Please Note: The deadline for applying is 23.59 the day before the job posting end date. Job Title: Cyber Resilience & Metrics Manager Location: Kingston/Port Sunlight Office Work-Level: 2B Unilever is one of the world's leading consumer goods companies with operations in over 190 countries and serving 3.4 billion consumers every day. Unilever delivers best in class performance with market making, unmissably superior brands which include Dove, Knorr, Domestos, Hellmann's, Marmite and Lynx. Our strategy beings with a purpose that places our consumers at the heart of everything we do, "Brighten everyday life for all". JOB PURPOSE This role will support the Cyber Resilience Assurance Lead Manager in measuring Unilever's Cyber resilience posture and provide assurance on our preparedness to minimize the impact of any disruptive cyber event. The role entails working with key stakeholders in partnership with our Security Engagement team to ensure that control measures including business continuity and disaster recovery processes and plans are in place to address key cyber risk scenarios to enable digital resilience and are effectively implemented across our global organization. Role Summary: The candidate will assist the Cyber Resilience Assurance Lead Manager in enabling and overseeing various cyber resilience activities including scenario planning, business continuity planning, disaster recovery and testing recovery of operations across Unilever. They will also be responsible for working in partnership with our Security Engagement Team, Platform teams and other stakeholders to ensure cyber resilience measures are effectively implemented across the company. This role is responsible for implementing a risk-based approach to ensure that Disaster Recovery and Business Continuity Plans are cyber resilient in the face of identified cyber risk scenarios. Additionally, the role oversees the effective application of Cyber Resilient BCP (Business Continuity Plan) and DR (Disaster Recovery) standards, training, scenario simulations and best practices by our Security Engagement team and other stakeholders across different business groups/markets. This role also crucial to Unilever's overall cyber risk management efforts, as it enables "holding up a mirror" to the organization to drive the right focus on cyber risks and instilling confidence that adequate countermeasures are in place through assurance measurements and reporting in line with Unilever's cyber standards and the NIST Cyber Security Framework (version 2.0). RESPONSIBILITIES Business Continuity Assurance (Cyber Risks Scenarios): Collaborate with Security Engagement team to assess and enhance business continuity plans related to cyber risks. Conduct assurance activities specific to cyber threats and identify vulnerabilities. Recommend cyber resilience strategies for critical business processes Cyber Crisis Readiness Assurance: Conduct regular assessments of cyber crisis readiness, identifying gaps and recommending improvements. Monitor emerging threats and assess their potential impact on crisis response capabilities IT Service Continuity/Disaster Recovery Assurance: Evaluate IT service continuity and disaster recovery plans. Test and validate recovery procedures for critical systems and applications. Collaborate with IT teams to address gaps and improve recovery capabilities. Metrics and Reporting (Including Cloud Resilience): Create and maintain cyber assurance and resilience metrics in line with NIST CSF v2.0 to provide our business with confidence that our countermeasures are adequate and inline with our risk appetite Collaborate with Unilever's Cyber Security Analytics (CSA) team for alignment on reporting requirements on posture measurements. Assist in producing executive-level reports on over overall assurance posture and calls to action on emerging cyber risk areas ALL ABOUT YOU Skills: Excellent written and verbal communication skills and able to be understood by both technical and non-technical personnel Ability to work with multiple senior stakeholders, across the globe, to design programs that meet the requirements of the organization & strengthens the resilience posture and are aligned to business needs. Ability to manage conflicting priorities, diverse stakeholders to influence the right priorities, collaboratively Any Industry accepted Cyber Security/Business Continuity certification is desirable such as CBCP, ITSC, ISO22301 etc. alongside cyber security certifications like CISM, CISSP etc. Should have sound knowledge, Subject Matter expertise of IT Disaster Recovery Program and Cyber related Business Continuity Planning, Cyber GRC. Excellent analytical, problem solving and presentation skills Experience: Managerial experience in Cyber Security, with a proven track record in cyber risk / compliance management and resilience. At least 12 to 14 years of work experience in Technology, with global organizations At least 5 years of work experience in a senior role in Cyber Security, Information Security, Business Continuity Management/Disaster Recovery and Crisis Management Lead Role or Direct Support to Senior Management Good strategic and operational business awareness, customer concerns, with a deep understanding of the key drivers, levers, issues, and constraints of digital businesses. Understanding of global best practices / standards (e.g., NIST, CIS, ISO), Information Security standards and controls, and business continuity and disaster recovery. Experience with cloud platforms (Azure, Google Cloud) and their resilience features. NOTES Please apply via this portal as e-mail applications may not be processed and include your Future Fit Plan if possible. By applying for this vacancy, you are confirming that you have made your Line Manager aware of your application and that you are at a point in your career with Unilever where it is appropriate for you to be applying for other positions. Should you require additional information or reasonable adjustments to allow you to present your best self during this process, please contact your Talent Partner Anisha Kanani on Anisha.Kanani What we offer Whilst the role is advertised on a full-time basis, we would be happy to discuss possible flexible working options and what this may look like for you. We strive to achieve a family-friendly and inclusive workplace and to, above all, create possibilities for all. Diversity at Unilever is about inclusion, embracing differences, creating possibilities and growing together for better business performance. We embrace diversity in our workforce. This means giving full and fair consideration to all applicants and continuing development of all employees regardless of age, disability, gender reassignment, race, religion or belief, sex, sexual orientation, marriage and civil partnership, and pregnancy and maternity.We are also more than happy to provide reasonable adjustments during our application and interview process to enable you to be present your best self. To find out more, including about our Employee Resource Groups, please click here Equity, Diversity & Inclusion () . Relocation to the UK Please be aware if you are applying for this role from outside the UK, if successful, your application will be treated as a self-initiated Change Location Outside of Country (CLOC) transfer. This means any relocation costs must be self-funded with the potential to reclaim some specific pre-approved expenses up to £5,000. Please speak to your Talent Partner if you have any questions.
Jul 04, 2025
Full time
Please Note: The deadline for applying is 23.59 the day before the job posting end date. Job Title: Cyber Resilience & Metrics Manager Location: Kingston/Port Sunlight Office Work-Level: 2B Unilever is one of the world's leading consumer goods companies with operations in over 190 countries and serving 3.4 billion consumers every day. Unilever delivers best in class performance with market making, unmissably superior brands which include Dove, Knorr, Domestos, Hellmann's, Marmite and Lynx. Our strategy beings with a purpose that places our consumers at the heart of everything we do, "Brighten everyday life for all". JOB PURPOSE This role will support the Cyber Resilience Assurance Lead Manager in measuring Unilever's Cyber resilience posture and provide assurance on our preparedness to minimize the impact of any disruptive cyber event. The role entails working with key stakeholders in partnership with our Security Engagement team to ensure that control measures including business continuity and disaster recovery processes and plans are in place to address key cyber risk scenarios to enable digital resilience and are effectively implemented across our global organization. Role Summary: The candidate will assist the Cyber Resilience Assurance Lead Manager in enabling and overseeing various cyber resilience activities including scenario planning, business continuity planning, disaster recovery and testing recovery of operations across Unilever. They will also be responsible for working in partnership with our Security Engagement Team, Platform teams and other stakeholders to ensure cyber resilience measures are effectively implemented across the company. This role is responsible for implementing a risk-based approach to ensure that Disaster Recovery and Business Continuity Plans are cyber resilient in the face of identified cyber risk scenarios. Additionally, the role oversees the effective application of Cyber Resilient BCP (Business Continuity Plan) and DR (Disaster Recovery) standards, training, scenario simulations and best practices by our Security Engagement team and other stakeholders across different business groups/markets. This role also crucial to Unilever's overall cyber risk management efforts, as it enables "holding up a mirror" to the organization to drive the right focus on cyber risks and instilling confidence that adequate countermeasures are in place through assurance measurements and reporting in line with Unilever's cyber standards and the NIST Cyber Security Framework (version 2.0). RESPONSIBILITIES Business Continuity Assurance (Cyber Risks Scenarios): Collaborate with Security Engagement team to assess and enhance business continuity plans related to cyber risks. Conduct assurance activities specific to cyber threats and identify vulnerabilities. Recommend cyber resilience strategies for critical business processes Cyber Crisis Readiness Assurance: Conduct regular assessments of cyber crisis readiness, identifying gaps and recommending improvements. Monitor emerging threats and assess their potential impact on crisis response capabilities IT Service Continuity/Disaster Recovery Assurance: Evaluate IT service continuity and disaster recovery plans. Test and validate recovery procedures for critical systems and applications. Collaborate with IT teams to address gaps and improve recovery capabilities. Metrics and Reporting (Including Cloud Resilience): Create and maintain cyber assurance and resilience metrics in line with NIST CSF v2.0 to provide our business with confidence that our countermeasures are adequate and inline with our risk appetite Collaborate with Unilever's Cyber Security Analytics (CSA) team for alignment on reporting requirements on posture measurements. Assist in producing executive-level reports on over overall assurance posture and calls to action on emerging cyber risk areas ALL ABOUT YOU Skills: Excellent written and verbal communication skills and able to be understood by both technical and non-technical personnel Ability to work with multiple senior stakeholders, across the globe, to design programs that meet the requirements of the organization & strengthens the resilience posture and are aligned to business needs. Ability to manage conflicting priorities, diverse stakeholders to influence the right priorities, collaboratively Any Industry accepted Cyber Security/Business Continuity certification is desirable such as CBCP, ITSC, ISO22301 etc. alongside cyber security certifications like CISM, CISSP etc. Should have sound knowledge, Subject Matter expertise of IT Disaster Recovery Program and Cyber related Business Continuity Planning, Cyber GRC. Excellent analytical, problem solving and presentation skills Experience: Managerial experience in Cyber Security, with a proven track record in cyber risk / compliance management and resilience. At least 12 to 14 years of work experience in Technology, with global organizations At least 5 years of work experience in a senior role in Cyber Security, Information Security, Business Continuity Management/Disaster Recovery and Crisis Management Lead Role or Direct Support to Senior Management Good strategic and operational business awareness, customer concerns, with a deep understanding of the key drivers, levers, issues, and constraints of digital businesses. Understanding of global best practices / standards (e.g., NIST, CIS, ISO), Information Security standards and controls, and business continuity and disaster recovery. Experience with cloud platforms (Azure, Google Cloud) and their resilience features. NOTES Please apply via this portal as e-mail applications may not be processed and include your Future Fit Plan if possible. By applying for this vacancy, you are confirming that you have made your Line Manager aware of your application and that you are at a point in your career with Unilever where it is appropriate for you to be applying for other positions. Should you require additional information or reasonable adjustments to allow you to present your best self during this process, please contact your Talent Partner Anisha Kanani on Anisha.Kanani What we offer Whilst the role is advertised on a full-time basis, we would be happy to discuss possible flexible working options and what this may look like for you. We strive to achieve a family-friendly and inclusive workplace and to, above all, create possibilities for all. Diversity at Unilever is about inclusion, embracing differences, creating possibilities and growing together for better business performance. We embrace diversity in our workforce. This means giving full and fair consideration to all applicants and continuing development of all employees regardless of age, disability, gender reassignment, race, religion or belief, sex, sexual orientation, marriage and civil partnership, and pregnancy and maternity.We are also more than happy to provide reasonable adjustments during our application and interview process to enable you to be present your best self. To find out more, including about our Employee Resource Groups, please click here Equity, Diversity & Inclusion () . Relocation to the UK Please be aware if you are applying for this role from outside the UK, if successful, your application will be treated as a self-initiated Change Location Outside of Country (CLOC) transfer. This means any relocation costs must be self-funded with the potential to reclaim some specific pre-approved expenses up to £5,000. Please speak to your Talent Partner if you have any questions.
Data and Security Compliance Manager - Fixed Term Location: Bristol HR Director, Victoria James • 03 February 2025 We are looking for an experienced Data and Security Compliance Manager to lead and maintain our compliance with ISO 9001, IS0 14001, ISO 27001, Cyber Essentials Plus, MOD-level SAQs, FSQS and GDPR regulations. The role is crucial in ensuring our agency adheres to best practices and legislation in data protection, information security, quality management, environmental compliance and industry-specific security standards. The ideal candidate will have experience in compliance management, risk assessment, audits, security frameworks and policy implementation. They will need to work across teams such as IT, Operations, Finance, Delivery and Engineering to ensure robust governance, risk management and compliance strategies are in place, supporting both operational efficiency and regulatory requirements. Key responsibilities Compliance and certification management Ensure we have the processes and infrastructure in place to maintain and oversee compliance with: ISO 9001, 14001 and 27001 Cyber Essentials Plus certification MOD-level SAQs FSQS (Financial Services Qualification System) GDPR and UK Data Protection Law PCI-DSS compliance New requirements as applicable Manage our internal and external audits, certifications and compliance renewals Ensure continuous monitoring and improvement of compliance frameworks Review client and supplier contracts/master service agreements and Statements of Work from a compliance perspective and act as the conduit between contracts and project teams to ensure we are meeting our commitments Supplier/vendor management including vendor specific assessments and flow down policy control and compliance Information security and Cyber Essentials Plus Oversee Cyber Essentials Plus compliance ensuring security controls are in place Work closely with the IT team to assess vulnerabilities, manage risk and implement cyber security policies Work with the Head of IT to manage incident response planning and ensure security incidents are managed in line with best practices Data protection and GDPR compliance Working closely with our DPO to ensure adherence to GDPR, UK Data Protection Act and other relevant privacy regulations Create and maintain any Records of Processing Activities (RoPA) and conduct Data Protection Impact Assessments (DPIAs) Implement processes around Data Subject Access Requests (DSARs) and breach management Ensure compliance with any client and third-party data processing agreements (DPAs) and data retention rules Risk management and policy development Review, update, maintain and enforce policies and procedures related to: Information security Data protection Environmental sustainability Business continuity Incident response Supplier security assessment Maintain a risk register identifying compliance risks and implementing mitigation strategies Conduct internal security audits and ensure corrective actions are taken FSQS and MOD compliance , JOSCAR, SOC and standard DevSecOps requirements Manage FSQS accreditation, ensuring all necessary documentation is up to date Support MOD SAQ (Supplier Assurance Questionnaire) compliance, working with internal teams to meet security requirements such as MOD Security Policy JSP440 Ensure adherence to government and financial sector security regulations across the agency Internal training Delivery compliance training to staff on GDPR, security awareness and best practices and ISO requirements Ensure teams are aware of best practices in cyber security, data protection and quality management Foster a culture of compliance and continuous improvement across the business Skills and experience Experience managing compliance frameworks include ISO 9001, 14001, 27001, Cyber Essentials Plus, GDPR, and PCI-DSS compliance Strong understanding of information security, cyber security frameworks and risk management Experience with internal and external audits, certification renewals and policy development Proven knowledge of data protection laws Ability to develop and deliver compliance training Excellent project management and stakeholder engagement skills Knowledge of cloud security frameworks (AWS, Azure, SaaS security) Experience in business continuity and disaster recovery planning Understanding of government and other regulatory body security frameworks (MOD, FSQS, NSCS) Apply Please complete all fields unless stated as optional. First Name Last Name Email Phone Resume/CV LinkedIn Profile Website GDPR compliance When you apply to a job on this site, the personal data contained in your application will be collected by Great State ("Controller"), which is located at 1 Victoria Street, Bristol BS1 6AA and can be contacted by emailing . Great State's data protection officer is Evalian, who can be contacted at . Your personal data will be processed for the purposes of managing Great State's recruitment related activities, which include setting up and conducting interviews and tests for applicants, evaluating and assessing the results thereto, and as is otherwise needed in the recruitment and hiring processes. Such processing is legally permissible under Art. 6(1)(f) of Regulation (EU) 2016/679 (General Data Protection Regulation) as necessary for the purposes of the legitimate interests pursued by the Controller, which are the solicitation, evaluation, and selection of applicants for employment. Your personal data will be shared with Greenhouse Software, Inc., a cloud services provider located in the United States of America and engaged by Great State to help manage its recruitment and hiring process on Great State's behalf. Accordingly, if you are located outside of the United States, your personal data will be transferred to the United States once you submit it through this site. Because the European Union Commission has determined that United States data privacy laws do not ensure an adequate level of protection for personal data collected from EU data subjects, the transfer will be subject to appropriate additional safeguards under the EU-US Privacy Shield. You can obtain details of Greenhouse's Privacy Shield certification by contacting us at . Your personal data will be retained by Great State as long as Great State determines it is necessary to evaluate your application for employment. Under the GDPR, you have the right to request access to your personal data, to request that your personal data be rectified or erased, and to request that processing of your personal data be restricted. You also have to right to data portability. In addition, you may lodge a complaint with an EU supervisory authority.
Jun 28, 2025
Full time
Data and Security Compliance Manager - Fixed Term Location: Bristol HR Director, Victoria James • 03 February 2025 We are looking for an experienced Data and Security Compliance Manager to lead and maintain our compliance with ISO 9001, IS0 14001, ISO 27001, Cyber Essentials Plus, MOD-level SAQs, FSQS and GDPR regulations. The role is crucial in ensuring our agency adheres to best practices and legislation in data protection, information security, quality management, environmental compliance and industry-specific security standards. The ideal candidate will have experience in compliance management, risk assessment, audits, security frameworks and policy implementation. They will need to work across teams such as IT, Operations, Finance, Delivery and Engineering to ensure robust governance, risk management and compliance strategies are in place, supporting both operational efficiency and regulatory requirements. Key responsibilities Compliance and certification management Ensure we have the processes and infrastructure in place to maintain and oversee compliance with: ISO 9001, 14001 and 27001 Cyber Essentials Plus certification MOD-level SAQs FSQS (Financial Services Qualification System) GDPR and UK Data Protection Law PCI-DSS compliance New requirements as applicable Manage our internal and external audits, certifications and compliance renewals Ensure continuous monitoring and improvement of compliance frameworks Review client and supplier contracts/master service agreements and Statements of Work from a compliance perspective and act as the conduit between contracts and project teams to ensure we are meeting our commitments Supplier/vendor management including vendor specific assessments and flow down policy control and compliance Information security and Cyber Essentials Plus Oversee Cyber Essentials Plus compliance ensuring security controls are in place Work closely with the IT team to assess vulnerabilities, manage risk and implement cyber security policies Work with the Head of IT to manage incident response planning and ensure security incidents are managed in line with best practices Data protection and GDPR compliance Working closely with our DPO to ensure adherence to GDPR, UK Data Protection Act and other relevant privacy regulations Create and maintain any Records of Processing Activities (RoPA) and conduct Data Protection Impact Assessments (DPIAs) Implement processes around Data Subject Access Requests (DSARs) and breach management Ensure compliance with any client and third-party data processing agreements (DPAs) and data retention rules Risk management and policy development Review, update, maintain and enforce policies and procedures related to: Information security Data protection Environmental sustainability Business continuity Incident response Supplier security assessment Maintain a risk register identifying compliance risks and implementing mitigation strategies Conduct internal security audits and ensure corrective actions are taken FSQS and MOD compliance , JOSCAR, SOC and standard DevSecOps requirements Manage FSQS accreditation, ensuring all necessary documentation is up to date Support MOD SAQ (Supplier Assurance Questionnaire) compliance, working with internal teams to meet security requirements such as MOD Security Policy JSP440 Ensure adherence to government and financial sector security regulations across the agency Internal training Delivery compliance training to staff on GDPR, security awareness and best practices and ISO requirements Ensure teams are aware of best practices in cyber security, data protection and quality management Foster a culture of compliance and continuous improvement across the business Skills and experience Experience managing compliance frameworks include ISO 9001, 14001, 27001, Cyber Essentials Plus, GDPR, and PCI-DSS compliance Strong understanding of information security, cyber security frameworks and risk management Experience with internal and external audits, certification renewals and policy development Proven knowledge of data protection laws Ability to develop and deliver compliance training Excellent project management and stakeholder engagement skills Knowledge of cloud security frameworks (AWS, Azure, SaaS security) Experience in business continuity and disaster recovery planning Understanding of government and other regulatory body security frameworks (MOD, FSQS, NSCS) Apply Please complete all fields unless stated as optional. First Name Last Name Email Phone Resume/CV LinkedIn Profile Website GDPR compliance When you apply to a job on this site, the personal data contained in your application will be collected by Great State ("Controller"), which is located at 1 Victoria Street, Bristol BS1 6AA and can be contacted by emailing . Great State's data protection officer is Evalian, who can be contacted at . Your personal data will be processed for the purposes of managing Great State's recruitment related activities, which include setting up and conducting interviews and tests for applicants, evaluating and assessing the results thereto, and as is otherwise needed in the recruitment and hiring processes. Such processing is legally permissible under Art. 6(1)(f) of Regulation (EU) 2016/679 (General Data Protection Regulation) as necessary for the purposes of the legitimate interests pursued by the Controller, which are the solicitation, evaluation, and selection of applicants for employment. Your personal data will be shared with Greenhouse Software, Inc., a cloud services provider located in the United States of America and engaged by Great State to help manage its recruitment and hiring process on Great State's behalf. Accordingly, if you are located outside of the United States, your personal data will be transferred to the United States once you submit it through this site. Because the European Union Commission has determined that United States data privacy laws do not ensure an adequate level of protection for personal data collected from EU data subjects, the transfer will be subject to appropriate additional safeguards under the EU-US Privacy Shield. You can obtain details of Greenhouse's Privacy Shield certification by contacting us at . Your personal data will be retained by Great State as long as Great State determines it is necessary to evaluate your application for employment. Under the GDPR, you have the right to request access to your personal data, to request that your personal data be rectified or erased, and to request that processing of your personal data be restricted. You also have to right to data portability. In addition, you may lodge a complaint with an EU supervisory authority.
Transition SME Project Manager Everything we do is built on a commitment to do the right thing for our customers, our people and our community. Our mission and our values guide the way we do business. The foundation of our Leidos culture is our Values, Beliefs and Expectations by which we select, recognise and reward employees. They create the environment that drives us toward our mission. Inspired to make a difference, we are committed to solving the world's toughest problems. Passionate about customer success by being determined to understand and respond to our customers' needs as if they were our own. United as a team, we are bound together by our conviction that ethics and integrity is core to how we operate. Leidos UK is seeking a Transition Project Manager to join the MPS C&C programme and play a key role in supporting the delivery of a government critical system. You will be part of a programme that is delivering a key critical national infrastructure command and control system and supporting the development and transition to live. This role is predominantly working from home, but there are some responsibilities on site with Leidos and the customer. There will be an expectation for abnormal shifts during the transition period due to the nature of the customer needs. Your Role and Responsibilities: Supporting the Engineering, Testing and technical team in the Implementation of engineering governance for all execution activities, in line with Leidos' Engineering Edge Next Generation (EENG) process library. Identification and management engineering risks and issues and highlighting potential business impacts Supporting the creation of the programme's Transition Documentation Leading the creation of transition run books and work instructions required to plan, at detail, the cutover activities during the transition events to feed into the customers overall business transition planning. Planning for, in detail, and where appropriate, implementing appropriate fall-back/fix-forward steps in the event of unrecoverable failure/incident during the transition events and early life support. Oversight of all transition-related testing activities and leading on the Leidos transition testing activities. Supporting the management of requirements compliance (production of Verification Cross Reference Matrix) against all transition-related requirements Working with the wider Leidos Company, programme transition, engineering, design, Testing and customer teams, Prepare for Transition Support definition and creation of transition strategy, scope and actions internally and with the customer Define and document installation plans and procedures Identify and define any facility or site changes necessary to install or operate the system Identify business pain points, needs, strengths and opportunities to support a successful transition Perform Transition Activities Support the preparation of the operational sites for Transition Engage with the business to ensure they are aligned with the requirements and dependencies needed for success Ensure all documented information required to accompany products and services are present at delivery Support the Dry run, Continuity and customer activities required to achieve a Go for Transition Demonstrate the system is ready for go-live and present to the customer readiness of the product. Be an SME for the customer and wider Leidos teams for the transition phase of the delivery Manage Results of Transition Document operational incidents and problems occurring during the transition, and track their resolution Document transition procedures, results and anomalies Document and track nonconformities and corrective actions associated with the implementation Maintain bi-directional traceability between the transition system, requirements, architecture and design Support Delivery during the pre-Transition period to support the build an ICF function Support the design team in the functional capabilities of the product, upskilling and liaising with the business to ensure that it is fit for purpose Help develop the transitional mode of operation, workaround, methodologies and processes to support the business during the transition period Engage closely with the customer to deliver an intelligent client function including: Requirements Service catalogue Service management End user experience Become a product expert, seamlessly translating between the customer and the teams the needs and capabilities of the product. Skills Required: Operational Insight & Situational Awareness Proven ability to operate in high-pressure, real-time environments with critical decision-making responsibilities - ideal for overseeing and adapting transition plans during go-live events. Strong Stakeholder Engagement Demonstrated experience engaging with diverse stakeholders, from front-line personnel to senior leadership, translating strategic goals into practical actions, An ability to understand and translate customer needs and expectations Excellent Communication & Interpersonal Skills Able to confidently brief, influence and liaise across technical and non-technical teams, including end users, delivery leads, and engineering staff. Process-Driven Mindset Comfortable with procedural documentation, policy adherence, and ensuring compliance - particularly relevant in supporting governance frameworks and transition runbooks. User-Centric Problem Solving First-hand understanding of operational pain points and user needs, with the ability to help shape a system that works for real-world users. Training & Knowledge Transfer Experience mentoring and upskilling peers or teams, ideal for supporting growth within the Intelligent Client Function and operational readiness across sites. Risk & Incident Management Familiarity with assessing, documenting and resolving live operational risks and incidents, including fallback strategies - directly transferable to transition testing and contingency planning. Attention to Detail & Documentation High standard of record keeping, incident reporting, and compliance documentation, aligned with the rigour needed for verifying transition activities and capturing results. Ability to think outside the box. Adaptability & Learning Agility Willingness and proven ability to rapidly absorb complex product and technical knowledge and translate it into meaningful operational terms for the customer. Collaborative Working Style Experience working as part of cross-functional teams under pressure, with strong emotional intelligence and respect for different expertise areas. With extended days/shift work at transition and cutover periods Skills Desired: Project Management Qualifications or equivalent evidenced experience (Prince2, Agile) Knowledge of Police programmes, or experience with C&C systems desirable, Experience with critical national infrastructure and/or safety critical systems What we do for you: At Leidos we are PASSIONATE about customer success, UNITED as a team and INSPIRED to make a difference. We offer meaningful and engaging careers, a collaborative culture, and support for your career goals, all while nurturing a healthy work-life balance. We provide an employment package that attracts, develops and retains only the best in talent. Our reward scheme includes: • Contributory Pension Scheme • Private Medical Insurance • 33 days Annual Leave (including public and privilege holidays) • Access to Flexible benefits (including life assurance, health schemes, gym memberships, annual buy and sell holidays and a cycle to work scheme) • Dynamic Working Commitment to Diversity: We welcome applications from every part of the community and are committed to a truly diverse and inclusive culture. We foster a sense of belonging, welcoming all perspectives and contributions, and providing equal access to opportunities and resources for everyone. If you have a disability or need any reasonable adjustments during the application and selection stages please let us know, and we will respond in a way that best fits your needs. Who We Are: Leidos UK & EUROPE - we work to make the worldsafer,healthier, andmore efficient through technology, engineering andscience. Leidos is a growing company delivering innovative technology and solutions focused on safeguarding critical capabilities and transformation in frontline services, our work in the United Kingdom includes addressing some of the most complex problems in defence, healthcare, government, safety and security, and transportation. What Makes Us Different: Purpose: you can use your passion and abilities at Leidos to keep the people you care about safe. We are at the forefront of machine learning, AI, cyber security and solutions. Using your skills in the technology frontline by helping to build a safer world. You can inspire change. Collaboration: having flexibility to do your job is one of our core benefits, enabling you to become part of our extraordinary team . click apply for full job details
Jun 23, 2025
Full time
Transition SME Project Manager Everything we do is built on a commitment to do the right thing for our customers, our people and our community. Our mission and our values guide the way we do business. The foundation of our Leidos culture is our Values, Beliefs and Expectations by which we select, recognise and reward employees. They create the environment that drives us toward our mission. Inspired to make a difference, we are committed to solving the world's toughest problems. Passionate about customer success by being determined to understand and respond to our customers' needs as if they were our own. United as a team, we are bound together by our conviction that ethics and integrity is core to how we operate. Leidos UK is seeking a Transition Project Manager to join the MPS C&C programme and play a key role in supporting the delivery of a government critical system. You will be part of a programme that is delivering a key critical national infrastructure command and control system and supporting the development and transition to live. This role is predominantly working from home, but there are some responsibilities on site with Leidos and the customer. There will be an expectation for abnormal shifts during the transition period due to the nature of the customer needs. Your Role and Responsibilities: Supporting the Engineering, Testing and technical team in the Implementation of engineering governance for all execution activities, in line with Leidos' Engineering Edge Next Generation (EENG) process library. Identification and management engineering risks and issues and highlighting potential business impacts Supporting the creation of the programme's Transition Documentation Leading the creation of transition run books and work instructions required to plan, at detail, the cutover activities during the transition events to feed into the customers overall business transition planning. Planning for, in detail, and where appropriate, implementing appropriate fall-back/fix-forward steps in the event of unrecoverable failure/incident during the transition events and early life support. Oversight of all transition-related testing activities and leading on the Leidos transition testing activities. Supporting the management of requirements compliance (production of Verification Cross Reference Matrix) against all transition-related requirements Working with the wider Leidos Company, programme transition, engineering, design, Testing and customer teams, Prepare for Transition Support definition and creation of transition strategy, scope and actions internally and with the customer Define and document installation plans and procedures Identify and define any facility or site changes necessary to install or operate the system Identify business pain points, needs, strengths and opportunities to support a successful transition Perform Transition Activities Support the preparation of the operational sites for Transition Engage with the business to ensure they are aligned with the requirements and dependencies needed for success Ensure all documented information required to accompany products and services are present at delivery Support the Dry run, Continuity and customer activities required to achieve a Go for Transition Demonstrate the system is ready for go-live and present to the customer readiness of the product. Be an SME for the customer and wider Leidos teams for the transition phase of the delivery Manage Results of Transition Document operational incidents and problems occurring during the transition, and track their resolution Document transition procedures, results and anomalies Document and track nonconformities and corrective actions associated with the implementation Maintain bi-directional traceability between the transition system, requirements, architecture and design Support Delivery during the pre-Transition period to support the build an ICF function Support the design team in the functional capabilities of the product, upskilling and liaising with the business to ensure that it is fit for purpose Help develop the transitional mode of operation, workaround, methodologies and processes to support the business during the transition period Engage closely with the customer to deliver an intelligent client function including: Requirements Service catalogue Service management End user experience Become a product expert, seamlessly translating between the customer and the teams the needs and capabilities of the product. Skills Required: Operational Insight & Situational Awareness Proven ability to operate in high-pressure, real-time environments with critical decision-making responsibilities - ideal for overseeing and adapting transition plans during go-live events. Strong Stakeholder Engagement Demonstrated experience engaging with diverse stakeholders, from front-line personnel to senior leadership, translating strategic goals into practical actions, An ability to understand and translate customer needs and expectations Excellent Communication & Interpersonal Skills Able to confidently brief, influence and liaise across technical and non-technical teams, including end users, delivery leads, and engineering staff. Process-Driven Mindset Comfortable with procedural documentation, policy adherence, and ensuring compliance - particularly relevant in supporting governance frameworks and transition runbooks. User-Centric Problem Solving First-hand understanding of operational pain points and user needs, with the ability to help shape a system that works for real-world users. Training & Knowledge Transfer Experience mentoring and upskilling peers or teams, ideal for supporting growth within the Intelligent Client Function and operational readiness across sites. Risk & Incident Management Familiarity with assessing, documenting and resolving live operational risks and incidents, including fallback strategies - directly transferable to transition testing and contingency planning. Attention to Detail & Documentation High standard of record keeping, incident reporting, and compliance documentation, aligned with the rigour needed for verifying transition activities and capturing results. Ability to think outside the box. Adaptability & Learning Agility Willingness and proven ability to rapidly absorb complex product and technical knowledge and translate it into meaningful operational terms for the customer. Collaborative Working Style Experience working as part of cross-functional teams under pressure, with strong emotional intelligence and respect for different expertise areas. With extended days/shift work at transition and cutover periods Skills Desired: Project Management Qualifications or equivalent evidenced experience (Prince2, Agile) Knowledge of Police programmes, or experience with C&C systems desirable, Experience with critical national infrastructure and/or safety critical systems What we do for you: At Leidos we are PASSIONATE about customer success, UNITED as a team and INSPIRED to make a difference. We offer meaningful and engaging careers, a collaborative culture, and support for your career goals, all while nurturing a healthy work-life balance. We provide an employment package that attracts, develops and retains only the best in talent. Our reward scheme includes: • Contributory Pension Scheme • Private Medical Insurance • 33 days Annual Leave (including public and privilege holidays) • Access to Flexible benefits (including life assurance, health schemes, gym memberships, annual buy and sell holidays and a cycle to work scheme) • Dynamic Working Commitment to Diversity: We welcome applications from every part of the community and are committed to a truly diverse and inclusive culture. We foster a sense of belonging, welcoming all perspectives and contributions, and providing equal access to opportunities and resources for everyone. If you have a disability or need any reasonable adjustments during the application and selection stages please let us know, and we will respond in a way that best fits your needs. Who We Are: Leidos UK & EUROPE - we work to make the worldsafer,healthier, andmore efficient through technology, engineering andscience. Leidos is a growing company delivering innovative technology and solutions focused on safeguarding critical capabilities and transformation in frontline services, our work in the United Kingdom includes addressing some of the most complex problems in defence, healthcare, government, safety and security, and transportation. What Makes Us Different: Purpose: you can use your passion and abilities at Leidos to keep the people you care about safe. We are at the forefront of machine learning, AI, cyber security and solutions. Using your skills in the technology frontline by helping to build a safer world. You can inspire change. Collaboration: having flexibility to do your job is one of our core benefits, enabling you to become part of our extraordinary team . click apply for full job details
Role: IT Infrastructure Support Engineer Location: RedHill, onsite Salary: 35,000 to 45,000 DOE DV clearance (MUST BE ABLE TO CLEAR DV LEVEL) Provide day to day hands on technical support and management of the internal Corporate and Customer managed IT Infrastructure and projects Work as part of the IT team delivering a quality 24/7 service to internal users (both at HQ and remote) and nominated customers using a variety of hardware and software products. Carry out applicable tasks as requested by the IT Operations Manager as specified in the System Administration section of the Security Organization document. Reporting to the IT Operations Manager, your prime responsibility will include being an expert on our corporate servers and systems, providing technical support for IT equipment for HQ and global remote sites, as well as nominated customer gateways and servers. Your prime responsibilities will be to: Build/Maintain/Support the physical and virtual environment, network storage, backup and recovery systems in our core networks. This includes the necessary daily maintenance and IT administration of the network to ensure high service availability. Build/Maintain/Support corporate IT infrastructure for HQ as well as remote offices and customers, ensuring seamless integration and operation. Ensure that all server builds and networks (both Corporate & Customer) are configured in accordance with Corporate/Customer IT Security policy and accreditation standards, as well as the management and support of the security infrastructure. Maintain software compliance for all server operating systems, server applications and client licences, recording purchases and usage details including regular audits. Monitor usage/performance ensuring servers/services are working correctly and efficiently. Management of the email infrastructure including Exchange, cloud continuity services, SPAM filtering and mobile device management (MDM). Ensure compliance with the department's change control process and procedures Follow departmental change control process and procedures and contribute to the CCB meetings Work within the remit of cyber security policies. As part of thr IT Infrastructure support team your support responsibilities will include: Build/Maintain the IT Hosting Infrastructure as required including Storage, Virtual Environments, Email, Backups(recovery/monitoring) Build/Maintain the IT Security Infrastructure as required, including Antivirus, Update/Patch management, Web Filtering Build/Maintain the Telephony equipment and servers, installation of telephones onto desks. Be part of the IT support team for users and nominated customers, fault finding and solving problems, ensuring you own the problem until resolution, ensuring users are regularly informed of progress and that all issues are logged. Be part of the 24/7 on call IT rota responding to emergencies as required, including remote access or site visits for corporate network and users as well as nominated customer networks. In support of the IT manager you will assist in IT Strategy by: Assisting in the management, readiness and implementation of the disaster recovery policy. Conduct research and make recommendations on products, services, protocols and standards in support of all desktop procurement and development efforts. Report on any issue that could impact the business or integrity and security of the network. Assist with continuous improvement, IT service stability and strategy Regularly audit the network and systems to ensure continued compliance with Corporate IT policies and Experience and skills HND/ Degree or equivalent in Computer Science or related discipline OR at least 10 years applicable experience working in a demanding environment within a busy 100+ user network including remote sites/users. In-depth experience of virtual environments (VMware). In-depth experience of email services inc. Microsoft Exchange, Spam Filtering, cloud messaging and continuity services. In-depth understanding of core Windows OS administration skills, Active Directory management inc. Group Policies, user/group management, PowerShell. In-depth knowledge of maintaining server hardware and storage hardware (NAS, SAN). In-depth understanding of IT Security (anti-virus, hard drive encryption, client hardening and authentication). In-depth experience of High Availability environment inc. clustering and disaster recovery. A sound technical understanding in IP network fundamentals. Must be able to be able to achieve Direct Vetted Status (DV). What can they offer you? Competitive salary offering 35,000 to 50,000 DOE Annual bonus Matched pension up to 7.5% Private healthcare (after 6 month probation) Life assurance 25 days holiday plus bank holidays Onsite gym Parking with EV chargers
Mar 18, 2025
Full time
Role: IT Infrastructure Support Engineer Location: RedHill, onsite Salary: 35,000 to 45,000 DOE DV clearance (MUST BE ABLE TO CLEAR DV LEVEL) Provide day to day hands on technical support and management of the internal Corporate and Customer managed IT Infrastructure and projects Work as part of the IT team delivering a quality 24/7 service to internal users (both at HQ and remote) and nominated customers using a variety of hardware and software products. Carry out applicable tasks as requested by the IT Operations Manager as specified in the System Administration section of the Security Organization document. Reporting to the IT Operations Manager, your prime responsibility will include being an expert on our corporate servers and systems, providing technical support for IT equipment for HQ and global remote sites, as well as nominated customer gateways and servers. Your prime responsibilities will be to: Build/Maintain/Support the physical and virtual environment, network storage, backup and recovery systems in our core networks. This includes the necessary daily maintenance and IT administration of the network to ensure high service availability. Build/Maintain/Support corporate IT infrastructure for HQ as well as remote offices and customers, ensuring seamless integration and operation. Ensure that all server builds and networks (both Corporate & Customer) are configured in accordance with Corporate/Customer IT Security policy and accreditation standards, as well as the management and support of the security infrastructure. Maintain software compliance for all server operating systems, server applications and client licences, recording purchases and usage details including regular audits. Monitor usage/performance ensuring servers/services are working correctly and efficiently. Management of the email infrastructure including Exchange, cloud continuity services, SPAM filtering and mobile device management (MDM). Ensure compliance with the department's change control process and procedures Follow departmental change control process and procedures and contribute to the CCB meetings Work within the remit of cyber security policies. As part of thr IT Infrastructure support team your support responsibilities will include: Build/Maintain the IT Hosting Infrastructure as required including Storage, Virtual Environments, Email, Backups(recovery/monitoring) Build/Maintain the IT Security Infrastructure as required, including Antivirus, Update/Patch management, Web Filtering Build/Maintain the Telephony equipment and servers, installation of telephones onto desks. Be part of the IT support team for users and nominated customers, fault finding and solving problems, ensuring you own the problem until resolution, ensuring users are regularly informed of progress and that all issues are logged. Be part of the 24/7 on call IT rota responding to emergencies as required, including remote access or site visits for corporate network and users as well as nominated customer networks. In support of the IT manager you will assist in IT Strategy by: Assisting in the management, readiness and implementation of the disaster recovery policy. Conduct research and make recommendations on products, services, protocols and standards in support of all desktop procurement and development efforts. Report on any issue that could impact the business or integrity and security of the network. Assist with continuous improvement, IT service stability and strategy Regularly audit the network and systems to ensure continued compliance with Corporate IT policies and Experience and skills HND/ Degree or equivalent in Computer Science or related discipline OR at least 10 years applicable experience working in a demanding environment within a busy 100+ user network including remote sites/users. In-depth experience of virtual environments (VMware). In-depth experience of email services inc. Microsoft Exchange, Spam Filtering, cloud messaging and continuity services. In-depth understanding of core Windows OS administration skills, Active Directory management inc. Group Policies, user/group management, PowerShell. In-depth knowledge of maintaining server hardware and storage hardware (NAS, SAN). In-depth understanding of IT Security (anti-virus, hard drive encryption, client hardening and authentication). In-depth experience of High Availability environment inc. clustering and disaster recovery. A sound technical understanding in IP network fundamentals. Must be able to be able to achieve Direct Vetted Status (DV). What can they offer you? Competitive salary offering 35,000 to 50,000 DOE Annual bonus Matched pension up to 7.5% Private healthcare (after 6 month probation) Life assurance 25 days holiday plus bank holidays Onsite gym Parking with EV chargers
We are working with a leading FinTech company who are seeking a Junior Information Security Analyst to join their team. This role is crucial in ensuring the security and integrity of information systems and data. The successful candidate will be responsible for implementing and maintaining security measures to protect organisational assets from cyber threats and ensuring compliance with industry standards. Key Responsibilities Assist in the planning and implementation of security controls and testing to ISO27001 standards. Perform business impact analyses (BIA) across key technology processes, systems, and facilities, identifying gaps in critical information gathered and recorded. Communicate significant changes in Business Continuity plans to the Information Security (IS) Manager. Support the IS Manager in Disaster Recovery (DR) planning, ensuring that alternate facilities are provisioned and ready in the event of a disaster. Respond to customer security questionnaires to support third-party assurance obligations. Work with business units to ensure Business Continuity Plans are produced and maintained consistently. Provide support and guidance to staff undertaking security awareness training, tracking completion and managing license levels. Respond to security incidents. In order to be successful in the role, candidates ideally need, Understanding of Information Security methodologies, standards, and technologies, including ISO27001. Previous experience in an Information Security or Enterprise Risk role. Awareness of Business Continuity and IT standards, policies, and frameworks, including ISO22301/BCMS. Business Continuity Management knowledge with proven experience in this area. Knowledge of IT with an understanding of system architecture interdependencies, enabling effective communication with IT personnel. Strong documentation, analytical, and presentation skills. Desirable Knowledge, Skills, and Experience Qualifications such as CISA, CISM, CEH, or ISO27001 Lead Implementer/Auditor. Experience engaging with senior management and managing relationships. Previous experience handling Information Security incidents. Benefits This role offers a competitive salary based on skills and experience, along with a generous benefits package, including: Annual performance-related bonus. 11% non-contributory pension. Excellent holiday entitlement. Critical illness cover. Private medical insurance. Group life cover (4x annual salary). A flexible benefits package, allowing choice from options such as additional holidays, bicycle leasing scheme, sports club membership, travel passes, and more. Please note-you are required to be in the Edinburgh office twice a week so only local to central Scotland should apply
Mar 08, 2025
Full time
We are working with a leading FinTech company who are seeking a Junior Information Security Analyst to join their team. This role is crucial in ensuring the security and integrity of information systems and data. The successful candidate will be responsible for implementing and maintaining security measures to protect organisational assets from cyber threats and ensuring compliance with industry standards. Key Responsibilities Assist in the planning and implementation of security controls and testing to ISO27001 standards. Perform business impact analyses (BIA) across key technology processes, systems, and facilities, identifying gaps in critical information gathered and recorded. Communicate significant changes in Business Continuity plans to the Information Security (IS) Manager. Support the IS Manager in Disaster Recovery (DR) planning, ensuring that alternate facilities are provisioned and ready in the event of a disaster. Respond to customer security questionnaires to support third-party assurance obligations. Work with business units to ensure Business Continuity Plans are produced and maintained consistently. Provide support and guidance to staff undertaking security awareness training, tracking completion and managing license levels. Respond to security incidents. In order to be successful in the role, candidates ideally need, Understanding of Information Security methodologies, standards, and technologies, including ISO27001. Previous experience in an Information Security or Enterprise Risk role. Awareness of Business Continuity and IT standards, policies, and frameworks, including ISO22301/BCMS. Business Continuity Management knowledge with proven experience in this area. Knowledge of IT with an understanding of system architecture interdependencies, enabling effective communication with IT personnel. Strong documentation, analytical, and presentation skills. Desirable Knowledge, Skills, and Experience Qualifications such as CISA, CISM, CEH, or ISO27001 Lead Implementer/Auditor. Experience engaging with senior management and managing relationships. Previous experience handling Information Security incidents. Benefits This role offers a competitive salary based on skills and experience, along with a generous benefits package, including: Annual performance-related bonus. 11% non-contributory pension. Excellent holiday entitlement. Critical illness cover. Private medical insurance. Group life cover (4x annual salary). A flexible benefits package, allowing choice from options such as additional holidays, bicycle leasing scheme, sports club membership, travel passes, and more. Please note-you are required to be in the Edinburgh office twice a week so only local to central Scotland should apply
Description Change & Release Manager Location: Farnborough, UK (Hybrid working policy) Clearance: High level of security clearance (SC/ DV 'Developed Vetting') UNLEASH YOUR POTENTIAL Everything we do is built on a commitment to do the right thing for our customers, our people and our community. Our mission and our values guide the way we do business. The foundation of our Leidos culture is our Values, Beliefs and Expectations by which we select, recognise and reward employees. They create the environment that drives us toward our mission. Inspired to make a difference, we are committed to solving the world's toughest problems. Passionate about customer success by being determined to understand and respond to our customers' needs as if they were our own. United as a team, we are bound together by our conviction that ethics and integrity is core to how we operate. Are you ready for your next challenge? Because of a key strategic development and a new exciting business opportunity, we have a requirement for a security-cleared Change and Release manager based in the UK working at our Farnborough site and remotely. Leidos has more than 30 years' experience of developing and running some of the largest government systems in the world. We are currently hiring to expand our UK based technical team who support our delivery for the UK Govt. Come join our team and further develop your skills as we deliver and support systems key to the defence of the UK and partner nations. Being part of the Leidos team is a commitment to push yourself and those around you to do better, constantly adapt and learn new technologies. We're a passionate team and are committed to developing and growing our staff. WHAT WILL YOU BE DOING? You'll be managing all of the change and release aspects of the programme to deliver robust governance, service continuity, flexibility and reliability for a customer with critical dataflow requirements, while ensuring adherence to the appropriate SLAs / KPIs and other customer requirements. A change and release manager ensures that technical changes to IT services are adequately assessed for impact, prioritised, scheduled, authorised and implemented. They ensure this is done in line with processes and using appropriate tools. They chair the Change Advisory Board (CAB). The successful individual will be responsible for: Chairing the Change Advisory Board (CAB). Managing the change and release aspects of a complex and operationally critical IT Service and Platform. Providing an escalation point for Change Management (CM) and Release Management (RM). Making decisions for all technical changes. Co-ordinating releases and interdependencies. Identifying and managing problems, risks, issues and the practicalities of normal change, standard change, and emergency change in a 24/7 organisation in order to meet our customers' expectations and ensure Leidos' reputation as an organisation which delivers for its customers. Demonstrating a professional and proactive approach in customer communications in order to build strong relationships with a wide group of key customers. Leading by example in demonstrating a collaborative and transparent partnering approach with the customer group in support of Leidos' long term goals and principles. Ensuring utilisation targets are hit with resources for which you are in control/manage. Effectively leading, managing and motivating the on-site and remote teams to ensure a culture of focus, delivery and professionalism within which each member understands their role, responsibilities and is enthused to deliver their best work. Provide support to the operational and strategic management of this area of Leidos business including SME support to proposals for future work to benefit the customer. WHO DO WE NEED? We are looking for someone with excellent organisation, communication and leadership skills who has: Experience of managing sizeable application support contracts. Experience of managing teams of highly qualified technical staff. Worked within ITIL based framework, with experience of: Incident Management Problem Management Change Management Release Management Experience of monitoring service against agreed service levels. Experience in reporting and analysing data to see trends. Experience of asset and configuration management. Experience of availability and capacity management. You can work collaboratively in a group, actively networking with others. You can adapt feedback to ensure it's effective and lasting. You can use your initiative to identify problems or issues in the team dynamic and rectify them. You can identify issues through Agile 'health checks' with the team, and help to stimulate the right responses. You can identify process optimisation opportunities with guidance, and contribute to the implementation of proposed solutions. You can show an awareness of the IT standard continuity management processes and procedures. You have a good understanding or experience of deliveries following an Agile or Scaled Agile delivery methodology. You can diagnose and prioritise incidents, investigate their causes and find resolutions. You can own an issue until a new owner has been found or the problem has been mitigated or resolved. You can initiate and monitor actions to investigate patterns and trends to resolve problems. You can effectively consult specialists where required. You can determine the appropriate remedy and assist with its implementation. You can determine preventative measures. You can take inputs and establish coherent frameworks that work. You have a Level 3 service management framework qualification (ITILv3 Foundation Certified). You can identify and engage with users or stakeholders to collate user needs evidence. You can understand and define research that fits user needs. You can use quantitative and qualitative data about users to turn user focus into outcomes. What we do for you: At Leidos we are PASSIONATE about customer success, UNITED as a team and INSPIRED to make a difference. We offer meaningful and engaging careers, a collaborative culture, and support for your career goals, all while nurturing a healthy work-life balance. We provide an employment package that attracts, develops and retains only the best in talent. Our reward scheme includes: • Contributory Pension Scheme • Private Medical Insurance • 33 days Annual Leave (including public and privilege holidays) • Access to Flexible benefits (including life assurance, health schemes, gym memberships, annual buy and sell holidays and a cycle to work scheme) • Dynamic Working Commitment to Diversity: We welcome applications from every part of the community and are committed to a truly diverse and inclusive culture. We foster a sense of belonging, welcoming all perspectives and contributions, and providing equal access to opportunities and resources for everyone. If you have a disability or need any reasonable adjustments during the application and selection stages please let us know, and we will respond in a way that best fits your needs. Who We Are: Leidos UK & EUROPE - we work to make the world safer, healthier, and more efficient through technology, engineering and science. Leidos is a growing company delivering innovative technology and solutions focused on safeguarding critical capabilities and transformation in frontline services, our work in the United Kingdom includes addressing some of the most complex problems in defence, healthcare, government, safety and security, and transportation. What Makes Us Different: Purpose: you can use your passion and abilities at Leidos to keep the people you care about safe. We are at the forefront of machine learning, AI, cyber security and solutions. Using your skills in the technology frontline by helping to build a safer world. You can inspire change. Collaboration: having flexibility to do your job is one of our core benefits, enabling you to become part of our extraordinary team. We have been empowering our people to work flexibly for years. Whether you work from home, the office or on customer sites, we will give you the digital tools and the flexibility to work smarter and align your needs and ours. People: Leidos empowers people from every background to be themselves and gives you the tools to learn new skills by enabling growth whilst developing. We believe that extraordinary people need opportunities to grow, to be inspired and to inspire others. At Leidos, we invest in technical academies, career rotations and a career development plans that enhance your future. Original Posting Date: 2025-02-13 While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above. Pay Range: The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
Feb 20, 2025
Full time
Description Change & Release Manager Location: Farnborough, UK (Hybrid working policy) Clearance: High level of security clearance (SC/ DV 'Developed Vetting') UNLEASH YOUR POTENTIAL Everything we do is built on a commitment to do the right thing for our customers, our people and our community. Our mission and our values guide the way we do business. The foundation of our Leidos culture is our Values, Beliefs and Expectations by which we select, recognise and reward employees. They create the environment that drives us toward our mission. Inspired to make a difference, we are committed to solving the world's toughest problems. Passionate about customer success by being determined to understand and respond to our customers' needs as if they were our own. United as a team, we are bound together by our conviction that ethics and integrity is core to how we operate. Are you ready for your next challenge? Because of a key strategic development and a new exciting business opportunity, we have a requirement for a security-cleared Change and Release manager based in the UK working at our Farnborough site and remotely. Leidos has more than 30 years' experience of developing and running some of the largest government systems in the world. We are currently hiring to expand our UK based technical team who support our delivery for the UK Govt. Come join our team and further develop your skills as we deliver and support systems key to the defence of the UK and partner nations. Being part of the Leidos team is a commitment to push yourself and those around you to do better, constantly adapt and learn new technologies. We're a passionate team and are committed to developing and growing our staff. WHAT WILL YOU BE DOING? You'll be managing all of the change and release aspects of the programme to deliver robust governance, service continuity, flexibility and reliability for a customer with critical dataflow requirements, while ensuring adherence to the appropriate SLAs / KPIs and other customer requirements. A change and release manager ensures that technical changes to IT services are adequately assessed for impact, prioritised, scheduled, authorised and implemented. They ensure this is done in line with processes and using appropriate tools. They chair the Change Advisory Board (CAB). The successful individual will be responsible for: Chairing the Change Advisory Board (CAB). Managing the change and release aspects of a complex and operationally critical IT Service and Platform. Providing an escalation point for Change Management (CM) and Release Management (RM). Making decisions for all technical changes. Co-ordinating releases and interdependencies. Identifying and managing problems, risks, issues and the practicalities of normal change, standard change, and emergency change in a 24/7 organisation in order to meet our customers' expectations and ensure Leidos' reputation as an organisation which delivers for its customers. Demonstrating a professional and proactive approach in customer communications in order to build strong relationships with a wide group of key customers. Leading by example in demonstrating a collaborative and transparent partnering approach with the customer group in support of Leidos' long term goals and principles. Ensuring utilisation targets are hit with resources for which you are in control/manage. Effectively leading, managing and motivating the on-site and remote teams to ensure a culture of focus, delivery and professionalism within which each member understands their role, responsibilities and is enthused to deliver their best work. Provide support to the operational and strategic management of this area of Leidos business including SME support to proposals for future work to benefit the customer. WHO DO WE NEED? We are looking for someone with excellent organisation, communication and leadership skills who has: Experience of managing sizeable application support contracts. Experience of managing teams of highly qualified technical staff. Worked within ITIL based framework, with experience of: Incident Management Problem Management Change Management Release Management Experience of monitoring service against agreed service levels. Experience in reporting and analysing data to see trends. Experience of asset and configuration management. Experience of availability and capacity management. You can work collaboratively in a group, actively networking with others. You can adapt feedback to ensure it's effective and lasting. You can use your initiative to identify problems or issues in the team dynamic and rectify them. You can identify issues through Agile 'health checks' with the team, and help to stimulate the right responses. You can identify process optimisation opportunities with guidance, and contribute to the implementation of proposed solutions. You can show an awareness of the IT standard continuity management processes and procedures. You have a good understanding or experience of deliveries following an Agile or Scaled Agile delivery methodology. You can diagnose and prioritise incidents, investigate their causes and find resolutions. You can own an issue until a new owner has been found or the problem has been mitigated or resolved. You can initiate and monitor actions to investigate patterns and trends to resolve problems. You can effectively consult specialists where required. You can determine the appropriate remedy and assist with its implementation. You can determine preventative measures. You can take inputs and establish coherent frameworks that work. You have a Level 3 service management framework qualification (ITILv3 Foundation Certified). You can identify and engage with users or stakeholders to collate user needs evidence. You can understand and define research that fits user needs. You can use quantitative and qualitative data about users to turn user focus into outcomes. What we do for you: At Leidos we are PASSIONATE about customer success, UNITED as a team and INSPIRED to make a difference. We offer meaningful and engaging careers, a collaborative culture, and support for your career goals, all while nurturing a healthy work-life balance. We provide an employment package that attracts, develops and retains only the best in talent. Our reward scheme includes: • Contributory Pension Scheme • Private Medical Insurance • 33 days Annual Leave (including public and privilege holidays) • Access to Flexible benefits (including life assurance, health schemes, gym memberships, annual buy and sell holidays and a cycle to work scheme) • Dynamic Working Commitment to Diversity: We welcome applications from every part of the community and are committed to a truly diverse and inclusive culture. We foster a sense of belonging, welcoming all perspectives and contributions, and providing equal access to opportunities and resources for everyone. If you have a disability or need any reasonable adjustments during the application and selection stages please let us know, and we will respond in a way that best fits your needs. Who We Are: Leidos UK & EUROPE - we work to make the world safer, healthier, and more efficient through technology, engineering and science. Leidos is a growing company delivering innovative technology and solutions focused on safeguarding critical capabilities and transformation in frontline services, our work in the United Kingdom includes addressing some of the most complex problems in defence, healthcare, government, safety and security, and transportation. What Makes Us Different: Purpose: you can use your passion and abilities at Leidos to keep the people you care about safe. We are at the forefront of machine learning, AI, cyber security and solutions. Using your skills in the technology frontline by helping to build a safer world. You can inspire change. Collaboration: having flexibility to do your job is one of our core benefits, enabling you to become part of our extraordinary team. We have been empowering our people to work flexibly for years. Whether you work from home, the office or on customer sites, we will give you the digital tools and the flexibility to work smarter and align your needs and ours. People: Leidos empowers people from every background to be themselves and gives you the tools to learn new skills by enabling growth whilst developing. We believe that extraordinary people need opportunities to grow, to be inspired and to inspire others. At Leidos, we invest in technical academies, career rotations and a career development plans that enhance your future. Original Posting Date: 2025-02-13 While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above. Pay Range: The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
At HMRC, our Cybercrime & Forensic Services (C&FS) team plays a pivotal role in supporting national investigations by delivering critical forensic services. From aiding warrant executions to preserving and analysing digital evidence, our work ensures justice is served. We are seeking a Technical Manager for Audio-Visual Forensics, a unique opportunity to lead and innovate in a field where precision and excellence are paramount. The Forensic Science Regulator (FSR) mandates that all forensic service providers in the criminal justice system adhere to the FSR Codes of Practice and Conduct (FSR Codes) and relevant ISO standards for digital forensic activities. Within Audio-Visual Forensics, there are key areas requiring compliance. As Technical Manager, you will take the lead in ensuring these standards are met by developing and delivering comprehensive technical procedures, overseeing quality checks, maintaining the competency framework, and validating methods. Additionally, you will drive efforts to achieve UKAS accreditation, ensuring the highest standards of forensic excellence. As an Audio-Visual practitioner, youll work with a diverse range of evidence, including video, CCTV footage, audio recordings, and photography. You'll be assisting officers with the handling, processing, and professional presentation of this evidence in a factual and forensic manner for interview and court proceedings. This opportunity will allow you to make a difference and ensure that HMRC remains at the cutting edge of digital forensics. Your work will directly contribute to successful investigations and justice within the UKs criminal justice system, as part of the individual and uniquely varied investigative landscape HMRC is part of. Person specification Reporting to the Senior Technical Manager and collaborating with the Audio-Visual team, the responsibilities for the role are: Technical Management: Implementation & maintenance of documented technical procedures, establishing and maintaining validation of AV forensic methods and assessing and testing staff competency. Positively endorse and nurture a culture that understands and embraces the requirement to work to the FSR code of practice, quality frameworks and remain committed to continuous improvement. Collaborate with the Quality Assurance team to ensure compliance with FSR codes of practice and ISO standards. Represent HMRC and demonstrate compliance with the required standards during external assessments conducted by UKAS. Audio Visual: Processing of analogue and digital devices pertaining to audio, video & photographic media including acquisition, enhancement (audio and visual), editing and production of audio, video and photographic material for presentation to the Criminal Justice system. Attending both friendly sites, and addresses under warrant to triage and recover CCTV data / conduct forensic scene photography. Manage forensic exhibits to ensure continuity, confidentiality and security is always maintained. Attending court as a professional/expert witness. General: Nurture a culture of inclusivity ensuring where possible the involvement of others for developmental and experience generation where skill sets and resources allow. To carry out any duties commensurate with the purpose of the post that may from time to time be determined. Training Depending on existing experience, you will be expected to undertake training, ranging from in-house training to external courses. Public and Personal Safety Training (PPST) Applicants will be required to be cleared by an occupational health assessment to be able to attend a Public and Personal Safety Training course. Successful completion of the PPST is required to undertake duties away from the office for this role. Failure to pass and maintain the PPST certificate may affect receipt of the flexibility payment. Essential Criteria: The applicant has already achieved LEVA Certified Video Technician Status (Level 1 & 2) or be willing to work towards it. Demonstrate a working knowledge of at least one of the below: 1. CCTV and Video - Forensic video applications, acquisition/recovery methods, conversion methods, video editing techniques, enhancement. 2. Audio - Forensic audio applications, acquisition/recovery methods, conversion methods, audio editing techniques, enhancement. Working knowledge of the Adobe Creative Cloud suite. Demonstrable practical knowledge of Law Enforcement working practices, at scene attendances and forensic report writing. Demonstrable experience of working towards and obtaining FSR Codes of Practice and/or ISO 17025 accreditation (for Audio Visual forensic specifically), to include maintaining team records, improving processes and the writing of standard operating procedures. Hold a full UK Driving Licence including manual transmission and be willing to drive on official business. We recognise that some people cannot drive due to a disability or underlying health condition and may not be able to meet this requirement. Where this applies, you can apply but will need to declare that you require a reasonable adjustment at the point you receive a provisional offer. The vacancy holder will then discuss your specific requirements to consider if this can be reasonably accommodated in this role. Desirable Criteria: Experience of negotiating and influencing discussion, decisions and change with internal and/or external partners and agencies. JBRP1_UKTJ
Feb 19, 2025
Full time
At HMRC, our Cybercrime & Forensic Services (C&FS) team plays a pivotal role in supporting national investigations by delivering critical forensic services. From aiding warrant executions to preserving and analysing digital evidence, our work ensures justice is served. We are seeking a Technical Manager for Audio-Visual Forensics, a unique opportunity to lead and innovate in a field where precision and excellence are paramount. The Forensic Science Regulator (FSR) mandates that all forensic service providers in the criminal justice system adhere to the FSR Codes of Practice and Conduct (FSR Codes) and relevant ISO standards for digital forensic activities. Within Audio-Visual Forensics, there are key areas requiring compliance. As Technical Manager, you will take the lead in ensuring these standards are met by developing and delivering comprehensive technical procedures, overseeing quality checks, maintaining the competency framework, and validating methods. Additionally, you will drive efforts to achieve UKAS accreditation, ensuring the highest standards of forensic excellence. As an Audio-Visual practitioner, youll work with a diverse range of evidence, including video, CCTV footage, audio recordings, and photography. You'll be assisting officers with the handling, processing, and professional presentation of this evidence in a factual and forensic manner for interview and court proceedings. This opportunity will allow you to make a difference and ensure that HMRC remains at the cutting edge of digital forensics. Your work will directly contribute to successful investigations and justice within the UKs criminal justice system, as part of the individual and uniquely varied investigative landscape HMRC is part of. Person specification Reporting to the Senior Technical Manager and collaborating with the Audio-Visual team, the responsibilities for the role are: Technical Management: Implementation & maintenance of documented technical procedures, establishing and maintaining validation of AV forensic methods and assessing and testing staff competency. Positively endorse and nurture a culture that understands and embraces the requirement to work to the FSR code of practice, quality frameworks and remain committed to continuous improvement. Collaborate with the Quality Assurance team to ensure compliance with FSR codes of practice and ISO standards. Represent HMRC and demonstrate compliance with the required standards during external assessments conducted by UKAS. Audio Visual: Processing of analogue and digital devices pertaining to audio, video & photographic media including acquisition, enhancement (audio and visual), editing and production of audio, video and photographic material for presentation to the Criminal Justice system. Attending both friendly sites, and addresses under warrant to triage and recover CCTV data / conduct forensic scene photography. Manage forensic exhibits to ensure continuity, confidentiality and security is always maintained. Attending court as a professional/expert witness. General: Nurture a culture of inclusivity ensuring where possible the involvement of others for developmental and experience generation where skill sets and resources allow. To carry out any duties commensurate with the purpose of the post that may from time to time be determined. Training Depending on existing experience, you will be expected to undertake training, ranging from in-house training to external courses. Public and Personal Safety Training (PPST) Applicants will be required to be cleared by an occupational health assessment to be able to attend a Public and Personal Safety Training course. Successful completion of the PPST is required to undertake duties away from the office for this role. Failure to pass and maintain the PPST certificate may affect receipt of the flexibility payment. Essential Criteria: The applicant has already achieved LEVA Certified Video Technician Status (Level 1 & 2) or be willing to work towards it. Demonstrate a working knowledge of at least one of the below: 1. CCTV and Video - Forensic video applications, acquisition/recovery methods, conversion methods, video editing techniques, enhancement. 2. Audio - Forensic audio applications, acquisition/recovery methods, conversion methods, audio editing techniques, enhancement. Working knowledge of the Adobe Creative Cloud suite. Demonstrable practical knowledge of Law Enforcement working practices, at scene attendances and forensic report writing. Demonstrable experience of working towards and obtaining FSR Codes of Practice and/or ISO 17025 accreditation (for Audio Visual forensic specifically), to include maintaining team records, improving processes and the writing of standard operating procedures. Hold a full UK Driving Licence including manual transmission and be willing to drive on official business. We recognise that some people cannot drive due to a disability or underlying health condition and may not be able to meet this requirement. Where this applies, you can apply but will need to declare that you require a reasonable adjustment at the point you receive a provisional offer. The vacancy holder will then discuss your specific requirements to consider if this can be reasonably accommodated in this role. Desirable Criteria: Experience of negotiating and influencing discussion, decisions and change with internal and/or external partners and agencies. JBRP1_UKTJ
Role: IT Infrastructure Support Engineer Location: RedHill, onsite Salary: 35,000 to 45,000 DOE DV clearance (MUST BE ABLE TO CLEAR DV LEVEL) Provide day to day hands on technical support and management of the internal Corporate and Customer managed IT Infrastructure and projects Work as part of the IT team delivering a quality 24/7 service to internal users (both at HQ and remote) and nominated customers using a variety of hardware and software products. Carry out applicable tasks as requested by the IT Operations Manager as specified in the System Administration section of the Security Organization document. Reporting to the IT Operations Manager, your prime responsibility will include being an expert on our corporate servers and systems, providing technical support for IT equipment for HQ and global remote sites, as well as nominated customer gateways and servers. Your prime responsibilities will be to: Build/Maintain/Support the physical and virtual environment, network storage, backup and recovery systems in our core networks. This includes the necessary daily maintenance and IT administration of the network to ensure high service availability. Build/Maintain/Support corporate IT infrastructure for HQ as well as remote offices and customers, ensuring seamless integration and operation. Ensure that all server builds and networks (both Corporate & Customer) are configured in accordance with Corporate/Customer IT Security policy and accreditation standards, as well as the management and support of the security infrastructure. Maintain software compliance for all server operating systems, server applications and client licences, recording purchases and usage details including regular audits. Monitor usage/performance ensuring servers/services are working correctly and efficiently. Management of the email infrastructure including Exchange, cloud continuity services, SPAM filtering and mobile device management (MDM). Ensure compliance with the department's change control process and procedures Follow departmental change control process and procedures and contribute to the CCB meetings Work within the remit of cyber security policies. As part of thr IT Infrastructure support team your support responsibilities will include: Build/Maintain the IT Hosting Infrastructure as required including Storage, Virtual Environments, Email, Backups(recovery/monitoring) Build/Maintain the IT Security Infrastructure as required, including Antivirus, Update/Patch management, Web Filtering Build/Maintain the Telephony equipment and servers, installation of telephones onto desks. Be part of the IT support team for users and nominated customers, fault finding and solving problems, ensuring you own the problem until resolution, ensuring users are regularly informed of progress and that all issues are logged. Be part of the 24/7 on call IT rota responding to emergencies as required, including remote access or site visits for corporate network and users as well as nominated customer networks. In support of the IT manager you will assist in IT Strategy by: Assisting in the management, readiness and implementation of the disaster recovery policy. Conduct research and make recommendations on products, services, protocols and standards in support of all desktop procurement and development efforts. Report on any issue that could impact the business or integrity and security of the network. Assist with continuous improvement, IT service stability and strategy Regularly audit the network and systems to ensure continued compliance with Corporate IT policies and Experience and skills HND/ Degree or equivalent in Computer Science or related discipline OR at least 10 years applicable experience working in a demanding environment within a busy 100+ user network including remote sites/users. In-depth experience of virtual environments (VMware). In-depth experience of email services inc. Microsoft Exchange, Spam Filtering, cloud messaging and continuity services. In-depth understanding of core Windows OS administration skills, Active Directory management inc. Group Policies, user/group management, PowerShell. In-depth knowledge of maintaining server hardware and storage hardware (NAS, SAN). In-depth understanding of IT Security (anti-virus, hard drive encryption, client hardening and authentication). In-depth experience of High Availability environment inc. clustering and disaster recovery. A sound technical understanding in IP network fundamentals. Must be able to be able to achieve Direct Vetted Status (DV). What can they offer you? Competitive salary offering 35,000 to 50,000 DOE Annual bonus Matched pension up to 7.5% Private healthcare (after 6 month probation) Life assurance 25 days holiday plus bank holidays Onsite gym Parking with EV chargers
Feb 18, 2025
Full time
Role: IT Infrastructure Support Engineer Location: RedHill, onsite Salary: 35,000 to 45,000 DOE DV clearance (MUST BE ABLE TO CLEAR DV LEVEL) Provide day to day hands on technical support and management of the internal Corporate and Customer managed IT Infrastructure and projects Work as part of the IT team delivering a quality 24/7 service to internal users (both at HQ and remote) and nominated customers using a variety of hardware and software products. Carry out applicable tasks as requested by the IT Operations Manager as specified in the System Administration section of the Security Organization document. Reporting to the IT Operations Manager, your prime responsibility will include being an expert on our corporate servers and systems, providing technical support for IT equipment for HQ and global remote sites, as well as nominated customer gateways and servers. Your prime responsibilities will be to: Build/Maintain/Support the physical and virtual environment, network storage, backup and recovery systems in our core networks. This includes the necessary daily maintenance and IT administration of the network to ensure high service availability. Build/Maintain/Support corporate IT infrastructure for HQ as well as remote offices and customers, ensuring seamless integration and operation. Ensure that all server builds and networks (both Corporate & Customer) are configured in accordance with Corporate/Customer IT Security policy and accreditation standards, as well as the management and support of the security infrastructure. Maintain software compliance for all server operating systems, server applications and client licences, recording purchases and usage details including regular audits. Monitor usage/performance ensuring servers/services are working correctly and efficiently. Management of the email infrastructure including Exchange, cloud continuity services, SPAM filtering and mobile device management (MDM). Ensure compliance with the department's change control process and procedures Follow departmental change control process and procedures and contribute to the CCB meetings Work within the remit of cyber security policies. As part of thr IT Infrastructure support team your support responsibilities will include: Build/Maintain the IT Hosting Infrastructure as required including Storage, Virtual Environments, Email, Backups(recovery/monitoring) Build/Maintain the IT Security Infrastructure as required, including Antivirus, Update/Patch management, Web Filtering Build/Maintain the Telephony equipment and servers, installation of telephones onto desks. Be part of the IT support team for users and nominated customers, fault finding and solving problems, ensuring you own the problem until resolution, ensuring users are regularly informed of progress and that all issues are logged. Be part of the 24/7 on call IT rota responding to emergencies as required, including remote access or site visits for corporate network and users as well as nominated customer networks. In support of the IT manager you will assist in IT Strategy by: Assisting in the management, readiness and implementation of the disaster recovery policy. Conduct research and make recommendations on products, services, protocols and standards in support of all desktop procurement and development efforts. Report on any issue that could impact the business or integrity and security of the network. Assist with continuous improvement, IT service stability and strategy Regularly audit the network and systems to ensure continued compliance with Corporate IT policies and Experience and skills HND/ Degree or equivalent in Computer Science or related discipline OR at least 10 years applicable experience working in a demanding environment within a busy 100+ user network including remote sites/users. In-depth experience of virtual environments (VMware). In-depth experience of email services inc. Microsoft Exchange, Spam Filtering, cloud messaging and continuity services. In-depth understanding of core Windows OS administration skills, Active Directory management inc. Group Policies, user/group management, PowerShell. In-depth knowledge of maintaining server hardware and storage hardware (NAS, SAN). In-depth understanding of IT Security (anti-virus, hard drive encryption, client hardening and authentication). In-depth experience of High Availability environment inc. clustering and disaster recovery. A sound technical understanding in IP network fundamentals. Must be able to be able to achieve Direct Vetted Status (DV). What can they offer you? Competitive salary offering 35,000 to 50,000 DOE Annual bonus Matched pension up to 7.5% Private healthcare (after 6 month probation) Life assurance 25 days holiday plus bank holidays Onsite gym Parking with EV chargers
Are you an experienced Information Security Manager looking for your next challenge? I'm currently working with a leading company in the energy sector who are looking for an Information Security Manager to join the team and lead them through a number of new projects. They are looking to innovate and drive the future of energy, ensuring safety, security, and efficiency in everything they do. As the Information Security Manager you will oversee the risk management and IT security governance. In this role, you'll develop and implement security processes and policies, ensuring their systems are secure and compliant with industry standards. What you'll do: Manage risk and IT security governance, including compliance with standards like ISO27001. Conduct technical and non-technical risk assessments and monitor compliance with security policies. Lead internal and external audits, ensuring timely resolution of any issues. Develop business continuity plans, working with emergency planning teams. Regularly review and update security policies and procedures. Manage relationships with security vendors and contractors. Support the delivery of security regulatory and project assurance. Continually improve security processes and compliance initiatives. Deputise for the Head of Cyber Security when needed. What you'll need: Knowledge of information security risk management (e.g. ISO27001). IT/IS security qualifications such as CISSP. Certified Information Systems Auditor (CISA). Experience with ISO27001, ISO27002, and GDPR. Understanding of security controls and their effectiveness. Familiarity with assurance frameworks. Experience in delivering information security certification and maintaining compliance. Experience in creating and reviewing IS security policies. High-level understanding of operational technology systems and their risks. Ability to obtain UK security clearance and have been a UK resident for 5 years or more. What you'll get: Up to 75,000 salary DOE. Annual bonus up to 15%. Flexible hours and hybrid working. Up to 12% Employer contribution pension. 25 days holiday (increases with service). Car allowance/company car scheme. And many more such as healthcare, course fees etc. Clearance Requirements: Due to the nature of this role, the successful candidate must be eligible for security clearance. To qualify, you must have lived permanently in the UK for 5 years or more. If you meet a handful of the above requirements and are interest in the role then please apply and I will be in touch shortly to discuss the role in more detail. To find out more about Computer Futures please visit (url removed) Computer Futures, a trading division of SThree Partnership LLP is acting as an Employment Business in relation to this vacancy Registered office 8 Bishopsgate, London, EC2N 4BQ, United Kingdom Partnership Number OC(phone number removed) England and Wales
Feb 13, 2025
Full time
Are you an experienced Information Security Manager looking for your next challenge? I'm currently working with a leading company in the energy sector who are looking for an Information Security Manager to join the team and lead them through a number of new projects. They are looking to innovate and drive the future of energy, ensuring safety, security, and efficiency in everything they do. As the Information Security Manager you will oversee the risk management and IT security governance. In this role, you'll develop and implement security processes and policies, ensuring their systems are secure and compliant with industry standards. What you'll do: Manage risk and IT security governance, including compliance with standards like ISO27001. Conduct technical and non-technical risk assessments and monitor compliance with security policies. Lead internal and external audits, ensuring timely resolution of any issues. Develop business continuity plans, working with emergency planning teams. Regularly review and update security policies and procedures. Manage relationships with security vendors and contractors. Support the delivery of security regulatory and project assurance. Continually improve security processes and compliance initiatives. Deputise for the Head of Cyber Security when needed. What you'll need: Knowledge of information security risk management (e.g. ISO27001). IT/IS security qualifications such as CISSP. Certified Information Systems Auditor (CISA). Experience with ISO27001, ISO27002, and GDPR. Understanding of security controls and their effectiveness. Familiarity with assurance frameworks. Experience in delivering information security certification and maintaining compliance. Experience in creating and reviewing IS security policies. High-level understanding of operational technology systems and their risks. Ability to obtain UK security clearance and have been a UK resident for 5 years or more. What you'll get: Up to 75,000 salary DOE. Annual bonus up to 15%. Flexible hours and hybrid working. Up to 12% Employer contribution pension. 25 days holiday (increases with service). Car allowance/company car scheme. And many more such as healthcare, course fees etc. Clearance Requirements: Due to the nature of this role, the successful candidate must be eligible for security clearance. To qualify, you must have lived permanently in the UK for 5 years or more. If you meet a handful of the above requirements and are interest in the role then please apply and I will be in touch shortly to discuss the role in more detail. To find out more about Computer Futures please visit (url removed) Computer Futures, a trading division of SThree Partnership LLP is acting as an Employment Business in relation to this vacancy Registered office 8 Bishopsgate, London, EC2N 4BQ, United Kingdom Partnership Number OC(phone number removed) England and Wales
Are you an experienced Information Security Manager looking for your next challenge? I'm currently working with a leading company in the energy sector who are looking for an Information Security Manager to join the team and lead them through a number of new projects. They are looking to innovate and drive the future of energy, ensuring safety, security, and efficiency in everything they do. As the Information Security Manager you will oversee the risk management and IT security governance. In this role, you'll develop and implement security processes and policies, ensuring their systems are secure and compliant with industry standards. What you'll do: Manage risk and IT security governance, including compliance with standards like ISO27001. Conduct technical and non-technical risk assessments and monitor compliance with security policies. Lead internal and external audits, ensuring timely resolution of any issues. Develop business continuity plans, working with emergency planning teams. Regularly review and update security policies and procedures. Manage relationships with security vendors and contractors. Support the delivery of security regulatory and project assurance. Continually improve security processes and compliance initiatives. Deputise for the Head of Cyber Security when needed. What you'll need: Knowledge of information security risk management (e.g. ISO27001). IT/IS security qualifications such as CISSP. Certified Information Systems Auditor (CISA). Experience with ISO27001, ISO27002, and GDPR. Understanding of security controls and their effectiveness. Familiarity with assurance frameworks. Experience in delivering information security certification and maintaining compliance. Experience in creating and reviewing IS security policies. High-level understanding of operational technology systems and their risks. Ability to obtain UK security clearance and have been a UK resident for 5 years or more. What you'll get: Up to 75,000 salary DOE. Annual bonus up to 15%. Flexible hours and hybrid working. Up to 12% Employer contribution pension. 25 days holiday (increases with service). Car allowance/company car scheme. And many more such as healthcare, course fees etc. Clearance Requirements: Due to the nature of this role, the successful candidate must be eligible for security clearance. To qualify, you must have lived permanently in the UK for 5 years or more. If you meet a handful of the above requirements and are interest in the role then please apply and I will be in touch shortly to discuss the role in more detail. To find out more about Computer Futures please visit (url removed) Computer Futures, a trading division of SThree Partnership LLP is acting as an Employment Business in relation to this vacancy Registered office 8 Bishopsgate, London, EC2N 4BQ, United Kingdom Partnership Number OC(phone number removed) England and Wales
Feb 13, 2025
Full time
Are you an experienced Information Security Manager looking for your next challenge? I'm currently working with a leading company in the energy sector who are looking for an Information Security Manager to join the team and lead them through a number of new projects. They are looking to innovate and drive the future of energy, ensuring safety, security, and efficiency in everything they do. As the Information Security Manager you will oversee the risk management and IT security governance. In this role, you'll develop and implement security processes and policies, ensuring their systems are secure and compliant with industry standards. What you'll do: Manage risk and IT security governance, including compliance with standards like ISO27001. Conduct technical and non-technical risk assessments and monitor compliance with security policies. Lead internal and external audits, ensuring timely resolution of any issues. Develop business continuity plans, working with emergency planning teams. Regularly review and update security policies and procedures. Manage relationships with security vendors and contractors. Support the delivery of security regulatory and project assurance. Continually improve security processes and compliance initiatives. Deputise for the Head of Cyber Security when needed. What you'll need: Knowledge of information security risk management (e.g. ISO27001). IT/IS security qualifications such as CISSP. Certified Information Systems Auditor (CISA). Experience with ISO27001, ISO27002, and GDPR. Understanding of security controls and their effectiveness. Familiarity with assurance frameworks. Experience in delivering information security certification and maintaining compliance. Experience in creating and reviewing IS security policies. High-level understanding of operational technology systems and their risks. Ability to obtain UK security clearance and have been a UK resident for 5 years or more. What you'll get: Up to 75,000 salary DOE. Annual bonus up to 15%. Flexible hours and hybrid working. Up to 12% Employer contribution pension. 25 days holiday (increases with service). Car allowance/company car scheme. And many more such as healthcare, course fees etc. Clearance Requirements: Due to the nature of this role, the successful candidate must be eligible for security clearance. To qualify, you must have lived permanently in the UK for 5 years or more. If you meet a handful of the above requirements and are interest in the role then please apply and I will be in touch shortly to discuss the role in more detail. To find out more about Computer Futures please visit (url removed) Computer Futures, a trading division of SThree Partnership LLP is acting as an Employment Business in relation to this vacancy Registered office 8 Bishopsgate, London, EC2N 4BQ, United Kingdom Partnership Number OC(phone number removed) England and Wales
The role of Business Continuity Project Manager is to ensure the delivery of Business Continuity elements of the group-wide Business Continuity & Disaster Recovery Program. IN SHORT Reporting in to the Programme Manager, the role will be pivotal to ensuring delivery of workstreams under the business continuity arm of the project, and coordinating/assisting with the disaster recovery side of the project as required. WHAT YOU WILL DO Project management for Business Continuity project, responsible for ensuring completion on time and in budget, including defining scope, time and cost estimates. Managing risks and issues connected to the projects, including maintaining appropriate trackers to monitor and report on risks. Create Crisis/BCP Plans (tailored to the type of scenario, i.e. cyber attack, data centre loss, etc. and which business areas these cover) Provide Application Critically Tiering catalogue (a list of applications and their recovery priority categories). Agree (with IT) and document Recovery Time Objectives (RTO's) and Recovery Point Objectives (RPO's) for the respective applications. Quantify financial impact on the business if SEFE were to lose critical business applications. WHAT YOU WILL BRING Previous experience in a similar role. Proven track record of successful project implementation - delivering time critical projects within designated schedules and within budget. Knowledge and understanding of project management methodologies (e.g. PRINCE2). A proven approach to agile project delivery. Familiarity with ISO22301 standard. ABOUT US Securing Energy for Europe - it's a simple statement, with a bold ambition. SEFE is not just our name, but also encompasses everything that drives us. To accomplish this, we're taking immediate action to secure gas supply - but also looking forward, to explore our role in the European energy transformation and how we can contribute to a stable and sustainable future. SEFE, an international energy company, ensures the security of supply and drives the decarbonisation of its customers. SEFE's activities span the energy value chain, from origination and trading to sales, transport, and storage. Through its decades-long expertise in trading and the development of its LNG business, SEFE has become one of the most important suppliers to industrial customers in Europe, with an annual sales volume of 200 TWh of gas and power. Its 50,000 customers range from small businesses to municipalities and multinational organisations. By investing in clean energies and especially in the hydrogen ecosystem, SEFE is contributing to the energy transition. The company employs around 2,000 people globally and is owned by the Federal Government of Germany. Our international teams work across locations in Europe, Asia, and North America. We're passionate about energy and the important role it can play in shaping a better future. Securing energy - now and for the future. OUR BENEFITS We're committed to creating an inclusive environment that embraces diversity and fosters the development of knowledge, skills, and experience. In return we offer a competitive starting salary supported by a comprehensive range of financial, lifestyle and wellness benefits with the flexibility to follow a hybrid working model. Bonus earning potential. Non-contributory pension with 10% employer contribution. 25 days holiday plus bank holidays and volunteering days. Buy / sell holidays. Life assurance. Medical and dental insurance (family cover). Range of optional flexible benefits. We are committed to supporting your career growth with opportunities to develop both your knowledge and experience through a blended approach to learning. Join SEFE and help us secure energy supply across Europe and shape a better, more sustainable tomorrow.
Feb 13, 2025
Full time
The role of Business Continuity Project Manager is to ensure the delivery of Business Continuity elements of the group-wide Business Continuity & Disaster Recovery Program. IN SHORT Reporting in to the Programme Manager, the role will be pivotal to ensuring delivery of workstreams under the business continuity arm of the project, and coordinating/assisting with the disaster recovery side of the project as required. WHAT YOU WILL DO Project management for Business Continuity project, responsible for ensuring completion on time and in budget, including defining scope, time and cost estimates. Managing risks and issues connected to the projects, including maintaining appropriate trackers to monitor and report on risks. Create Crisis/BCP Plans (tailored to the type of scenario, i.e. cyber attack, data centre loss, etc. and which business areas these cover) Provide Application Critically Tiering catalogue (a list of applications and their recovery priority categories). Agree (with IT) and document Recovery Time Objectives (RTO's) and Recovery Point Objectives (RPO's) for the respective applications. Quantify financial impact on the business if SEFE were to lose critical business applications. WHAT YOU WILL BRING Previous experience in a similar role. Proven track record of successful project implementation - delivering time critical projects within designated schedules and within budget. Knowledge and understanding of project management methodologies (e.g. PRINCE2). A proven approach to agile project delivery. Familiarity with ISO22301 standard. ABOUT US Securing Energy for Europe - it's a simple statement, with a bold ambition. SEFE is not just our name, but also encompasses everything that drives us. To accomplish this, we're taking immediate action to secure gas supply - but also looking forward, to explore our role in the European energy transformation and how we can contribute to a stable and sustainable future. SEFE, an international energy company, ensures the security of supply and drives the decarbonisation of its customers. SEFE's activities span the energy value chain, from origination and trading to sales, transport, and storage. Through its decades-long expertise in trading and the development of its LNG business, SEFE has become one of the most important suppliers to industrial customers in Europe, with an annual sales volume of 200 TWh of gas and power. Its 50,000 customers range from small businesses to municipalities and multinational organisations. By investing in clean energies and especially in the hydrogen ecosystem, SEFE is contributing to the energy transition. The company employs around 2,000 people globally and is owned by the Federal Government of Germany. Our international teams work across locations in Europe, Asia, and North America. We're passionate about energy and the important role it can play in shaping a better future. Securing energy - now and for the future. OUR BENEFITS We're committed to creating an inclusive environment that embraces diversity and fosters the development of knowledge, skills, and experience. In return we offer a competitive starting salary supported by a comprehensive range of financial, lifestyle and wellness benefits with the flexibility to follow a hybrid working model. Bonus earning potential. Non-contributory pension with 10% employer contribution. 25 days holiday plus bank holidays and volunteering days. Buy / sell holidays. Life assurance. Medical and dental insurance (family cover). Range of optional flexible benefits. We are committed to supporting your career growth with opportunities to develop both your knowledge and experience through a blended approach to learning. Join SEFE and help us secure energy supply across Europe and shape a better, more sustainable tomorrow.
Cyber Programme: Technical Lead / Architect Duration: 6 months (initial) Determination: Inside IR35 Office Location : London (Hybrid, 1-2 days per month on site) The Cyber Programme Technical Lead is responsible for overseeing the technical aspects of projects, ensuring that solutions are delivered effectively and meet the required standards. This role requires a deep understanding of technology and cyber, and the ability to manage and guide project teams while working closely with stakeholders. You will ensure design and technical assurance, alignment with enterprise architecture principles, contribute to project planning, and engage with the CTO community within an enterprise-level client. Experience of Cloud platforms (AWS & Azure) and ServiceNow is key. Key Responsibilities: 1.Technical Leadership: Lead the technical execution of projects, ensuring alignment with best practices and enterprise standards. Provide hands-on technical guidance to the technical delivery team. Conduct design reviews and provide constructive feedback to ensure high-quality deliverables. Provide technical input to Project Planning and Execution, collaborating with Project managers to define project technical scope, timelines and resource allocation. 2.Technical Assurance: Provide Technical Assurance to the Cyber Security Maturity Programme, providing design assurance and technical oversight of deliverables and solutions. Ensure all technical solutions adhere to enterprise architectural standards and security policies. Ensure programme deliverables align with programme outcomes. Identify technical risks and propose mitigation strategies. Maintain technical documentation and ensure it is kept up-to-date and accurate. 3.Project Planning and Execution: Collaborate with Project Managers to define project scope, timelines, and resource allocation. Break down complex technical tasks into manageable components and assign them to team members. Monitor project progress, ensuring that technical milestones are met on time and within budget. 4.Stakeholder Engagement: Work closely with the CTO community to ensure that technical strategies align with broader business objectives. Communicate complex technical concepts to non-technical stakeholders in a clear and concise manner. Engage with senior leadership to provide technical insights and recommendations. 5.Innovation and Continuous Improvement: Be committed to providing Innovation and Continuous Improvement suggestions Stay updated on emerging technologies and industry trends. Required Skills and Experience: 1.Technical Expertise: Strong proficiency in the field of cyber security. Experience of working with cyber security teams, such as VM, SOC. Experience of working with IDAM, Business Continuity and Disaster Response teams. Understanding of enterprise-level systems, including cloud technologies, deployment of security controls, and Secure By Design principles. Cloud Platforms (Aws & Azure) and ServiceNow 2.Leadership and Communication: Proven experience in leading technical teams and delivering complex projects. Excellent communication skills, ability to engage with technical and non-technical stakeholders. Experience working within or engaging with the CTO community in a large enterprise setting. 3.Problem-Solving and Decision-Making: Strong analytical and problem-solving skills. Ability to make sound decisions under pressure and in a fast-paced environment. 4.Education and Certifications: Bachelor s degree in Computer Science, Information Technology, or a related field. Relevant certifications (e.g., AWS, Azure, PMP) are a plus. 5.Desired Attributes: Proactive and results oriented. Strong organisational and time-management skills. Collaborative mindset with a focus on team success. This Technical Lead position offers an opportunity to make a significant impact on large-scale projects within a dynamic enterprise environment. The ideal candidate will be a technically skilled leader who is passionate about driving innovation and excellence in cyber security.
Feb 05, 2025
Contractor
Cyber Programme: Technical Lead / Architect Duration: 6 months (initial) Determination: Inside IR35 Office Location : London (Hybrid, 1-2 days per month on site) The Cyber Programme Technical Lead is responsible for overseeing the technical aspects of projects, ensuring that solutions are delivered effectively and meet the required standards. This role requires a deep understanding of technology and cyber, and the ability to manage and guide project teams while working closely with stakeholders. You will ensure design and technical assurance, alignment with enterprise architecture principles, contribute to project planning, and engage with the CTO community within an enterprise-level client. Experience of Cloud platforms (AWS & Azure) and ServiceNow is key. Key Responsibilities: 1.Technical Leadership: Lead the technical execution of projects, ensuring alignment with best practices and enterprise standards. Provide hands-on technical guidance to the technical delivery team. Conduct design reviews and provide constructive feedback to ensure high-quality deliverables. Provide technical input to Project Planning and Execution, collaborating with Project managers to define project technical scope, timelines and resource allocation. 2.Technical Assurance: Provide Technical Assurance to the Cyber Security Maturity Programme, providing design assurance and technical oversight of deliverables and solutions. Ensure all technical solutions adhere to enterprise architectural standards and security policies. Ensure programme deliverables align with programme outcomes. Identify technical risks and propose mitigation strategies. Maintain technical documentation and ensure it is kept up-to-date and accurate. 3.Project Planning and Execution: Collaborate with Project Managers to define project scope, timelines, and resource allocation. Break down complex technical tasks into manageable components and assign them to team members. Monitor project progress, ensuring that technical milestones are met on time and within budget. 4.Stakeholder Engagement: Work closely with the CTO community to ensure that technical strategies align with broader business objectives. Communicate complex technical concepts to non-technical stakeholders in a clear and concise manner. Engage with senior leadership to provide technical insights and recommendations. 5.Innovation and Continuous Improvement: Be committed to providing Innovation and Continuous Improvement suggestions Stay updated on emerging technologies and industry trends. Required Skills and Experience: 1.Technical Expertise: Strong proficiency in the field of cyber security. Experience of working with cyber security teams, such as VM, SOC. Experience of working with IDAM, Business Continuity and Disaster Response teams. Understanding of enterprise-level systems, including cloud technologies, deployment of security controls, and Secure By Design principles. Cloud Platforms (Aws & Azure) and ServiceNow 2.Leadership and Communication: Proven experience in leading technical teams and delivering complex projects. Excellent communication skills, ability to engage with technical and non-technical stakeholders. Experience working within or engaging with the CTO community in a large enterprise setting. 3.Problem-Solving and Decision-Making: Strong analytical and problem-solving skills. Ability to make sound decisions under pressure and in a fast-paced environment. 4.Education and Certifications: Bachelor s degree in Computer Science, Information Technology, or a related field. Relevant certifications (e.g., AWS, Azure, PMP) are a plus. 5.Desired Attributes: Proactive and results oriented. Strong organisational and time-management skills. Collaborative mindset with a focus on team success. This Technical Lead position offers an opportunity to make a significant impact on large-scale projects within a dynamic enterprise environment. The ideal candidate will be a technically skilled leader who is passionate about driving innovation and excellence in cyber security.
Are you an experienced Information Security Manager looking for your next challenge? I'm currently working with a leading company in the energy sector who are looking for a Information Security Manager to join the team and lead them through a number of new projects. They are looking to innovate and drive the future of energy, ensuring safety, security, and efficiency in everything they do. As the Information Security Manager you will oversee the risk management and IT security governance. In this role, you'll develop and implement security processes and policies, ensuring their systems are secure and compliant with industry standards. What you'll do: Manage risk and IT security governance, including compliance with standards like ISO27001. Conduct technical and non-technical risk assessments and monitor compliance with security policies. Lead internal and external audits, ensuring timely resolution of any issues. Develop business continuity plans, working with emergency planning teams. Regularly review and update security policies and procedures. Manage relationships with security vendors and contractors. Support the delivery of security regulatory and project assurance. Continually improve security processes and compliance initiatives. Deputise for the Head of Cyber Security when needed. What you'll need: Knowledge of information security risk management (e.g., ISO27001). IT/IS security qualifications such as CISSP. Certified Information Systems Auditor (CISA). Experience with ISO27001, ISO27002, and GDPR. Understanding of security controls and their effectiveness. Familiarity with assurance frameworks. Experience in delivering information security certification and maintaining compliance. Experience in creating and reviewing IS security policies. High-level understanding of operational technology systems and their risks. Ability to obtain UK security clearance and have been a UK resident for 5 years or more. What you'll get: Up to 75,000 salary DOE. Annual bonus up to 15%. Flexible hours and hybrid working. Up to 12% Employer contribution pension. 25 days holiday (increases with service). Car allowance/company car scheme. And many more such as healthcare, course fees etc. Clearance Requirements: Due to the nature of this role, the successful candidate must be eligible for security clearance. To qualify, you must have lived permanently in the UK for 5 years or more. If you meet a handful of the above requirements and are interest in the role then please apply and I will be in touch shortly to discuss the role in more detail. To find out more about Computer Futures please visit (url removed) Computer Futures, a trading division of SThree Partnership LLP is acting as an Employment Business in relation to this vacancy Registered office 8 Bishopsgate, London, EC2N 4BQ, United Kingdom Partnership Number OC(phone number removed) England and Wales
Jan 29, 2025
Full time
Are you an experienced Information Security Manager looking for your next challenge? I'm currently working with a leading company in the energy sector who are looking for a Information Security Manager to join the team and lead them through a number of new projects. They are looking to innovate and drive the future of energy, ensuring safety, security, and efficiency in everything they do. As the Information Security Manager you will oversee the risk management and IT security governance. In this role, you'll develop and implement security processes and policies, ensuring their systems are secure and compliant with industry standards. What you'll do: Manage risk and IT security governance, including compliance with standards like ISO27001. Conduct technical and non-technical risk assessments and monitor compliance with security policies. Lead internal and external audits, ensuring timely resolution of any issues. Develop business continuity plans, working with emergency planning teams. Regularly review and update security policies and procedures. Manage relationships with security vendors and contractors. Support the delivery of security regulatory and project assurance. Continually improve security processes and compliance initiatives. Deputise for the Head of Cyber Security when needed. What you'll need: Knowledge of information security risk management (e.g., ISO27001). IT/IS security qualifications such as CISSP. Certified Information Systems Auditor (CISA). Experience with ISO27001, ISO27002, and GDPR. Understanding of security controls and their effectiveness. Familiarity with assurance frameworks. Experience in delivering information security certification and maintaining compliance. Experience in creating and reviewing IS security policies. High-level understanding of operational technology systems and their risks. Ability to obtain UK security clearance and have been a UK resident for 5 years or more. What you'll get: Up to 75,000 salary DOE. Annual bonus up to 15%. Flexible hours and hybrid working. Up to 12% Employer contribution pension. 25 days holiday (increases with service). Car allowance/company car scheme. And many more such as healthcare, course fees etc. Clearance Requirements: Due to the nature of this role, the successful candidate must be eligible for security clearance. To qualify, you must have lived permanently in the UK for 5 years or more. If you meet a handful of the above requirements and are interest in the role then please apply and I will be in touch shortly to discuss the role in more detail. To find out more about Computer Futures please visit (url removed) Computer Futures, a trading division of SThree Partnership LLP is acting as an Employment Business in relation to this vacancy Registered office 8 Bishopsgate, London, EC2N 4BQ, United Kingdom Partnership Number OC(phone number removed) England and Wales
Are you an experienced Information Security Manager looking for your next challenge? I'm currently working with a leading company in the energy sector who are looking for a Information Security Manager to join the team and lead them through a number of new projects. They are looking to innovate and drive the future of energy, ensuring safety, security, and efficiency in everything they do. As the Information Security Manager you will oversee the risk management and IT security governance. In this role, you'll develop and implement security processes and policies, ensuring their systems are secure and compliant with industry standards. What you'll do: Manage risk and IT security governance, including compliance with standards like ISO27001. Conduct technical and non-technical risk assessments and monitor compliance with security policies. Lead internal and external audits, ensuring timely resolution of any issues. Develop business continuity plans, working with emergency planning teams. Regularly review and update security policies and procedures. Manage relationships with security vendors and contractors. Support the delivery of security regulatory and project assurance. Continually improve security processes and compliance initiatives. Deputise for the Head of Cyber Security when needed. What you'll need: Knowledge of information security risk management (e.g., ISO27001). IT/IS security qualifications such as CISSP. Certified Information Systems Auditor (CISA). Experience with ISO27001, ISO27002, and GDPR. Understanding of security controls and their effectiveness. Familiarity with assurance frameworks. Experience in delivering information security certification and maintaining compliance. Experience in creating and reviewing IS security policies. High-level understanding of operational technology systems and their risks. Ability to obtain UK security clearance and have been a UK resident for 5 years or more. What you'll get: Up to 75,000 salary DOE. Annual bonus up to 15%. Flexible hours and hybrid working. Up to 12% Employer contribution pension. 25 days holiday (increases with service). Car allowance/company car scheme. And many more such as healthcare, course fees etc. Clearance Requirements: Due to the nature of this role, the successful candidate must be eligible for security clearance. To qualify, you must have lived permanently in the UK for 5 years or more. If you meet a handful of the above requirements and are interest in the role then please apply and I will be in touch shortly to discuss the role in more detail. To find out more about Computer Futures please visit (url removed) Computer Futures, a trading division of SThree Partnership LLP is acting as an Employment Business in relation to this vacancy Registered office 8 Bishopsgate, London, EC2N 4BQ, United Kingdom Partnership Number OC(phone number removed) England and Wales
Jan 29, 2025
Full time
Are you an experienced Information Security Manager looking for your next challenge? I'm currently working with a leading company in the energy sector who are looking for a Information Security Manager to join the team and lead them through a number of new projects. They are looking to innovate and drive the future of energy, ensuring safety, security, and efficiency in everything they do. As the Information Security Manager you will oversee the risk management and IT security governance. In this role, you'll develop and implement security processes and policies, ensuring their systems are secure and compliant with industry standards. What you'll do: Manage risk and IT security governance, including compliance with standards like ISO27001. Conduct technical and non-technical risk assessments and monitor compliance with security policies. Lead internal and external audits, ensuring timely resolution of any issues. Develop business continuity plans, working with emergency planning teams. Regularly review and update security policies and procedures. Manage relationships with security vendors and contractors. Support the delivery of security regulatory and project assurance. Continually improve security processes and compliance initiatives. Deputise for the Head of Cyber Security when needed. What you'll need: Knowledge of information security risk management (e.g., ISO27001). IT/IS security qualifications such as CISSP. Certified Information Systems Auditor (CISA). Experience with ISO27001, ISO27002, and GDPR. Understanding of security controls and their effectiveness. Familiarity with assurance frameworks. Experience in delivering information security certification and maintaining compliance. Experience in creating and reviewing IS security policies. High-level understanding of operational technology systems and their risks. Ability to obtain UK security clearance and have been a UK resident for 5 years or more. What you'll get: Up to 75,000 salary DOE. Annual bonus up to 15%. Flexible hours and hybrid working. Up to 12% Employer contribution pension. 25 days holiday (increases with service). Car allowance/company car scheme. And many more such as healthcare, course fees etc. Clearance Requirements: Due to the nature of this role, the successful candidate must be eligible for security clearance. To qualify, you must have lived permanently in the UK for 5 years or more. If you meet a handful of the above requirements and are interest in the role then please apply and I will be in touch shortly to discuss the role in more detail. To find out more about Computer Futures please visit (url removed) Computer Futures, a trading division of SThree Partnership LLP is acting as an Employment Business in relation to this vacancy Registered office 8 Bishopsgate, London, EC2N 4BQ, United Kingdom Partnership Number OC(phone number removed) England and Wales
We have been made aware of a global phishing campaign where employees from companies are being impersonated. We are confident that no PageGroup system has been breached. Find out how to protect yourself Head of Risk, Information, Security and Compliance Swindon Permanent The business is planning for significant growth and transformation. Hybrid working practices in place. About Our Client UKSBS is a leading public sector shared service centre, providing high-quality HR, Payroll, Finance, Procurement and IT services to our partners. Owned by the Department of Science, Innovation and Technology (DSIT), the Department for Energy Security and Net Zero (DESNZ), the Department of Business and Trade (DBT) and UK Research and Innovation (UKRI). We provide a range of efficient, scalable, and expert Finance, HR and Payroll, Procurement and Business IT services helping the advancement of the UK's economy and society. We are motivated by a desire to deliver high-quality, efficient and reliable service to over 25,000 civil and public servants, employed by our clients. As a public sector-owned shared service centre, UK SBS is motivated by a desire to deliver the highest possible quality of service to our partner organisations. We are proud to play our part in contributing to the success of our partners. We aspire to be the leading UK public sector business service provider, efficiently and securely managing multiple technology platforms and delivering a great end-user experience, underpinned by simple processes and cutting-edge IT. Our operating model will balance harnessing the value for money and efficiency offered by greater automation and self-service, with responsive and personal interactions for more complex needs. Our flexible approach will enable us to flexibly support a wide and changing range of partner requirements. We plan to welcome new public sector partners to our mutual ownership model which will ensure the best value for the public purse. Our people will continue to be at the heart of our company, supported by empowered leaders and enabled by an inclusive and diverse working culture. Job Description You will be working closely with the Executive team and our Chief Executive Officer (Senior Information Risk Owner) with the responsibility and accountability for leading an expert team to ensure UKSBS (people, systems, information and premises) have robust, proportionate and cost-effective: Information Security. Incident Management, Business Continuity and Disaster Recovery. Information Management and Data Protection. Risk Management, Internal Controls and Audit Programme coordination. Counter Fraud, including legal requirements under the Bribery Act. You will also act as the Departmental Security Advisor. Flexibility may be required to respond to the changing needs of the organisation and the service. You may also be asked to undertake ad hoc activities in support of the Chief Executive Officer and other Executives. Responsibilities will include: Work closely across the Executive and Senior Leadership Group to ensure alignment of RISC objectives with the UKSBS business plan and operational plan. Performance lead and develop the Risk, Information, Security and Compliance (RISC) team, ensuring that members have appropriate business exposure, are professionally competent and highly motivated. Has accountability for ensuring the team operates to budget. Provide coaching and mentoring support to management colleagues across the business. Represent the Risk, Information, Security and Compliance (RISC) function, as required, at the UKSBS Committees. Represent UKSBS, as required, at the UKSBS Audit Committee and key partnership/client meetings. Ensure UKSBS has a positive working relationship with GIAA. Maintain a strong network of Risk, Information, Security and Compliance (RISC) contacts across Government, the public sector and wider business. Provide strategic, tactical, and operational advice to Executive and Senior Management. Design and deliver an appropriate suite of Risk, Information, Security and Compliance (RISC) strategies, policies and processes, maintaining legal compliance and alignment with HM government best practices. Drive cultural alignment to agreed policies across the organisation. Gain agreement from Executive and Audit Committees to an annual Risk, Information, Security and Compliance (RISC) delivery plan. Act as the Security Advisor, coordinating the company response to security-related matters, including assessing and making judgements in relation to risk on behalf of the SIRO and Executive. Providing senior level guidance and support to the Information Manager and Data Protection Officer, Senior Information Security Manager, Information Security Manager and Risk and Assurance Manager ensuring coordination that supports delivery by Digital and Information, Operations, and Partnerships and Change. Ensure delivery of the UKSBS annual audit plan as agreed by the Audit Committee. Support and report progress to close reported audit findings. Oversee the development and testing of business continuity and resilience plans. Act as the professional adviser to Gold and Silver command in the event of a business continuity incident Ensure UKSBS' cyber security is maintained Ensure planning, delivery and reporting of an annual cycle of mandatory Risk, Information, Security and Compliance (RISC) training. Oversee the quality and timeliness of reporting, papers and reports for formal meetings and supporting communications material. Identify opportunities for control enhancements, service/quality improvements and operational efficiency. Act as Programme Lead / SRO for activities, as required, ensuring appropriate governance is maintained and dependencies to other programmes are addressed. Act as Project Manager for key projects when necessary. Identify, monitor and report business case benefits, and evidence success. The Successful Applicant A significant specialist background in Risk, Information Management, Business Continuity and Information Assurance / Security, ideally with recognised qualifications. Experience in managing IT security frameworks for both physical and personal security. Demonstrable experience in budgeting, planning and analysis. Experience in building and maintaining strong working relationships. Ability to think commercially and strategically. Organised with project management skills. Excellent team leadership skills and behaviours. Experienced team player - able to listen and contribute in equal measure and engage with and encourage a wide range of opinions. Strong presentation, written and oral communication skills. Strong numeracy and analytic skills informing evidence-based decisions. Excellent interpersonal skills, able to influence, build and maintain strong working relationships with a wide range of stakeholders; collaborative and consultative. Motivated, adaptable and proactive with the ability to work flexibly in a changing environment; highly resilient and politically astute. Auditing and/or management of audit activity; possibly with recognised qualifications. Experience in shared service and/or customer service delivery Experience in the public sector. Likely to be educated to degree level. What's on Offer A competitive salary - to be discussed on a one-to-one basis. Excellent defined Pension scheme with an employer contribution of 27%. Annual leave allowance of 28 days rising after the first year to a maximum of 30 days. Hybrid working provides the flexibility to work from the office and at home with Offices in Swindon, Newport and Billingham (plus a season ticket loan to spread the travel cost) Childcare scheme and on-site nursery (at our Swindon office) Parental leave and family-friendly policies. Three volunteering days each year enabling you to pursue your passion to support the local community. Wellbeing support through our Employment Assistance Programme and other Wellbeing tools. Cycle to work scheme and on-site facilities On-the-job training, coaching, and in-house courses to build on your personal and professional skills Financial support and flexibility while you work towards professional qualifications Celebrating and recognising employee achievements through our recognition scheme Clear and flexible career pathways and opportunities to widen your experience to support your progression Michael Page is part of the PageGroup. Michael Page is a trading name of Michael Page International Recruitment Limited. Registered in England No. Registered Office: 200 Dashwood Lang Road, Bourne Business Park, Addlestone, Surrey, KT15 2NX
Jan 27, 2024
Full time
We have been made aware of a global phishing campaign where employees from companies are being impersonated. We are confident that no PageGroup system has been breached. Find out how to protect yourself Head of Risk, Information, Security and Compliance Swindon Permanent The business is planning for significant growth and transformation. Hybrid working practices in place. About Our Client UKSBS is a leading public sector shared service centre, providing high-quality HR, Payroll, Finance, Procurement and IT services to our partners. Owned by the Department of Science, Innovation and Technology (DSIT), the Department for Energy Security and Net Zero (DESNZ), the Department of Business and Trade (DBT) and UK Research and Innovation (UKRI). We provide a range of efficient, scalable, and expert Finance, HR and Payroll, Procurement and Business IT services helping the advancement of the UK's economy and society. We are motivated by a desire to deliver high-quality, efficient and reliable service to over 25,000 civil and public servants, employed by our clients. As a public sector-owned shared service centre, UK SBS is motivated by a desire to deliver the highest possible quality of service to our partner organisations. We are proud to play our part in contributing to the success of our partners. We aspire to be the leading UK public sector business service provider, efficiently and securely managing multiple technology platforms and delivering a great end-user experience, underpinned by simple processes and cutting-edge IT. Our operating model will balance harnessing the value for money and efficiency offered by greater automation and self-service, with responsive and personal interactions for more complex needs. Our flexible approach will enable us to flexibly support a wide and changing range of partner requirements. We plan to welcome new public sector partners to our mutual ownership model which will ensure the best value for the public purse. Our people will continue to be at the heart of our company, supported by empowered leaders and enabled by an inclusive and diverse working culture. Job Description You will be working closely with the Executive team and our Chief Executive Officer (Senior Information Risk Owner) with the responsibility and accountability for leading an expert team to ensure UKSBS (people, systems, information and premises) have robust, proportionate and cost-effective: Information Security. Incident Management, Business Continuity and Disaster Recovery. Information Management and Data Protection. Risk Management, Internal Controls and Audit Programme coordination. Counter Fraud, including legal requirements under the Bribery Act. You will also act as the Departmental Security Advisor. Flexibility may be required to respond to the changing needs of the organisation and the service. You may also be asked to undertake ad hoc activities in support of the Chief Executive Officer and other Executives. Responsibilities will include: Work closely across the Executive and Senior Leadership Group to ensure alignment of RISC objectives with the UKSBS business plan and operational plan. Performance lead and develop the Risk, Information, Security and Compliance (RISC) team, ensuring that members have appropriate business exposure, are professionally competent and highly motivated. Has accountability for ensuring the team operates to budget. Provide coaching and mentoring support to management colleagues across the business. Represent the Risk, Information, Security and Compliance (RISC) function, as required, at the UKSBS Committees. Represent UKSBS, as required, at the UKSBS Audit Committee and key partnership/client meetings. Ensure UKSBS has a positive working relationship with GIAA. Maintain a strong network of Risk, Information, Security and Compliance (RISC) contacts across Government, the public sector and wider business. Provide strategic, tactical, and operational advice to Executive and Senior Management. Design and deliver an appropriate suite of Risk, Information, Security and Compliance (RISC) strategies, policies and processes, maintaining legal compliance and alignment with HM government best practices. Drive cultural alignment to agreed policies across the organisation. Gain agreement from Executive and Audit Committees to an annual Risk, Information, Security and Compliance (RISC) delivery plan. Act as the Security Advisor, coordinating the company response to security-related matters, including assessing and making judgements in relation to risk on behalf of the SIRO and Executive. Providing senior level guidance and support to the Information Manager and Data Protection Officer, Senior Information Security Manager, Information Security Manager and Risk and Assurance Manager ensuring coordination that supports delivery by Digital and Information, Operations, and Partnerships and Change. Ensure delivery of the UKSBS annual audit plan as agreed by the Audit Committee. Support and report progress to close reported audit findings. Oversee the development and testing of business continuity and resilience plans. Act as the professional adviser to Gold and Silver command in the event of a business continuity incident Ensure UKSBS' cyber security is maintained Ensure planning, delivery and reporting of an annual cycle of mandatory Risk, Information, Security and Compliance (RISC) training. Oversee the quality and timeliness of reporting, papers and reports for formal meetings and supporting communications material. Identify opportunities for control enhancements, service/quality improvements and operational efficiency. Act as Programme Lead / SRO for activities, as required, ensuring appropriate governance is maintained and dependencies to other programmes are addressed. Act as Project Manager for key projects when necessary. Identify, monitor and report business case benefits, and evidence success. The Successful Applicant A significant specialist background in Risk, Information Management, Business Continuity and Information Assurance / Security, ideally with recognised qualifications. Experience in managing IT security frameworks for both physical and personal security. Demonstrable experience in budgeting, planning and analysis. Experience in building and maintaining strong working relationships. Ability to think commercially and strategically. Organised with project management skills. Excellent team leadership skills and behaviours. Experienced team player - able to listen and contribute in equal measure and engage with and encourage a wide range of opinions. Strong presentation, written and oral communication skills. Strong numeracy and analytic skills informing evidence-based decisions. Excellent interpersonal skills, able to influence, build and maintain strong working relationships with a wide range of stakeholders; collaborative and consultative. Motivated, adaptable and proactive with the ability to work flexibly in a changing environment; highly resilient and politically astute. Auditing and/or management of audit activity; possibly with recognised qualifications. Experience in shared service and/or customer service delivery Experience in the public sector. Likely to be educated to degree level. What's on Offer A competitive salary - to be discussed on a one-to-one basis. Excellent defined Pension scheme with an employer contribution of 27%. Annual leave allowance of 28 days rising after the first year to a maximum of 30 days. Hybrid working provides the flexibility to work from the office and at home with Offices in Swindon, Newport and Billingham (plus a season ticket loan to spread the travel cost) Childcare scheme and on-site nursery (at our Swindon office) Parental leave and family-friendly policies. Three volunteering days each year enabling you to pursue your passion to support the local community. Wellbeing support through our Employment Assistance Programme and other Wellbeing tools. Cycle to work scheme and on-site facilities On-the-job training, coaching, and in-house courses to build on your personal and professional skills Financial support and flexibility while you work towards professional qualifications Celebrating and recognising employee achievements through our recognition scheme Clear and flexible career pathways and opportunities to widen your experience to support your progression Michael Page is part of the PageGroup. Michael Page is a trading name of Michael Page International Recruitment Limited. Registered in England No. Registered Office: 200 Dashwood Lang Road, Bourne Business Park, Addlestone, Surrey, KT15 2NX
Head of Applications & Service Delivery Reporting to the COO, the Head of Applications & Service Delivery will own and manage Seraphine's application landscape, spanning the entire business from design and sourcing through supply chain. Some of those systems are maintained inhouse while others are SaaS. As the Head of Applications & Service Delivery, you will be an experienced manager of high performing teams, bringing strong service management capabilities to build capability within the IT team, ensuring that our third party vendors are managed and delivering to SLAs. This role is a key enabler in allowing Seraphine to keeping our systems running smoothly, and you will be involved in a variety of ongoing areas ranging from systems improvements/changes to driving continuous improvement initiatives. You will ensure great collaboration with all teams for optimal project delivery as well as consistent BAU management of production systems. You will play a pivotal part in safeguarding the Seraphine's digital assets, systems, and data from cyber threats and ensuring compliance with industry standards and regulations. This role will provide you with the opportunity to drive your business understanding and technical skillset forward, while taking advantage of being part of a small team which can move at pace. About You: The position requires a very hands-on individual with a strong technology foundation - ranging from the latest eCommerce platforms & tools to managing and operating high-availability, secure applications. You appreciate that the lifecycle of a solution extends from idea to de-commission, not idea to initial go-live. You also understand the Ops aspect of DevOps, thinking about more than just the delivery of the application; you also appreciate the importance of logging, monitoring, observability, and issue diagnosis. You'll also be a driver of good practice and an excellent communicator with the ability to lead, engage and influence at all levels. Experience of taking responsibility for a wide remit within IT will be essential and you will have a quick learning, pro-active, problem-solving approach to work. Main Responsibilities Oversee day-to-day operation of the Seraphine applications landscape, ensuring world-class performance & availability. Collaborate with vendors and service providers to manage and maintain relationships, negotiate contracts, and stay updated with emerging technologies and product offerings. Manage the workload, assignment of tasks and responsibilities within the Applications and Infrastructure teams ensuring a focus on delivering great service. Foster a culture of knowledge sharing and collaboration within the Applications and Infrastructure teams Understand the criticality of supported systems to a level where the business impact of a malfunction can be interrogated and assessed, leading to the appropriate level of action and priority being given to the resolution process. Own project management activities for assigned projects, ensuring that projects are managed through to delivery within agreed timescales and budgetary constraints. Manage major incidents relating to applications end to end, including customer communications and internal updates, ensuring timely resolution of issues, and minimizing impact on service availability. Provide a point of escalation for issues raised by team members, including both technical queries and general issues Ensure that new or changed services are adequately documented to facilitate their day-to-day support, and that new procedures are created where required. Provide and maintain processes and knowledge documents to allow the team to support a breadth of applications As a line manager, provide support and guidance for your direct reports to help them grow and develop in their roles. Manage service level agreements (SLAs) and ensure service delivery meets or exceeds performance targets. Implement and maintain monitoring and alerting systems to proactively identify and address potential issues. Implement comprehensive disaster recovery strategies and business continuity plans Establish and maintain a robust cybersecurity framework to protect sensitive data and system integrity, adhering to industry standards and regulatory compliance. What we stand for We are the leading scale player in a specialist market - maternity and nursing wear - and we have 18 years of experience behind us doing this and nothing but this. But what we do at Seraphine is more than just fashion and clothes. We help women feel absolutely confident in their changing bodies and enable them to continue to express the choice and style they had prior to pregnancy, during pregnancy, whilst providing them with product innovations that make motherhood a breeze. What we're delivering We are highly international (more than 2/3 of our sales are from markets outside of the UK) and highly digital - we were an early embracer of eCommerce and the channel now represents 90% of our revenue. We're also a digital marketing machine: acquiring customers profitably from first order, with more than half returning for a second order during the current pregnancy and more and more coming back to us again when the family grows further. This all contributes to market leading profit and product margins and our double-digit growth rates across the world put the rest to shame. Good knowledge of technical architecture and the functionality of applications used to support the business. Experience of working in a dynamic environment often with shifting priorities Solid understanding of IT service management (ITSM) frameworks and processes, such as ITIL. Experience of managing relationships with third party service providers A strategic thinker, able to anticipate issues and to drive solutions and accountability. Strong leadership and team management skills - an ability to engage, develop and motivate, alongside being able to identify and develop talent Excellent time management skills, the ability to prioritise projects and process multiple tasks. Ability to communicate in an effective and concise manner so that complex logistic information is translated into relevant and clear business terms. Understand the security and fraud threats that affect an eCommerce business and any regulatory requirements that the business must follow. Experience with information, data and cybersecurity best practices (ideally ISO27001 or Cyber Essentials Plus), technologies, standards and controls, including ongoing management and prevention is a plus Life Assurance Income Protection Health Cash Plan Holiday entitlement - 25 days excluding bank holidays (with one additional day per year of service) Birthday day off Discretionary Company Bonus Scheme Enhanced Maternity/Paternity Scheme Family friendly policies Staff discount policy (50%) Salary Exchange Benefits: Pension Scheme - 5% employee and 3% employer contribution Technology Will Writing Holiday Exchange Workplace Nursery Gym Benefit Cycle 2 Work Discount Benefits: Gadget Insurance Cycle Insurance Cancer Screening Pet Insurance Lottie - Care Home Discount Health & Wellbeing Videos
Jan 16, 2024
Full time
Head of Applications & Service Delivery Reporting to the COO, the Head of Applications & Service Delivery will own and manage Seraphine's application landscape, spanning the entire business from design and sourcing through supply chain. Some of those systems are maintained inhouse while others are SaaS. As the Head of Applications & Service Delivery, you will be an experienced manager of high performing teams, bringing strong service management capabilities to build capability within the IT team, ensuring that our third party vendors are managed and delivering to SLAs. This role is a key enabler in allowing Seraphine to keeping our systems running smoothly, and you will be involved in a variety of ongoing areas ranging from systems improvements/changes to driving continuous improvement initiatives. You will ensure great collaboration with all teams for optimal project delivery as well as consistent BAU management of production systems. You will play a pivotal part in safeguarding the Seraphine's digital assets, systems, and data from cyber threats and ensuring compliance with industry standards and regulations. This role will provide you with the opportunity to drive your business understanding and technical skillset forward, while taking advantage of being part of a small team which can move at pace. About You: The position requires a very hands-on individual with a strong technology foundation - ranging from the latest eCommerce platforms & tools to managing and operating high-availability, secure applications. You appreciate that the lifecycle of a solution extends from idea to de-commission, not idea to initial go-live. You also understand the Ops aspect of DevOps, thinking about more than just the delivery of the application; you also appreciate the importance of logging, monitoring, observability, and issue diagnosis. You'll also be a driver of good practice and an excellent communicator with the ability to lead, engage and influence at all levels. Experience of taking responsibility for a wide remit within IT will be essential and you will have a quick learning, pro-active, problem-solving approach to work. Main Responsibilities Oversee day-to-day operation of the Seraphine applications landscape, ensuring world-class performance & availability. Collaborate with vendors and service providers to manage and maintain relationships, negotiate contracts, and stay updated with emerging technologies and product offerings. Manage the workload, assignment of tasks and responsibilities within the Applications and Infrastructure teams ensuring a focus on delivering great service. Foster a culture of knowledge sharing and collaboration within the Applications and Infrastructure teams Understand the criticality of supported systems to a level where the business impact of a malfunction can be interrogated and assessed, leading to the appropriate level of action and priority being given to the resolution process. Own project management activities for assigned projects, ensuring that projects are managed through to delivery within agreed timescales and budgetary constraints. Manage major incidents relating to applications end to end, including customer communications and internal updates, ensuring timely resolution of issues, and minimizing impact on service availability. Provide a point of escalation for issues raised by team members, including both technical queries and general issues Ensure that new or changed services are adequately documented to facilitate their day-to-day support, and that new procedures are created where required. Provide and maintain processes and knowledge documents to allow the team to support a breadth of applications As a line manager, provide support and guidance for your direct reports to help them grow and develop in their roles. Manage service level agreements (SLAs) and ensure service delivery meets or exceeds performance targets. Implement and maintain monitoring and alerting systems to proactively identify and address potential issues. Implement comprehensive disaster recovery strategies and business continuity plans Establish and maintain a robust cybersecurity framework to protect sensitive data and system integrity, adhering to industry standards and regulatory compliance. What we stand for We are the leading scale player in a specialist market - maternity and nursing wear - and we have 18 years of experience behind us doing this and nothing but this. But what we do at Seraphine is more than just fashion and clothes. We help women feel absolutely confident in their changing bodies and enable them to continue to express the choice and style they had prior to pregnancy, during pregnancy, whilst providing them with product innovations that make motherhood a breeze. What we're delivering We are highly international (more than 2/3 of our sales are from markets outside of the UK) and highly digital - we were an early embracer of eCommerce and the channel now represents 90% of our revenue. We're also a digital marketing machine: acquiring customers profitably from first order, with more than half returning for a second order during the current pregnancy and more and more coming back to us again when the family grows further. This all contributes to market leading profit and product margins and our double-digit growth rates across the world put the rest to shame. Good knowledge of technical architecture and the functionality of applications used to support the business. Experience of working in a dynamic environment often with shifting priorities Solid understanding of IT service management (ITSM) frameworks and processes, such as ITIL. Experience of managing relationships with third party service providers A strategic thinker, able to anticipate issues and to drive solutions and accountability. Strong leadership and team management skills - an ability to engage, develop and motivate, alongside being able to identify and develop talent Excellent time management skills, the ability to prioritise projects and process multiple tasks. Ability to communicate in an effective and concise manner so that complex logistic information is translated into relevant and clear business terms. Understand the security and fraud threats that affect an eCommerce business and any regulatory requirements that the business must follow. Experience with information, data and cybersecurity best practices (ideally ISO27001 or Cyber Essentials Plus), technologies, standards and controls, including ongoing management and prevention is a plus Life Assurance Income Protection Health Cash Plan Holiday entitlement - 25 days excluding bank holidays (with one additional day per year of service) Birthday day off Discretionary Company Bonus Scheme Enhanced Maternity/Paternity Scheme Family friendly policies Staff discount policy (50%) Salary Exchange Benefits: Pension Scheme - 5% employee and 3% employer contribution Technology Will Writing Holiday Exchange Workplace Nursery Gym Benefit Cycle 2 Work Discount Benefits: Gadget Insurance Cycle Insurance Cancer Screening Pet Insurance Lottie - Care Home Discount Health & Wellbeing Videos
Stevenage MBDA Missile Systems - Together. For the future of defence. Salary: circa. £60-70K dependent on experience + bonus + benefits Hybrid working pattern: Where possible, we will seek to accommodate a blended approach to on-site and remote working. Typically, 2 days per week on site and 3 days remote based. The opportunity: Do you want to be the lead in a crucial and exciting role within in our Security team? If so then this position as Security Assurance Manager could be just for you. Working on behalf of the UK CISO, you will be the local security leader and expert in all elements of security. Ensuring your allocated areas continuously align to MBDA's Security Strategy and Polices, Customer's Security Policies, expectations, all applicable laws and regulations. Updating ISO 27001 documentation with any changes and ensure all policies, processes, procedures and technical infrastructure remains compliant. As part of the new incoming MOD Continuous Accreditation Process (CAP), your role as the first line representative for your areas of responsibility will be key. Tasked with leading all change management activities, you will ensure all change remains appropriate and complaint with policies. Delivering a technical security consultancy service to the business including architecture and solution suitability. Having the opportunity to work with different areas of the business you'll work proactively to coordinate and build relationships with the Principle Cyber and Information Security Advisor for all required accreditation activities. In the event of a security related incident your role will be critical in leading the response, business continuity and disaster recovery for your area. As well as the above you'll coordinate and action all technical security testing to be conducted within your areas, as well as maintaining upward reporting to MBDA UK Directors on the results. What we're looking for: Knowledge of National Security requirements for systems processing classified UK government data along with security risk management Comfortable with establishing and managing relationships with national security authorities and industry partners Experienced knowledge of modern hacking tactics, techniques and procedures. Expert in security concepts for IT network architectures, applications, cloud services and hardening of operating systems Ability to present risk balanced security solutions to problems and provide clear advice directly to Directors Background in managing and developing inexperienced IT Engineers Ideally a knowledge of system accreditation and the approvals process for government encryption and networks Knowledge of business IT processes and associated approval systems Desirable: CISSP, InfoSec/Cyber Degree What to expect: We offer opportunities for career progression, paid overtime (subject to level), bonus scheme, comprehensive pension package, annual salary review, collaborative working environment and excellent on-site facilities. We recognise that everyone is unique, and we encourage you to speak to us should you require any advice, support or adjustments throughout our recruitment process. We also welcome applicants who are looking for flexible working arrangements. Follow us on LinkedIn (MBDA), Twitter Instagram (lifeatMBDA_UK) and Glassdoor or visit our MBDA Careers website for more information! Please Note: MBDA UK requires all employees to achieve appropriate clearances!
Dec 08, 2022
Full time
Stevenage MBDA Missile Systems - Together. For the future of defence. Salary: circa. £60-70K dependent on experience + bonus + benefits Hybrid working pattern: Where possible, we will seek to accommodate a blended approach to on-site and remote working. Typically, 2 days per week on site and 3 days remote based. The opportunity: Do you want to be the lead in a crucial and exciting role within in our Security team? If so then this position as Security Assurance Manager could be just for you. Working on behalf of the UK CISO, you will be the local security leader and expert in all elements of security. Ensuring your allocated areas continuously align to MBDA's Security Strategy and Polices, Customer's Security Policies, expectations, all applicable laws and regulations. Updating ISO 27001 documentation with any changes and ensure all policies, processes, procedures and technical infrastructure remains compliant. As part of the new incoming MOD Continuous Accreditation Process (CAP), your role as the first line representative for your areas of responsibility will be key. Tasked with leading all change management activities, you will ensure all change remains appropriate and complaint with policies. Delivering a technical security consultancy service to the business including architecture and solution suitability. Having the opportunity to work with different areas of the business you'll work proactively to coordinate and build relationships with the Principle Cyber and Information Security Advisor for all required accreditation activities. In the event of a security related incident your role will be critical in leading the response, business continuity and disaster recovery for your area. As well as the above you'll coordinate and action all technical security testing to be conducted within your areas, as well as maintaining upward reporting to MBDA UK Directors on the results. What we're looking for: Knowledge of National Security requirements for systems processing classified UK government data along with security risk management Comfortable with establishing and managing relationships with national security authorities and industry partners Experienced knowledge of modern hacking tactics, techniques and procedures. Expert in security concepts for IT network architectures, applications, cloud services and hardening of operating systems Ability to present risk balanced security solutions to problems and provide clear advice directly to Directors Background in managing and developing inexperienced IT Engineers Ideally a knowledge of system accreditation and the approvals process for government encryption and networks Knowledge of business IT processes and associated approval systems Desirable: CISSP, InfoSec/Cyber Degree What to expect: We offer opportunities for career progression, paid overtime (subject to level), bonus scheme, comprehensive pension package, annual salary review, collaborative working environment and excellent on-site facilities. We recognise that everyone is unique, and we encourage you to speak to us should you require any advice, support or adjustments throughout our recruitment process. We also welcome applicants who are looking for flexible working arrangements. Follow us on LinkedIn (MBDA), Twitter Instagram (lifeatMBDA_UK) and Glassdoor or visit our MBDA Careers website for more information! Please Note: MBDA UK requires all employees to achieve appropriate clearances!
We are nuclear professionals in everything we do The Sellafield site is one of the biggest construction sites in Europe and we are a world leader in the nuclear industry. We're responsible for some of the largest engineering projects in the UK. The Sellafield site is one of the biggest construction sites in the UK. Our challenges are almost always industry firsts. Hazard reduction is incredibly demanding technically, calling for vision, imagination and expertise. The complexity of each project is unmatched anywhere else in the nuclear sector. Our relentless pursuit of excellence is reflected in our health, safety, security, resilience and environmental performance standards. To support this we have a vacancy for a Digital Forensics & Incident Response Supervisor based within our Security & Resilience department. On a day to day basis the role involves: • Manage and develop a shift team of CSOC Analysts in relation to protective monitoring, incident response, and threat hunting to ensure the delivery of a mature and highly skilled CSOC. • Lead, co-ordinate and provide technical assurance & escalation for daily investigations performed within the CSOC to ensure high standards of working across the team and provide an in-depth technical knowledge required to delivery protective monitoring and incident response across the Corporate and OT information systems. • Develop and enact Digital Forensics capabilities within CSOC relating to escalated investigations, threat hunting and incident response to deliver cyber threat detection and forensically sound evidence, in accordance with government and ONR guidelines. • Lead in the development and tuning of Cyber Operations tooling and its application to the business, aligning with the cyber exploitation / Cyber Kill Chain / Mitre ATT&CK matrix, increase capabilities and efficiency of incident response, mitigating threats to ensure new threats and vulnerabilities are managed and mitigated. • Develop and perform the activities defined in the Cyber Security Incident Response Plan / Forensics Readiness plan, ensuring Operational elements are achieved in accordance with site emergency arrangements. • To oversee technical implementation and commissioning of Cyber Security tooling solutions to agreed requirements. • To provide advice and guidance to internal and external stakeholders in relation to Digital forensics, Incident Response and Cyber Security in general to ensure threats are identified, with measures understood to reduce impact and consequence. • To assess, suggest or take remedial action to Cyber Security Incidents within defined policies and standards. • To review, document and apply good practice against all Cyber Security incidents for damage arising from compromise of company sensitive and Government protectively marked information across Sellafield. • To review Cyber security tools, processes and procedures and assist in testing the robustness of current and developing systems. To deputise for the CSOC Manager when required. To thrive in the role you will need: • Degree qualified or 2 years minimum experience in Cyber Security or Information Assurance. • Knowledge of Digital Forensics. • Capable of obtaining GIAC certification in IT Security/Digital Forensics field. • Knowledge of Business Continuity. • Strong understanding of network protocols. • Line management / leadership experience. • Ability to achieve DV clearance + NPPV You may also have: • GCIA (Certified Intrusion Analyst). • GCFE (Certified Forensic Examiner). • GCFA (Certified Forensic Analyst). • GNFA (Network Forensic Analyst). • GPEN (Penetration Tester). • CMI First Line Management qualification. • APM / Prince2 Project Management. • IOSH Managing Safely. • Control Systems experience. • Malware analysis experience. • Vulnerability analysis experience. Pay & Benefits Salary: £38,801 Closing Date: 29/11/21 Location: Sellafield, West Cumbria In promoting equal opportunities, Sellafield Ltd welcomes applications from all sections of the community. We select people according to their abilities and our needs. You are advised to regularly check your emails (including any junk mail/spam folders) for correspondence related to this post, including assessment or interview invitations and any other type of correspondence relating to your application. In the event of a high number of responses to any advert, Sellafield Ltd reserves the right to close the advert early. As users of the Disability Confident Scheme, we guarantee to interview all disabled applicants who meet the minimum essential skills for the vacancy. You will be able to declare a disability when completing our application form
Dec 01, 2021
Full time
We are nuclear professionals in everything we do The Sellafield site is one of the biggest construction sites in Europe and we are a world leader in the nuclear industry. We're responsible for some of the largest engineering projects in the UK. The Sellafield site is one of the biggest construction sites in the UK. Our challenges are almost always industry firsts. Hazard reduction is incredibly demanding technically, calling for vision, imagination and expertise. The complexity of each project is unmatched anywhere else in the nuclear sector. Our relentless pursuit of excellence is reflected in our health, safety, security, resilience and environmental performance standards. To support this we have a vacancy for a Digital Forensics & Incident Response Supervisor based within our Security & Resilience department. On a day to day basis the role involves: • Manage and develop a shift team of CSOC Analysts in relation to protective monitoring, incident response, and threat hunting to ensure the delivery of a mature and highly skilled CSOC. • Lead, co-ordinate and provide technical assurance & escalation for daily investigations performed within the CSOC to ensure high standards of working across the team and provide an in-depth technical knowledge required to delivery protective monitoring and incident response across the Corporate and OT information systems. • Develop and enact Digital Forensics capabilities within CSOC relating to escalated investigations, threat hunting and incident response to deliver cyber threat detection and forensically sound evidence, in accordance with government and ONR guidelines. • Lead in the development and tuning of Cyber Operations tooling and its application to the business, aligning with the cyber exploitation / Cyber Kill Chain / Mitre ATT&CK matrix, increase capabilities and efficiency of incident response, mitigating threats to ensure new threats and vulnerabilities are managed and mitigated. • Develop and perform the activities defined in the Cyber Security Incident Response Plan / Forensics Readiness plan, ensuring Operational elements are achieved in accordance with site emergency arrangements. • To oversee technical implementation and commissioning of Cyber Security tooling solutions to agreed requirements. • To provide advice and guidance to internal and external stakeholders in relation to Digital forensics, Incident Response and Cyber Security in general to ensure threats are identified, with measures understood to reduce impact and consequence. • To assess, suggest or take remedial action to Cyber Security Incidents within defined policies and standards. • To review, document and apply good practice against all Cyber Security incidents for damage arising from compromise of company sensitive and Government protectively marked information across Sellafield. • To review Cyber security tools, processes and procedures and assist in testing the robustness of current and developing systems. To deputise for the CSOC Manager when required. To thrive in the role you will need: • Degree qualified or 2 years minimum experience in Cyber Security or Information Assurance. • Knowledge of Digital Forensics. • Capable of obtaining GIAC certification in IT Security/Digital Forensics field. • Knowledge of Business Continuity. • Strong understanding of network protocols. • Line management / leadership experience. • Ability to achieve DV clearance + NPPV You may also have: • GCIA (Certified Intrusion Analyst). • GCFE (Certified Forensic Examiner). • GCFA (Certified Forensic Analyst). • GNFA (Network Forensic Analyst). • GPEN (Penetration Tester). • CMI First Line Management qualification. • APM / Prince2 Project Management. • IOSH Managing Safely. • Control Systems experience. • Malware analysis experience. • Vulnerability analysis experience. Pay & Benefits Salary: £38,801 Closing Date: 29/11/21 Location: Sellafield, West Cumbria In promoting equal opportunities, Sellafield Ltd welcomes applications from all sections of the community. We select people according to their abilities and our needs. You are advised to regularly check your emails (including any junk mail/spam folders) for correspondence related to this post, including assessment or interview invitations and any other type of correspondence relating to your application. In the event of a high number of responses to any advert, Sellafield Ltd reserves the right to close the advert early. As users of the Disability Confident Scheme, we guarantee to interview all disabled applicants who meet the minimum essential skills for the vacancy. You will be able to declare a disability when completing our application form
Summary Are you looking for an organisation that cares about the work-life balance of its workforce? An employer who offers structured personal development, progression opportunities and outstanding training? Well look no further! Life moves fast at HMRC which is why we're the largest Landlord in Government! We're looking to recruit Property Specialists, Project Managers, Facilities Managers and Engineers along with candidates with expertise in a wide range of property related services that can work at pace in a fast paced and agile workplace. At HMRC we are committed to creating a great place to work for all our colleagues; an inclusive and respectful environment that reflects the diversity of the society we serve. We want to maximise the potential of everyone who chooses to work for us and we offer a range of flexible working patterns and support to make a fulfilling career at HMRC accessible to you. Diverse perspectives and experiences are critical to our success and we welcome applications from all people from all backgrounds with the experience and skills needed to perform this role. Job description This role is required to lead the related Design and Discovery activity for Physical Security and Resilience in HMRC Estates Directorate. To lead on identifying pan-estate security risks, defining physical security and resilience standards and contract requirements, and assuring that they are being correctly applied to minimise the risks to HMRC people, information and assets There is a requirement to evaluate threat and risks to HMRC business continuity/resilience on both the existing and new estates, which need to be addressed by the application of Physical Security principles. Physical Security is defined as; security measures that are designed to deny access to unauthorized personnel (including attackers or even accidental intruders) from physically accessing a building, facility, resource, or stored information; The provision of guidance on how to design structures and building services to resist potentially hostile acts, although there are other considerations and situations in which physical security measures are valuable (for example, limiting access within a facility and/or to specific assets) Responsibilities As our Physical Security and Resilience Lead you will be responsible for, but not limited to: • Identify security and resilience risks and develop physical security responses to avoid or mitigate these risks. • Work closely with HMRC security professionals, and those from the wider Civil Service, to integrate physical security responses with Cyber, Information and Personnel security responses to deliver a holistic solution as part of a layered and integrated approach • Identify opportunities to integrate physical security measures with actions required in other business areas • Define physical security and resilience standards for HMRC - in conjunction with other parts of the Civil Service - for all estate facilities including offices, digital facilities, car parking and warehousing • Specify physical security requirements for inclusion in construction and estates service provision contracts - including building structure, layout, barriers, lighting and support services • Specify business resilience / continuity requirements for inclusion in construction and estates services provision contracts - including power supply and stand-by power • Work collaboratively with HMRC staff responsible for the provision of incident response and security services - including pass issues, access control, mail screening and guarding. • Plan and deliver physical security and resilience projects • Plan and conduct physical security training • Carry out site visits to provide guidance and support to local staff, and assurance to management Ideal Candidate: • General Security background (Required) • Significant Built Environment Security experience. (Required) • Applied Physical Security - Practitioner (Required) or Expert (Desired) • Legal and Regulatory Environment - Practitioner (Required) or Expert (Desired) • Understanding Risk and Mitigation - Practitioner (Required) or Expert (Desired) • Protective Security - Awareness (Required) or Working (Desired) • Understanding of Threats - Awareness (Required) or Working (Desired) • Security Clearance - Minimum at SC, but with potential to higher level clearance (Required) • Ability to travel nationally in role to all UK sites/facilities. (Required) • Capable of operating efficiently across a wide variety of differing business areas. (Required) Essential Qualifications: • SME: Counter Terrorism; Blast Effects; Hostile Vehicle Mitigation Expertise. • Member or Fellow of a relevant security professional body such as; CySP; ISMI; Security Institute; RSES. • Working knowledge of BIM; REVIT; CAD. Our Offer While we work hard at HMRC we respect your work-life balance and offer flexible working conditions reflecting the best in the sector. We offer you structured personal development, progression opportunities, and outstanding training. Memberships Member or Fellow of a relevant security professional body such as; CySP; ISMI; Security Institute; RSES. Benefits • Learning and development tailored to your role • An environment with flexible working options • A culture encouraging inclusion and diversity • A Civil Service pension
Nov 30, 2021
Full time
Summary Are you looking for an organisation that cares about the work-life balance of its workforce? An employer who offers structured personal development, progression opportunities and outstanding training? Well look no further! Life moves fast at HMRC which is why we're the largest Landlord in Government! We're looking to recruit Property Specialists, Project Managers, Facilities Managers and Engineers along with candidates with expertise in a wide range of property related services that can work at pace in a fast paced and agile workplace. At HMRC we are committed to creating a great place to work for all our colleagues; an inclusive and respectful environment that reflects the diversity of the society we serve. We want to maximise the potential of everyone who chooses to work for us and we offer a range of flexible working patterns and support to make a fulfilling career at HMRC accessible to you. Diverse perspectives and experiences are critical to our success and we welcome applications from all people from all backgrounds with the experience and skills needed to perform this role. Job description This role is required to lead the related Design and Discovery activity for Physical Security and Resilience in HMRC Estates Directorate. To lead on identifying pan-estate security risks, defining physical security and resilience standards and contract requirements, and assuring that they are being correctly applied to minimise the risks to HMRC people, information and assets There is a requirement to evaluate threat and risks to HMRC business continuity/resilience on both the existing and new estates, which need to be addressed by the application of Physical Security principles. Physical Security is defined as; security measures that are designed to deny access to unauthorized personnel (including attackers or even accidental intruders) from physically accessing a building, facility, resource, or stored information; The provision of guidance on how to design structures and building services to resist potentially hostile acts, although there are other considerations and situations in which physical security measures are valuable (for example, limiting access within a facility and/or to specific assets) Responsibilities As our Physical Security and Resilience Lead you will be responsible for, but not limited to: • Identify security and resilience risks and develop physical security responses to avoid or mitigate these risks. • Work closely with HMRC security professionals, and those from the wider Civil Service, to integrate physical security responses with Cyber, Information and Personnel security responses to deliver a holistic solution as part of a layered and integrated approach • Identify opportunities to integrate physical security measures with actions required in other business areas • Define physical security and resilience standards for HMRC - in conjunction with other parts of the Civil Service - for all estate facilities including offices, digital facilities, car parking and warehousing • Specify physical security requirements for inclusion in construction and estates service provision contracts - including building structure, layout, barriers, lighting and support services • Specify business resilience / continuity requirements for inclusion in construction and estates services provision contracts - including power supply and stand-by power • Work collaboratively with HMRC staff responsible for the provision of incident response and security services - including pass issues, access control, mail screening and guarding. • Plan and deliver physical security and resilience projects • Plan and conduct physical security training • Carry out site visits to provide guidance and support to local staff, and assurance to management Ideal Candidate: • General Security background (Required) • Significant Built Environment Security experience. (Required) • Applied Physical Security - Practitioner (Required) or Expert (Desired) • Legal and Regulatory Environment - Practitioner (Required) or Expert (Desired) • Understanding Risk and Mitigation - Practitioner (Required) or Expert (Desired) • Protective Security - Awareness (Required) or Working (Desired) • Understanding of Threats - Awareness (Required) or Working (Desired) • Security Clearance - Minimum at SC, but with potential to higher level clearance (Required) • Ability to travel nationally in role to all UK sites/facilities. (Required) • Capable of operating efficiently across a wide variety of differing business areas. (Required) Essential Qualifications: • SME: Counter Terrorism; Blast Effects; Hostile Vehicle Mitigation Expertise. • Member or Fellow of a relevant security professional body such as; CySP; ISMI; Security Institute; RSES. • Working knowledge of BIM; REVIT; CAD. Our Offer While we work hard at HMRC we respect your work-life balance and offer flexible working conditions reflecting the best in the sector. We offer you structured personal development, progression opportunities, and outstanding training. Memberships Member or Fellow of a relevant security professional body such as; CySP; ISMI; Security Institute; RSES. Benefits • Learning and development tailored to your role • An environment with flexible working options • A culture encouraging inclusion and diversity • A Civil Service pension
Summary Are you looking for an organisation that cares about the work-life balance of its workforce? An employer who offers structured personal development, progression opportunities and outstanding training? Well look no further! Life moves fast at HMRC which is why we're the largest Landlord in Government! We're looking to recruit Property Specialists, Project Managers, Facilities Managers and Engineers along with candidates with expertise in a wide range of property related services that can work at pace in a fast paced and agile workplace. At HMRC we are committed to creating a great place to work for all our colleagues; an inclusive and respectful environment that reflects the diversity of the society we serve. We want to maximise the potential of everyone who chooses to work for us and we offer a range of flexible working patterns and support to make a fulfilling career at HMRC accessible to you. Diverse perspectives and experiences are critical to our success and we welcome applications from all people from all backgrounds with the experience and skills needed to perform this role. Job description This role is required to lead the related Design and Discovery activity for Physical Security and Resilience in HMRC Estates Directorate. To lead on identifying pan-estate security risks, defining physical security and resilience standards and contract requirements, and assuring that they are being correctly applied to minimise the risks to HMRC people, information and assets There is a requirement to evaluate threat and risks to HMRC business continuity/resilience on both the existing and new estates, which need to be addressed by the application of Physical Security principles. Physical Security is defined as; security measures that are designed to deny access to unauthorized personnel (including attackers or even accidental intruders) from physically accessing a building, facility, resource, or stored information; The provision of guidance on how to design structures and building services to resist potentially hostile acts, although there are other considerations and situations in which physical security measures are valuable (for example, limiting access within a facility and/or to specific assets) Responsibilities As our Physical Security and Resilience Lead you will be responsible for, but not limited to: • Identify security and resilience risks and develop physical security responses to avoid or mitigate these risks. • Work closely with HMRC security professionals, and those from the wider Civil Service, to integrate physical security responses with Cyber, Information and Personnel security responses to deliver a holistic solution as part of a layered and integrated approach • Identify opportunities to integrate physical security measures with actions required in other business areas • Define physical security and resilience standards for HMRC - in conjunction with other parts of the Civil Service - for all estate facilities including offices, digital facilities, car parking and warehousing • Specify physical security requirements for inclusion in construction and estates service provision contracts - including building structure, layout, barriers, lighting and support services • Specify business resilience / continuity requirements for inclusion in construction and estates services provision contracts - including power supply and stand-by power • Work collaboratively with HMRC staff responsible for the provision of incident response and security services - including pass issues, access control, mail screening and guarding. • Plan and deliver physical security and resilience projects • Plan and conduct physical security training • Carry out site visits to provide guidance and support to local staff, and assurance to management Ideal Candidate: • General Security background (Required) • Significant Built Environment Security experience. (Required) • Applied Physical Security - Practitioner (Required) or Expert (Desired) • Legal and Regulatory Environment - Practitioner (Required) or Expert (Desired) • Understanding Risk and Mitigation - Practitioner (Required) or Expert (Desired) • Protective Security - Awareness (Required) or Working (Desired) • Understanding of Threats - Awareness (Required) or Working (Desired) • Security Clearance - Minimum at SC, but with potential to higher level clearance (Required) • Ability to travel nationally in role to all UK sites/facilities. (Required) • Capable of operating efficiently across a wide variety of differing business areas. (Required) Essential Qualifications: • SME: Counter Terrorism; Blast Effects; Hostile Vehicle Mitigation Expertise. • Member or Fellow of a relevant security professional body such as; CySP; ISMI; Security Institute; RSES. • Working knowledge of BIM; REVIT; CAD. Our Offer While we work hard at HMRC we respect your work-life balance and offer flexible working conditions reflecting the best in the sector. We offer you structured personal development, progression opportunities, and outstanding training. Memberships Member or Fellow of a relevant security professional body such as; CySP; ISMI; Security Institute; RSES. Benefits • Learning and development tailored to your role • An environment with flexible working options • A culture encouraging inclusion and diversity • A Civil Service pension
Nov 30, 2021
Full time
Summary Are you looking for an organisation that cares about the work-life balance of its workforce? An employer who offers structured personal development, progression opportunities and outstanding training? Well look no further! Life moves fast at HMRC which is why we're the largest Landlord in Government! We're looking to recruit Property Specialists, Project Managers, Facilities Managers and Engineers along with candidates with expertise in a wide range of property related services that can work at pace in a fast paced and agile workplace. At HMRC we are committed to creating a great place to work for all our colleagues; an inclusive and respectful environment that reflects the diversity of the society we serve. We want to maximise the potential of everyone who chooses to work for us and we offer a range of flexible working patterns and support to make a fulfilling career at HMRC accessible to you. Diverse perspectives and experiences are critical to our success and we welcome applications from all people from all backgrounds with the experience and skills needed to perform this role. Job description This role is required to lead the related Design and Discovery activity for Physical Security and Resilience in HMRC Estates Directorate. To lead on identifying pan-estate security risks, defining physical security and resilience standards and contract requirements, and assuring that they are being correctly applied to minimise the risks to HMRC people, information and assets There is a requirement to evaluate threat and risks to HMRC business continuity/resilience on both the existing and new estates, which need to be addressed by the application of Physical Security principles. Physical Security is defined as; security measures that are designed to deny access to unauthorized personnel (including attackers or even accidental intruders) from physically accessing a building, facility, resource, or stored information; The provision of guidance on how to design structures and building services to resist potentially hostile acts, although there are other considerations and situations in which physical security measures are valuable (for example, limiting access within a facility and/or to specific assets) Responsibilities As our Physical Security and Resilience Lead you will be responsible for, but not limited to: • Identify security and resilience risks and develop physical security responses to avoid or mitigate these risks. • Work closely with HMRC security professionals, and those from the wider Civil Service, to integrate physical security responses with Cyber, Information and Personnel security responses to deliver a holistic solution as part of a layered and integrated approach • Identify opportunities to integrate physical security measures with actions required in other business areas • Define physical security and resilience standards for HMRC - in conjunction with other parts of the Civil Service - for all estate facilities including offices, digital facilities, car parking and warehousing • Specify physical security requirements for inclusion in construction and estates service provision contracts - including building structure, layout, barriers, lighting and support services • Specify business resilience / continuity requirements for inclusion in construction and estates services provision contracts - including power supply and stand-by power • Work collaboratively with HMRC staff responsible for the provision of incident response and security services - including pass issues, access control, mail screening and guarding. • Plan and deliver physical security and resilience projects • Plan and conduct physical security training • Carry out site visits to provide guidance and support to local staff, and assurance to management Ideal Candidate: • General Security background (Required) • Significant Built Environment Security experience. (Required) • Applied Physical Security - Practitioner (Required) or Expert (Desired) • Legal and Regulatory Environment - Practitioner (Required) or Expert (Desired) • Understanding Risk and Mitigation - Practitioner (Required) or Expert (Desired) • Protective Security - Awareness (Required) or Working (Desired) • Understanding of Threats - Awareness (Required) or Working (Desired) • Security Clearance - Minimum at SC, but with potential to higher level clearance (Required) • Ability to travel nationally in role to all UK sites/facilities. (Required) • Capable of operating efficiently across a wide variety of differing business areas. (Required) Essential Qualifications: • SME: Counter Terrorism; Blast Effects; Hostile Vehicle Mitigation Expertise. • Member or Fellow of a relevant security professional body such as; CySP; ISMI; Security Institute; RSES. • Working knowledge of BIM; REVIT; CAD. Our Offer While we work hard at HMRC we respect your work-life balance and offer flexible working conditions reflecting the best in the sector. We offer you structured personal development, progression opportunities, and outstanding training. Memberships Member or Fellow of a relevant security professional body such as; CySP; ISMI; Security Institute; RSES. Benefits • Learning and development tailored to your role • An environment with flexible working options • A culture encouraging inclusion and diversity • A Civil Service pension
