7 jobs found

ABOUT THE COMPANY The best of all worlds: join Avolution, a highly regarded, worldwide, financially sound and growing 20-year-old Enterprise Architecture Software company. With offices in London, Sydney, Northern Virginia and Singapore, Avolution is established as an industry leader in its Gartner Magic Quadrant and other industry reports. Be part of a smart, friendly team, and use your skills and initiative to drive growth. Benefit from our culture which is described by employees as collegial, collaborative, flexible, and supportive. Key Responsibilities Cloud & Infrastructure Security Design, manage, and enhance security configurations across Azure and AWS environments, including integration with Office 365. Implement and enforce best practices for identity and access management (IAM) in Azure AD (Entra ID) and AWS IAM. Monitor cloud workloads for vulnerabilities, misconfigurations, and threats using tools like Microsoft Defender. Collaborate with DevOps/Engineering teams to embed security controls into CI/CD pipelines and promote DevSecOps practices. Conduct security assessments, including assisting with penetration testing, risk evaluations, to identify and mitigate potential issues. Endpoint & Identity Security Enhance device posture, compliance, and management using Microsoft Intune and Defender for Endpoint. Develop and maintain robust conditional access, multi-factor authentication (MFA), and endpoint protection policies. Oversee secure identity lifecycle processes, enforcing least-privilege access and zero-trust principles. IT Operations & Employee Support Act as the primary on-site and remote IT support contact for employees Provision and troubleshoot Windows laptops via Intune (enrolment, software deployment, basic hardware issues). Manage user onboarding/offboarding (Office 365, Azure AD, VPN, Wi-Fi, hardware handover). Resolve day-to-day employee issues (Teams, OneDrive, Outlook, printers, VPN connectivity, etc.). Maintain inventory of laptops, peripherals, and office IT equipment. Support meeting-room AV/setup and occasional hands on help in the London office. Document common issues and maintain internal IT knowledge base. Security Operations Respond to security alerts, incidents, and vulnerabilities with timely investigations and remediation. Perform regular risk assessments, security reviews, internal audits. Manage and optimize security tools (e.g., SIEM, EDR, vulnerability scanners, Microsoft Defender suite). Lead incident response efforts and coordinate with cross functional teams. Compliance & Governance Support ISO 27001:2022 recertification, continuous compliance activities, and internal audits. Prepare for and assist in achieving additional compliance certifications (e.g., SOC 2, GDPR) to support company growth. Develop, maintain, and improve security policies, procedures, and technical documentation. Track, report on, and remediate audit findings or compliance gaps. Collaboration & Culture Partner with global distributed teams across EMEA, AMER, and APAC regions. Educate internal teams on security best practices and foster a security first culture through training and awareness programs. Qualifications 3+ years of experience in Security Engineering, Cloud Security, IT Operations, or similar roles. Hands on expertise with Azure, AWS, Microsoft Intune, Defender suite, and Azure AD. Solid knowledge of cloud security standards (e.g., CIS Benchmarks, NIST, SOC 2). Experience with SIEM, EDR, vulnerability scanning, and security monitoring tools. Familiarity with ISO 27001 or other compliance frameworks. Understanding of network security concepts (e.g., VPN, firewalls, zero trust architectures). Excellent communication skills and ability to thrive in a global, distributed environment. Nice to Have Experience in a SaaS or fully cloud native company. Automation and scripting skills (e.g., PowerShell, Python, Terraform). Knowledge of DevSecOps practices and tools. Relevant security certifications (e.g., Microsoft AZ 500, AWS Security Specialty, CCSP, CISSP, ISO 27001 Lead Implementer/Auditor). Experience with Microsoft 365 security configurations or data privacy regulations (e.g., GDPR). Benefits Flexible working 25 days annual leave + bank holidays 1 day of birthday leave per year Private Medical Insurance which includes gym membership discounts and many other rewards Dental, Vision and Hearing insurance cover Pension Scheme Cycle to Work scheme All applicants must have right to work in the United Kingdom. Avolution is an equal opportunities employer.

Who We Are We are building a new financial layer that reimagines how money moves across the internet. By merging the stability of traditional finance with the programmability of blockchain, we're creating a powerful stablecoin ecosystem that unlocks access, yield, and utility for users and builders everywhere. Focused on transparency, scale, and real-world adoption, we're redefining what digital money can do. The Role As a Full-Stack Blockchain Engineer, you will play a key role in designing and building the infrastructure and user-facing systems that power a next-generation stablecoin and programmable money platform. You will work across smart contracts, backend systems, and frontend integrations to create products that combine stability, transparency, and yield in a seamless user experience. This role offers the opportunity to work at the forefront of decentralized finance, bridging traditional financial infrastructure with on-chain innovation. You will build systems that support real-world use cases such as global payments, programmable yield, and institutional-grade capital management, while ensuring security, scalability, and compliance. You will collaborate with a high-performance team of engineers, product thinkers, and designers to create a product that expands access to secure, yield-bearing digital dollars for users around the world. Backed by a well-funded organization, you'll have the autonomy to innovate and the resources to execute at scale, shaping the foundation of a new financial operating system. Key Responsibilities Design and implement smart contracts for the issuance, redemption, and treasury operations of a fiat-backed or synthetic stablecoin. Design and maintain developer-facing APIs and SDKs to enable external integrations and programmatic access to core stablecoin functions Build backend systems for minting, burning, reconciliation, on/off-ramp flows, and transaction monitoring, ensuring accuracy, compliance, and real-time transparency. Design and implement new DeFi yield protocols backed by on and off-chain investment strategies. Create internal tools for treasury management, collateral tracking, and yield allocation. Define and evolve overall system architecture with an emphasis on security, transparency, scalability, and operational reliability. Collaborate with auditors, liquidity partners, and compliance teams on controls, attestations, and automation of KYC, AML, and regulatory reporting workflows. Drive engineering excellence through code reviews, testing, and adherence to security best practices across smart contract and backend systems. Provide technical mentorship and help shape a strong, collaborative engineering culture. Knowledge & Experience Senior or Staff-level backend and blockchain engineer (7+ years) with deep, hands-on expertise in Solidity and TypeScript, capable of architecting and shipping production systems end to end. Deep EVM blockchain expertise, including smart contract design, deployment, and integration (ERC-20/4626, ERC-4337, vaults, oracles, bridges). Strong understanding of stablecoin mechanics, including issuance and redemption flows, collateralization models, and treasury yield strategies. Experience integrating with custody or vault systems such as Fireblocks, Copper or BitGo. Solid grasp of treasury operations, reconciliation, and proof-of-reserves frameworks. Practical experience with DeFi primitives such as lending protocols, AMMs and liquidity pools, and yield aggregators, with a clear grasp of how capital flows and incentives work under the hood. Proven experience developing microservice-based, event-driven distributed systems that handle financial data securely and reliably. Strong understanding of REST, and GraphQL (queries, mutations, subscriptions). Experience architecting and implementing responsive, immersive front ends using Vanilla React or Next.js. Experience designing or integrating compliance-aware DeFi systems (KYC, AML, KYT, travel rule). Deep understanding of security best practices across smart contracts, backend services, and inter-service communication. Proficiency with Docker, Kubernetes, and modern CI/CD pipelines for deploying and maintaining microservices in production. Competence with Git and collaborative development workflows in production environments. Ideal Candidate Profile A creative problem-solver who is eager to innovate and push boundaries in the DeFi space. Possesses a deep understanding of web technologies and a strong grasp of blockchain fundamentals, particularly within DeFi. Thrives in scrappy start-up environments, seeing ambiguity as an opportunity rather than an obstacle. Takes full ownership of complex problems and transforms them into user-friendly solutions. Excels in collaboration, building trust and rapport with both technical and non-technical stakeholders. Adept at communicating complex concepts clearly and concisely. Relentless in delivering high-quality products, even under pressure. Understands that speed and agility are key competitive advantages and drives urgency and efficiency without compromising quality. Passionate about DeFi, with a commitment to continuous learning and staying at the forefront of this dynamic field. Nice to Haves Knowledge of cross-chain infrastructure (LayerZero, Wormhole, Axelar, Hyperlane) and bridge security models. Experience integrating with Privy and Fireblocks APIs, or similar custody and wallet management systems. Familiarity with real-world asset (RWA) tokenization or on-chain yield instruments. Interest in governance, tokenomics, or monetary policy design for digital assets. Background in market structure, treasury operations, or automated market-making systems. Experience working with fiat onramp/offramp and reconciliation processes.

Sr. Analyst, Information Security page is loaded Sr. Analyst, Information Securitylocations: United Kingdom, Edinburgh, SC, Freertime type: Full timeposted on: Posted Todayjob requisition id: R258363 About Analog Devices Analog Devices, Inc. (NASDAQ: ) is a global semiconductor leader that bridges the physical and digital worlds to enable breakthroughs at the Intelligent Edge. ADI combines analog, digital, and software technologies into solutions that help drive advancements in digitized factories, mobility, and digital healthcare, combat climate change, and reliably connect humans and the world. With revenue of more than $9 billion in FY24 and approximately 24,000 people globally, ADI ensures today's innovators stay Ahead of What's Possible. Learn more at and on and . Network Security Engineer Cyber Defence Job Req: Role Overview The Network Security Engineer is responsible for designing, implementing, and maintaining secure network infrastructures. This role ensures the organisation's firewalls, VPNs, and network security controls are properly configured, monitored, and compliant with industry standards. We are looking for a proactive and solution orientated professional with excellent problem-solving and analytical skills. You will want to stay current with emerging threats, technologies, and best practices and will have the ability to think strategically and act tactically. You will be the authority on keeping an Analog Devices' computer networks safe from threats and ensuring secure connectivity for critical business operations. Key Responsibilities Provide governance for the configuration, management, and optimisation firewalls, IDS/IPS, and network security appliances. Perform firewall posture management, including rule audits, cleanup, and compliance checks. Govern the implementation and maintenance of network segmentation, secure remote access, and VPN solutions. Monitor network traffic for anomalies and respond to security incidents. Develop and enforce network security policies and standards. Ensure compliance with security standards and regulations. Conduct vulnerability assessments and support patching of network devices. Automate routine tasks using scripts or security orchestration tools. Implement cloud security controls across AWS, Azure, and GCP, applying Zero Trust principles and securing hybrid network architectures for resilience Establish reporting for ADIs network security posture and help to develop plans for continuous improvement Develop and maintain detection logic leveraging network telemetry (e.g., NetFlow, DNS logs, proxy logs) to identify anomalous or malicious activity. Collaborate with SOC teams to create and update run-books for network-related incidents, ensuring consistent and efficient response workflows. Continuously improve detection coverage by analysing threat trends and incorporating new indicators into network monitoring tools Essential More than three (3) years' experience in a network security engineering role An in-depth understanding of networking protocols and technologies Demonstrable hands-on experience with security tools and platforms: Network Detection & Response, Secure Web Gateways/Proxies, Intrusion detection and prevention systems (IDS/IPS), Enterprise firewalls and SIEM platforms and vulnerability management tools Experience with cloud security for AWS, Azure, or GCP and securing cloud networking components. Familiarity with security frameworks such as NIST, ISO 27001, or CIS and operational resilience frameworks Demonstrate social and cultural flexibility by effectively collaborating with diverse teams across global regions Qualifications University in computer science, information security, or relevant field. Professional certifications or equivalent practical experience. Demonstrable competence with network security protocols and cyber testing tools. Strong understanding of common security frameworks and compliance requirements. Excellent analytical and problem-solving skills. Good oral and written skills in English to be able to successfully communicate and collaborate across our Global business. For positions requiring access to technical data, Analog Devices, Inc. may have to obtain export licensing approval from the U.S. Department of Commerce - Bureau of Industry and Security and/or the U.S. Department of State - Directorate of Defense Trade Controls. As such, applicants for this position - except US Citizens, US Permanent Residents, and protected individuals as defined by 8 U.S.C. 1324b(a)(3) - may have to go through an export licensing review process. Analog Devices is an equal opportunity employer. We foster a culture where everyone has an opportunity to succeed regardless of their race, color, religion, age, ancestry, national origin, social or ethnic origin, sex, sexual orientation, gender, gender identity, gender expression, marital status, pregnancy, parental status, disability, medical condition, genetic information, military or veteran status, union membership, and political affiliation, or any other legally protected group. Job Req Type: ExperiencedRequired Travel: Yes, 10% of the timeShift Type: 1st Shift/Days

Senior Operations Engineer Department: Operations Employment Type: Full Time Location: North East England Description As a Senior Operations Engineer, you'll be involved with the design and evolution of our cloud infrastructure while mentoring within the operations team. You'll drive architectural decisions, establish best practices, and work closely with leadership to scale our systems for growth. This role is ideal for someone with deep expertise in cloud platforms (especially AWS), proven leadership in infrastructure projects, and a track record of building reliable, secure systems at scale. Key Responsibilities Design, architect, and optimise cloud infrastructure on AWS, ensuring scalability, security, and cost-effectiveness. Lead the implementation of security frameworks, including advanced IAM architectures, compliance controls, threat modeling, and security automation. Champion infrastructure-as-code practices and drive adoption of automation across the organization using tools like AWS CDK, CloudFormation, and Terraform. Contribute to change management processes, establishing standards for planning, risk assessment, documentation, and rollback procedures. Lead incident response efforts, conduct thorough postmortems, and implement preventive measures to improve system reliability. Partner with engineering and product teams on strategic architecture decisions, capacity planning, and platform evolution. Establish and enforce standards for secrets management, credential lifecycle, and secure configuration management. Mentor junior and mid-level engineers, conducting code reviews and sharing expertise across the team. Define and evolve internal documentation standards, runbooks, and knowledge-sharing practices. What You'll Bring (Skills, Experience & Mindset) Skills & Experience Extensive hands on experience architecting and operating production AWS environments at scale. Deep understanding of AWS Well Architected Framework and ability to apply it to complex system designs. Expert level knowledge of Linux systems administration and performance tuning (Fedora, RHEL, etc.). Strong networking expertise (DNS, VPCs, firewalls, ACLs, routing, load balancing, etc.). Working knowledge of DNS, CDN, caching, firewalls, load balancers, and WAFs to ensure secure and performant web delivery. Proven expertise with IaC tooling including AWS CDK, CloudFormation, and Terraform, including module/library design. Advanced scripting and automation capabilities in Bash, Python, or Go. Excellent knowledge of modern observability tools and a demonstrated ability to implement the SRE approach to reliability (SLOs/SLIs, error budgets, eliminating toil) Comprehensive understanding of security best practices, including zero trust architectures, compliance requirements, and security tooling. Demonstrated experience building and optimizing CI/CD pipelines and GitOps workflows. Ability to participate in 24/7 support rotations and respond to incidents effectively. Proven ability to prioritize competing demands, lead cross functional initiatives, and deliver results in fast paced environments. Mindset & Approach Customer and team centric with strong stakeholder management skills. Comfortable working independently on assigned tasks while collaborating with wider teams. Passionate about continuous improvement with an automation first mindset, knowledge sharing, and developing team capabilities. Strategic thinker with excellent judgment in balancing short term needs with long term architectural goals. Effective communicator who can translate technical concepts for varied audiences. Additional Skills Deep experience with serverless architectures and container orchestration platforms (ECS, EKS, Kubernetes). Proven track record with observability platforms like CloudWatch, Datadog, Prometheus, Grafana, or similar. Experience establishing SRE practices, incident management processes, and reliability engineering culture. Direct experience implementing compliance frameworks (e.g., ISO 27001, SOC2, PCI DSS) or relevant security certifications. Benefits Pension Scheme Auto-enrolled after 3 months' service Salary sacrifice scheme to maximise tax efficiency 5% employee contribution, matched by 5% from Amplience Pension broker: Titan Group (offers financial advice) Pension provider: Aegon (moved from Aviva in 2024) Annual Leave 25 days paid holiday as standard Length of Service Entitlement UK Team Entitlement: 3+ years continuous service 26 days annual leave entitlement 4+ years continuous service 27 days annual leave entitlement 5+ years continuous service 28 days annual leave entitlement 6+ years continuous service 29 days annual leave entitlement 7+ years continuous service 30 days annual leave entitlement Enhanced Maternity Leave 12 weeks full pay 12 weeks at 50% pay 15 weeks at statutory maternity pay (SMP) 13 weeks unpaid Enhanced Paternity Leave 2 weeks full pay Sick Pay Up to one month's full pay per calendar year (at company discretion, with medical certificate) Study Leave 5 days for employees on accredited long term courses (12+ months) Birthday Leave One paid day off during your birthday month Company Wide Recharge Days One day off per quarter for the whole business - rest, recharge, and reset All roles are laptop-enabled Working arrangements agreed with your line manager Freedom Fridays: Finish early on Fridays to support work life balance (full time employees only) Holiday Buy Scheme Purchase up to 5 extra days per year, repaid through salary deductions Cycle to Work Scheme Save on bikes & accessories via tax efficient payments (Blackhawk Network) Tech Scheme Purchase tech items and spread the cost over 12 months via salary deduction (Blackhawk Network) Season Ticket Loan Advance loans available for travel tickets, repaid via payroll Charity/Volunteer Days Up to 3 paid days a year for volunteering or charity work Payroll Giving (CAF - Give As You Earn) Tax free donations to UK charities, directly from your salary Eyecare Reimbursement for a standard eye exam every two years Employee Referral Bonus £1,000 / €1,139 / $1,337 50% paid at 4 months, 50% at 7 months post hire Fraud Advisory Fraudsters are always looking to take advantage of people searching for a job online. In part, this is because job listings are the ideal place to exploit a job seekers vulnerability. Job scams come in lots of different shapes and sizes, but they most commonly involve scammers posting adverts or contacting people out of the blue about unrealistic job opportunities. Amplience takes the security and safety of your personal data very seriously. In terms of career opportunities and vacancies, we will only use: Amplience will never use third party messaging services such as Telegram, WhatsApp, Messenger, Snapchat, WeChat, etc. to communicate with you. If you are using any other website or messaging application, even if it looks like Amplience, then it will likely be fraudulent. In which case, please notify us at: .

Senior Operations Engineer Department: Operations Employment Type: Full Time Location: North East England Description As a Senior Operations Engineer, you'll be involved with the design and evolution of our cloud infrastructure while mentoring within the operations team. You'll drive architectural decisions, establish best practices, and work closely with leadership to scale our systems for growth. This role is ideal for someone with deep expertise in cloud platforms (especially AWS), proven leadership in infrastructure projects, and a track record of building reliable, secure systems at scale. Key Responsibilities Design, architect, and optimise cloud infrastructure on AWS, ensuring scalability, security, and cost-effectiveness. Lead the implementation of security frameworks, including advanced IAM architectures, compliance controls, threat modeling, and security automation. Champion infrastructure-as-code practices and drive adoption of automation across the organization using tools like AWS CDK, CloudFormation, and Terraform. Contribute to change management processes, establishing standards for planning, risk assessment, documentation, and rollback procedures. Lead incident response efforts, conduct thorough postmortems, and implement preventive measures to improve system reliability. Partner with engineering and product teams on strategic architecture decisions, capacity planning, and platform evolution. Establish and enforce standards for secrets management, credential lifecycle, and secure configuration management. Mentor junior and mid-level engineers, conducting code reviews and sharing expertise across the team. Define and evolve internal documentation standards, runbooks, and knowledge-sharing practices. What You'll Bring (Skills, Experience & Mindset) Skills & Experience Extensive hands on experience architecting and operating production AWS environments at scale. Deep understanding of AWS Well Architected Framework and ability to apply it to complex system designs. Expert level knowledge of Linux systems administration and performance tuning (Fedora, RHEL, etc.). Strong networking expertise (DNS, VPCs, firewalls, ACLs, routing, load balancing, etc.). Working knowledge of DNS, CDN, caching, firewalls, load balancers, and WAFs to ensure secure and performant web delivery. Proven expertise with IaC tooling including AWS CDK, CloudFormation, and Terraform, including module/library design. Advanced scripting and automation capabilities in Bash, Python, or Go. Excellent knowledge of modern observability tools and a demonstrated ability to implement the SRE approach to reliability (SLOs/SLIs, error budgets, eliminating toil) Comprehensive understanding of security best practices, including zero trust architectures, compliance requirements, and security tooling. Demonstrated experience building and optimizing CI/CD pipelines and GitOps workflows. Ability to participate in 24/7 support rotations and respond to incidents effectively. Proven ability to prioritize competing demands, lead cross functional initiatives, and deliver results in fast paced environments. Mindset & Approach Customer and team centric with strong stakeholder management skills. Comfortable working independently on assigned tasks while collaborating with wider teams. Passionate about continuous improvement with an automation first mindset, knowledge sharing, and developing team capabilities. Strategic thinker with excellent judgment in balancing short term needs with long term architectural goals. Effective communicator who can translate technical concepts for varied audiences. Additional Skills Deep experience with serverless architectures and container orchestration platforms (ECS, EKS, Kubernetes). Proven track record with observability platforms like CloudWatch, Datadog, Prometheus, Grafana, or similar. Experience establishing SRE practices, incident management processes, and reliability engineering culture. Direct experience implementing compliance frameworks (e.g., ISO 27001, SOC2, PCI DSS) or relevant security certifications. Benefits Pension Scheme Auto-enrolled after 3 months' service Salary sacrifice scheme to maximise tax efficiency 5% employee contribution, matched by 5% from Amplience Pension broker: Titan Group (offers financial advice) Pension provider: Aegon (moved from Aviva in 2024) Annual Leave 25 days paid holiday as standard Length of Service Entitlement UK Team Entitlement: 3+ years continuous service 26 days annual leave entitlement 4+ years continuous service 27 days annual leave entitlement 5+ years continuous service 28 days annual leave entitlement 6+ years continuous service 29 days annual leave entitlement 7+ years continuous service 30 days annual leave entitlement Enhanced Maternity Leave 12 weeks full pay 12 weeks at 50% pay 15 weeks at statutory maternity pay (SMP) 13 weeks unpaid Enhanced Paternity Leave 2 weeks full pay Sick Pay Up to one month's full pay per calendar year (at company discretion, with medical certificate) Study Leave 5 days for employees on accredited long term courses (12+ months) Birthday Leave One paid day off during your birthday month Company Wide Recharge Days One day off per quarter for the whole business - rest, recharge, and reset All roles are laptop-enabled Working arrangements agreed with your line manager Freedom Fridays: Finish early on Fridays to support work life balance (full time employees only) Holiday Buy Scheme Purchase up to 5 extra days per year, repaid through salary deductions Cycle to Work Scheme Save on bikes & accessories via tax efficient payments (Blackhawk Network) Tech Scheme Purchase tech items and spread the cost over 12 months via salary deduction (Blackhawk Network) Season Ticket Loan Advance loans available for travel tickets, repaid via payroll Charity/Volunteer Days Up to 3 paid days a year for volunteering or charity work Payroll Giving (CAF - Give As You Earn) Tax free donations to UK charities, directly from your salary Eyecare Reimbursement for a standard eye exam every two years Employee Referral Bonus £1,000 / €1,139 / $1,337 50% paid at 4 months, 50% at 7 months post hire Fraud Advisory Fraudsters are always looking to take advantage of people searching for a job online. In part, this is because job listings are the ideal place to exploit a job seekers vulnerability. Job scams come in lots of different shapes and sizes, but they most commonly involve scammers posting adverts or contacting people out of the blue about unrealistic job opportunities. Amplience takes the security and safety of your personal data very seriously. In terms of career opportunities and vacancies, we will only use: Amplience will never use third party messaging services such as Telegram, WhatsApp, Messenger, Snapchat, WeChat, etc. to communicate with you. If you are using any other website or messaging application, even if it looks like Amplience, then it will likely be fraudulent. In which case, please notify us at: .

Join us as we work to unlock the value of offshore wind! JERA Nex bp is a new joint venture between JERA, Japan's largest power generation company, and bp, one of the world's leading energy companies. Established to unlock the potential of offshore wind across the globe, our talented team, exciting pipeline and solid capital commitment give us the potential to become one of the world's most successful offshore wind companies. We entered the market with a portfolio of operational and development assets, alongside the resources, capabilities and resilience to deliver offshore wind energy at scale. Why this role matters Ensure the security of JNBP's Information Technology and that the security meets the expectations of both regulators and shareholders. In this role you will Evaluate, design and ensure enforcement of the information security policies that align with business needs and regulatory requirements such as ISO 27001, NIST, GDPR, and relevant local regulations Assure the organisation's information security management system (ISMS) is managed, extend the ISMS across the group, and drive continuous improvement to meet accreditation standards (e.g., ISO 27001:2022) Drive the integration of security controls into business operations and digital solutions in collaboration with Digital, O&M, legal and audit Oversee and support incident response planning and investigations, including coordination with legal and disciplinary processes when necessary Oversee that regular risk assessments and audits are conducted to identify vulnerabilities and implement mitigation strategies Monitor emerging threats and regulatory changes, steering to updating policies and controls accordingly Guarantee information security documentation and evidence is maintained as required for external audits and certification processes Lead compliance initiatives to ensure adherence to legal, statutory, regulatory, and contractual obligations related to information security Promote and where necessary lead security awareness and training across the organisation to ensure all employees understand and comply with security policies Ensure and consolidate reporting of incident security incidents and audits as required by leadership, shareholders and regulators. To be successful in the role you will bring Professional certifications such as CISSP (Certified Information Systems Security Professional) In-depth understanding of information security frameworks (e.g., ISO/IEC 27001, NIST) Strong grasp of risk management principles and practices Proficiency in security technologies, particularly the Microsoft suite, and zero trust security architecture. Familiarity with data privacy laws and regulations (e.g., GDPR) Experience with incident response, disaster recovery, and business continuity planning Ability to conduct security audits, and vulnerability assessments Minimum 5 years of experience in information security Proven track record of developing and implementing security policies and procedures What you can expect from us A collaborative and inclusive work culture, with space for team-building and social activities Flexible working hours and the opportunity to work from home, with regular in-person connection Opportunities for career growth and professional development in a fast-growing international company. As we build our company, we are driven by: Care for each other and our world - we leave egos at the door, are inclusive, collaborative and open to new ideas A spirit of ingenuity - we are pioneers and innovators making the impossible possible A commitment to unlocking value from offshore wind - we aim to make offshore wind sustainable, affordable and accessible to the countries & communities we serve. About JERA Nex bp JERA Nex bp is a purpose-built offshore wind company committed to unlocking the power of offshore wind by developing high-quality, competitive projects. A 50:50 joint venture between JERA Co. and bp, JERA Nex bp is an end-to-end developer, owner and operator with more than fifteen years of experience in operating offshore wind projects. Headquartered in London, with offices across Europe, Asia, US and Australia, JERA Nex bp has a portfolio of operational and development projects across nine countries, and draws on a rich heritage of pioneering offshore wind in Asia Pacific and the North Sea.