that you have captured during the project continually to appropriate customer and BAE Systems management teams to help to steer the SOC roadmap. You will work with technical project managers, engineers, solution architects, as well as the end-customer senior stakeholders. Given the CNI client focus of this role, flexibility in our designs and delivery methodologies is essential to ensure timely and potentially safety complaint delivery to the customer's satisfaction. Oversee deployment / implementation activities ensuring that entry criteria are met, all planned activities are completed and that rollback plans are initiated where required. Develop, test and deploy updated and new content across the monitored estate in liaison with the Operations teams. Take playbooks from the wider SOC teams, develop technical aspects, seek approval, and deploy - sometimes directly and sometimes as an mentor to the team. Accountable for the maintenance of existing detection content to ensure it remains current and relevant to the monitored estate. Assess the effectiveness of new / updated rules and analytics to feed into future development activities. Review and approve all required documentation as part of a release or change including design, deployment, configuration and administration guides. Oversee and remain responsible for the maintenance of underlying Azure and off-Azure infrastructure related to the SOC. Obtain authorisation for implementing releases and changes through the Change Management process for ICT and SOC component changes. Requirements Technical Strong knowledge of how Azure security functions work as security controls as well as detection tools to protect large cloud estates; Produce content and playbooks on Sentinal to detect security breaches and recognise the importance of threat led Use Cases. Knowledge of SIEM/SOAR tools (Sentinel at a minimum) and other appropriate tooling e.g. SOAR, Threat Intelligence, traffic analysis tools etc. to identify signs of an intrusion, and advise where new/improved tooling could enhance the SOC operation Deep knowledge and experience of operational ICT service delivery management. Working with a range of security tooling/technology Strong understanding of security architecture, in particular networking Detailed understanding of threat intelligence and threat actors, TTPs and operationalising threat intelligence. Understand TCP/IP component layers to identify normal and abnormal traffic Experience of undertaking SOC Analyst activities would be beneficial Experience developing wider SIEM/SOAR content highly desirable Non-technical Client side consulting, including stakeholder engagement and the ability to communicate insights and concepts to others (including briefing skills and report writing) Team Leadership Coaching mindset - help and mentor team Security process development Able to understand and adapt to different cultures and hierarchical structures. Self-starter and capable of independent working Team player and adept at working in multi-disciplinary and diverse teams Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome candidates from all backgrounds and particularly from sections of the community who are currently underrepresented within our industry, including women, ethnic minorities, people with disabilities and LGBTQ+ individuals. We also want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. PLEASE NOTE You're expected to have completed 12 months in role prior to applying for an advertised vacancy and you should also discuss the internal opportunity with your line manager to ensure sustained business continuity and to further support your career development. We know there may be individual circumstances that impact this, so please discuss this with your line manager or HR Business Partner (HRBP). If you don't feel you can talk to your line manager, you can contact your HRBP. Should you be invited for interview, you will be giving consent for the Recruitment team to contact you and your line manager regarding your application for this opportunity. This vacancy is eligible for the UK Employee Referral Scheme. Amount: £5000 Life at BAE Systems Digital Intelligence We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day. By embracing technology, we can interact, collaborate and create together, even when we're working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance well-being. Diversity and inclusion are integral to the success of BAE Systems Digital Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds - the best and brightest minds - can work together to achieve excellence and realise individual and organisational potential. Division overview: Government At BAE Systems Digital Intelligence, we pride ourselves in being a leader in the cyber defence industry, and Government contracts are an area we have many decades of experience in. Government and key infrastructure networks are critical targets to defend as the effects of these networks being breached can be devastating. As a member of the Government business unit, you will defend the connected world and ensure the protection of nations. We all have a role to play in defending our clients, and this is yours.
Jan 01, 2026
Full time
Location(s): UK, Europe & Africa: UK: London UK, Europe & Africa: UK: Leeds BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Grade: GG11 Referral Bonus: £5,000 SOC Engineering Lead Role description BAE Systems are bidding to undertake the day to day operation of (and incremental improvement of) a dedicated Security Operations Centre (SOC) to support the defence of a major UK CNI organisation. The networks protected are predominantly hosted in Azure cloud platforms, with many systems within these environments that must be protected. The customer is committed to development of this improved SOC to be a benchmark of best practice and excellence in reflection of the significant threat that the protected systems are subject to. The SOC will be staffed by a blend of customer and BAE Systems staff, based in multiple locations, but with the day to day operations both remotely and in the customer's premises. These roles require a minimum of SC clearance. Due to timelines for the start of operations, it will not be possible to sponsor new clearances so candidates must have existing clearances. The SOC Engineering lead is responsible for planning and managing development, testing and implementation activities for both day to day activities - delivering new / updated rules and analytics for the Azure SIEM and SOAR platforms, and production of playbooks leading the Analytics and Rules (A&R) Teams prioritising and coordinating their activities across the various projects / releases - as well as long term improvement upgrades and activities. The day-to-day focus of the Engineering team which you will manage day to day is working with the Protective Monitoring, Threat Intelligence and wider SOC operations Teams to scope and define the requirements for tuning existing security use cases and creating new detection content. This includes planning each release and overseeing all design, development, testing and implementation activities. The strategic focus of the Engineering Lead is to ensure that the detection and monitoring technology remains optimised, current and tailored to the changing threat landscape, authority risk position and technology in use. The SOC Engineering Lead is an IT and cyber technical specialist with deep knowledge of the Cyber Monitoring technologies and cyber threat tools, tactics, techniques and procedures and demonstrable experience of prior SOC Engineering roles of a similar nature, with clear understanding of how engineering impacts the people and process aspects of a SOC. Responsibilities You will help grow and evolve the customer SOC capability by documenting the platforms, feeding back lessons learned and working with the wider team in establishing best practices and repeatable engineering processes. You will feed back requirements that you have captured during the project continually to appropriate customer and BAE Systems management teams to help to steer the SOC roadmap. You will work with technical project managers, engineers, solution architects, as well as the end-customer senior stakeholders. Given the CNI client focus of this role, flexibility in our designs and delivery methodologies is essential to ensure timely and potentially safety complaint delivery to the customer's satisfaction. Oversee deployment / implementation activities ensuring that entry criteria are met, all planned activities are completed and that rollback plans are initiated where required. Develop, test and deploy updated and new content across the monitored estate in liaison with the Operations teams. Take playbooks from the wider SOC teams, develop technical aspects, seek approval, and deploy - sometimes directly and sometimes as an mentor to the team. Accountable for the maintenance of existing detection content to ensure it remains current and relevant to the monitored estate. Assess the effectiveness of new / updated rules and analytics to feed into future development activities. Review and approve all required documentation as part of a release or change including design, deployment, configuration and administration guides. Oversee and remain responsible for the maintenance of underlying Azure and off-Azure infrastructure related to the SOC. Obtain authorisation for implementing releases and changes through the Change Management process for ICT and SOC component changes. Requirements Technical Strong knowledge of how Azure security functions work as security controls as well as detection tools to protect large cloud estates; Produce content and playbooks on Sentinal to detect security breaches and recognise the importance of threat led Use Cases. Knowledge of SIEM/SOAR tools (Sentinel at a minimum) and other appropriate tooling e.g. SOAR, Threat Intelligence, traffic analysis tools etc. to identify signs of an intrusion, and advise where new/improved tooling could enhance the SOC operation Deep knowledge and experience of operational ICT service delivery management. Working with a range of security tooling/technology Strong understanding of security architecture, in particular networking Detailed understanding of threat intelligence and threat actors, TTPs and operationalising threat intelligence. Understand TCP/IP component layers to identify normal and abnormal traffic Experience of undertaking SOC Analyst activities would be beneficial Experience developing wider SIEM/SOAR content highly desirable Non-technical Client side consulting, including stakeholder engagement and the ability to communicate insights and concepts to others (including briefing skills and report writing) Team Leadership Coaching mindset - help and mentor team Security process development Able to understand and adapt to different cultures and hierarchical structures. Self-starter and capable of independent working Team player and adept at working in multi-disciplinary and diverse teams Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome candidates from all backgrounds and particularly from sections of the community who are currently underrepresented within our industry, including women, ethnic minorities, people with disabilities and LGBTQ+ individuals. We also want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. PLEASE NOTE You're expected to have completed 12 months in role prior to applying for an advertised vacancy and you should also discuss the internal opportunity with your line manager to ensure sustained business continuity and to further support your career development. We know there may be individual circumstances that impact this, so please discuss this with your line manager or HR Business Partner (HRBP). If you don't feel you can talk to your line manager, you can contact your HRBP. Should you be invited for interview, you will be giving consent for the Recruitment team to contact you and your line manager regarding your application for this opportunity. This vacancy is eligible for the UK Employee Referral Scheme. Amount: £5000 Life at BAE Systems Digital Intelligence We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day. By embracing technology, we can interact, collaborate and create together, even when we're working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance well-being. Diversity and inclusion are integral to the success of BAE Systems Digital Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds - the best and brightest minds - can work together to achieve excellence and realise individual and organisational potential. Division overview: Government At BAE Systems Digital Intelligence, we pride ourselves in being a leader in the cyber defence industry, and Government contracts are an area we have many decades of experience in. Government and key infrastructure networks are critical targets to defend as the effects of these networks being breached can be devastating. As a member of the Government business unit, you will defend the connected world and ensure the protection of nations. We all have a role to play in defending our clients, and this is yours.
Client Lead - National Security Location: Farnborough, England, United Kingdom Role Type: Permanent - Full Time Package: Competitive Salaries + Benefits Role ID: SF18372 Are you ready to be part of the future? At QinetiQ, we're not just imagining tomorrow we are creating it. From cutting edge defence technology to ground breaking innovations our mission is to empower and protect lives. Join us as a Senior Client Manager, where you will have the opportunity to work with cutting edge technology in partnership with some of the most brilliant minds. We have a new, exciting opportunity for a Senior Client Manager - National Security. This role will be based from our Farnborough site with some travel, and we also offer hybrid working. Role Purpose Provide central focus and orchestration for all QinetiQ engagement with National Security Client to ensure coherence of Go to market strategy and all engagements with this client. Build strong relationships and network across customer community, lead on development of coherent engagement plan and oversee its implementation across this community. Build in depth understanding of National Security Clients' strategic aims, budgets and funded programme lines. Build, coach and mentor Client Management team who report directly into this role and who are aligned with key client accounts that sit within this market segment. Day to day leadership and mentoring of this Client Management team. Implement and support ongoing development of operational tempo and heartbeat to drive coherent engagement across all relevant QQ stakeholders engaging with National Security Working with Sector MDs and BD Director develop and implement GTM strategy for National Security Ensure coherency of our GTM strategy across Defence and wider Government as appropriate Ensure ongoing alignment with IDTs to ensure effective and efficient development and execution of farmed opportunities Development and execution of larger strategic opportunities and propositions - working with the BDD and Head of Capture and Bidding Business planning to support ISBP development, and in year forecasting Ensure alignment wider QinetiQ through peer level stakeholder engagement - Capture Managers, CTO office, Campaign BD leads Key Accountabilities Leadership: provide direct and "hands on" leadership and coordination of all QinetiQ engagements into this client. Nurture and develop Client Management team aligned with the client and ensure that the team is appropriately trained in Company Best practice and that it follows this routinely in the execution of all Business Winning activities in this area. Stakeholder management: build thorough understanding of Client stakeholders, organisational construct and ways of working. Coordinate all QinetiQ engagements into this community to ensure alignment of messaging across our business. Similarly, in conjunction with the Client Management team reporting in to this role, develop strong relationships across all QinetiQ stakeholders engaging with this Client. Got to market Strategy: working across internal and external stakeholders develop a coherent Go To market Strategy for this client. This GTM strategy should leverage thorough and in depth understanding of the clients own strategy, budget and forecasted spend on future procurements. Support Development of QinetiQ strategy: engage with UKI Strategy Director and TOE functions to ensure that QinetiQ's own strategic growth plans are aligned with those of National Security Clients and that we are building skills and capacity necessary to execute on that strategy. Order Intake Number for National Security secure in year orders in line with Targets for this area whilst building credible pipeline and platform for future growth and delivery of longer term ISBP order intake commitments Capture/Bid Management: engage with UK Intelligence Head of Capture and Bid Management to ensure that approved Capture plans are in place and are being executed for all major opportunities being executed within the Defence and Training Market. Ensure that best practice is applied at all times in the execution of these captures through "hands on" leadership of all major Captures. Forward planning resourcing: Proactively engage with the Intelligence Sector BDD and Operations Lead to ensure that there is a clear forward view of the pipeline and resourcing requirements. Ensure opportunities can be resourced correctly from a Capture/Bid Management perspective and that requirements for technical resource from the business are known and understood. Wider engagement: Proactively engage with the Global Campaigns and UK Defence Sectors to ensure areas of cross collaboration are known and understood. Maintain visibility of cross collaboration execution plan to ensure that this is known and understood within the Intelligence Sector and that it is being followed correctly. Best Practice: Proactively engage with Group Business Winning Excellence to ensure that activities within the Sector follow accepted best practice and that the team is trained in accordance with Company requirements/schedules. Demonstrate leadership in the usage of SAP C4C CRM. Feedback to Group Business Winning Excellence any areas of potential improvements/refinements in best practice or training based upon experience within the Sector of Capture execution. Compliance: Ensure all business winning activities are conducted in full compliance to Group business winning policies and procedures. Ensure that Group policies relating to Ethical Trading Policy, Exports and the appointment and use of third party Commercial Intermediaries are fully complied with. Leadership: Ability to lead teams of senior professionals that span business and functional boundaries. Ability to operate in a complex matrix structure using influential leadership to bring best of capabilities to bear to enable development of strategic GTM plan, secure pipeline and win complex, competed tenders Business Development: Proven track record in leading teams to build credible pipeline at scale with high conversion rate. Ability to repeatedly deliver challenging OI targets. Execution of Win Strategy: Track record of win strategy development and implementation for complex, competed deals at scale (over c£30m), Domain Relevance: Relevant experience of winning business with customers and industrial partners across Defence with particular focus on Stratcom (Defence Digital/Defence Intelligence), DSTL and Front Line Commands. Deep customer domain knowledge and relationships: ability to provide thought leadership to customers in complex domains (spanning the above) and develop compelling QinetiQ propositions to meet deliver on this thought leadership. Wider industry relationships: established relationships at executive level and ability to engage at this level in order to build partnering strategies and detailed understanding of the competitive terrain. Experience & Qualifications Proven track record in hands on development and execution of scale pipeline (c£200m) with high conversion rate (delivering c£100m) of orders in year. Proven track record in cradle to grave execution of win strategies with demonstrated ability to win competitive tenders (over c£30m). Proven track record in the leadership/mentorship of business development teams, in order to enable development and implementation of compelling strategy and winning tender responses. Proven track record of ability to influence across matrixed internal organisational structure in order to harness wider capabilities in the development and implementation of compelling strategy and winning tender responses. Technical background with sufficient knowledge of Data Intelligence, Communications, Cyber Security and Sensor technologies to link technology with client business problems and engage confidently with client/internal technical communities. Track record in navigation of complex and multi-disciplinary stakeholder communities within customer organisations. Ability to influence and shape decision making at executive levels within the customer community. Over 10 years' experience working in Defence and Secure Government environment with particular focus on Defence Digital, Defence Intelligence, DSTL and front line commands Established network within this community with strong reputation built upon consistent delivery. Established network within other commercial organisations that operate within this market with strong reputation built upon trust and mutual respect. Security clearances to allow access to core clients and access to operational requirements and procurement strategies within the above customer communities. Why Join QinetiQ? As we continue to grow into new markets around the world, there's never been a more exciting time to join QinetiQ. The formula for success is our appetite for innovation and having the courage to take on a wide variety of complex challenges. As a QinetiQ employee, you'll experience a unique working environment where teams from different backgrounds, disciplines and experience enjoy collaborating widely and openly as we undertake this exciting and rewarding journey. Through effective teamwork, and pulling together, you'll get to experience what happens when we all share different perspectives, blend disciplines, and link technologies; constantly discovering new ways of solving complex problems in a diverse and inclusive environment where you can be authentic . click apply for full job details
Jan 01, 2026
Full time
Client Lead - National Security Location: Farnborough, England, United Kingdom Role Type: Permanent - Full Time Package: Competitive Salaries + Benefits Role ID: SF18372 Are you ready to be part of the future? At QinetiQ, we're not just imagining tomorrow we are creating it. From cutting edge defence technology to ground breaking innovations our mission is to empower and protect lives. Join us as a Senior Client Manager, where you will have the opportunity to work with cutting edge technology in partnership with some of the most brilliant minds. We have a new, exciting opportunity for a Senior Client Manager - National Security. This role will be based from our Farnborough site with some travel, and we also offer hybrid working. Role Purpose Provide central focus and orchestration for all QinetiQ engagement with National Security Client to ensure coherence of Go to market strategy and all engagements with this client. Build strong relationships and network across customer community, lead on development of coherent engagement plan and oversee its implementation across this community. Build in depth understanding of National Security Clients' strategic aims, budgets and funded programme lines. Build, coach and mentor Client Management team who report directly into this role and who are aligned with key client accounts that sit within this market segment. Day to day leadership and mentoring of this Client Management team. Implement and support ongoing development of operational tempo and heartbeat to drive coherent engagement across all relevant QQ stakeholders engaging with National Security Working with Sector MDs and BD Director develop and implement GTM strategy for National Security Ensure coherency of our GTM strategy across Defence and wider Government as appropriate Ensure ongoing alignment with IDTs to ensure effective and efficient development and execution of farmed opportunities Development and execution of larger strategic opportunities and propositions - working with the BDD and Head of Capture and Bidding Business planning to support ISBP development, and in year forecasting Ensure alignment wider QinetiQ through peer level stakeholder engagement - Capture Managers, CTO office, Campaign BD leads Key Accountabilities Leadership: provide direct and "hands on" leadership and coordination of all QinetiQ engagements into this client. Nurture and develop Client Management team aligned with the client and ensure that the team is appropriately trained in Company Best practice and that it follows this routinely in the execution of all Business Winning activities in this area. Stakeholder management: build thorough understanding of Client stakeholders, organisational construct and ways of working. Coordinate all QinetiQ engagements into this community to ensure alignment of messaging across our business. Similarly, in conjunction with the Client Management team reporting in to this role, develop strong relationships across all QinetiQ stakeholders engaging with this Client. Got to market Strategy: working across internal and external stakeholders develop a coherent Go To market Strategy for this client. This GTM strategy should leverage thorough and in depth understanding of the clients own strategy, budget and forecasted spend on future procurements. Support Development of QinetiQ strategy: engage with UKI Strategy Director and TOE functions to ensure that QinetiQ's own strategic growth plans are aligned with those of National Security Clients and that we are building skills and capacity necessary to execute on that strategy. Order Intake Number for National Security secure in year orders in line with Targets for this area whilst building credible pipeline and platform for future growth and delivery of longer term ISBP order intake commitments Capture/Bid Management: engage with UK Intelligence Head of Capture and Bid Management to ensure that approved Capture plans are in place and are being executed for all major opportunities being executed within the Defence and Training Market. Ensure that best practice is applied at all times in the execution of these captures through "hands on" leadership of all major Captures. Forward planning resourcing: Proactively engage with the Intelligence Sector BDD and Operations Lead to ensure that there is a clear forward view of the pipeline and resourcing requirements. Ensure opportunities can be resourced correctly from a Capture/Bid Management perspective and that requirements for technical resource from the business are known and understood. Wider engagement: Proactively engage with the Global Campaigns and UK Defence Sectors to ensure areas of cross collaboration are known and understood. Maintain visibility of cross collaboration execution plan to ensure that this is known and understood within the Intelligence Sector and that it is being followed correctly. Best Practice: Proactively engage with Group Business Winning Excellence to ensure that activities within the Sector follow accepted best practice and that the team is trained in accordance with Company requirements/schedules. Demonstrate leadership in the usage of SAP C4C CRM. Feedback to Group Business Winning Excellence any areas of potential improvements/refinements in best practice or training based upon experience within the Sector of Capture execution. Compliance: Ensure all business winning activities are conducted in full compliance to Group business winning policies and procedures. Ensure that Group policies relating to Ethical Trading Policy, Exports and the appointment and use of third party Commercial Intermediaries are fully complied with. Leadership: Ability to lead teams of senior professionals that span business and functional boundaries. Ability to operate in a complex matrix structure using influential leadership to bring best of capabilities to bear to enable development of strategic GTM plan, secure pipeline and win complex, competed tenders Business Development: Proven track record in leading teams to build credible pipeline at scale with high conversion rate. Ability to repeatedly deliver challenging OI targets. Execution of Win Strategy: Track record of win strategy development and implementation for complex, competed deals at scale (over c£30m), Domain Relevance: Relevant experience of winning business with customers and industrial partners across Defence with particular focus on Stratcom (Defence Digital/Defence Intelligence), DSTL and Front Line Commands. Deep customer domain knowledge and relationships: ability to provide thought leadership to customers in complex domains (spanning the above) and develop compelling QinetiQ propositions to meet deliver on this thought leadership. Wider industry relationships: established relationships at executive level and ability to engage at this level in order to build partnering strategies and detailed understanding of the competitive terrain. Experience & Qualifications Proven track record in hands on development and execution of scale pipeline (c£200m) with high conversion rate (delivering c£100m) of orders in year. Proven track record in cradle to grave execution of win strategies with demonstrated ability to win competitive tenders (over c£30m). Proven track record in the leadership/mentorship of business development teams, in order to enable development and implementation of compelling strategy and winning tender responses. Proven track record of ability to influence across matrixed internal organisational structure in order to harness wider capabilities in the development and implementation of compelling strategy and winning tender responses. Technical background with sufficient knowledge of Data Intelligence, Communications, Cyber Security and Sensor technologies to link technology with client business problems and engage confidently with client/internal technical communities. Track record in navigation of complex and multi-disciplinary stakeholder communities within customer organisations. Ability to influence and shape decision making at executive levels within the customer community. Over 10 years' experience working in Defence and Secure Government environment with particular focus on Defence Digital, Defence Intelligence, DSTL and front line commands Established network within this community with strong reputation built upon consistent delivery. Established network within other commercial organisations that operate within this market with strong reputation built upon trust and mutual respect. Security clearances to allow access to core clients and access to operational requirements and procurement strategies within the above customer communities. Why Join QinetiQ? As we continue to grow into new markets around the world, there's never been a more exciting time to join QinetiQ. The formula for success is our appetite for innovation and having the courage to take on a wide variety of complex challenges. As a QinetiQ employee, you'll experience a unique working environment where teams from different backgrounds, disciplines and experience enjoy collaborating widely and openly as we undertake this exciting and rewarding journey. Through effective teamwork, and pulling together, you'll get to experience what happens when we all share different perspectives, blend disciplines, and link technologies; constantly discovering new ways of solving complex problems in a diverse and inclusive environment where you can be authentic . click apply for full job details
A leading asset management firm in Greater London is seeking a Senior Cyber Defence Operations Analyst to lead incident response and vulnerability management efforts. The role includes maintaining alerts in the monitoring solution, coordinating with stakeholders for compliance, and enhancing operational security processes. Candidates should have a strong background in incident response, knowledge of SIEM tools, and effective collaboration skills. Relevant cyber security certifications are advantageous. This position offers opportunities for innovation in security practices.
Jan 01, 2026
Full time
A leading asset management firm in Greater London is seeking a Senior Cyber Defence Operations Analyst to lead incident response and vulnerability management efforts. The role includes maintaining alerts in the monitoring solution, coordinating with stakeholders for compliance, and enhancing operational security processes. Candidates should have a strong background in incident response, knowledge of SIEM tools, and effective collaboration skills. Relevant cyber security certifications are advantageous. This position offers opportunities for innovation in security practices.
