A leading technology solutions provider seeks a Cybersecurity Operation Lead in Templecombe, UK. This role involves managing the cyber posture of various platforms, ensuring compliance with security standards, and leading a team to support effective cybersecurity practices. Candidates should have a degree in Engineering or Computer Science and strong leadership skills. The company promotes flexible working arrangements to support employee well-being.
Dec 06, 2025
Full time
A leading technology solutions provider seeks a Cybersecurity Operation Lead in Templecombe, UK. This role involves managing the cyber posture of various platforms, ensuring compliance with security standards, and leading a team to support effective cybersecurity practices. Candidates should have a degree in Engineering or Computer Science and strong leadership skills. The company promotes flexible working arrangements to support employee well-being.
Insight Investment are looking for a Cyber Defence Specialist to join our Cyber Security team. This role will maintain the Sentinel Threat Detection capability for Insight's bespoke application. The successful candidate will maintain and optimise the Microsoft Sentinel platform, ensuring its stability, performance, and integration with other security tools, as well as developing use cases for the SOC team. Alongside this, the candidate will support the 24/7 SOC team, providing incident response, and continuously improving detection and automation capabilities. Role Responsibilities Maintain and optimise the Microsoft Sentinel environment, including configuration, performance tuning, and health monitoring. Onboard new data sources, connectors, and log streams to support evolving security requirements. Develop and enhance analytics rules, workbooks, and playbooks to improve detection and response. Monitor security alerts alongside the 24/7 SOC team, providing advanced analysis and escalation support. Troubleshoot and resolve issues related to Sentinel ingestion, queries, and automation workflows. Collaborate with SOC analysts, application and development teams, security engineers and security architects to ensure effective threat detection and incident response. Document configurations, processes, and improvements for operational continuity. Experience Required Experience developing, testing and implementing use cases/detection rules for the Sentinel SIEM environment. Strong hands on experience with Microsoft Sentinel and related Azure security services. Proficiency in Kusto Query Language (KQL) for creating and tuning detection rules and dashboards. Solid understanding of SIEM concepts, log ingestion, and security monitoring practices. Experience with incident response workflows and SOC operations. Ability to work collaboratively with development, engineering and monitoring teams. Excellent problem solving and communication skills. Advantageous Experience with SOAR automation and playbook development. Familiarity with cloud security monitoring across Azure, AWS, or GCP. Knowledge of MITRE ATT&CK framework and threat detection methodologies. Exposure to compliance driven environments and security best practices. Relevant certifications (e.g., SC-200, AZ-500, Security+). About Insight Investment Insight Investment is a leading asset manager focused on designing investment solutions to meet its clients' needs. Founded in 2002, Insight's collaborative approach has delivered both investment performance and growth in assets under management. Insight manages assets across its core liability driven investment, risk management, full spectre fixed income, currency and absolute return capabilities. Insight has a global network of operations in the UK, Ireland, Germany, US, Japan and Australia. More information about Insight Investment can be found at:
Dec 05, 2025
Full time
Insight Investment are looking for a Cyber Defence Specialist to join our Cyber Security team. This role will maintain the Sentinel Threat Detection capability for Insight's bespoke application. The successful candidate will maintain and optimise the Microsoft Sentinel platform, ensuring its stability, performance, and integration with other security tools, as well as developing use cases for the SOC team. Alongside this, the candidate will support the 24/7 SOC team, providing incident response, and continuously improving detection and automation capabilities. Role Responsibilities Maintain and optimise the Microsoft Sentinel environment, including configuration, performance tuning, and health monitoring. Onboard new data sources, connectors, and log streams to support evolving security requirements. Develop and enhance analytics rules, workbooks, and playbooks to improve detection and response. Monitor security alerts alongside the 24/7 SOC team, providing advanced analysis and escalation support. Troubleshoot and resolve issues related to Sentinel ingestion, queries, and automation workflows. Collaborate with SOC analysts, application and development teams, security engineers and security architects to ensure effective threat detection and incident response. Document configurations, processes, and improvements for operational continuity. Experience Required Experience developing, testing and implementing use cases/detection rules for the Sentinel SIEM environment. Strong hands on experience with Microsoft Sentinel and related Azure security services. Proficiency in Kusto Query Language (KQL) for creating and tuning detection rules and dashboards. Solid understanding of SIEM concepts, log ingestion, and security monitoring practices. Experience with incident response workflows and SOC operations. Ability to work collaboratively with development, engineering and monitoring teams. Excellent problem solving and communication skills. Advantageous Experience with SOAR automation and playbook development. Familiarity with cloud security monitoring across Azure, AWS, or GCP. Knowledge of MITRE ATT&CK framework and threat detection methodologies. Exposure to compliance driven environments and security best practices. Relevant certifications (e.g., SC-200, AZ-500, Security+). About Insight Investment Insight Investment is a leading asset manager focused on designing investment solutions to meet its clients' needs. Founded in 2002, Insight's collaborative approach has delivered both investment performance and growth in assets under management. Insight manages assets across its core liability driven investment, risk management, full spectre fixed income, currency and absolute return capabilities. Insight has a global network of operations in the UK, Ireland, Germany, US, Japan and Australia. More information about Insight Investment can be found at:
Overview Description Cyber Defence Analyst Location: Farnborough on a 12-hour, 4 days on, 4 days off day and night shift pattern The Role: Leidos, a Global IT Solutions Provider specialising in large scale implementations involving science, engineering, and technology, requires a Cyber Defence Analyst to work in its CSOC (Cyber Security Operations Centre) Team. The Cyber Defence Analyst will contribute to the growth and development of the CSOC. You will work with a wide variety of stakeholders to ensure the Leidos CSOC, a Defensive Cyber Security capability, can support a customer's Cyber Resilience, protecting them with a 24 x 7 Threat Detection and Response service, mitigating risk of Cyber Attack. The successful candidate will have CSOC experience or demonstrate sufficient transferable Cyber Security knowledge, qualifications, aptitude, and passion to quickly learn the Cyber Defence Analyst role. To succeed, the candidate must be capable of working under pressure, delivering on multiple customer accounts, and have an appetite to progress and develop their Cyber Security career. The role operates within a matrix managed environment, reporting operationally to the CSOC Lead and accountable to the CSOC Manager. What will I be doing? Maintain the integrity and security of Cyber Security systems and networks. Support Cyber Security initiatives through predictive and reactive analysis, articulating emerging trends to leadership and staff. Use data from Cyber Defence tools (firewalls, IDS, network traffic, UEBA, SOAR, etc.) to analyse events within the environment. Respond to and correlate alerts from detective and preventative tools such as SIEM, EPP, EDR, XDR, WAF, and Firewalls. Proactively detect suspicious activity, vulnerabilities, and misconfigurations before they can be exploited, protecting Confidentiality, Integrity and Availability. Inspect and correlate logs from multiple sources to identify repeating patterns and Indicators of Compromise (IOC). Continuously scan the Threat Horizon to classify Threats by impact on a client's network or solution. Engage with security communities to review and share knowledge on IOC's and Threats. Follow and develop the Cyber Security Incident Response Process and Playbooks. Apply Cyber Security Incident Prioritisation Criteria to classify and rate Incidents. Define and coordinate countermeasures to mitigate Threats and support action plans in response to Incidents. Ensure confidentiality and discretion when dealing with multiple clients. Run Vulnerability Assessment tools to measure compliance with security updates and patches. Contribute as a team member performing multiple daily CSOC checks to detect and respond to suspicious activity or alerts. Record events and actions during a Cyber Security Incident accurately to enable effective handovers during shift changes. Continuously improve CSOC processes and collaborate with stakeholders from other technology stacks to contribute to Incident Response. Perform tabletop scenarios and derive lessons learned. What does Leidos need from me? Experience of Sentinel, Microsoft XDR and Microsoft Defender variants, and Elastic Security, or aptitude to learn SIEM technologies. Experience and knowledge of SIEM tools, Cyber Security Incident Response, Vulnerability Management and Cyber Threat Intelligence. Experience investigating Cyber Security incidents and supporting root cause analysis or transferable skills to learn and excel. Understanding of the Confidentiality, Integrity, and Availability (CIA) triad. Understanding of trends for malware, ransomware and Advanced Persistent Threats affecting Cloud and On-Premises solutions. Experience working within Change Controlled environments. Understanding of the OSI 7 network layers and TCP/IP networking. Understanding of network and boundary protection controls for Cloud and On-Premises solutions, including Firewalls, ACLs, NSGs, DDoS Protection, VPNs, Mail Gateways, Web Proxies, Load Balancers, WAFs, IPS, and IDS. Communication and Soft Skills Good verbal and written communication for handovers, reports, and documenting events during Incidents. Positive, collaborative, and self-motivated with the ability to work with minimal supervision. Ability to build strong relationships with customers and internal stakeholders. Analytical thinking with the ability to plan and remediate problems. Ability to track market trends and stay at the forefront of Cyber Security Technology. Ability to manage multiple work streams, prioritise, and escalate as necessary. Initiative-taker with the drive to see solutions through to completion. Agility and flexibility to cover shifts at short notice to ensure CSOC protection for customers. Desirable Exposure to working on or within HM Government classified systems or programs. Clearance Requirements Due to the nature of the work, candidates must be British and non-dual nationals. Candidates must be eligible to hold DV clearance. Clearance to start role: SC. What we do for you At Leidos we are passionate about customer success, united as a team and inspired to make a difference. We offer meaningful and engaging careers, a collaborative culture, and support for your career goals, while nurturing a healthy work-life balance. We provide an employment package that attracts, develops and retains top talent. Our reward scheme includes: contributory pension, private medical insurance, 33 days annual leave (including holidays), and access to Flexible benefits (life assurance, health schemes, gym memberships, annual buy/sell holidays, cycle to work). Flexi-Time Working Commitment to Diversity We welcome applications from all parts of the community and are committed to a diverse and inclusive culture. If you have a disability or need reasonable adjustments during the application and selection stages, please let us know and we will respond appropriately. Who We Are Leidos UK & Europe - we work to make the world safer, healthier, and more efficient through technology, engineering and science. Leidos is a growing company delivering innovative technology and solutions focused on safeguarding critical capabilities and transformation in defence, healthcare, government, safety and security, and transportation. What Makes Us Different: Purpose, Collaboration, and People. We offer flexible work arrangements to enable you to perform your role effectively, whether from home, office, or customer sites. Come break things (in a good way). Then build them smarter. We solve high-stakes problems with code and a healthy disregard for "how it's always been done." Pay Range £36,700.00 - £45,900.00
Dec 05, 2025
Full time
Overview Description Cyber Defence Analyst Location: Farnborough on a 12-hour, 4 days on, 4 days off day and night shift pattern The Role: Leidos, a Global IT Solutions Provider specialising in large scale implementations involving science, engineering, and technology, requires a Cyber Defence Analyst to work in its CSOC (Cyber Security Operations Centre) Team. The Cyber Defence Analyst will contribute to the growth and development of the CSOC. You will work with a wide variety of stakeholders to ensure the Leidos CSOC, a Defensive Cyber Security capability, can support a customer's Cyber Resilience, protecting them with a 24 x 7 Threat Detection and Response service, mitigating risk of Cyber Attack. The successful candidate will have CSOC experience or demonstrate sufficient transferable Cyber Security knowledge, qualifications, aptitude, and passion to quickly learn the Cyber Defence Analyst role. To succeed, the candidate must be capable of working under pressure, delivering on multiple customer accounts, and have an appetite to progress and develop their Cyber Security career. The role operates within a matrix managed environment, reporting operationally to the CSOC Lead and accountable to the CSOC Manager. What will I be doing? Maintain the integrity and security of Cyber Security systems and networks. Support Cyber Security initiatives through predictive and reactive analysis, articulating emerging trends to leadership and staff. Use data from Cyber Defence tools (firewalls, IDS, network traffic, UEBA, SOAR, etc.) to analyse events within the environment. Respond to and correlate alerts from detective and preventative tools such as SIEM, EPP, EDR, XDR, WAF, and Firewalls. Proactively detect suspicious activity, vulnerabilities, and misconfigurations before they can be exploited, protecting Confidentiality, Integrity and Availability. Inspect and correlate logs from multiple sources to identify repeating patterns and Indicators of Compromise (IOC). Continuously scan the Threat Horizon to classify Threats by impact on a client's network or solution. Engage with security communities to review and share knowledge on IOC's and Threats. Follow and develop the Cyber Security Incident Response Process and Playbooks. Apply Cyber Security Incident Prioritisation Criteria to classify and rate Incidents. Define and coordinate countermeasures to mitigate Threats and support action plans in response to Incidents. Ensure confidentiality and discretion when dealing with multiple clients. Run Vulnerability Assessment tools to measure compliance with security updates and patches. Contribute as a team member performing multiple daily CSOC checks to detect and respond to suspicious activity or alerts. Record events and actions during a Cyber Security Incident accurately to enable effective handovers during shift changes. Continuously improve CSOC processes and collaborate with stakeholders from other technology stacks to contribute to Incident Response. Perform tabletop scenarios and derive lessons learned. What does Leidos need from me? Experience of Sentinel, Microsoft XDR and Microsoft Defender variants, and Elastic Security, or aptitude to learn SIEM technologies. Experience and knowledge of SIEM tools, Cyber Security Incident Response, Vulnerability Management and Cyber Threat Intelligence. Experience investigating Cyber Security incidents and supporting root cause analysis or transferable skills to learn and excel. Understanding of the Confidentiality, Integrity, and Availability (CIA) triad. Understanding of trends for malware, ransomware and Advanced Persistent Threats affecting Cloud and On-Premises solutions. Experience working within Change Controlled environments. Understanding of the OSI 7 network layers and TCP/IP networking. Understanding of network and boundary protection controls for Cloud and On-Premises solutions, including Firewalls, ACLs, NSGs, DDoS Protection, VPNs, Mail Gateways, Web Proxies, Load Balancers, WAFs, IPS, and IDS. Communication and Soft Skills Good verbal and written communication for handovers, reports, and documenting events during Incidents. Positive, collaborative, and self-motivated with the ability to work with minimal supervision. Ability to build strong relationships with customers and internal stakeholders. Analytical thinking with the ability to plan and remediate problems. Ability to track market trends and stay at the forefront of Cyber Security Technology. Ability to manage multiple work streams, prioritise, and escalate as necessary. Initiative-taker with the drive to see solutions through to completion. Agility and flexibility to cover shifts at short notice to ensure CSOC protection for customers. Desirable Exposure to working on or within HM Government classified systems or programs. Clearance Requirements Due to the nature of the work, candidates must be British and non-dual nationals. Candidates must be eligible to hold DV clearance. Clearance to start role: SC. What we do for you At Leidos we are passionate about customer success, united as a team and inspired to make a difference. We offer meaningful and engaging careers, a collaborative culture, and support for your career goals, while nurturing a healthy work-life balance. We provide an employment package that attracts, develops and retains top talent. Our reward scheme includes: contributory pension, private medical insurance, 33 days annual leave (including holidays), and access to Flexible benefits (life assurance, health schemes, gym memberships, annual buy/sell holidays, cycle to work). Flexi-Time Working Commitment to Diversity We welcome applications from all parts of the community and are committed to a diverse and inclusive culture. If you have a disability or need reasonable adjustments during the application and selection stages, please let us know and we will respond appropriately. Who We Are Leidos UK & Europe - we work to make the world safer, healthier, and more efficient through technology, engineering and science. Leidos is a growing company delivering innovative technology and solutions focused on safeguarding critical capabilities and transformation in defence, healthcare, government, safety and security, and transportation. What Makes Us Different: Purpose, Collaboration, and People. We offer flexible work arrangements to enable you to perform your role effectively, whether from home, office, or customer sites. Come break things (in a good way). Then build them smarter. We solve high-stakes problems with code and a healthy disregard for "how it's always been done." Pay Range £36,700.00 - £45,900.00
Locations: Didcot, Great Yarmouth, St Neots, Isle of Wight, Ellesmere Port & Grimsby We are seeking an experienced and dedicated OT cyber security engineer to join our team at RWE, a leading power generation company. You will play a pivotal role securing OT systems and infrastructure to ensure the safe, reliable and secure operations of our power stations. This role combines strong governance responsibilities with hands on security activities to ensure that OT Security controls are effectively implemented and enforced at operational sites in a pragmatic manner. This role will require regular travel within the UK. Responsibilities Implementation of the OT Security Strategy within RWE Generation at the sites within the designated region of responsibility Manage and monitor compliance with NIS/CAF Regulations across OT environments Conduct and document periodic compliance reviews, audits and risk assessments of OT systems Development, evaluation and continuous adaptation of best practice solutions and regulations in the area of OT security (definition of procedures, standards, concepts, etc.) Identify, assess and manage OT security risks, escalating appropriately to management Provide assurance to site management on OT security and regulatory compliance Support deployment and verification of OT security controls across power station sites (e.g. access controls, network segmentation, monitoring, patch management) Provide guidance and oversight on incident response, disaster recovery and business continuity plans for OT Collaborate with IT/OT engineering and operations teams to ensure security by design in new projects and upgrades Communicate OT security risks, compliance status, and incident findings clearly to both technical and non technical stakeholders Influence and guide site personnel, engineers and management to implement required controls What we expect Completed university or technical college studies in engineering, computer science, mathematics, engineering or comparable education Proven experience of OT infrastructures and OT application architectures in the energy sector/process industry Knowledge of power plant operation would be advantageous Familiarity with Modbus, DNP3, OPC and PROFINET Experience in planning and leading projects Excellent skills in reporting and engaging with management, influencing and engaging stakeholders at all levels Business fluent in English Clear team orientation and high integrity Knowledge of regulatory standards, CAF, ISO/27001 would be advantageous Relevant certification, CISSP, Security + would be highly desirable Completion of SC Vetting What we offer you We aim to make your time with us as rewarding as possible by fostering a supportive and inclusive environment. Alongside competitive pay and opportunities for growth, we care about your well being and the balance between work and life. Flexible and hybrid working, enabling a balance between remote work and in office collaboration Company pension scheme to help secure your future Employee share save programme giving you a stake in our success Membership discounts to keep you active and energised Employee Assistance Programme offering confidential guidance and support
Dec 05, 2025
Full time
Locations: Didcot, Great Yarmouth, St Neots, Isle of Wight, Ellesmere Port & Grimsby We are seeking an experienced and dedicated OT cyber security engineer to join our team at RWE, a leading power generation company. You will play a pivotal role securing OT systems and infrastructure to ensure the safe, reliable and secure operations of our power stations. This role combines strong governance responsibilities with hands on security activities to ensure that OT Security controls are effectively implemented and enforced at operational sites in a pragmatic manner. This role will require regular travel within the UK. Responsibilities Implementation of the OT Security Strategy within RWE Generation at the sites within the designated region of responsibility Manage and monitor compliance with NIS/CAF Regulations across OT environments Conduct and document periodic compliance reviews, audits and risk assessments of OT systems Development, evaluation and continuous adaptation of best practice solutions and regulations in the area of OT security (definition of procedures, standards, concepts, etc.) Identify, assess and manage OT security risks, escalating appropriately to management Provide assurance to site management on OT security and regulatory compliance Support deployment and verification of OT security controls across power station sites (e.g. access controls, network segmentation, monitoring, patch management) Provide guidance and oversight on incident response, disaster recovery and business continuity plans for OT Collaborate with IT/OT engineering and operations teams to ensure security by design in new projects and upgrades Communicate OT security risks, compliance status, and incident findings clearly to both technical and non technical stakeholders Influence and guide site personnel, engineers and management to implement required controls What we expect Completed university or technical college studies in engineering, computer science, mathematics, engineering or comparable education Proven experience of OT infrastructures and OT application architectures in the energy sector/process industry Knowledge of power plant operation would be advantageous Familiarity with Modbus, DNP3, OPC and PROFINET Experience in planning and leading projects Excellent skills in reporting and engaging with management, influencing and engaging stakeholders at all levels Business fluent in English Clear team orientation and high integrity Knowledge of regulatory standards, CAF, ISO/27001 would be advantageous Relevant certification, CISSP, Security + would be highly desirable Completion of SC Vetting What we offer you We aim to make your time with us as rewarding as possible by fostering a supportive and inclusive environment. Alongside competitive pay and opportunities for growth, we care about your well being and the balance between work and life. Flexible and hybrid working, enabling a balance between remote work and in office collaboration Company pension scheme to help secure your future Employee share save programme giving you a stake in our success Membership discounts to keep you active and energised Employee Assistance Programme offering confidential guidance and support
Commercial Manager Salary: Up to £76,000 + 10% bonus Location: Maidenhead (Hybrid - 3 days from home, 2 days on-site) Industry: Defence / Cyber Security Are you an experienced Commercial Manager looking for a high-impact role within a cutting-edge defence and cyber security environment? This is a rare opportunity to join a market-leading organisation that support national security and critical global operations. The Role - Commercial Manager As the Commercial Manager , you will be a key point of contact for all commercial and contractual matters. You'll support bid activity, negotiate terms with customers and suppliers, assess commercial risk, and ensure the business is fully protected through robust governance and contract management. You'll work across the full commercial lifecycle-bids, proposals, contract drafting, negotiation, change control, and ongoing commercial oversight of major programmes. Due to the nature of the work, candidates must be able to obtain SC security clearance (British citizens only, with 5 years UK residency). Key Responsibilities Act as the day-to-day commercial interface for assigned contracts Provide full commercial input to bids, proposals and customer submissions Identify commercial risks and implement effective mitigation strategies Ensure contractual obligations are communicated to internal stakeholders Support change control, contract variations and issue resolution Lead negotiations with customers, suppliers and subcontractors Draft, review and amend a wide range of contractual documents Support the protection of intellectual property and compliance obligations Work closely with project, engineering and trade compliance teams Help develop and improve commercial processes and best practices Essential: Strong experience reviewing and negotiating complex contractual documentation Good understanding of contract law Background in Defence, Aerospace or similarly regulated technical industry Experience working in both customer-facing and supplier-facing roles Excellent commercial awareness, attention to detail and risk understanding Strong communicator with the ability to influence stakeholders Highly organised, self-motivated and able to work independently Confident managing multiple priorities in a fast-paced environment Proficient user of MS Office and relevant commercial tools Desirable: Knowledge of export control regulations Experience within procurement Degree in Law, Business, Economics or related discipline CIPS, WCC or other commercial/contract management qualification Benefits Up to £80,000 base salary + 10% annual bonus Private medical cover 25 days holiday + bank holidays (option to buy additional days) 4 x life assurance Company pension scheme Flexible hours with potential for early Friday finish Hybrid working - 3 days at home, 2 on-site Additional flexible benefits including cycle-to-work scheme Your CV will be forwarded to Jonathan Lee Recruitment, a leading engineering and manufacturing recruitment consultancy established in 1978. The services advertised by Jonathan Lee Recruitment are those of an Employment Agency. In order for your CV to be processed effectively, please ensure your name, email address, phone number and location (post code OR town OR county, as a minimum) are included.
Dec 05, 2025
Full time
Commercial Manager Salary: Up to £76,000 + 10% bonus Location: Maidenhead (Hybrid - 3 days from home, 2 days on-site) Industry: Defence / Cyber Security Are you an experienced Commercial Manager looking for a high-impact role within a cutting-edge defence and cyber security environment? This is a rare opportunity to join a market-leading organisation that support national security and critical global operations. The Role - Commercial Manager As the Commercial Manager , you will be a key point of contact for all commercial and contractual matters. You'll support bid activity, negotiate terms with customers and suppliers, assess commercial risk, and ensure the business is fully protected through robust governance and contract management. You'll work across the full commercial lifecycle-bids, proposals, contract drafting, negotiation, change control, and ongoing commercial oversight of major programmes. Due to the nature of the work, candidates must be able to obtain SC security clearance (British citizens only, with 5 years UK residency). Key Responsibilities Act as the day-to-day commercial interface for assigned contracts Provide full commercial input to bids, proposals and customer submissions Identify commercial risks and implement effective mitigation strategies Ensure contractual obligations are communicated to internal stakeholders Support change control, contract variations and issue resolution Lead negotiations with customers, suppliers and subcontractors Draft, review and amend a wide range of contractual documents Support the protection of intellectual property and compliance obligations Work closely with project, engineering and trade compliance teams Help develop and improve commercial processes and best practices Essential: Strong experience reviewing and negotiating complex contractual documentation Good understanding of contract law Background in Defence, Aerospace or similarly regulated technical industry Experience working in both customer-facing and supplier-facing roles Excellent commercial awareness, attention to detail and risk understanding Strong communicator with the ability to influence stakeholders Highly organised, self-motivated and able to work independently Confident managing multiple priorities in a fast-paced environment Proficient user of MS Office and relevant commercial tools Desirable: Knowledge of export control regulations Experience within procurement Degree in Law, Business, Economics or related discipline CIPS, WCC or other commercial/contract management qualification Benefits Up to £80,000 base salary + 10% annual bonus Private medical cover 25 days holiday + bank holidays (option to buy additional days) 4 x life assurance Company pension scheme Flexible hours with potential for early Friday finish Hybrid working - 3 days at home, 2 on-site Additional flexible benefits including cycle-to-work scheme Your CV will be forwarded to Jonathan Lee Recruitment, a leading engineering and manufacturing recruitment consultancy established in 1978. The services advertised by Jonathan Lee Recruitment are those of an Employment Agency. In order for your CV to be processed effectively, please ensure your name, email address, phone number and location (post code OR town OR county, as a minimum) are included.
SOC Practitioner Analyst £364.65p daily rate - PAYE £467.08p daily rate Umbrella Inside IR35 Full time 6 Month Contract Initially Milton Keynes / Hybrid 60% onsite working DV Clearance required Restrictions Apply Our government client is seeking an experienced level 1 SOC Practitioner Analyst to work in an existing team consisting of Cyber SOC Engineers and Cyber SOC Analysts on a temporary basis until a permanent position can be filled. Scope and Objectives To Work alongside an existing team of Cyber Engineer and Cyber Analysts within an established Security Operations Centre to provide level 1 triage analysis duties which include: Monitor, triage and investigate Security Alerts on the various monitoring tools to identify potential Security Incidents. Escalate suspected Security Incidents to the Lead Analysts. Assist Lead Analysts and Incident Response team with investigation and containment. Maintain knowledge of technology and cyber threats by reading Threat Intel, reports, attending Threat Intel briefings and self-study. Perform analysis of Security Event Data / Security Alerts to support Customers in responding to Security Incidents. Ensure Protective monitoring tools are performing as expected. Assist in the Creation of procedures to report incidents to customers Assisting in the Development of the team to ensure best practice and that their knowledge is up to date. In association with other colleagues provide an on-Call service to investigate and remedy security and technical issues in relation to the SOC service on a 24/7 basis . Skills and Experience Working knowledge of Various Operating systems including Windows and Linux. Experience of working with SIEM and IPS products within a SOC Environment. Good Analytical skills with the ability to manipulate, interrogate and analyse large data sets. Relevant cyber security analyst experience within a SOC environment. Knowledge of IT Networking, specifically in Firewalls and other Network security devices Strong interpersonal skills ability to assist other team members Excellent Communication Skills Constraints: Candidates submitted for this role must be British nationals, to confirm: They are a British citizen or hold dual nationality, and They have been a resident in the UK for at least two of the last 5 years Due to the nature of this work Government security clearance if not already held will need to be obtained. The minimum clearance required for this role is DV. (Although advantageous, it is not a requirement that an individual already holds Security Clearance.) Candidates who do not currently hold clearance must be able to obtain the appropriate level of clearance for the role specified. Short-listed candidates will be submitted for vetting procedures before being formally offered the position. This process can take 6-8 weeks. If this role is of interest and you meet the above criteria, then please apply immediately.
Dec 05, 2025
Contractor
SOC Practitioner Analyst £364.65p daily rate - PAYE £467.08p daily rate Umbrella Inside IR35 Full time 6 Month Contract Initially Milton Keynes / Hybrid 60% onsite working DV Clearance required Restrictions Apply Our government client is seeking an experienced level 1 SOC Practitioner Analyst to work in an existing team consisting of Cyber SOC Engineers and Cyber SOC Analysts on a temporary basis until a permanent position can be filled. Scope and Objectives To Work alongside an existing team of Cyber Engineer and Cyber Analysts within an established Security Operations Centre to provide level 1 triage analysis duties which include: Monitor, triage and investigate Security Alerts on the various monitoring tools to identify potential Security Incidents. Escalate suspected Security Incidents to the Lead Analysts. Assist Lead Analysts and Incident Response team with investigation and containment. Maintain knowledge of technology and cyber threats by reading Threat Intel, reports, attending Threat Intel briefings and self-study. Perform analysis of Security Event Data / Security Alerts to support Customers in responding to Security Incidents. Ensure Protective monitoring tools are performing as expected. Assist in the Creation of procedures to report incidents to customers Assisting in the Development of the team to ensure best practice and that their knowledge is up to date. In association with other colleagues provide an on-Call service to investigate and remedy security and technical issues in relation to the SOC service on a 24/7 basis . Skills and Experience Working knowledge of Various Operating systems including Windows and Linux. Experience of working with SIEM and IPS products within a SOC Environment. Good Analytical skills with the ability to manipulate, interrogate and analyse large data sets. Relevant cyber security analyst experience within a SOC environment. Knowledge of IT Networking, specifically in Firewalls and other Network security devices Strong interpersonal skills ability to assist other team members Excellent Communication Skills Constraints: Candidates submitted for this role must be British nationals, to confirm: They are a British citizen or hold dual nationality, and They have been a resident in the UK for at least two of the last 5 years Due to the nature of this work Government security clearance if not already held will need to be obtained. The minimum clearance required for this role is DV. (Although advantageous, it is not a requirement that an individual already holds Security Clearance.) Candidates who do not currently hold clearance must be able to obtain the appropriate level of clearance for the role specified. Short-listed candidates will be submitted for vetting procedures before being formally offered the position. This process can take 6-8 weeks. If this role is of interest and you meet the above criteria, then please apply immediately.
Senior Cloud Security Operations Engineer - Barcelona (Hybrid) Fynity is supporting a rapidly scaling SaaS company headquartered in Barcelona in the search for an experienced and proactive Senior Cloud Security Operations Engineer to join their growing Security Operations team (5 engineers + manager). This is a hands on role where you'll drive detection, hardening, incident analysis and response across cloud, CI/CD, and on prem environments, helping the business stay resilient and implement best practices as it scales globally. Your mission Build and manage security tooling for accurate threat detection and swift response. Implement hardening strategies across infrastructure, increasing resilience against cyberattacks. Monitor alerts, investigate incidents, and lead response efforts. Create and maintain detection and blocking rules. Perform detailed security investigations to identify root causes and impacts. Collaborate with IT and Engineering to embed best practices. Develop and update incident response playbooks. Deliver security awareness training across teams. Your background Extensive experience in Cloud Security / SecOps. Strong skills in AWS / Azure, Terraform, and Kubernetes. Experience with CI/CD, Infrastructure as Code, and container security. Strong understanding of modern cyberattack techniques and Threat Actor TTPs. Hands on with EDR, CNAPP, and SIEM tools. Scripting/automation (Python, Bash, etc.). Experience with Datadog a plus. Cybersecurity certifications preferred. Fluent English. Why join Scale up culture - fast moving, high growth, high ownership, real impact. Excellent salary of €55,000 €65,000 + 10% performance bonus (paid quarterly) + ESOP Plan. Great benefits including Health insurance, Gym, Language Classes, Retail and Food Discounts and other flexible benefits. Opportunity to shape the company's security strategy during rapid growth. Location: Barcelona (Hybrid, 80% office, 20% remote. You must be eligible to work in Spain). If you're a proactive, hands on Senior Cloud Security Operations Engineer who loves improving detection and response at scale, APPLY NOW! If you are interested please apply ASAP. The People Network is an employment agency and will respond to all applicants within three - five working days. If you do not hear within these timescales please feel free to get in touch.
Dec 05, 2025
Full time
Senior Cloud Security Operations Engineer - Barcelona (Hybrid) Fynity is supporting a rapidly scaling SaaS company headquartered in Barcelona in the search for an experienced and proactive Senior Cloud Security Operations Engineer to join their growing Security Operations team (5 engineers + manager). This is a hands on role where you'll drive detection, hardening, incident analysis and response across cloud, CI/CD, and on prem environments, helping the business stay resilient and implement best practices as it scales globally. Your mission Build and manage security tooling for accurate threat detection and swift response. Implement hardening strategies across infrastructure, increasing resilience against cyberattacks. Monitor alerts, investigate incidents, and lead response efforts. Create and maintain detection and blocking rules. Perform detailed security investigations to identify root causes and impacts. Collaborate with IT and Engineering to embed best practices. Develop and update incident response playbooks. Deliver security awareness training across teams. Your background Extensive experience in Cloud Security / SecOps. Strong skills in AWS / Azure, Terraform, and Kubernetes. Experience with CI/CD, Infrastructure as Code, and container security. Strong understanding of modern cyberattack techniques and Threat Actor TTPs. Hands on with EDR, CNAPP, and SIEM tools. Scripting/automation (Python, Bash, etc.). Experience with Datadog a plus. Cybersecurity certifications preferred. Fluent English. Why join Scale up culture - fast moving, high growth, high ownership, real impact. Excellent salary of €55,000 €65,000 + 10% performance bonus (paid quarterly) + ESOP Plan. Great benefits including Health insurance, Gym, Language Classes, Retail and Food Discounts and other flexible benefits. Opportunity to shape the company's security strategy during rapid growth. Location: Barcelona (Hybrid, 80% office, 20% remote. You must be eligible to work in Spain). If you're a proactive, hands on Senior Cloud Security Operations Engineer who loves improving detection and response at scale, APPLY NOW! If you are interested please apply ASAP. The People Network is an employment agency and will respond to all applicants within three - five working days. If you do not hear within these timescales please feel free to get in touch.
Locations : Boston London Who We Are Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact. To succeed, organizations must blend digital and human capabilities. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures-and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do The Global Delivery Director - Secure Data is a critical leadership role that enables the secure foundation of BCG's digital operations globally. By driving scalable, automated, and user-focused security engineering-and by embedding security into modern engineering and operational practices-this role ensures BCG can innovate securely while maintaining trust, compliance, and operational excellence. The Global Delivery Director - Secure Data is responsible for leading the design, delivery, and continuous evolution of BCG's data security strategy and controls. This role ensures that BCG's most sensitive data is protected globally through secure-by-design engineering, automation at scale, and resilient security platforms. The Director will drive strategic planning, execution, and operations of scalable, automated, and resilient security solutions that safeguard BCG's global operations and users, while enabling innovation and agility across BCG Core, BCG X, and CT worldwide. This role is accountable for embedding security within DevSecOps practices, applying Site Reliability Engineering (SRE) principles across all security services, and aligning with privacy, compliance, and business leaders to maintain trust and regulatory compliance. Key Responsibilities: Strategic Leadership & Transformation: Define and execute a unified security engineering strategy that addresses data protection across all environments and data lifecycle stages. Lead the design and implementation of scalable, automated solutions that integrate seamlessly into enterprise platforms and user experiences. Establish a global security architecture and engineering roadmap focused on prevention, detection, and rapid response. Drive continuous improvement of security posture while aligning with business needs, regulatory requirements, and user experience expectations. Champion DevSecOps practices to embed security early into development and delivery workflows. Data Security Engineering: Build and operate scalable data protection solutions, including data loss prevention (DLP), secrets management, encryption, and classification. Collaborate with the IAM team to align authentication, authorization, and privileged access policies with data security controls. Deliver security capabilities that support modern work scenarios, remote access, zero-trust networking, and protection of sensitive data in AI/ML workloads. Leverage automation frameworks and IaC to improve scalability and reduce manual intervention. Operational Security, SRE & Assurance: Ensure security platforms are resilient, continuously monitored, and designed for 24x7 support and incident response readiness. Embed security telemetry and observability to enable proactive threat detection and automated response. Apply SRE principles to improve reliability, performance, and maintainability of security services. Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. Implement automated compliance controls and continuous assurance checks. Lead risk mitigation efforts with technical solutions that scale across diverse user and system profiles. Financial & Vendor Management: Manage security platform budgets and investments with a focus on cost optimization and long-term value. Evaluate and manage third-party vendors and partners, ensuring they meet technical, contractual, and security expectations. Lead procurement and renewal cycles in alignment with operational and architectural strategies. Leadership & Talent Development: Build and mentor a global team of security engineers, fostering a high-performance, collaborative, and forward-thinking culture. Drive internal knowledge sharing and upskilling programs across the team. Collaborate cross-functionally with platform, product, and enterprise architecture teams to embed security early and often. What You'll Bring Required Qualifications: 10+ years of experience in cybersecurity, security engineering, or platform security roles. 5+ years in a senior leadership position with accountability for enterprise-scale security platforms. Deep expertise in data protection technologies, with proven ability to design and scale global solutions. Experience with security engineering in hybrid and cloud-native environments (AWS, Azure, GCP). Proven track record in automating security controls, implementing zero-trust models, and supporting 24x7 security operations. Strong understanding of compliance frameworks and risk management strategies. Demonstrated ability to present complex security topics to executive leadership. Preferred Qualifications: Certifications such as CISSP, CCSP, CISM, AWS/Azure Security Specialty, or equivalent. Experience with tools like Symantec DLP, Zscaler CASB, MS Purview, Palo Alto Prisma, Hashi Vault and other modern security platforms. Familiarity with DevSecOps principles, Infrastructure as Code, and secure software development practices. Who You'll Work With Work Environment & Additional Information: Hybrid or on-site work model. Occasional travel may be required for business, vendor, or team engagement. Ability to operate in a fast-paced, complex environment, balancing long-term strategy with operational agility. Additional info For US locations only In the US, we have a compensation transparency approach. Total compensation for this role includes base salary, annual discretionary performance bonus, retirement contribution, and a market leading benefits package described below. The base salary range for this role in Boston is $181,000.00 - $221,000.00 This is an estimated range, however, specific base salaries within the range depend on various factors such as experience and skill set. It is not common for new BCG employees to be hired at the high-end of the salary range. BCG regularly reviews its ranges to ensure market competitiveness. In addition to your base salary, your total compensation will include a bonus of up to 30% and a generous retirement contribution that starts at 5% and moves to 10% after 2 years. All of our plans provide best in class coverage: Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children Low $10 (USD) copays for trips to the doctor, urgent care visits and prescriptions for generic drugs Dental coverage, including up to $5,000 in orthodontia benefits Vision insurance with coverage for both glasses and contact lenses annually Reimbursement for gym memberships and other fitness activities Fully vested Profit Sharing Retirement Fund contributions made annually, whether you contribute or not, plus the option for employees to make personal contributions to a 401(k) plan Paid Parental Leave and other family benefits such as elective egg freezing, surrogacy, and adoption reimbursement Generous paid time off including 12 holidays per year, an annual office closure between Christmas and New Years, and 15 vacation days per year (earned at 1.25 days per month) Paid sick time on an as needed basis Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws. BCG is an E - Verify Employer. Click here for more information on E-Verify.
Dec 05, 2025
Full time
Locations : Boston London Who We Are Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact. To succeed, organizations must blend digital and human capabilities. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures-and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do The Global Delivery Director - Secure Data is a critical leadership role that enables the secure foundation of BCG's digital operations globally. By driving scalable, automated, and user-focused security engineering-and by embedding security into modern engineering and operational practices-this role ensures BCG can innovate securely while maintaining trust, compliance, and operational excellence. The Global Delivery Director - Secure Data is responsible for leading the design, delivery, and continuous evolution of BCG's data security strategy and controls. This role ensures that BCG's most sensitive data is protected globally through secure-by-design engineering, automation at scale, and resilient security platforms. The Director will drive strategic planning, execution, and operations of scalable, automated, and resilient security solutions that safeguard BCG's global operations and users, while enabling innovation and agility across BCG Core, BCG X, and CT worldwide. This role is accountable for embedding security within DevSecOps practices, applying Site Reliability Engineering (SRE) principles across all security services, and aligning with privacy, compliance, and business leaders to maintain trust and regulatory compliance. Key Responsibilities: Strategic Leadership & Transformation: Define and execute a unified security engineering strategy that addresses data protection across all environments and data lifecycle stages. Lead the design and implementation of scalable, automated solutions that integrate seamlessly into enterprise platforms and user experiences. Establish a global security architecture and engineering roadmap focused on prevention, detection, and rapid response. Drive continuous improvement of security posture while aligning with business needs, regulatory requirements, and user experience expectations. Champion DevSecOps practices to embed security early into development and delivery workflows. Data Security Engineering: Build and operate scalable data protection solutions, including data loss prevention (DLP), secrets management, encryption, and classification. Collaborate with the IAM team to align authentication, authorization, and privileged access policies with data security controls. Deliver security capabilities that support modern work scenarios, remote access, zero-trust networking, and protection of sensitive data in AI/ML workloads. Leverage automation frameworks and IaC to improve scalability and reduce manual intervention. Operational Security, SRE & Assurance: Ensure security platforms are resilient, continuously monitored, and designed for 24x7 support and incident response readiness. Embed security telemetry and observability to enable proactive threat detection and automated response. Apply SRE principles to improve reliability, performance, and maintainability of security services. Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. Implement automated compliance controls and continuous assurance checks. Lead risk mitigation efforts with technical solutions that scale across diverse user and system profiles. Financial & Vendor Management: Manage security platform budgets and investments with a focus on cost optimization and long-term value. Evaluate and manage third-party vendors and partners, ensuring they meet technical, contractual, and security expectations. Lead procurement and renewal cycles in alignment with operational and architectural strategies. Leadership & Talent Development: Build and mentor a global team of security engineers, fostering a high-performance, collaborative, and forward-thinking culture. Drive internal knowledge sharing and upskilling programs across the team. Collaborate cross-functionally with platform, product, and enterprise architecture teams to embed security early and often. What You'll Bring Required Qualifications: 10+ years of experience in cybersecurity, security engineering, or platform security roles. 5+ years in a senior leadership position with accountability for enterprise-scale security platforms. Deep expertise in data protection technologies, with proven ability to design and scale global solutions. Experience with security engineering in hybrid and cloud-native environments (AWS, Azure, GCP). Proven track record in automating security controls, implementing zero-trust models, and supporting 24x7 security operations. Strong understanding of compliance frameworks and risk management strategies. Demonstrated ability to present complex security topics to executive leadership. Preferred Qualifications: Certifications such as CISSP, CCSP, CISM, AWS/Azure Security Specialty, or equivalent. Experience with tools like Symantec DLP, Zscaler CASB, MS Purview, Palo Alto Prisma, Hashi Vault and other modern security platforms. Familiarity with DevSecOps principles, Infrastructure as Code, and secure software development practices. Who You'll Work With Work Environment & Additional Information: Hybrid or on-site work model. Occasional travel may be required for business, vendor, or team engagement. Ability to operate in a fast-paced, complex environment, balancing long-term strategy with operational agility. Additional info For US locations only In the US, we have a compensation transparency approach. Total compensation for this role includes base salary, annual discretionary performance bonus, retirement contribution, and a market leading benefits package described below. The base salary range for this role in Boston is $181,000.00 - $221,000.00 This is an estimated range, however, specific base salaries within the range depend on various factors such as experience and skill set. It is not common for new BCG employees to be hired at the high-end of the salary range. BCG regularly reviews its ranges to ensure market competitiveness. In addition to your base salary, your total compensation will include a bonus of up to 30% and a generous retirement contribution that starts at 5% and moves to 10% after 2 years. All of our plans provide best in class coverage: Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children Low $10 (USD) copays for trips to the doctor, urgent care visits and prescriptions for generic drugs Dental coverage, including up to $5,000 in orthodontia benefits Vision insurance with coverage for both glasses and contact lenses annually Reimbursement for gym memberships and other fitness activities Fully vested Profit Sharing Retirement Fund contributions made annually, whether you contribute or not, plus the option for employees to make personal contributions to a 401(k) plan Paid Parental Leave and other family benefits such as elective egg freezing, surrogacy, and adoption reimbursement Generous paid time off including 12 holidays per year, an annual office closure between Christmas and New Years, and 15 vacation days per year (earned at 1.25 days per month) Paid sick time on an as needed basis Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws. BCG is an E - Verify Employer. Click here for more information on E-Verify.
