As part of our client's expanding National Security division, you'll contribute to high-impact missions across AI/Data Science, Cybersecurity, Cloud, DevOps, and Platform Engineering. We're seeking inquisitive individuals who excel at dissecting technical systems, not just to understand how they work, but to identify weaknesses, assess risks, and develop mitigation strategies click apply for full job details
Apr 27, 2026
Full time
As part of our client's expanding National Security division, you'll contribute to high-impact missions across AI/Data Science, Cybersecurity, Cloud, DevOps, and Platform Engineering. We're seeking inquisitive individuals who excel at dissecting technical systems, not just to understand how they work, but to identify weaknesses, assess risks, and develop mitigation strategies click apply for full job details
About Lockheed Martin: Lockheed Martin is a global aerospace, defence, and security company with a strong presence in the UK. We design, develop, and deliver advanced technology solutions that help protect people, support national security, and drive innovation in areas such as aerospace, cybersecurity, and defence systems. Our UK teams work on projects ranging from military aircraft and missile systems to secure communications and cutting-edge research. Joining Lockheed Martin as an apprentice means gaining hands-on experience in a world-class engineering and technology environment, learning from experts, and contributing to projects that make a real impact. Responsibilities: Provide day-to-day technical support to end-users, including client systems, VOIP phones, smartphones, tablets, printers, and other computer hardware Help manage incidents and service requests using the Service Desk ticketing system Support the maintenance of the asset tracking system Take part in project work, such as software and hardware refresh programmes Assist with deploying, maintaining, and supporting iOS devices Support software vulnerability management to keep systems secure Occasionally travel to other UK sites to provide IT support as needed Desirable skills: Nat 5 or equivalent in English, Maths and IT (preferable) Strong interest in technology Self-starter with willingness to learn Must be a good team player and able to use own initiative Must have good problem determination skills Excellent communication skills - both written and verbal UK driving licence and own vehicle, preferred due to location Salary: £20,000 per annum Working hours: Monday to Thursday, 8am - 6pm Benefits: Private medical insurance Competitive pension Dental cover Critical illness Life Assurance Employee discounts for top high street shops Future prospects: 90% of QA apprentices secure permanent employment after completing: this is 20% higher than the national average. Important information: This vocational apprenticeship comprehensively supports your specific job role with this particular employer. Throughout your learning journey, you are fully supported by your dedicated QA skills coach and your mentor at work. They ensure you settle in, help you develop all the skills you need to be successful in your job role and pass your assessments, and can provide one to one support. Starting with insights into your current potential, they plan your growth in a programmatic way, close skills gaps with immersive training and ensure what you learn is applicable to what you do. They talk you through the specifics on the qualifications you gain and how they align in particular to your day to day role. On completion, as well as the valuable work experience you have gained, you get a nationally recognised qualification at SCQF Level 8. If you are interested in starting your career and receiving a work based qualification at the same time APPLY NOW! Please be advised that this advert may close prior to the closing date stated above if a high number of applications are received. If you are interested in this vacancy please apply below as soon as possible.
Apr 24, 2026
Full time
About Lockheed Martin: Lockheed Martin is a global aerospace, defence, and security company with a strong presence in the UK. We design, develop, and deliver advanced technology solutions that help protect people, support national security, and drive innovation in areas such as aerospace, cybersecurity, and defence systems. Our UK teams work on projects ranging from military aircraft and missile systems to secure communications and cutting-edge research. Joining Lockheed Martin as an apprentice means gaining hands-on experience in a world-class engineering and technology environment, learning from experts, and contributing to projects that make a real impact. Responsibilities: Provide day-to-day technical support to end-users, including client systems, VOIP phones, smartphones, tablets, printers, and other computer hardware Help manage incidents and service requests using the Service Desk ticketing system Support the maintenance of the asset tracking system Take part in project work, such as software and hardware refresh programmes Assist with deploying, maintaining, and supporting iOS devices Support software vulnerability management to keep systems secure Occasionally travel to other UK sites to provide IT support as needed Desirable skills: Nat 5 or equivalent in English, Maths and IT (preferable) Strong interest in technology Self-starter with willingness to learn Must be a good team player and able to use own initiative Must have good problem determination skills Excellent communication skills - both written and verbal UK driving licence and own vehicle, preferred due to location Salary: £20,000 per annum Working hours: Monday to Thursday, 8am - 6pm Benefits: Private medical insurance Competitive pension Dental cover Critical illness Life Assurance Employee discounts for top high street shops Future prospects: 90% of QA apprentices secure permanent employment after completing: this is 20% higher than the national average. Important information: This vocational apprenticeship comprehensively supports your specific job role with this particular employer. Throughout your learning journey, you are fully supported by your dedicated QA skills coach and your mentor at work. They ensure you settle in, help you develop all the skills you need to be successful in your job role and pass your assessments, and can provide one to one support. Starting with insights into your current potential, they plan your growth in a programmatic way, close skills gaps with immersive training and ensure what you learn is applicable to what you do. They talk you through the specifics on the qualifications you gain and how they align in particular to your day to day role. On completion, as well as the valuable work experience you have gained, you get a nationally recognised qualification at SCQF Level 8. If you are interested in starting your career and receiving a work based qualification at the same time APPLY NOW! Please be advised that this advert may close prior to the closing date stated above if a high number of applications are received. If you are interested in this vacancy please apply below as soon as possible.
Nigel Wright Group
Newcastle Upon Tyne, Tyne And Wear
The OpportunityWe are working with a large public sector organisation in the North East to recruit a Senior Cyber Security Engineer into a small but growing cyber security team. This is a hands-on technical role, created to strengthen engineering capability, reduce single-person dependency and support a significant programme of security improvement across the organisation.This role is ideal for a practitioner who enjoys configuring, building and improving security controls, rather than a purely analytical or governance-led position.They operate a hybrid working pattern where you would be expected to be in the office 3 days a week. Our client doesn't sponsor visas so candidates will require a permanent right to work in the UK.The RoleReporting into the Cyber Security Manager, you will play a key role in the day-to-day engineering and ongoing development of the organisation's cyber security controls. The focus is firmly on technical delivery, working closely with infrastructure, networking and a managed SOC provider.Key areas of responsibility include: Engineering, configuration and ongoing management of a large firewall estate Working extensively with next-generation firewalls Firewall policies, VPN configuration and firewall lifecycle management Technical implementation and configuration of Microsoft 365 E5 security tooling, including: Microsoft Defender (endpoint, identity, cloud) DLP and Purview policy implementation Acting as the internal engineering counterpart to a managed SOC provider Supporting vulnerability management by consolidating findings, engaging technical teams and driving remediation activity Contributing to future security initiatives, including Privileged Access Management (PAM) and improvements to secure SDLC practices The PersonWith proven hands-on experience in cyber security engineering from a either a purely or predominantly cyber security focussed role, you will possess: Good firewall experience Solid understanding of networking fundamentals (TCP/IP, firewall policies, VPNs) Experience configuring and working directly with security tooling in live environments Cloud security (Microsoft 365, Azure, AWS) Strong technical exposure to security tooling, such as: SIEM/SOAR, EDR/XDR, vulnerability scanners, patch management, CASB, DLP Desirable experience: Microsoft Defender, Purview and M365 E5 security capabilities Privileged Access Management (PAM) tooling Background in infrastructure or networking prior to moving into security Exposure to secure software development lifecycle (SDLC) practices
Apr 23, 2026
Full time
The OpportunityWe are working with a large public sector organisation in the North East to recruit a Senior Cyber Security Engineer into a small but growing cyber security team. This is a hands-on technical role, created to strengthen engineering capability, reduce single-person dependency and support a significant programme of security improvement across the organisation.This role is ideal for a practitioner who enjoys configuring, building and improving security controls, rather than a purely analytical or governance-led position.They operate a hybrid working pattern where you would be expected to be in the office 3 days a week. Our client doesn't sponsor visas so candidates will require a permanent right to work in the UK.The RoleReporting into the Cyber Security Manager, you will play a key role in the day-to-day engineering and ongoing development of the organisation's cyber security controls. The focus is firmly on technical delivery, working closely with infrastructure, networking and a managed SOC provider.Key areas of responsibility include: Engineering, configuration and ongoing management of a large firewall estate Working extensively with next-generation firewalls Firewall policies, VPN configuration and firewall lifecycle management Technical implementation and configuration of Microsoft 365 E5 security tooling, including: Microsoft Defender (endpoint, identity, cloud) DLP and Purview policy implementation Acting as the internal engineering counterpart to a managed SOC provider Supporting vulnerability management by consolidating findings, engaging technical teams and driving remediation activity Contributing to future security initiatives, including Privileged Access Management (PAM) and improvements to secure SDLC practices The PersonWith proven hands-on experience in cyber security engineering from a either a purely or predominantly cyber security focussed role, you will possess: Good firewall experience Solid understanding of networking fundamentals (TCP/IP, firewall policies, VPNs) Experience configuring and working directly with security tooling in live environments Cloud security (Microsoft 365, Azure, AWS) Strong technical exposure to security tooling, such as: SIEM/SOAR, EDR/XDR, vulnerability scanners, patch management, CASB, DLP Desirable experience: Microsoft Defender, Purview and M365 E5 security capabilities Privileged Access Management (PAM) tooling Background in infrastructure or networking prior to moving into security Exposure to secure software development lifecycle (SDLC) practices
Job Title: DevSecOps Security Consultant Location: Sheffield or Birmingham (hybrid - 3 days per week) Salary/Rate: (Apply online only) per day inside IR35 Start Date: May Job Type: Initial contract until 18/05/2027 Company Introduction We have an exciting opportunity now available with one of our sector-leading consultancy clients! They are currently looking for a skilled DevSecOps Security Consultant to join their client at a Tier 1 bank in either Sheffield or Birmingham on a hybrid basis. Job Responsibilities/Objectives We are seeking a highly skilled and experienced Senior Cybersecurity SME / Consultant to join the Engineering Excellence and Enablement team. The successful candidate will work across global engineering platforms to benchmark, uplift, and continuously evolve cybersecurity maturity. The successful candidate will play a critical role in ensuring that build systems, runtime infrastructure, and developer tooling are secure by design, while enabling rapid and resilient software delivery across the bank. This role offers a unique opportunity to shape the cybersecurity posture of engineering platforms at one of the world?s leading financial institutions, ensuring the bank can deliver digital services securely, reliably, and at scale. Framework and Assessment Develop and maintain an Engineering-Platform Cybersecurity Maturity Framework to standardise assessments across platforms. Conduct comprehensive platform security reviews (build systems, CI/CD pipelines, runtime infrastructure, developer tooling) against defined framework criteria. Perform threat modelling and gap analysis, identifying vulnerabilities and systemic risks impacting source code, artifacts, and workloads. Engineering Platform Security Enablement Establish standardised secure architecture and engineering patterns for build systems, CI/CD pipelines, runtime environments, and developer tooling. Define and enforce platform security baselines using policy-as-code and automated controls. Partner with platform owners to remediate critical gaps and implement scalable solutions for artifact integrity, access control, and configuration security. Integrate vulnerability management, SBOM, provenance, and code-signing practices within engineering workflows. Roadmap Development & Execution Prioritise identified gaps based on business risk, regulatory impact, and operational criticality. Collaborate with platform owners and engineering leads to build actionable security roadmaps, balancing quick wins with long-term strategic improvements. Partner with engineering teams to design, develop, and embed security patterns and best practices into engineering platforms. Stakeholder Engagement & Governance Serve as a trusted advisor to platform owners, senior technology stakeholders, and Cybersecurity leadership, translating technical risks into business impact. Represent the function in key governance forums, providing updates on maturity progress, roadmap delivery, and risk posture. Influence and align stakeholders across federated engineering teams to ensure consistent adoption of cybersecurity best practices. Continuous Improvement Track and report maturity scores, ensuring measurable improvement across platforms. Continuously evolve the maturity framework in response to emerging threats, technology evolution, and regulatory expectations. Drive a culture of secure-by-design engineering through engagement, advocacy, and knowledge sharing. Required Skills/Experience The ideal candidate will have the following: Proven expertise in Cybersecurity within large-scale, regulated financial institutions or similarly complex environments. Deep technical knowledge of engineering platforms, including CI/CD systems, build tools, artifact repositories, runtime environments, and developer tooling. Strong experience with DevSecOps practices, including secure pipeline design, integration of security scanning tools, and automation of security controls. Strong knowledge and understanding of service mesh, cryptography, network security, application security, vulnerability management, and risk management. Demonstrable ability to conduct threat modelling, platform security assessments, and gap analysis. Experience building and implementing maturity models, frameworks, or roadmaps in complex enterprise environments. Strong stakeholder management skills, with the ability to influence senior leadership and drive change across federated technology teams. Excellent communication skills, with the ability to translate technical risk into business impact. Desirable Skills/Experience Although not essential, the following skills are desired by the client: Professional certifications such as CISSP, CISM, CCSK, CCSP, or equivalent. Hands-on knowledge of cloud security (AWS, Azure, GCP) and container orchestration platforms (e.g., Kubernetes). Experience in international and diverse environments, with exposure to regulatory engagement. Familiarity with engineering excellence practices such as SLSA, supply chain security, SBOM, or secure developer tooling initiatives. If you are interested in this opportunity, please apply now with your updated CV in Microsoft Word/PDF format. Disclaimer Notwithstanding any guidelines given to level of experience sought, we will consider candidates from outside this range if they can demonstrate the necessary competencies. Square One is acting as both an employment agency and an employment business, and is an equal opportunities recruitment business. Square One embraces diversity and will treat everyone equally. Please see our website for our full diversity statement.
Apr 22, 2026
Contractor
Job Title: DevSecOps Security Consultant Location: Sheffield or Birmingham (hybrid - 3 days per week) Salary/Rate: (Apply online only) per day inside IR35 Start Date: May Job Type: Initial contract until 18/05/2027 Company Introduction We have an exciting opportunity now available with one of our sector-leading consultancy clients! They are currently looking for a skilled DevSecOps Security Consultant to join their client at a Tier 1 bank in either Sheffield or Birmingham on a hybrid basis. Job Responsibilities/Objectives We are seeking a highly skilled and experienced Senior Cybersecurity SME / Consultant to join the Engineering Excellence and Enablement team. The successful candidate will work across global engineering platforms to benchmark, uplift, and continuously evolve cybersecurity maturity. The successful candidate will play a critical role in ensuring that build systems, runtime infrastructure, and developer tooling are secure by design, while enabling rapid and resilient software delivery across the bank. This role offers a unique opportunity to shape the cybersecurity posture of engineering platforms at one of the world?s leading financial institutions, ensuring the bank can deliver digital services securely, reliably, and at scale. Framework and Assessment Develop and maintain an Engineering-Platform Cybersecurity Maturity Framework to standardise assessments across platforms. Conduct comprehensive platform security reviews (build systems, CI/CD pipelines, runtime infrastructure, developer tooling) against defined framework criteria. Perform threat modelling and gap analysis, identifying vulnerabilities and systemic risks impacting source code, artifacts, and workloads. Engineering Platform Security Enablement Establish standardised secure architecture and engineering patterns for build systems, CI/CD pipelines, runtime environments, and developer tooling. Define and enforce platform security baselines using policy-as-code and automated controls. Partner with platform owners to remediate critical gaps and implement scalable solutions for artifact integrity, access control, and configuration security. Integrate vulnerability management, SBOM, provenance, and code-signing practices within engineering workflows. Roadmap Development & Execution Prioritise identified gaps based on business risk, regulatory impact, and operational criticality. Collaborate with platform owners and engineering leads to build actionable security roadmaps, balancing quick wins with long-term strategic improvements. Partner with engineering teams to design, develop, and embed security patterns and best practices into engineering platforms. Stakeholder Engagement & Governance Serve as a trusted advisor to platform owners, senior technology stakeholders, and Cybersecurity leadership, translating technical risks into business impact. Represent the function in key governance forums, providing updates on maturity progress, roadmap delivery, and risk posture. Influence and align stakeholders across federated engineering teams to ensure consistent adoption of cybersecurity best practices. Continuous Improvement Track and report maturity scores, ensuring measurable improvement across platforms. Continuously evolve the maturity framework in response to emerging threats, technology evolution, and regulatory expectations. Drive a culture of secure-by-design engineering through engagement, advocacy, and knowledge sharing. Required Skills/Experience The ideal candidate will have the following: Proven expertise in Cybersecurity within large-scale, regulated financial institutions or similarly complex environments. Deep technical knowledge of engineering platforms, including CI/CD systems, build tools, artifact repositories, runtime environments, and developer tooling. Strong experience with DevSecOps practices, including secure pipeline design, integration of security scanning tools, and automation of security controls. Strong knowledge and understanding of service mesh, cryptography, network security, application security, vulnerability management, and risk management. Demonstrable ability to conduct threat modelling, platform security assessments, and gap analysis. Experience building and implementing maturity models, frameworks, or roadmaps in complex enterprise environments. Strong stakeholder management skills, with the ability to influence senior leadership and drive change across federated technology teams. Excellent communication skills, with the ability to translate technical risk into business impact. Desirable Skills/Experience Although not essential, the following skills are desired by the client: Professional certifications such as CISSP, CISM, CCSK, CCSP, or equivalent. Hands-on knowledge of cloud security (AWS, Azure, GCP) and container orchestration platforms (e.g., Kubernetes). Experience in international and diverse environments, with exposure to regulatory engagement. Familiarity with engineering excellence practices such as SLSA, supply chain security, SBOM, or secure developer tooling initiatives. If you are interested in this opportunity, please apply now with your updated CV in Microsoft Word/PDF format. Disclaimer Notwithstanding any guidelines given to level of experience sought, we will consider candidates from outside this range if they can demonstrate the necessary competencies. Square One is acting as both an employment agency and an employment business, and is an equal opportunities recruitment business. Square One embraces diversity and will treat everyone equally. Please see our website for our full diversity statement.
Closing Date - 23:00 on Tuesday 28th April 2026 Salary:£42,630 - £46,246, dependent on experience and made up of a base salary of £35,134 - £38,750, a concessionary payment of £2,758, and a skills payment of up to £4,738 (assessed at interview and offered from day one). You will also receive a one-off recruitment bonus of £2,000 (£1,000 on arrival and £1,000 on successful completion of probation). Flexible Working: We recognise the importance of a healthy work-life balance and offer full-time, part-time, and compressed hours. Due to the nature of the work, hybrid working may be more limited; however, some home working options may be available depending on business requirements. GCHQ is an intelligence, cyber and security agency with a mission to keep the UK safe. We use cutting edge technology, ingenuity, and partnerships to identify, analyse and disrupt threats. Working with our intelligence partners MI5 and MI6, we protect the UK from terrorism, cyber attacks, and espionage. At GCHQ, you'll do varied and fascinating work in a supportive and inclusive environment that puts the emphasis on teamwork. The Role A typical day as a Software Engineer at GCHQ involves working both collaboratively and independently to develop innovative solutions to complex, real world mission challenges. As part of an Agile, multidisciplinary team, you'll contribute to a culture of continuous learning and adaption. Teams experiment with new ideas, explore different technical approaches and tackle difficult problems that often require fresh thinking. Collaboration with analysts and technical specialists across multiple missions is central to shaping solutions that meet operational needs. Day to day work may include team check ins and planning sessions, reviewing and raising pull requests, and applying a range of engineering practices such as pair programming, mobbing, or focused individual development. You might also spend time researching and analysing web or mobile technologies, designing, documenting and implementing software solutions, and delivering software for mission requirements. You'll also support existing solutions throughout their lifecycle, all contributing to steady progress and well crafted outcomes. About You You'll bring a real aptitude for learning and problem solving, with a genuine interest in technology and trying new approaches. You enjoy developing ideas, exploring technical options and working with others to solve challenges. You will have practical experience in a software development environment gained through a previous role or an industrial placement. You're comfortable using at least one modern programming language or framework and have a good understanding of core software engineering practices. You'll be curious about cloud technologies, and any familiarity with AWS, Azure or GCP would be beneficial. You may have some experience with Agile or DevOps ways of working, CI/CD, automation or infrastructure as code, and you're keen to build confidence in areas like cloud security or vulnerability awareness. A basic understanding of Linux or Windows is useful, along with a willingness to learn more as part of the role. You'll work well in development teams, switching between independent tasks and collaborative work, and you're happy contributing across teams when needed. You can prioritise effectively, adapt to change and stay focused when things get challenging. You communicate clearly, enjoy sharing ideas and are comfortable engaging with a range of customers and technical colleagues. If you're enthusiastic about technology, motivated to develop skills and excited by our mission, we encourage you to apply, even if you don't meet every requirement. Your perspective and potential could be exactly what we're looking for. Training and Development At GCHQ, we embrace a growth mindset and are committed to your development. You'll follow a blend of in house learning from our experts, external courses where helpful, and plenty of on the job experience. From day one, you'll have access to mentors and subject matter experts who will support you in building a development and career plan that works for you. We encourage you to dedicate time to continual professional development through formal courses and practical experimentation, supported by the innovation time available to you. You'll have access to books, online learning platforms, conferences and practical project work supported by experienced colleagues, along with funding towards formal qualifications. Training covers a broad range of areas, including Front End Design, RF Software Engineering, Site Reliability Engineering, Data Engineering, Solution Architecture, MLOps, UX, Agile, Cloud Engineering and Security. You'll also have access to courses including AWS certification, Scrum Master training, microservices, engineering patterns, Linux, user experience and leadership skills. Subscriptions to platforms like Cloud Academy, Pluralsight or O'Reilly are also available. Rewards and Benefits You'll receive a starting salary £42,630 - £46,246 dependent on skills and experience, with an additional one off bonus of £2,000 plus other benefits including: 25 days' annual leave, rising automatically to 30 days after 5 years' service, plus an additional 10.5 days of public and privilege holidays opportunities to be recognised through our employee performance scheme an interest free season ticket loan a cycle to work scheme facilities such as a gym, restaurant, and on site coffee bars (at some locations) paid parental and adoption leave At GCHQ, diversity and inclusion are critical to our mission. To protect the UK, we need a workforce that truly reflects the society we serve. This includes diversity in every sense of the word: people of different backgrounds, ages, ethnicities, gender identities, sexual orientations, ways of thinking and those with disabilities or neurodivergent conditions. We therefore welcome and encourage applications from everyone, including individuals from groups that are currently under represented in our workforce, such as women, people from ethnic minority backgrounds, people with disabilities and those from low socio economic backgrounds. Visit our website to find out more about our culture, working environment and diversity. GCHQ is proud to have achieved Leader status within the Department for Work and Pensions' Disability Confident scheme. The scheme encourages employers to think differently about disability and take action to improve how they recruit, retain and develop disabled people. As a Disability Confident organisation, we aim to ensure that a fair and proportionate number of disabled applicants who best meet the essential criteria for this position, assessed at sift, are offered an interview, if it is practical for us to do so. This is known as the Offer of Interview. To secure an interview for this role, the minimum criteria (in order of application process) are: Demonstrate a strong motivation to learn and adapt to Agile ways of working. Demonstrate an ability to develop software features. Demonstrate experience of working as a Software Engineer in a software engineering environment. This could include an industry placement. There is a wide range of extra support available throughout the recruitment process to enable you to do your best, visit our How to Apply page for information on the reasonable adjustments we can offer. What to expect Our recruitment process is fair, transparent, and based on merit. Here is a brief overview of each stage, in order: Online Situational Judgement Test (SJT) assessing the appropriateness of your responses to a series of short scenarios. The SJT tests criteria important for all roles in our organisation Technical and competency based interview, including a presentation. If successful, you will receive a conditional offer of employment, subject to vetting. Please note, you must successfully pass each stage of the process to progress to the next. Your application may take around 6 to 9 months to process including vetting, so we advise you continue any current employment until you have received your final job offer. Before you apply To work at GCHQ, you must be a British citizen or hold dual British nationality. Read about our eligibility criteria. This role requires the highest security clearance, known as Developed Vetting (DV). It's something everyone in the UK Intelligence Community undertakes. Find out more about the vetting process. Please note we have a strict drugs policy, so once you start your application, you can't take any recreational drugs and you'll need to declare your previous drug usage at the relevant stage. Before applying, we recommend setting up a separate email address for your contact with us to ensure your personal and application correspondence remain separate. Try to avoid including identifying features in your email address, such as your first and/or surname and date of birth. This is good practice and will help you manage your application with us more securely. The role is based in Cheltenham, Bude, Manchester or Samlesbury so you'll need to live within a commutable distance. Please consider any financial implications and practicalities before submitting an application, as we do not offer relocation costs. We offer reasonable reimbursement of travel costs for candidates attending in person appointments during the recruitment and vetting process. Full details will be provided with your interview or assessment invitation . click apply for full job details
Apr 16, 2026
Full time
Closing Date - 23:00 on Tuesday 28th April 2026 Salary:£42,630 - £46,246, dependent on experience and made up of a base salary of £35,134 - £38,750, a concessionary payment of £2,758, and a skills payment of up to £4,738 (assessed at interview and offered from day one). You will also receive a one-off recruitment bonus of £2,000 (£1,000 on arrival and £1,000 on successful completion of probation). Flexible Working: We recognise the importance of a healthy work-life balance and offer full-time, part-time, and compressed hours. Due to the nature of the work, hybrid working may be more limited; however, some home working options may be available depending on business requirements. GCHQ is an intelligence, cyber and security agency with a mission to keep the UK safe. We use cutting edge technology, ingenuity, and partnerships to identify, analyse and disrupt threats. Working with our intelligence partners MI5 and MI6, we protect the UK from terrorism, cyber attacks, and espionage. At GCHQ, you'll do varied and fascinating work in a supportive and inclusive environment that puts the emphasis on teamwork. The Role A typical day as a Software Engineer at GCHQ involves working both collaboratively and independently to develop innovative solutions to complex, real world mission challenges. As part of an Agile, multidisciplinary team, you'll contribute to a culture of continuous learning and adaption. Teams experiment with new ideas, explore different technical approaches and tackle difficult problems that often require fresh thinking. Collaboration with analysts and technical specialists across multiple missions is central to shaping solutions that meet operational needs. Day to day work may include team check ins and planning sessions, reviewing and raising pull requests, and applying a range of engineering practices such as pair programming, mobbing, or focused individual development. You might also spend time researching and analysing web or mobile technologies, designing, documenting and implementing software solutions, and delivering software for mission requirements. You'll also support existing solutions throughout their lifecycle, all contributing to steady progress and well crafted outcomes. About You You'll bring a real aptitude for learning and problem solving, with a genuine interest in technology and trying new approaches. You enjoy developing ideas, exploring technical options and working with others to solve challenges. You will have practical experience in a software development environment gained through a previous role or an industrial placement. You're comfortable using at least one modern programming language or framework and have a good understanding of core software engineering practices. You'll be curious about cloud technologies, and any familiarity with AWS, Azure or GCP would be beneficial. You may have some experience with Agile or DevOps ways of working, CI/CD, automation or infrastructure as code, and you're keen to build confidence in areas like cloud security or vulnerability awareness. A basic understanding of Linux or Windows is useful, along with a willingness to learn more as part of the role. You'll work well in development teams, switching between independent tasks and collaborative work, and you're happy contributing across teams when needed. You can prioritise effectively, adapt to change and stay focused when things get challenging. You communicate clearly, enjoy sharing ideas and are comfortable engaging with a range of customers and technical colleagues. If you're enthusiastic about technology, motivated to develop skills and excited by our mission, we encourage you to apply, even if you don't meet every requirement. Your perspective and potential could be exactly what we're looking for. Training and Development At GCHQ, we embrace a growth mindset and are committed to your development. You'll follow a blend of in house learning from our experts, external courses where helpful, and plenty of on the job experience. From day one, you'll have access to mentors and subject matter experts who will support you in building a development and career plan that works for you. We encourage you to dedicate time to continual professional development through formal courses and practical experimentation, supported by the innovation time available to you. You'll have access to books, online learning platforms, conferences and practical project work supported by experienced colleagues, along with funding towards formal qualifications. Training covers a broad range of areas, including Front End Design, RF Software Engineering, Site Reliability Engineering, Data Engineering, Solution Architecture, MLOps, UX, Agile, Cloud Engineering and Security. You'll also have access to courses including AWS certification, Scrum Master training, microservices, engineering patterns, Linux, user experience and leadership skills. Subscriptions to platforms like Cloud Academy, Pluralsight or O'Reilly are also available. Rewards and Benefits You'll receive a starting salary £42,630 - £46,246 dependent on skills and experience, with an additional one off bonus of £2,000 plus other benefits including: 25 days' annual leave, rising automatically to 30 days after 5 years' service, plus an additional 10.5 days of public and privilege holidays opportunities to be recognised through our employee performance scheme an interest free season ticket loan a cycle to work scheme facilities such as a gym, restaurant, and on site coffee bars (at some locations) paid parental and adoption leave At GCHQ, diversity and inclusion are critical to our mission. To protect the UK, we need a workforce that truly reflects the society we serve. This includes diversity in every sense of the word: people of different backgrounds, ages, ethnicities, gender identities, sexual orientations, ways of thinking and those with disabilities or neurodivergent conditions. We therefore welcome and encourage applications from everyone, including individuals from groups that are currently under represented in our workforce, such as women, people from ethnic minority backgrounds, people with disabilities and those from low socio economic backgrounds. Visit our website to find out more about our culture, working environment and diversity. GCHQ is proud to have achieved Leader status within the Department for Work and Pensions' Disability Confident scheme. The scheme encourages employers to think differently about disability and take action to improve how they recruit, retain and develop disabled people. As a Disability Confident organisation, we aim to ensure that a fair and proportionate number of disabled applicants who best meet the essential criteria for this position, assessed at sift, are offered an interview, if it is practical for us to do so. This is known as the Offer of Interview. To secure an interview for this role, the minimum criteria (in order of application process) are: Demonstrate a strong motivation to learn and adapt to Agile ways of working. Demonstrate an ability to develop software features. Demonstrate experience of working as a Software Engineer in a software engineering environment. This could include an industry placement. There is a wide range of extra support available throughout the recruitment process to enable you to do your best, visit our How to Apply page for information on the reasonable adjustments we can offer. What to expect Our recruitment process is fair, transparent, and based on merit. Here is a brief overview of each stage, in order: Online Situational Judgement Test (SJT) assessing the appropriateness of your responses to a series of short scenarios. The SJT tests criteria important for all roles in our organisation Technical and competency based interview, including a presentation. If successful, you will receive a conditional offer of employment, subject to vetting. Please note, you must successfully pass each stage of the process to progress to the next. Your application may take around 6 to 9 months to process including vetting, so we advise you continue any current employment until you have received your final job offer. Before you apply To work at GCHQ, you must be a British citizen or hold dual British nationality. Read about our eligibility criteria. This role requires the highest security clearance, known as Developed Vetting (DV). It's something everyone in the UK Intelligence Community undertakes. Find out more about the vetting process. Please note we have a strict drugs policy, so once you start your application, you can't take any recreational drugs and you'll need to declare your previous drug usage at the relevant stage. Before applying, we recommend setting up a separate email address for your contact with us to ensure your personal and application correspondence remain separate. Try to avoid including identifying features in your email address, such as your first and/or surname and date of birth. This is good practice and will help you manage your application with us more securely. The role is based in Cheltenham, Bude, Manchester or Samlesbury so you'll need to live within a commutable distance. Please consider any financial implications and practicalities before submitting an application, as we do not offer relocation costs. We offer reasonable reimbursement of travel costs for candidates attending in person appointments during the recruitment and vetting process. Full details will be provided with your interview or assessment invitation . click apply for full job details
Operational Technology (OT) Cyber Security Project Engineer Warrington, WRT, GB, WA3 6UT Partial Remote (Hybrid) Bilfinger UK is a leading engineering and maintenance provider, supporting customers across the chemical & petrochemical, nuclear, oil & gas, pharmaceuticals & biopharma, power & energy, utilities, renewables and food & beverage markets. We enhance the efficiency of assets, ensuring a high level of availability and reducing maintenance costs. We have extensive experience in offshore and onshore facilities; specialising in asset management services throughout all life cycle phases from consulting, engineering, manufacturing, assembly, operations, maintenance, and decommissioning. This commitment is delivered by an experienced and highly competent workforce of over 4,500 employees operating from 14 offices in strategic industrial hubs, upholding the highest standards of safety, compliance and quality. Role We are seeking an experienced, committed and enthusiastic Operational Technology (OT) Cyber Security Systems Engineer to join our Automation team for a project-based contract role to design, develop & build and test networks and cyber security controls for an Industrial Control Systems (ICS) environment. The role focuses on securing operational technology systems and networks while ensuring system availability, safety, and compliance with industry and client standards. The OT Cyber Security Project Engineer will take full responsibility for the successful delivery of cyber security and industrial networking aspects of the project (technical, quality, time and cost elements). The candidate must be pro active and able to deliver their own tasks whilst coordinating with project team members, supervising, assisting and monitoring task progress and support the Project Manager commercially on progress, risks, issues and opportunities. The Engineer must be capable of working within a complex, multi disciplinary project environment and should work co operatively with the Project Engineering Management team, Lead Automation Engineers and OT Cyber Security Manager to ensure smooth project progress in accordance with the agreed project lifecycle. Key Responsibilities Working closely and collaboratively with the Project Engineering Management team, Lead Automation Engineers and OT Cyber Security Manager and project engineering team you will: Be responsible for technical delivery of the OT network management system and cyber security controls for the project. Design, implement and test secure systems and networks for an industrial control system. Produce clear technical documentation, including design specifications, test procedures and operating and maintenance documentation, taking ownership of and updating existing documentation. Deploy and test networks and cyber security controls for a PLC and SCADA environment. Conduct system integration and factory acceptance testing (FAT). Support OT Cyber Security project lifecycle management activities including vulnerability identification, patching, software and password management. Collaborate effectively with and support the Project Engineering Management team, Lead Automation Engineers and OT Cyber Security Manager and project engineering team with the planning and execution of OT cyber security aspects of projects to ensure they meet the time and quality required with clear reporting on progress and blockers. Support project and commercial management team with technical aspects of sub contracts. Provide health and safety leadership by example. Proven experience of design, implementation and testing of OT/ICS networks and cyber security solutions within industrial environments. Detailed experience of the full project life cycle from system specification through design, development, testing. Experience of the design, specification, implementation, testing and commissioning of security solutions, controls and countermeasures for OT/IACS environments. This should include: System security - Hardening of PLC, HMI and SCADA systems to recognised industry standards, guidelines and best practices. Network security - Secure deployment and hardening of network infrastructure including segmentation and boundary protection through managed switches and firewalls, and passive Network Intrusion Detection Systems (NIDS). Hands on experience of: Network design and implementation using Hirschmann industrial portfolio of managed network switch and firewall products. Network synchronisation, including dedicated time appliances and NTP Implementing security controls and hardening a variety of automation OEM vender systems e.g. Rockwell Automation, Bently Nevada, Det tronics, Opto 22 etc. Understanding of the OSI and TCP/IP Models in theory and application, with strong applied knowledge of industrial network protocols (including EtherNet/IP, with CIP Security beneficial) Strong troubleshooting, documentation, and stakeholder communication skills. Experience of working within a Quality Management System (QMS), delivering well described outputs with traceability through project lifecycle Experience working in or for System Integrator, Operators of Essential Services (OES) or Critical National Infrastructure (CNI) organisations Familiarity with cyber security standards and frameworks relevant to OT. Experience mentoring junior staff members including apprentices Qualifications A degree or HND/HNC in Electronic/Electrical Engineering, Computer Science or other relevant engineering discipline Professionally registered engineer or working towards professional registration Relevant OT cyber security certification e.g.: ISA/IEC 62443 Cyber Security Expert Global Information Assurance Certification (GIAC) Global Industrial Cyber Security Professional Certification (GISCP) If you wish to speak to a member of the recruitment team, please contact .
Apr 16, 2026
Full time
Operational Technology (OT) Cyber Security Project Engineer Warrington, WRT, GB, WA3 6UT Partial Remote (Hybrid) Bilfinger UK is a leading engineering and maintenance provider, supporting customers across the chemical & petrochemical, nuclear, oil & gas, pharmaceuticals & biopharma, power & energy, utilities, renewables and food & beverage markets. We enhance the efficiency of assets, ensuring a high level of availability and reducing maintenance costs. We have extensive experience in offshore and onshore facilities; specialising in asset management services throughout all life cycle phases from consulting, engineering, manufacturing, assembly, operations, maintenance, and decommissioning. This commitment is delivered by an experienced and highly competent workforce of over 4,500 employees operating from 14 offices in strategic industrial hubs, upholding the highest standards of safety, compliance and quality. Role We are seeking an experienced, committed and enthusiastic Operational Technology (OT) Cyber Security Systems Engineer to join our Automation team for a project-based contract role to design, develop & build and test networks and cyber security controls for an Industrial Control Systems (ICS) environment. The role focuses on securing operational technology systems and networks while ensuring system availability, safety, and compliance with industry and client standards. The OT Cyber Security Project Engineer will take full responsibility for the successful delivery of cyber security and industrial networking aspects of the project (technical, quality, time and cost elements). The candidate must be pro active and able to deliver their own tasks whilst coordinating with project team members, supervising, assisting and monitoring task progress and support the Project Manager commercially on progress, risks, issues and opportunities. The Engineer must be capable of working within a complex, multi disciplinary project environment and should work co operatively with the Project Engineering Management team, Lead Automation Engineers and OT Cyber Security Manager to ensure smooth project progress in accordance with the agreed project lifecycle. Key Responsibilities Working closely and collaboratively with the Project Engineering Management team, Lead Automation Engineers and OT Cyber Security Manager and project engineering team you will: Be responsible for technical delivery of the OT network management system and cyber security controls for the project. Design, implement and test secure systems and networks for an industrial control system. Produce clear technical documentation, including design specifications, test procedures and operating and maintenance documentation, taking ownership of and updating existing documentation. Deploy and test networks and cyber security controls for a PLC and SCADA environment. Conduct system integration and factory acceptance testing (FAT). Support OT Cyber Security project lifecycle management activities including vulnerability identification, patching, software and password management. Collaborate effectively with and support the Project Engineering Management team, Lead Automation Engineers and OT Cyber Security Manager and project engineering team with the planning and execution of OT cyber security aspects of projects to ensure they meet the time and quality required with clear reporting on progress and blockers. Support project and commercial management team with technical aspects of sub contracts. Provide health and safety leadership by example. Proven experience of design, implementation and testing of OT/ICS networks and cyber security solutions within industrial environments. Detailed experience of the full project life cycle from system specification through design, development, testing. Experience of the design, specification, implementation, testing and commissioning of security solutions, controls and countermeasures for OT/IACS environments. This should include: System security - Hardening of PLC, HMI and SCADA systems to recognised industry standards, guidelines and best practices. Network security - Secure deployment and hardening of network infrastructure including segmentation and boundary protection through managed switches and firewalls, and passive Network Intrusion Detection Systems (NIDS). Hands on experience of: Network design and implementation using Hirschmann industrial portfolio of managed network switch and firewall products. Network synchronisation, including dedicated time appliances and NTP Implementing security controls and hardening a variety of automation OEM vender systems e.g. Rockwell Automation, Bently Nevada, Det tronics, Opto 22 etc. Understanding of the OSI and TCP/IP Models in theory and application, with strong applied knowledge of industrial network protocols (including EtherNet/IP, with CIP Security beneficial) Strong troubleshooting, documentation, and stakeholder communication skills. Experience of working within a Quality Management System (QMS), delivering well described outputs with traceability through project lifecycle Experience working in or for System Integrator, Operators of Essential Services (OES) or Critical National Infrastructure (CNI) organisations Familiarity with cyber security standards and frameworks relevant to OT. Experience mentoring junior staff members including apprentices Qualifications A degree or HND/HNC in Electronic/Electrical Engineering, Computer Science or other relevant engineering discipline Professionally registered engineer or working towards professional registration Relevant OT cyber security certification e.g.: ISA/IEC 62443 Cyber Security Expert Global Information Assurance Certification (GIAC) Global Industrial Cyber Security Professional Certification (GISCP) If you wish to speak to a member of the recruitment team, please contact .
We are looking for a Senior Cyber and Systems Engineer to join Team OB in our Support Office. As a Senior Cyber and Systems Engineer at OB you will be protecting the company through strong IT security principles and implementing industry stand best practices. Working with and being the first point of contact for EDR partner and SOC you will ensure ongoing compliance with PCI DSS ensuring to adhere to its actively changing requirements. Our Support Office is based in Tolworth, near Chessington, only a 30-minute journey from London Waterloo. We offer hybrid working with a split of 3 days in the office and 2 days home working per week. A bit about us At Oliver Bonas (OB), our values of Work Hard, Play Hard & Be Kind are integral to everything we do. Collaboration, imagination, curiosity, and teamwork are key to our success, and everyone has their part to play in making OB a special place to work. Having fun is key, and a playful and positive approach creates an optimistic environment. We don't take ourselves too seriously, but we are serious about what we do. Our team knows their stuff. They're confident and creative and unafraid to challenge convention to find solutions, taking accountability for their actions, but always with kindness and humility. More about the role An OB Senior Cyber and Systems Engineer will: Work with our newly deployed SOC EDR partner in ensuring the network, cloud, and Retail Estate are secured from Cyber threats. Analyse any security breaches and report on findings and remediation's Monitor/Respond to Anti-Ransomware protection software Incidents. Handle and resolve security-related tickets from the helpdesk, including but not limited to Vipre spam filter and firewall unblock requests on store and Head Office networks. Monitor Netskope (Cloud Access Security Broker) for cloud usage on personal Google/Microsoft Accounts. This is to ensure the company's data is secured in line with the company's GDPR guidelines. Monitor and manage the three ESET antivirus consoles, ensuring they are updated regularly. Work in collaboration with the I.T Support team maintain up-to-date antivirus protection when installing new machines and address any issues promptly. Ensure ongoing compliance with PCI DSS standards. Conduct periodic checks to assess the status of compliance throughout the year. Manage annual compliance audit Conduct quarterly vulnerability scans and remediate any failed attempts Liaise with third party penetration testers and review findings Develop and implement action plans to address any identified compliance gaps. Oversee the management of digital certificates for services and applications. Ensure timely renewal and update of certificates to maintain secure operations. Assist in the delivery of cybersecurity training programs for end users. Promote security awareness and best practices across the organization. Conduct Regular Phishing Simulations Liaise with the Data Compliance manager on any Data Subject Requests Work with the IT support team, providing support on complex or urgent incidents where required. Ensure Network and infrastructure reflects the company's commitment to GDPR at all times and that our customers data is treated with utmost care and attention. Liaise with the GDPR compliance group and identify security risks and take actions where needed. Bonas Benefits: Generous employee discount up to 50% off all OB products Free access to our 24 hour employee assistance programme with Optima Health - offering financial, emotional and vocational support Flexible holiday - 30 days (including bank holidays) - increasing to 35 days with length of service Annual discretionary profit related bonus scheme Free membership for our Westfield Health Cash Plan or Private Medical Auto-enrolment into our pension plan Free access to our onsite gym Cycle to work scheme Refer a Friend incentive Quarterly free lunch Enhanced maternity, paternity, adoption and shared parental leave Equity, Diversity and Inclusivity Voice network and EDI team Mental Health First Aider support Education and support through 360L eLearning platform What we look for: CompTIA Network & Security+ or equivalent Certifications. IT experience across a range of different types of technology Solid understanding of IT infrastructure and current security posture Experience in complying with a PCI DSS audit and understanding its ongoing requirements. Strong problem-solving skills with a proven track record Background in I.T. support as well as Cyber security. Experience with Microsoft Entra Identity Protection/Conditional Access Experience of WAF solutions, such as Cloudflare is desirable. Knowledge of Email security protocols: DKIM/SPF/DMARC Diligent and a strong attention to detail Equity, Diversity & Inclusion at OB At Oliver Bonas, our promise is to do our bit to make living a joyful experience and give cause for optimism. This promise is central to our work in equity, diversity and inclusion (EDI). To bring joy to others, we must first ensure everyone at OB feels valued, included and most importantly, can be themselves at work. It is important to us that our brand reflects wider society and the communities in which we operate. As a result, we welcome all eligible applicants for this role however we are particularly interested in speaking to eligible candidates from the Black, Asian & Mixed Heritage communities. Oliver Bonas is a Disability Confident Committed employer under the Disability Confident employer scheme. To read more about our ED&I commitments, head over to the EDI page on our website:
Apr 15, 2026
Full time
We are looking for a Senior Cyber and Systems Engineer to join Team OB in our Support Office. As a Senior Cyber and Systems Engineer at OB you will be protecting the company through strong IT security principles and implementing industry stand best practices. Working with and being the first point of contact for EDR partner and SOC you will ensure ongoing compliance with PCI DSS ensuring to adhere to its actively changing requirements. Our Support Office is based in Tolworth, near Chessington, only a 30-minute journey from London Waterloo. We offer hybrid working with a split of 3 days in the office and 2 days home working per week. A bit about us At Oliver Bonas (OB), our values of Work Hard, Play Hard & Be Kind are integral to everything we do. Collaboration, imagination, curiosity, and teamwork are key to our success, and everyone has their part to play in making OB a special place to work. Having fun is key, and a playful and positive approach creates an optimistic environment. We don't take ourselves too seriously, but we are serious about what we do. Our team knows their stuff. They're confident and creative and unafraid to challenge convention to find solutions, taking accountability for their actions, but always with kindness and humility. More about the role An OB Senior Cyber and Systems Engineer will: Work with our newly deployed SOC EDR partner in ensuring the network, cloud, and Retail Estate are secured from Cyber threats. Analyse any security breaches and report on findings and remediation's Monitor/Respond to Anti-Ransomware protection software Incidents. Handle and resolve security-related tickets from the helpdesk, including but not limited to Vipre spam filter and firewall unblock requests on store and Head Office networks. Monitor Netskope (Cloud Access Security Broker) for cloud usage on personal Google/Microsoft Accounts. This is to ensure the company's data is secured in line with the company's GDPR guidelines. Monitor and manage the three ESET antivirus consoles, ensuring they are updated regularly. Work in collaboration with the I.T Support team maintain up-to-date antivirus protection when installing new machines and address any issues promptly. Ensure ongoing compliance with PCI DSS standards. Conduct periodic checks to assess the status of compliance throughout the year. Manage annual compliance audit Conduct quarterly vulnerability scans and remediate any failed attempts Liaise with third party penetration testers and review findings Develop and implement action plans to address any identified compliance gaps. Oversee the management of digital certificates for services and applications. Ensure timely renewal and update of certificates to maintain secure operations. Assist in the delivery of cybersecurity training programs for end users. Promote security awareness and best practices across the organization. Conduct Regular Phishing Simulations Liaise with the Data Compliance manager on any Data Subject Requests Work with the IT support team, providing support on complex or urgent incidents where required. Ensure Network and infrastructure reflects the company's commitment to GDPR at all times and that our customers data is treated with utmost care and attention. Liaise with the GDPR compliance group and identify security risks and take actions where needed. Bonas Benefits: Generous employee discount up to 50% off all OB products Free access to our 24 hour employee assistance programme with Optima Health - offering financial, emotional and vocational support Flexible holiday - 30 days (including bank holidays) - increasing to 35 days with length of service Annual discretionary profit related bonus scheme Free membership for our Westfield Health Cash Plan or Private Medical Auto-enrolment into our pension plan Free access to our onsite gym Cycle to work scheme Refer a Friend incentive Quarterly free lunch Enhanced maternity, paternity, adoption and shared parental leave Equity, Diversity and Inclusivity Voice network and EDI team Mental Health First Aider support Education and support through 360L eLearning platform What we look for: CompTIA Network & Security+ or equivalent Certifications. IT experience across a range of different types of technology Solid understanding of IT infrastructure and current security posture Experience in complying with a PCI DSS audit and understanding its ongoing requirements. Strong problem-solving skills with a proven track record Background in I.T. support as well as Cyber security. Experience with Microsoft Entra Identity Protection/Conditional Access Experience of WAF solutions, such as Cloudflare is desirable. Knowledge of Email security protocols: DKIM/SPF/DMARC Diligent and a strong attention to detail Equity, Diversity & Inclusion at OB At Oliver Bonas, our promise is to do our bit to make living a joyful experience and give cause for optimism. This promise is central to our work in equity, diversity and inclusion (EDI). To bring joy to others, we must first ensure everyone at OB feels valued, included and most importantly, can be themselves at work. It is important to us that our brand reflects wider society and the communities in which we operate. As a result, we welcome all eligible applicants for this role however we are particularly interested in speaking to eligible candidates from the Black, Asian & Mixed Heritage communities. Oliver Bonas is a Disability Confident Committed employer under the Disability Confident employer scheme. To read more about our ED&I commitments, head over to the EDI page on our website:
