26 jobs found

Remote working with occasional travel to office locations including: Manchester London Newcastle Glasgow Duration & Rate 6-month rolling contract Up to 65.00 per hour (Umbrella) Overview We are seeking an experienced Control & Instrumentation (C&I) Engineer with a strong systems engineering background to support major projects across the energy sector. This includes power generation, CCGT, utilities, oil & gas, and process industries. This role is ideal for an engineer who thrives in technically demanding environments and has hands-on experience delivering advanced control system solutions for large-scale energy assets. The successful candidate will bring strong expertise in control system architecture, control philosophy development, and control narrative preparation, alongside experience working with leading Distributed Control Systems (DCS). Key Responsibilities Develop Control Narratives , Control Philosophy documents , and Functional Logic Specifications for energy-sector automation systems Design robust control system network architectures , including Ethernet/IP, Profinet, Modbus, and redundant industrial networks Lead or support system configuration, testing (FAT/SAT), commissioning , and operational optimisation activities Interface with OEMs, EPC contractors , and multidisciplinary engineering teams on system design, upgrades, migrations, and modernisation projects Develop and maintain system backup strategies and cybersecurity policies , ensuring compliance with relevant instrumentation and energy-sector standards Produce high-quality technical documentation , engineering reports, and change management records Required Experience & Skills Proven experience in C&I control systems within power plants, CCGT, utilities, oil & gas, or process industries Experience working with a major EPC contractor on complex FEED or detailed design projects Strong understanding of P&IDs , Cause & Effect diagrams , and industrial control strategies Hands-on knowledge of industrial communication protocols such as Profinet , Modbus TCP/IP , and Ethernet/IP Experience with OPC UA for system integration and data exchange Familiarity with DCS, ESD, and F&G systems Understanding of IEC 62443 cybersecurity principles and their application in critical infrastructure Desirable Experience Experience with leading DCS platforms such as Emerson Ovation , Emerson DeltaV , or Siemens SPPA-T3000 Previous involvement in large-scale infrastructure or energy transition programmes Key Competencies Strong analytical and problem-solving skills Ability to work effectively within multidisciplinary engineering teams Excellent communication and stakeholder management skills High attention to detail and commitment to engineering quality and safety Summary This is an excellent opportunity to contribute to complex, high-value energy projects supporting critical national infrastructure and the ongoing energy transition. The role offers a flexible working arrangement, exposure to leading-edge technologies, and involvement in major engineering programmes across the UK.

Are you passionate about automation and looking to lead cutting-edge projects in a collaborative, multi-disciplinary environment? Our client, 3P Innovation, are a leader in automated machinery for the pharmaceutical, medical device, and FMCG industries, and they are seeking a Senior Controls Systems Engineer. What You ll Do: Lead the design, programming, commissioning, and support of PLC and HMI/SCADA systems across bespoke machinery projects worldwide. Mentor junior engineers and review technical work, while remaining hands-on with coding and system architecture. Work with clients and internal teams to define requirements, assess technical risks, and support sales processes. Develop and maintain technical documentation, including software design specifications, test records, and O&M manuals. Support system validation, FATs, onsite commissioning, and handover to customers. Contribute to continuous improvement of 3P s standard code libraries and processes. Opportunity to work with robotics, vision systems, and other emerging technologies as required. What We re Looking For: 5 years experience designing and coding PLC & HMI/SCADA systems (Beckhoff or Siemens). Strong knowledge of servo motion control and industrial communication protocols (EtherCAT, Profinet, CAN, IP, Serial). Familiarity with IEC(phone number removed), structured text, object-oriented programming, and Git version control. Excellent English communication skills; willing and able to travel internationally (5% of the time). Desirable: Experience in pharmaceutical automation, GAMP5 / 21CFR11 / EU Annex 11 compliance. Knowledge of electrical, mechanical, and pneumatic principles. Exposure to machine vision, robotics, SCADA/MES, .NET, and SQL. Why 3P Innovation? Join a forward-thinking company that values innovation, collaboration, and integrity. Work on exciting projects delivering bespoke automation solutions for global clients. Opportunity for personal growth, technical leadership, and mentoring within a supportive team. If you re a driven, hands-on controls engineer ready to take ownership of complex systems and lead technical excellence, we d love to hear from you.

We are looking for a Managing Security Engineer to lead the design, implementation and documentation of enterprise security monitoring platforms. This is a key technical leadership role, responsible for ensuring the right tooling, controls and processes are in place to help protect and monitor our clients' environments. This opportunity is ideally suited to someone with strong hands-on experience deploying and managing Splunk at enterprise scale. In return, the role offers the chance to broaden your capability and gain deeper experience in Elastic Security, with support to build your expertise further. You will work closely with cross-functional teams to assess risk, design effective security controls and define testing requirements. You will champion security by design, promote engineering excellence and act as a trusted advisor to clients, helping them understand their security challenges and implement practical, effective solutions to strengthen their security posture. This is an excellent opportunity to deepen your hands-on cybersecurity expertise while making a meaningful impact across both client and organisational security. This role is permanent and requires full-time, on-site working in Hemel Hempstead. The successful candidate may also participate in an out-of-hours call-out rota. What you will be doing: Lead the deployment, management and optimisation of Splunk Enterprise and Splunk ES platforms in large, complex environments. Support and develop capability in Elastic Stack / Elastic Security, with training and upskilling provided as needed. Design, implement and maintain data pipelines, including log ingestion, enrichment and schema standardisation. Develop and tune security detection content, translating threat intelligence and TTPs aligned to MITRE ATT&CK into actionable, high-value alerts. Manage the full detection content lifecycle: design, test, deploy, monitor, tune and retire, using version control and rollback processes. Automate workflows and platform configurations using CI/CD, SOAR, scripting and Infrastructure as Code tools such as Terraform and Ansible. Ensure platform performance, stability and resilience through capacity planning, high availability, disaster recovery and proactive monitoring. Provide technical leadership and guidance to internal teams and clients on security monitoring strategy and best practice. What you will bring: Proven experience deploying and managing Splunk at enterprise scale. Strong hands-on knowledge of SIEM engineering, including indexing, parsing, onboarding and performance tuning. Experience designing and optimising detection content, including MITRE ATT&CK-aligned use cases and alert tuning to reduce noise. Good understanding of data pipeline engineering, log enrichment, data quality and large-scale ingestion architectures. Strong knowledge of SPL; experience with KQL and EQL would be beneficial, but is not essential. Experience with automation and Infrastructure-as-Code within security monitoring or SIEM environments. Solid understanding of SIEM platform operations, including clustering, scaling, high availability, disaster recovery and performance optimisation. Strong problem-solving skills and a proactive approach to improving security operations. An interest in developing expertise in Elastic Security, with support and training available as part of the role. If you are interested in this role but not sure if your skills and experience are exactly what we're looking for, please do apply, we'd love to hear from you! Employment Type: Full Time, Permanent Location: Hemel Hempstead Security Clearance Level: DV Cleared Internal Recruiter: Jane Salary: from £DOE Benefits: £5400 Car Allowance, 25 days annual leave with the option to buy additional days, private health care, life assurance, pension, and generous flexible benefits fund Loved reading about this job and want to know more about us? Sopra Steria's Aerospace, Defence and Security business designs, develops and deploys digital solutions to Central Government clients. The work we do makes a real difference to the client's goal of National Security, and we operate in a unique and privileged environment. We are given time for professional development activities, and we coach and mentor our colleagues, sharing knowledge and learning from each other. We foster a culture in which employees feel valued and supported and have pride in their work for the customer, delivering outstanding rates of customer satisfaction in the UK's most complex safety- and security-critical markets.

Principal Electrical Design Engineer - Protection & Control Scotland Region Permanent - Full Time, hybrid Salary Competitive + Car Allowance + Flexible Benefits Summary: This role involves designing and overseeing the implementation of protection schemes, control systems, and related equipment to ensure the safe and reliable operation of power networks, substations, and Transmissions and Distribution electrical infrastructure. Position requires technical expertise and vast experience working in Transmission and Distribution sector for protection & control and Substation Automation system/SCADA design (from 11kV up to 400kV). Candidate should lead the design and specification of protection and control systems for electrical substations, powerplants, and transmission/distribution networks. Roles & Responsibilities: Candidate is responsible to develop protection settings, relay PSL files, coordination studies, including fault detection and isolation strategies. Candidates should have complete knowledge of all TSO/DNO standards & specifications with respect to P&C Design & Calculations, as well as overall Substation Design Works. He/She should ensure compliance with relevant national and international standards (e.g., IEC, BS, IEEE) in protection system design. Candidate should have good knowledge of substation primary design and substation equipment/switchgear specifications. He/She should ensure that the design meets safety standards and regulatory requirements, incorporating protection against electrical hazards, arc flash, and other safety concerns. Design, implement and maintain SCADA/communication systems for a variety of clients in sectors including utilities, oil and gas, manufacturing, industrial automation and various other communication networks. Configure and optimize network infrastructure & communication protocols such as IEC 61850; Distributed Network Protocol (DNP 3); Parallel Redundancy Protocol (PRP); Precision Time Protocol (PTP); Network Time Protocol (NTP); Simplified Network Time Protocol (NTP), Modbus, OPC, Profibus, etc for seamless integration with field devices, including RTUs, PLCs, IEDs, etc, also ensure stable connectivity between SCADA centres & remote sites, and configure secure VPNs & remote access protocols to allow for safe, off-site monitoring and control. Understand client requirements & produce network architecture philosophy diagram, IED telecommunication diagram, SCADA & Telecommunications Panel design, Network IP allocation, I/O Schedules, Cable & Core schedules, etc. Assist with the setup and commissioning of SCADA systems at client sites, troubleshoot field devices and network communication issues, perform preventive and corrective maintenance on SCADA infrastructure and associated hardware. Efficiently design/develop the SCADA/communication systems (e.g., Ignition, Siemens WinCC, GE iFIX, etc) to ensure real-time data acquisition and control for critical infrastructure. Provide remote support for troubleshooting SCADA system and network issues, ensuring minimal downtime and swift resolution of critical incidents. Conduct system upgrades, testing, and validation for new features, components, and patches. Implement cybersecurity measures to safeguard SCADA systems against emerging threats. Collaborate with cross-functional teams to ensure smooth integration and deployment of SCADA systems. Candidate should have experience in tendering, pricing jobs, proposal creation. Candidate should be actively participating in work winning process. Candidate should be capable of technically assessing engineering problems and critically evaluating a range of technical solutions. Unwavering confidence in technically assessing engineering problems and critically evaluating a range of technical solutions will be instrumental in pursuit of engineering excellence. Exemplary communication skills to demonstrate diligence, prioritize tasks effectively, and ensure a thorough understanding of relevant legislation, including CDM and ESQCR. This knowledge will be pivotal in managing Transmission and Distribution network. Collaborate closely with other designers, construction professionals, and engineering teams. Liaise effectively with the Power Systems, Primary and Civil design departments to ensure that all objectives are met and that the best possible design is submitted. Review and provide constructive feedback on the reports and drawings done by Junior & Senior Engineers. Provide technical leadership and mentoring to junior engineers in the design, analysis, and commissioning of protection systems. What we're looking for : Experience: Extensive experience in electrical protection and control system design, Substation Automation and SCADA system typically 12-15 years, with a proven track record of delivering complex projects within the power sector. Technical and Professional knowledge and experience associated with the role. Candidate should have vast experience in crafting Single Line Diagrams, AC & DC Schematic Drawings, Panel General Arrangements, Panel Wiring Diagrams, Switchgear Termination/interconnection drawings, Block Cable Diagrams/Schedules, and performing cable specification/sizing calculations, battery sizing calculations, CT/VT sizing, multicore sizing, Relays CORTEC/specifications. Candidate should have experience in testing & commissioning of P&C, SCADA/Communication/SAS panels. Should be able to Identify potential risks and failures within protection and SCADA systems and propose mitigation strategies. Candidate should have good knowledge & experience working with AutoCAD. Qualifications: Education: Bachelor's degree in electrical engineering (typically 2:1 or above) in Electrical Engineering, Power Systems, or a related field. A master's degree may be preferred for senior roles.Chartered Status (Preferred): Chartered Engineer (CEng) status with a professional body such as the Institution of Engineering and Technology (IET) or the Institution of Electrical Engineers (IEE) is highly desirable.Certifications (Optional): Professional certifications such as NEBOSH for health and safety, or specific training in protection and control system design, may be beneficial.Candidate should have experience working in Substation Automation Syste

As a Senior Security Engineer, you will be involved with the design, documentation and installation and management of security monitoring tools/platforms to provide data to the Sopra Steria Security Operational Centre (SOC) for analysis. Your role will be pivotal in ensuring that we have the correct tooling operating to ensure that we can provide protection and monitoring of our clients. You will collaborate with cross-functional teams to assess risks, design controls, and define testing requirements. Your leadership and expertise will be critical in fostering a strong culture of technology expertise and security by design across Sopra Steria. You will play a lead role in helping our clients understand their security challenges and then specify, plan and implement controls to improve their security posture. This is a superb opportunity to continue developing your hands-on experience in the field of cybersecurity while contributing to the overall security posture of the organisation. What you will be doing: Lead on security activities for large client engagements through creating and maintaining strong stakeholder relationships (customer and internal), developing a solution that align with overall objectives and contractual obligations. Identify and understand customer requirements and demonstrate creativity and innovation in applying solutions for the benefit of the customer. Identify and design solutions that understand customer requirements and apply industry best practice in solutions for the benefit of the customer. Collaborate with other team members to identify potential cyber risks, assess their impact and develop technical mitigation strategies. Working with Security Architecture to inform focused security solution design for SOC/SIEM solutions. Formulate security strategy, creatively applying a wide range of technical and/or management principles. Stay up to date with the latest cybersecurity threats, vulnerabilities, and industry standard methodologies, and provide recommendations for improvements. Lead security aspects of bid responses and opportunity identification. Demonstrate awareness of the latest cybersecurity threats, vulnerabilities and industry standard methodologies. Enable the development and growth of the Cyber Security team through mentoring of junior team members, supporting recruitment activities and encouraging engagement with the Cyber Security Community of Expertise. What you will bring: Successful track record leading teams within Security Engineering coupled with experience of leading large client engagements. Strong client management and relationship building experience. Ability to absorb complex information and communicate effectively at all levels to both technical and non-technical audiences, assess and evaluate risk and understand the implications of new technologies. Good project management skills, with the ability to balance multiple initiatives and priorities simultaneously. SIEM experience with Azure Sentinel and or Splunk. Experience of running simulated or reacting to actual incidents, following procedures and good practice to limit, reduce and remediate. Strong leadership, influencing and people management skills. Excellent analytical and problem-solving skills coupled with ability to assess complex situations, identify risks, and recommend effective solutions. Excellent communication skills, both written and verbal, at all levels from Executives to end users. Demonstrate significant personal responsibility or autonomy, with little need for escalation. It would be great if you had: Cloud, on-prem, SaaS, PaaS, IaaS environments. Security incident response, code / malware analysis. Strong coding skills. If you are interested in this role but not sure if your skills and experience are exactly what we're looking for, please do apply, we'd love to hear from you! Employment Type: Permanent Location: Hertfordshire Security Clearance Level: willingness to go through SC Internal Recruiter: Jane Salary: Up to £75,000 Benefits: 25 days annual leave with the choice to buy extra days,£5,400 car allowance, Medical Insurance, life assurance, and 6% pension Loved reading about this job and want to know more about us? Sopra Steria's Aerospace, Defence and Security business designs, develops and deploys digital solutions to Central Government clients. The work we do makes a real difference to the client's goal of National Security, and we operate in a unique and privileged environment. We are given time for professional development activities, and we coach and mentor our colleagues, sharing knowledge and learning from each other. We foster a culture in which employees feel valued and supported and have pride in their work for the customer, delivering outstanding rates of customer satisfaction in the UK's most complex safety- and security-critical markets.

A specialist engineering and design consultancy is seeking two Control Systems Engineers to join its expanding team. This is an excellent opportunity to become part of a fast-growing organisation with a strong, long-term order book and a reputation for delivering robust, bespoke solutions. The role offers exposure to technically challenging projects within power generation and renewable energy, combining hands-on engineering with structured support and training. The company culture promotes technical integrity, reliability, and continuous improvement. Senior/Lead Controls Engineer £50,000 - £68,000 + Private Medical Care, Annual Bonus, Travel/Offshore Uplifts 37.5 hours a week with Hybrid & Flexible working options Daily free lunch Excellent supported training to advance skills Fast growing business with strong order book North East based role Ref: 25291 As a Senior / Lead Control Systems Engineer, you will take ownership of the full lifecycle delivery of control system projects, from concept through to commissioning, acting as a technical authority and mentor within the team. Senior/Lead Controls Engineer - The Role: Lead the concept, design, and architecture of control and power systems Develop and review PLC software (Siemens / Rockwell) to a high standard Design and validate industrial communication networks Take ownership of technical documentation and compliance Act as technical lead on projects, ensuring quality and delivery Conduct peer reviews and approve engineering outputs Provide direct client engagement, including troubleshooting and solutions Lead or supervise commissioning activities, including offshore work Mentor and support junior engineers Drive continuous improvement in engineering standards and practices Senior/Lead Controls Engineer - The Person: Degree (or equivalent) in engineering Strong, proven experience of PLC programming (Siemens and/or Rockwell) Background in power systems / high-voltage applications advantageous Experience delivering projects end-to-end Confident working independently and making technical decisions Strong communication skills with client-facing experience Experience mentoring or guiding engineers (informal or formal) Highly adaptable with a proactive, problem-solving mindset Willing and able to travel internationally and offshore Located in Tyne & Wear, this role would be commutable from Newcastle upon Tyne, Sunderland, Durham, Gateshead, Jarrow, Hebburn, Washington, Chester-le-Street, Blyth, Cramlington, Seaham North Shields, South Shields, Morpeth, Peterlee and surrounding areas. For further information call Sarah Clarke AE1

Role: Cyber Security Assurance Specialist Salary/Rate: £45-55 per hr inside IR35 Location: Hybrid, near Oxford 3x per week Contract Duration: until December 2026 We are currently looking for a Cyber Security Assurance Specialist for our government client. This Cyber Security Assurance Specialist role is hybrid, based between working 3 days per week on site in Abingdon Oxfordshire and the remainder of the week working remotely. There is no further flexibility with the on-site requirement. The contract for this Cyber Security Assurance Specialist position is until December 2026, with potential to extend, operating inside IR35. Security Clearance: eligible for Security Check ("SC Clearance") This role is inside IR35 - Due to the service of the role, it will now be based on an Umbrella solution. Essential skills/experience required: Demonstrable experience in designing and implementing secure infrastructure or cloud architectures . Proven experience with risk assessment methodologies and maintaining enterprise risk registers . Working knowledge of risk assessment methodologies (e.g. ISO 31000, FAIR, OWASP risk rating). Strong understanding of Gov Assure, CAF, ISO 27001, Cyber Essentials, and NIST frameworks. Experience conducting or supporting security audits and implementing remediation plans. Proficiency in assessing and securing platforms such as Entra ID (Azure AD), Microsoft 365 E5, Azure IaaS/PaaS, Windows/Linux/Unix. Strong knowledge of security tooling such as SIEM, endpoint detection (EDR/XDR), and vulnerability management platforms. Hands-on experience with policy development, access control models and logging standards. Experience supporting assurance activities or government-mandated reviews (e.g. GovAssure, Secure by Design). Knowledge of Incident Management, Vulnerability Assessments, SIEM & SOC Systems. Familiarity with ITSM workflows and change control procedures Experience designing or reviewing secure software supply chain and CI/CD security . Ability to interpret CVEs, CVSS scores, and threat intelligence feeds. Strong stakeholder engagement and communication skills with an ability to produce technical reports and articulate risk to non-specialists. Excellent written and verbal communication skills with the ability to present to senior stakeholders. Role / Responsibilities: Conduct technical risk assessments on IT/OT/cloud systems Provide secure design guidance to digital projects (cloud/infra/app) Maintain and update the security risk register quarterly Evaluate 2 critical technical changes for architectural risk (e.g., network reconfig, app onboarding) Document evidence gathering and remediation planning for Secure-by-design,CAF and GovAssure Conduct internal technical assurance reviews aligned to GovAssure/CAF/ISO27001 domains Maintain traceability of security controls to frameworks (NIST, CE+, NCSC), Evaluate Suppliers against internal and external risk criteria for Assurance. Contribute to the adoption of Zero Trust principles in platform design Provide secure-by-design input into infrastructure/cloud/app initiatives Define security control templates for new deployments (e.g., SaaS, Azure service, OT upgrade) Deliver knowledge sessions to technical teams (secure config, threats, compliance) Develop secure configuration guidance for platforms (e.g. Entra ID, Linux, M365) Represent Cyber Security in architecture/design authorities Produce and maintain technical security reports for assurance cycles Support compliance audit evidence packs (GovAssure/CAF, CE+, ISO 27001) Develop or update security standard documents (e.g. threat modelling, vulnerability mgmt) Support cyber input for IT, research or OT programmes Work with IT teams to co-author and test secure configuration standards and playbooks Support security policy application in hybrid cloud, infra, and app settings Support audit and compliance activities with reporting and evidence gathering If you are interested in the above role, please click Apply Now and send a CV for quick review. Should you require reasonable adjustments at any point during the recruitment process or if there is a better way for us to communicate, please do let us know. Security, Cyber, Infosec, Information Security, GRC, Assurance, Compliance, Risk, Vulnerability Circle Recruitment is acting as an Employment Agency in relation to this vacancy. Earn yourself a referral bonus if you refer somebody else who fills the role! We also offer an iPad if you refer a new client to us and we recruit for them. Follow us on Facebook - Circle Recruitment , Twitter and LinkedIn - Circle Recruitment.

OT Cyber Security Specialist (Contract) Location: Hybrid - 3 days onsite (Oxfordshire), remainder remote Day Rate: £400-£450 per day (Outside IR35) Start Date: ASAP Clearance: SC required Hours: 37.5 per week (typically 9:00am-5:30pm) Overview We are supporting a leading UK organisation within the advanced engineering and research sector, seeking an OT Cyber Security Specialist to play a key role in building and maturing their Operational Technology (OT) security capability. This is a greenfield opportunity to shape and implement OT security strategy, frameworks, and governance across complex industrial environments. Key Responsibilities Lead the design and delivery of the OT Security Strategy, including policies and standards Establish governance processes aligned to enterprise security frameworks Conduct OT risk assessments and gap analyses against recognised standards (e.g. IEC 62443, NIST CSF, CAF) Identify and oversee implementation of security controls across OT environments Provide technical oversight when working with managed service providers and third-party vendors Collaborate with enterprise security teams to align OT and IT security initiatives Support OT incident response, including coordination with SOC teams where applicable Mentor junior team members and contribute to capability development Track and report on OT security maturity and roadmap progress Essential Experience Proven experience developing and maturing OT security within ICS or critical infrastructure environments Strong background in defining and implementing OT security strategies, policies, and standards Deep understanding of OT security frameworks (IEC 62443, NIST CSF, CAF, ISO 27001) Experience conducting OT risk assessments, gap analysis, and remediation planning Knowledge of OT networks, segmentation, and industrial protocols Experience working closely with engineering and operational teams Ability to oversee third-party vendors and managed security services Strong documentation and stakeholder communication skills Desirable Experience Experience in solution architecture Familiarity with SIEM/SOC integration in OT environments Experience with OT asset discovery and monitoring tools Knowledge of regulatory frameworks within critical infrastructure (e.g. NIS) Experience contributing to working groups or acting as a subject matter expert. Please apply with an up to date version of your CV for immediate consideration.

A Council in London is seeking a Contract Senior Cybersecurity Engineer for 6 months. With the strategic deployment of an outsourced Security Operations Center (SOC) that leverages Splunk and CrowdStrike , the Senior Cyber Security Engineer role is a key addition to our team to maximise the timeline and investment. The ideal candidate will be a technical expert in CrowdStrike for endpoint protection and Splunk for security telemetry, capable of turning raw data into actionable intelligence. Key Responsibilities Endpoint Strategy: Lead the deployment, policy configuration, and maintenance of the CrowdStrike Falcon SIEM Mastery: Work with our SOC partner to architect and optimize Splunk dashboards, alerts, and data models to identify sophisticated threats. Incident Response: Serve as a technical escalation point for high-priority security incidents, utilizing EDR and SIEM tools for rapid containment. Automation: Develop "SOAR" workflows (Security Orchestration, Automation, and Response) to reduce manual intervention and improve response times. Threat Hunting: Proactively search for undetected malicious activity using specialized queries. Training . Build up the Crowdstrike, Splunk and Security Analysis skills within the existing team. Required Experience Experience: 5+ years in a dedicated Cyber Security Engineering or SOC Tier 3 role. CrowdStrike Expert: Deep hands-on experience with Falcon Prevent, Insight, and Discover. Certification (CCFA/CCFR) is a major plus. Splunk Power User: Proficiency in writing complex Search Processing Language (SPL) and managing Splunk Enterprise Security (ES). Technical Breadth: Strong understanding of network protocols, cloud security (AWS/Azure), and the MITRE ATT&CK Vulnerability Assessment : 2+ years using VA tools would be a bonus Penetration Testing : Exposure to Penetration Testing and Web Application Testing.

Are you a Detection Engineer ready to take on the fight against modern adversaries? Join a well-established SOC working with high-profile Defence clients, where your expertise genuinely matters. In this hands-on technical role, you'll own the end-to-end design, development and maturity of detection logic across SIEM platforms-engineering effective responses to real-world attacker techniques. You'll operate with a high degree of autonomy, acting as a trusted SME across multiple secure environments within a complex MSSP setting. This is a standout opportunity to advance your career at the sharp end of cyber defence. Location: Hybrid working - 2 days per week in our Farnborough office. Security: You must hold or be eligible for SC Clearance. What you'll be doing: ? Design, build, test and continuously refine advanced SIEM detection logic, including rules, correlations and analytics. Research emerging threats, vulnerabilities and adversary TTPs, mapping them to MITRE ATT&CK to close detection and visibility gaps. Tune and validate detections to minimise false positives and deliver high-fidelity alerts for SOC analysts. Act as a technical authority, providing expert guidance to SOC Analysts, Architects and Engineers to strengthen overall detection capability. Define, implement and maintain technical detection standards across environments. Clearly communicate complex technical risks and detection logic to both technical teams and non-technical stakeholders. What you'll bring: Deep SIEM expertise, building advanced detection logic, automation and complex queries in Splunk (SPL) and Microsoft Sentinel (KQL). A proven track record delivering complex detection engineering projects within enterprise or MSSP environments. Strong analytical skills, with the ability to break down sophisticated attacks into actionable detection patterns. Confidence to own technical delivery end-to-end, driving work through to completion with minimal escalation. Expert knowledge of MITRE ATT&CK, with real-world application in detection engineering. A BSc in Computer Science, IT, or a related discipline. Solid scripting skills in Python, PowerShell, or similar, supporting automation and data manipulation. Experience developing detections in QRadar and/or conducting EDR-focused threat hunting (e.g. CrowdStrike, Microsoft Defender for Endpoint). Broad infrastructure awareness across Cloud (Azure/AWS), on-prem, and SaaS / PaaS / IaaS environments. If you are interested in this role but not sure if your skills and experience are exactly what we're looking for, please do apply, we'd love to hear from you! Employment Type: Full-time, Permanent. Location: Hybrid: 2 days per week in Farnborough. Security Clearance Level: SC Cleared or eligible. Internal Recruiter: Jane. Salary: To £65,000. Benefits: 25 days annual leave with the choice to buy additional days, health cash plan, life assurance and pension. Sopra Steria: Our Aerospace, Defence and Security business designs, develops and deploys digital solutions to Central Government clients. The work we do makes a real difference to the client's goal of National Security, and we operate in a unique and privileged environment. We are given time for professional development activities, and we coach and mentor our colleagues, sharing knowledge and learning from each other. We foster a culture in which employees feel valued and supported and have pride in their work for the customer, delivering outstanding rates of customer satisfaction in the UK's most complex safety- and security-critical markets.

SOC Engineer - SIEM, Exabeam, SOAR, EDR, IDS/IPS, MITRE, Azure, SC-200, SC-100, Our leading global law firm client are currently looking to take on a new SOC Engineer (SIEM, Exabeam, SOAR, EDR, IDS/IPS, MITRE, Azure, SC-200, SC-100) to join their team on a contractual basis. The firm are an extremely modern law firm which offer a healthy hybrid working solution 2-3 days per week in London and offer a great deal of autonomy and technical exposure. This SOC Engineer (SIEM, Exabeam, SOAR, EDR, IDS/IPS, MITRE, Azure, SC-200, SC-100) role, will be responsible for the enhancement of existing SIEM platform and improve performance, coverage and fidelity by conducting regular assessments of the SIEM architecture. To be considered for this SOC Engineer (SIEM, Exabeam, SOAR, EDR, IDS/IPS, MITRE, Azure, SC-200, SC-100)Defender) role, it's ideal you have: 3 + years within a similar role Ideal but not required law firm experience Security qualifications such as CISSP, CISM, CEH, CompTIA Sec+ or others SIEM Engineering & Maturity Enhance and optimise the existing SIEM platform to improve performance, coverage, and fidelity. Conduct regular assessments of SIEM architecture and propose improvements to ingestion pipelines, parsing rules, correlation logic, and storage management. Implement automation and orchestration components (SOAR) to streamline incident response activities. Log Source Onboarding & Integration Identify, prioritise, and onboard new log sources from cloud, on-prem, network, endpoint, identity, and application platforms. Develop and maintain custom parsers, connectors, and ingestion playbooks. Work with internal teams and vendors to ensure high-quality, reliable telemetry and error-free ingestion. Use Case & Detection Content Development Design, implement, test, and tune detection use cases based on attacker techniques (MITRE ATT&CK), threat intelligence, and risk appetite. Build correlation rules, anomaly-based detections, dashboards, and alerting workflows. Regularly review detection efficacy and reduce false positives through tuning and logic refinement. SOC Support & Incident Response Work closely with SOC analysts to validate and refine detection logic. Support incident investigations through SIEM searches, enrichment, and data modelling. Provide technical SME support for complex incidents that require deep SIEM or log knowledge. Documentation & Governance Maintain high-quality documentation covering data models, feed onboarding, use cases, correlation logic, and architecture. Ensure alignment with internal controls, compliance requirements, and industry standards. Education, Skills & Experience Technical Expertise Hands-on experience with leading SIEM platforms (e.g., Exabeam, LogRhythm, ArcSight, Microsoft Sentinel, Splunk, QRadar, Elastic). Strong understanding of log formats (JSON, syslog, XML, CEF, etc.) and ingestion technologies (Syslog, API, Event Hubs, Kafka, Agents). Practical knowledge of detection engineering, threat modelling, and attacker behaviour analysis. Experience building and tuning correlation rules, searches, and dashboards. Familiarity with SOAR platforms and automation workflows. Security Knowledge Strong understanding of networking, Windows/Linux systems, Cloud platforms (Azure/AWS/GCP), identity systems, and endpoint protection technologies (e.g. SentinelOne and Microsoft Defender) Knowledge of MITRE ATT&CK, cyber kill chain, and threat hunting methodologies. Must Have Level 4 or higher qualification in a computing subject, or equivalent experience IT experience including both IT Infrastructure and Information Security roles Relevant professional certifications that validate the fundamental skills required to perform the role, e.g. GIAC (GCIA,GCDA,GMON) Microsoft SC-200/SC-100, CompTIA Secure Infrastructure Specialist (CSIS), SSCP/CISSP etc Strong skill level in scripting technologies, including Python, MS PowerShell and PowerApps Ability to conduct research into Infrastructure issues and products as required Self-starting with strong interpersonal, written, and oral communication skills. Ability to engage colleagues at all levels and project a solid, professional attitude consistently. Nice to have Data Loss Prevention Secure Remote Access solutions Network Security solutions Open Source and Cyber Threat Intelligence Suitable experience working with the market leading technology vendor product suites Experience in software-defined and cloud services such as SaaS, IaaS, PaaS and DaaS Experience in Disaster Recovery Management and Business Continuity Knowledge of applicable data privacy practices and laws

Cyber Security Assurance Specialist SC Cleared We're supporting a leading UK research and technology organisation delivering nationally significant programmes, and they're looking for an SC cleared Cyber Security Assurance Specialist to play a key role in securing a complex, hybrid technology estate. The chosen candidate must have capabilites in risk assessments across IT, Cloud and OT environments with exposure to secure cloud or infrastructure design (Azure/M365).This is 8 month rolling contract, paying £407 PD Inside IR 35 to be based in Culham two to three days per week. Key responsibilities include: Conducting risk assessments across IT, cloud and OT environments Reviewing and advising on security architecture & design patterns Owning and maintaining enterprise risk registers Leading technical assurance reviews aligned to GovAssure / CAF / ISO27001 Supporting audit, compliance, and remediation activities Embedding security controls across platforms (Azure, M365, infrastructure) Working closely with engineering, architecture, and delivery teams Key experience: Strong experience in cyber security assurance / risk / governance roles Proven background in secure cloud or infrastructure design (Azure/M365) Experience with risk frameworks (ISO 31000, NIST, OWASP etc.) Knowledge of GovAssure, CAF, ISO27001, Cyber Essentials Entra ID / Azure / M365 SIEM / EDR / vulnerability management tools Access control models (RBAC/ABAC) Experience supporting audits, assurance reviews, and remediation plans Ability to translate technical risk into clear business language SC cleared, one stage, must be commutable from Cluham.

Job Title: Control Systems Engineer (SCADA Focus) Sector: Defence Location: Southwest London Contract Type: Contract (6 months initial, likely extension) Rate: 400 per day (negotiable depending on experience) Overview We are currently seeking an experienced Control Systems Engineer with a strong SCADA background to join a leading organisation within the Defence sector. This is an exciting opportunity to work on critical systems in a highly secure and technically challenging environment. Key Responsibilities Design, develop, and maintain SCADA systems for defence-related projects Work with Siemens control systems, particularly WinCC OA (ETM) Develop and implement software solutions using C# and/or C++ Support system integration, testing, and commissioning activities Collaborate with multidisciplinary engineering teams to deliver robust solutions Troubleshoot and optimise system performance Required Skills & Experience Proven experience working with WinCC OA (ETM / Siemens) Strong programming skills in C# and/or C++ Experience in control systems engineering within regulated or high-security environments Solid understanding of SCADA architectures and industrial control systems Ability to work independently and as part of a team Desirable Previous experience within the Defence sector Familiarity with secure systems or safety-critical environments Additional Information Candidates may be required to undergo security clearance (SC) Competitive daily rate, dependent on experience Strong likelihood of contract extension beyond the initial 6 months

CYBER SECURITY ASSURANCE SPECIALIST CCL Global are currently recruiting for a Cyber Security Assurance Specialist to support high-profile, security-critical environments. This role will play a key part in strengthening security posture, ensuring compliance, and supporting assurance activities across complex digital and infrastructure systems. Type of Contract: Contract (Inside IR35) Location: Oxfordshire OX14 3DB (Hybrid working available) Key Duties Will Include: Design and implement secure infrastructure and cloud architectures across enterprise environments. Conduct and support risk assessments, maintaining enterprise risk registers and ensuring alignment with industry methodologies. Lead or contribute to security assurance activities, including audits, reviews, and remediation planning. Apply and interpret security frameworks such as ISO 27001, NIST, CAF, Cyber Essentials, and GovAssure. Assess and secure platforms including Entra ID (Azure AD), Microsoft 365 E5, Azure IaaS/PaaS, and Windows/Linux/Unix systems. Utilise security tooling such as SIEM, EDR/XDR, and vulnerability management platforms to monitor and improve security posture. Develop and implement security policies, access control models (RBAC, ABAC), and logging standards. Support incident management, vulnerability assessments, and SOC-related activities. Contribute to secure software supply chain practices, including CI/CD security reviews. Interpret threat intelligence, CVEs, and CVSS scores to inform risk-based decision making. Collaborate with stakeholders across technical and non-technical teams, clearly articulating risks and solutions. Support government or regulatory assurance processes such as Secure by Design and GovAssure. Requirements: Proven experience in cyber security assurance, secure architecture design, or related disciplines. Strong knowledge of risk assessment methodologies (ISO 31000, FAIR, OWASP risk rating). Hands-on experience with enterprise security frameworks including ISO 27001, NIST, CAF, and Cyber Essentials. Experience conducting security audits and implementing remediation strategies. Technical expertise across cloud and enterprise platforms (Azure, M365, operating systems). Familiarity with SIEM, SOC operations, endpoint detection, and vulnerability management tools. Knowledge of ITSM processes, change control, and governance frameworks. Experience with CI/CD security and software supply chain assurance. Understanding of OT/ICS/SCADA environments is highly desirable. Strong analytical, problem-solving, and organisational skills. Excellent communication skills, with the ability to engage senior stakeholders and produce high-quality reports. Degree in Cybersecurity, IT, or a related STEM field (or equivalent experience). Relevant certifications such as CISSP, CISM, CRISC, CCSP, SABSA, SANS GIAC, CCP, or SIRA are desirable. Experience working in regulated, government, or critical infrastructure environments is advantageous.

PRINCIPAL CYBERSECURITY ENGINEER SC Cleared - UK Only - (Sponsorship is unavailable) you must hold SC Clearance.Provide expert advice on the defences against cyber threats, data breaches, and emerging risks. This includes offering guidance on the selection, design, justification, implementation, and operational management of cybersecurity strategies, technologies, and standards. Contribute to the development and refinement of controls and processes to ensure the safety, confidentiality, integrity, availability, and overall security of data stored on systems. You will be responsible for identifying gaps in existing cybersecurity policies and procedures and, in collaboration with security, network, information governance, and technical leads, developing new measures to address these gaps. KEY RESPONSIBILITIES: You will work closely with system and service owners, as well as internal and external stakeholders, to design, implement, and enforce appropriate protective and detective security controls, policies, and procedures. The role includes the administration and operational management of security tooling and SIEM platforms, with responsibility for monitoring, detecting, and responding to cyber threats, intrusions, and unauthorised or suspicious activity. This includes Microsoft Sentinel (data and source tuning, creation and maintenance of workbooks and connectors, and threat intelligence review), Microsoft Defender for Endpoint and Defender for Cloud, and Darktrace, including system and model tuning, email module management, and configuration of autonomous response actions. You will be responsible for incident response activities, including triaging security alerts, investigating incidents, coordinating escalation and remediation, and conducting root cause analysis. You must be able to communicate effectively about security incidents and cyber risks to both technical and non-technical stakeholders. The role works closely with the Security Operations Centre (SOC) partner, supporting the assessment and investigation of alerts and contributing to the development and refinement of incident response plans and playbooks. You will support vulnerability management activities, including vulnerability assessments, annual audits, and penetration testing. This includes preparing and presenting incident, threat, and compliance reporting to stakeholders at all levels, including compiling a monthly SIRO report. Continuous improvement is a core responsibility. You will conduct post-incident reviews, recommend control and process improvements, and contribute to the creation and maintenance of cybersecurity governance documentation. You will also research emerging cyber threats and mitigation strategies and provide reports or presentations to senior stakeholders as required. The role supports cybersecurity training and awareness initiatives, promoting a strong security culture and helping to upskill colleagues in cybersecurity best practices. You will also collaborate with solution architects and project teams to ensure security is embedded into system and application designs, supporting secure architecture and delivery from the outset. Compliance & Framework Alignment: Ensure security operations align with regulatory standards and frameworks such as NIST, ISO 27001, and NCSC CAF. Person SpecificationEssential: Demonstrated experience with Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools, threat intelligence platforms, and vulnerability management. Technical experience securing Microsoft Azure and Amazon Web Services cloud environments as well as on-premise/virtual Microsoft technologies. Strong analytical, communication, and problem-solving skills, including the ability to produce clear technical and non-technical reports. Ability to analyse and interpret security events/logs and perform remediation work to address security issues. Desirable: Recognised cybersecurity certifications (e.g., CompTIA Security+, CEH, GIAC, CISSP). Experience with DarkTrace Qualifications Bachelor's degree in Cybersecurity or Computer Science Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk

Our local authority client based in East London are urgently seeking an experienced .Senior Cyber Security Engineer. 500 a day Umbrella Business Justification With the strategic deployment of an outsourced Security Operations Center (SOC) from NCC Group that leverages Splunk and CrowdStrike, the Senior Cyber Security Engineer role is a key addition to our team to maximise the timeline and investment. With a team member leaving the cyber team and LBH in February, this position is necessary to get the best out of the SOC partnership with NCC Group by providing the senior-level technical expertise to manage, integrate, optimize the capabilities of our outsourced SOC and train the existing team. We will also look for additional technical skill sets in this role such as experience with Vulnerability Assessment, Penetration Testing and Policy/Standards Creation. Position Summary Contract Senior Cybersecurity Engineer. The ideal candidate will be a technical expert in CrowdStrike for endpoint protection and Splunk for security telemetry, capable of turning raw data into actionable intelligence. Key Responsibilities Endpoint Strategy: Lead the deployment, policy configuration, and maintenance of the CrowdStrike Falcon platform. SIEM Mastery: Work with our SOC partner to architect and optimize Splunk dashboards, alerts, and data models to identify sophisticated threats. Incident Response: Serve as a technical escalation point for high-priority security incidents, utilizing EDR and SIEM tools for rapid containment. Automation: Develop "SOAR" workflows (Security Orchestration, Automation, and Response) to reduce manual intervention and improve response times. Threat Hunting: Proactively search for undetected malicious activity using specialized queries. Training. Build up the Crowdstrike, Splunk and Security Analysis skills within the existing team. Required Experience Experience: 5+ years in a dedicated Cyber Security Engineering or SOC Tier 3 role. CrowdStrike Expert: Deep hands-on experience with Falcon Prevent, Insight, and Discover. Certification (CCFA/CCFR) is a major plus. Splunk Power User: Proficiency in writing complex Search Processing Language (SPL) and managing Splunk Enterprise Security (ES). Technical Breadth: Strong understanding of network protocols, cloud security (AWS/Azure), and the MITRE ATT&CK framework. Vulnerability Assessment: 2+ years using VA tools would be a bonus Penetration Testing: Exposure to Penetration Testing and Web Application Testing. Desired Qualifications Cyber Security Foundational: Such as CompTIA Security+, Network+, CySA+, GSEC Advanced : Such as CISSP, GCIH, GCIA ,CCSP Crowdstrike. Ideally 2 or more out of the following 3 CCFA (CrowdStrike Certified Falcon Administrator): CCFR (CrowdStrike Certified Falcon Responder): CCSE (CrowdStrike Certified SIEM Engineer): Splunk Splunk Certified Cybersecurity Defense Engineer (Mandatory) Please apply with your updated CV ensuring that any gaps in employment are explained. At this point, may we take this opportunity to thank you for the interest you have shown in this role. Unfortunately, due to the high volume of applications that we receive, it is not always possible to respond to everyone. Therefore, unless you hear from us within the next 7 days, your application for this vacancy will have been unsuccessful.

Cyber Security Analyst Application Deadline: 29 April 2026 Department: IT Services Employment Type: Permanent - Full Time Location: Newquay, Cornwall, UK Description This role is broadly responsible for key functions and activities supporting and improving the day-to day security posture of the King's College London IT environment, based out of the King's Service Centre (KSC) in Cornwall. The role will support the Cyber Security team and wider service more generally, with a specific focus toward security investigations, forensics and vulnerability management, with other daily activities as laid out in the following descriptions. Some travel may be required for meetings and training (predominately between KSC and university campuses in London). Accountabilities & Responsibilities You will be responsible for: Queue Management - day to day management of the security incident/service request queue in alignment with SLA. Security Incident Response & Digital Investigations - Providing timely analyst services to aid the technical investigation of security incidents. Establishing root causes, patterns and solutions for re securing systems and networks. Threat Hunting & Protective Monitoring - Assisting with investigating alerts generated by security systems and raising incidents based on indicators of compromise. Vulnerability Assessment & Management - assist with and follow KSC vulnerability management processes. Regularly reporting upon and formally identifying key vulnerabilities, advising colleagues as necessary on remediation activities. Keeping proactively up to date with current & emerging threats and exploits which may impact on the KCL environment. Continuous Technical Improvement - assisting with ongoing development of King's technical protection investments including but not limited IPS/IDS, firewalls and end user protections. Availability to cover security on call as required. Undertake such other duties within the scope of the post as may, from time to time, be assigned by the Cyber Security Operations or Cyber Security Development manager to ensure the Confidentiality, Integrity, Availability and more general effective operational running of the KCL environment. Key Skills & Experience Required (E) - Essential (D) - Desirable SFIA Responsibility Level 1 / 2 IISP Level 1 - 2: E2 - Secure Operations and Service Delivery E3 - Vulnerability Assessment F2 - Investigation 1 year+ real world technical security experience within a professional IT environment. (E) Knowledge of security related technologies such as firewalls, proxy servers, IPS/IDS, SIEM, endpoint protections. (E) Proactive interest in industry developments and cybersecurity solutions. (E) Excellent general IT skills and knowledge including contemporary Microsoft solutions, networking and/or applications. (E) Awareness of recognised security standards and architectural patterns e.g. SANS, CIS, NIST, NCSC and/or PCI-DSS. (D) ITIL awareness is essential, foundation or higher certification highly desirable. (D) Experience of investigation and remediation of security incidents. (D) Holds or is actively working towards a recognised security certification i.e. SSCP, CompTIA S+(D) Employee Benefits Hybrid Working - Minimum of 5 days per month in the office 10% Performance related bonus 30 Days holiday and maximum of 8 public holidays (pro ratio) Sick pay 4 Discretionary Christmas Closure Days Contributory pension scheme Life Assurance cover Service time - 3 Volunteer days per year Free onsite parking & Bike racks Annual leave purchase scheme - up to a maximum of 10 days (subject to national minimum wage requirements) Student Discount (access to Totum, Unidays & Student Beans) CycleScheme TechScheme Opportunities for formal training and professional certification Free access to Linkedin Learning Free access to Future Learn short courses Potential for internal promotion and advancement Equality, diversity & inclusion We are an inclusive and welcoming employer that encourages a wide range of applicants. We embrace diversity and want everyone to be able to bring their whole selves to work and succeed. This is in line with King's College London (KCL).

Security Engineer £70 000 - £75 00 3-Days on site: London A globally sports and entertainment organisation is expanding its in-house technology and production capabilities. They are seeking an experienced Security Engineer to play a key role in designing, implementing, and managing enterprise security controls across network, endpoint, and cloud environments. This is a hands-on technical position focused on strengthening security posture, reducing risk, and supporting highly available production systems. The Opportunity You will join a collaborative infrastructure team responsible for safeguarding critical systems in a fast-paced operational environment. The role spans network security, cloud security monitoring, incident response, and security architecture, with opportunities to influence security strategy and work closely with senior stakeholders and external security partners. This is an excellent opportunity for someone who enjoys combining technical depth, operational security, and real-world incident response in a high-visibility environment. Key Responsibilities Manage and maintain network security infrastructure, including next-generation firewalls, VPNs, and intrusion prevention systems Design and implement network segmentation strategies to protect critical systems and reduce attack surfaces Act as the technical liaison with external security partners and managed security providers Deploy and manage endpoint protection solutions across desktops, servers, and laptops Configure and monitor SIEM platforms to detect and respond to security threats - ideally Azure Sentinel exposure Administer secure remote access and web security technologies Conduct vulnerability assessments and coordinate remediation and patching activities Participate in incident response, investigation, and recovery from security incidents Provide advanced technical support for critical infrastructure and security incidents Palo Alto firewalls experience - Next Generation Collaborate with infrastructure and operations teams to improve resilience and knowledge sharing Skills & Experience Proven experience in an IT security or infrastructure security role Hands-on experience with enterprise firewall technologies and network segmentation Strong experience with endpoint security platforms Familiarity with SIEM technologies and security monitoring Knowledge of cloud security principles and secure access technologies Understanding of common attack vectors and enterprise security best practices Strong analytical and problem-solving skills Ability to manage multiple priorities in operational environments Excellent communication and collaboration skills Please apply directly or reach out on ,