13 jobs found

Director , Cybersecurity , Engineering, OT, TC UKI Location: London Other locations: Primary Location Only Date: 26 Jan 2026 Requisition ID: At EY, we're all in to shape your future with confidence. We'll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world. Job Title: Director - Cybersecurity OT About EY:At EY, we are committed to building a better working world. Our Cybersecurity Consulting Practice is rapidly expanding, and we are investing in our capabilities to meet the increasing demand for cybersecurity solutions. Join us and be part of a global team of over 13,000 professionals dedicated to delivering cutting edge security transformation programs and services. The Opportunity:As a Director in Cybersecurity, you will bring diverse perspectives and deep subject matter expertise to deliver high quality insights and outcomes for our clients. You will play a strategic leadership role in shaping and overseeing complex cybersecurity engagements, strengthening senior client relationships, and guiding teams to develop innovative, practical solutions that address the evolving security challenges organisations face. Key Responsibilities: Lead and manage large OT Security engagements, overseeing day to day delivery across industrial environments including manufacturing, energy, utilities, and critical infrastructure. Ensure delivery meets quality, time and budget expectations while navigating complex OT operational constraints. Apply deep technical and sector knowledge across OT, ICSS, and IIoT environments to shape and deliver client programmes. Leverage expertise in IEC 62443, NIST CSF for OT, and the Purdue Model to conduct maturity assessments, design secure architectures, and lead OT cyber risk reduction initiatives. Identify, shape, and originate new OT security opportunities, using established industry relationships across engineering, operations, and cyber functions. Position the firm with senior OT decision makers, including engineering directors, CISOs, and asset owners, demonstrating a strong understanding of safety, reliability, and availability priorities. Partner with senior practice and market leaders to pursue high value OT security focused opportunities. Develop differentiated proposals, point of view materials, and transformation roadmaps aligned to industrial cybersecurity trends such as OT-IT convergence, zero trust for OT, asset visibility, and secure remote access. Provide visible leadership into a globally established high performing OT security team, sharing deep domain expertise in ICSS/SCADA, industrial protocols, and secure OT architecture patterns. Mentor consultants to develop both technical skills and commercial acumen, fostering a culture of continuous learning and cross disciplinary collaboration. Develop impactful OT cybersecurity thought leadership, articulating market relevant insights on IEC 62443 adoption, secure operations, industrial threat landscapes, and practical transformation strategies. Support the creation of frameworks and tools that differentiate the firm's OT security offering. Build and maintain strategic relationships with senior client leaders, including operations executives, heads of engineering, CTOs, and CISOs. Use these relationships to identify transformation opportunities, influence senior stakeholders, and steer delivery outcomes across complex industrial ecosystems. Skills and Attributes for Success: Exceptional communicator, able to clearly explain complex OT security concepts, risks, and architectures to both technical engineering teams and senior business stakeholders. Skilled at translating OT cyber risks into operational, safety, and financial impact. Strategic thinker with deep OT cybersecurity expertise, capable of diagnosing complex industrial cyber challenges and shaping robust, standards aligned solutions (e.g., IEC 62443 reference models, Purdue Model segmentation strategies, OT Zero Trust). Able to secure executive buy in by aligning cyber outcomes with operational priorities such as uptime, safety, and regulatory compliance. Proven people leader, experienced in developing skilled OT cybersecurity teams through coaching, mentoring, and modelling inclusive, collaborative leadership behaviours. Strong commercial acumen, consistently delivering high quality outcomes, managing programme risks, and ensuring operational excellence across large scale industrial cybersecurity engagements. Experienced programme and engagement leader, adept at structuring and managing multi site OT security transformations, including asset discovery, segmentation, architecture redesign, and secure remote access implementation. Skilled at navigating the unique constraints of OT systems including legacy technologies and safety critical environments. Pragmatic, client centric approach, able to navigate ambiguity across industrial operations, anticipate issues related to safety and continuity, and guide clients confidently through complex decision making regarding OT system modernisation and cyber risk reduction. Strong market access and trusted relationships, leveraging established networks in OT heavy sectors (e.g., energy, utilities, manufacturing, transport) to influence market conversations, originate new opportunities, and position the firm as a leader in industrial cybersecurity. To Qualify for the Role, You Must Have: Proven experience defining and delivering OT centric cybersecurity strategies across industrial environments (ICS, SCADA, IIoT), with the ability to clearly articulate the operational and commercial value of OT security to senior stakeholders across engineering and enterprise leadership. A strong track record developing OT cybersecurity investment and transformation cases, including business justification, cost-benefit analysis, and prioritisation of remediation activities across multi site industrial estates. Capable of aligning OT security investment with organisational goals such as regulatory compliance, contractual obligations and digital transformation. Hands on experience designing and implementing OT security target operating models, covering governance, incident response, asset lifecycle management, engineering processes, and roles/responsibilities across IT-OT converged environments. Experienced in embedding secure by design principles aligned to IEC 62443, NIST , and recognised OT security best practice. Robust understanding of OT relevant cybersecurity regulations and frameworks, including IEC 62443, NIST , NIS/NIS2, sector specific regulatory requirements, and the Purdue Model for segmentation. Ideally, You'll Also Have: Relevant security and OT security specific qualifications, such as CISSP, CIISEC, GICSP, or ISA/IEC 62443 certifications. Experience operating within or alongside NCSC Assured Cyber Consultancies or equivalent industrial cybersecurity practices, including delivering OT threat assessments, architecture reviews, red team exercises, or resilience programmes in regulated sectors. Sector experience across OT heavy industries, such as Energy & Utilities, Oil & Gas, Manufacturing, Transport, Chemicals, Pharmaceuticals, or Critical National Infrastructure - with a strong understanding of engineering processes, operational constraints, and safety critical environments. Professional services experience delivering large scale OT cybersecurity transformations, working with multi disciplinary teams of engineers, cyber specialists, and operational leaders in market leading organisations. Please note: The successful candidate must undergo and pass checks in line with SC (Security Check) clearance standards after joining EY. These checks may include, but are not limited to, verification of identity, right to work in the UK, employment history, proof of address may be required and unspent criminal convictions. Candidates must be a UK national or have been a resident in the UK for a minimum of five years and ensure that they have not spent more than six months outside the UK. Join Us:At EY, you'll have the chance to build a meaningful and fulfilling career, supported by an inclusive culture and cutting edge technology. Together, we can create a better working world for all. What we look for We're interested in people with integrity who can collaborate with people from a diverse range of backgrounds and crucially a growth mindset. What we offer We offer a competitive remuneration package where you'll be rewarded for your individual and team performance. Our comprehensive Total Rewards package includes support for flexible working and career development, and with FlexEY you can select benefits that suit your needs, covering holidays, health and well being, insurance, savings and a wide range of discounts, offers and promotions. Plus, we offer: Continuous learning:You'll develop the mindset and skills to navigate whatever comes next. Success as defined by you:We'll provide the tools and flexibility, so you can make a meaningful impact, your way. Transformative leadership:We'll give you the insights, coaching and confidence to be the leader the world needs. Diverse and inclusive culture:You'll be embraced for who you are and empowered to use your voice to help others find theirs. If you can demonstrate that you meet the criteria above, please contact us as soon as possible . click apply for full job details

Global University Systems is building a modern AI platform to power how our universities recruit, teach, support, and serve students. The Director of AI will lead this transformation, turning promising ideas into production-grade AI solutions that create real value for students and staff. This role owns the AI roadmap end-to-end: from identifying high-impact use cases, to running rapid experiments, to scaling successful solutions across multiple Higher Education Institutions. What you'll do: Set vision and strategy Own and continually refine the AI initiatives portfolio and roadmap for the group. Run a structured intake process for new ideas, assessing value, feasibility, data readiness, ethical risk, and compliance. Define clear success measures for every proof of concept (PoC) and MVP, including KPIs, leading indicators, and decision gates to continue, pivot, or stop. Lead PoCs and MVPs Run time-boxed PoCs (2-8 weeks) and MVPs (8-16 weeks) using Agile methods (Scrum or Kanban) with regular demos and retrospectives. Build and lead cross-functional squads including Product Owner, Data Scientists, ML Engineers, Integration Engineers, Solution Architect, and domain experts from Admissions, Registry and Student Services. Design experiments, test hypotheses, and iterate quickly, ensuring human-in-the-loop for critical decisions such as admissions triage or student risk flagging. Embed Responsible AI practices from the start, including bias assessment, explainability, accessibility, documentation, and impact assessments tailored to higher education. Scale platforms and solutions Take validated MVPs into production with robust architecture, integration patterns, security controls, SLAs, and operational runbooks. Establish MLOps across the university environment, including model registry, CI/CD for ML, feature stores, monitoring for drift, and retraining policies. Build reusable AI platform capabilities (e.g., orchestration, RAG services, prompt safety, connectors) that support multiple domains such as: Recruitment & Admissions: enquiry triage, lead scoring, document extraction, and decision support. Student Records & Registry: data quality checks, anomaly detection, and predictive alerts for progression and retention. Timetabling & Operations: demand forecasting, optimization support, and conflict detection. Teaching & Learning: content summarization, tutoring assistants, accessibility tools, and feedback synthesis respecting academic integrity. Student Support & Wellbeing: intelligent case routing, early warning signals, and proactive nudges designed with strong ethics and safeguarding. Research Administration: grant discovery, compliance support, and metadata enrichment. Coordinate integrations with core systems including SIS (e.g., Banner, Workday Student), LMS/VLE (Moodle, Canvas), CRM (Salesforce), library systems, HR/Finance (ERP), and identity platforms (e.g., Azure AD). Govern AI responsibly Implement a practical AI governance framework that includes a use case register, risk scoring, impact assessments, model documentation, and audit trails. Ensure compliance with GDPR, accessibility standards (e.g., WCAG), information security policies, and emerging AI regulations. Define and enforce guardrails for data and GenAI use: data access controls, PII handling, prompt/data leakage prevention, and content moderation. Drive adoption and change Partner with Deans, Registry, Admissions, Student Services, IT, Legal and other stakeholders to align on priorities and rollout plans. Communicate progress through clear dashboards and storytelling, highlighting wins and lessons learned to build momentum. Prepare teams and students for AI adoption with training, standard operating procedures, ethical use guidelines, and tailored communications. Manage vendors and financials Lead RFPs and SOWs for AI vendors, data providers, and implementation partners, including evaluation of cost, performance, and scalability. Track and optimize cloud and AI platform spend, balancing cost with value; negotiate campus-wide licensing where beneficial. What you bring: Education Bachelor's or Master's degree in Data Science, Computer Science, Business Analytics, or a related discipline. Knowledge and skills Product and outcome mindset: frames problems as hypotheses, focuses on measurable impact, and is willing to stop or pivot when evidence is weak. Delivery excellence: strong Agile practices, risk-based planning, and disciplined stage-gates from idea to production. Technical fluency: able to bridge data science, engineering, security, and business stakeholders, and make informed technical decisions. Responsible AI and data literacy: understands and embeds ethics, privacy, and accessibility by design. Change leadership: confident working across diverse academic and professional services communities to drive adoption. Experience with major cloud and AI stacks such as Azure OpenAI / OpenAI, Azure ML, Databricks, Kubernetes, and Docker. Familiarity with data platforms such as Azure Data Lake, Synapse/ADF, Delta Lake, and messaging platforms (e.g., event hubs, service bus). Exposure to MLOps and observability tools (e.g., MLflow/model registry, GitHub Actions, Prometheus/Grafana, Evidently AI). Knowledge of integrating with SIS (Banner/Workday Student), LMS (Moodle/Canvas), CRM (Salesforce), ERP (Oracle/Workday), and IdP (Azure AD). Comfort with collaboration and reporting tools such as Jira/Azure Boards, Confluence, and Power BI. Experience 6+ years in IT delivery, product, or program leadership roles, including at least 3 years leading AI/ML or advanced analytics initiatives end-to-end. Proven track record running Agile PoCs and MVPs and scaling them into production within complex organizations. Strong understanding of AI/ML techniques (e.g., classification, NLP, GenAI, RAG, prompt engineering), data pipelines, APIs, and microservices. Hands-on experience with cloud platforms (Azure preferred; AWS or GCP also valued) and MLOps tools (e.g., MLflow, Azure ML, Databricks, SageMaker or Vertex) plus observability practices. Familiarity with higher education processes and integrations across SIS, LMS, CRM, and ERP environments. Knowledge of data privacy, accessibility, security, and Responsible AI in academic or similarly regulated contexts. Excellent stakeholder communication skills with the ability to translate technical topics into clear outcomes for non-technical audiences. Experience designing or operating an AI platform or shared AI services used across multiple domains or business units. Hands-on work with vector databases and retrieval pipelines (e.g., Azure AI Search, Pinecone) and guardrails for GenAI. Background in enterprise architecture and integration patterns (event-driven, REST, GraphQL). Relevant certifications such as Agile/Scrum (PSM/CSM), Azure AI Engineer/DP-100, PMI-ACP/SAFe, or security/privacy certifications. If you are excited by the opportunity to shape the future of AI in higher education and deliver impact at scale, we encourage you to apply and join us on this journey.

Global University Systems is building a modern AI platform to power how our universities recruit, teach, support, and serve students. The Director of AI will lead this transformation, turning promising ideas into production-grade AI solutions that create real value for students and staff. This role owns the AI roadmap end-to-end: from identifying high-impact use cases, to running rapid experiments, to scaling successful solutions across multiple Higher Education Institutions. What you'll do: Set vision and strategy Own and continually refine the AI initiatives portfolio and roadmap for the group. Run a structured intake process for new ideas, assessing value, feasibility, data readiness, ethical risk, and compliance. Define clear success measures for every proof of concept (PoC) and MVP, including KPIs, leading indicators, and decision gates to continue, pivot, or stop. Lead PoCs and MVPs Run time-boxed PoCs (2-8 weeks) and MVPs (8-16 weeks) using Agile methods (Scrum or Kanban) with regular demos and retrospectives. Build and lead cross-functional squads including Product Owner, Data Scientists, ML Engineers, Integration Engineers, Solution Architect, and domain experts from Admissions, Registry and Student Services. Design experiments, test hypotheses, and iterate quickly, ensuring human-in-the-loop for critical decisions such as admissions triage or student risk flagging. Embed Responsible AI practices from the start, including bias assessment, explainability, accessibility, documentation, and impact assessments tailored to higher education. Scale platforms and solutions Take validated MVPs into production with robust architecture, integration patterns, security controls, SLAs, and operational runbooks. Establish MLOps across the university environment, including model registry, CI/CD for ML, feature stores, monitoring for drift, and retraining policies. Build reusable AI platform capabilities (e.g., orchestration, RAG services, prompt safety, connectors) that support multiple domains such as: Recruitment & Admissions: enquiry triage, lead scoring, document extraction, and decision support. Student Records & Registry: data quality checks, anomaly detection, and predictive alerts for progression and retention. Timetabling & Operations: demand forecasting, optimization support, and conflict detection. Teaching & Learning: content summarization, tutoring assistants, accessibility tools, and feedback synthesis respecting academic integrity. Student Support & Wellbeing: intelligent case routing, early warning signals, and proactive nudges designed with strong ethics and safeguarding. Research Administration: grant discovery, compliance support, and metadata enrichment. Coordinate integrations with core systems including SIS (e.g., Banner, Workday Student), LMS/VLE (Moodle, Canvas), CRM (Salesforce), library systems, HR/Finance (ERP), and identity platforms (e.g., Azure AD). Govern AI responsibly Implement a practical AI governance framework that includes a use case register, risk scoring, impact assessments, model documentation, and audit trails. Ensure compliance with GDPR, accessibility standards (e.g., WCAG), information security policies, and emerging AI regulations. Define and enforce guardrails for data and GenAI use: data access controls, PII handling, prompt/data leakage prevention, and content moderation. Drive adoption and change Partner with Deans, Registry, Admissions, Student Services, IT, Legal and other stakeholders to align on priorities and rollout plans. Communicate progress through clear dashboards and storytelling, highlighting wins and lessons learned to build momentum. Prepare teams and students for AI adoption with training, standard operating procedures, ethical use guidelines, and tailored communications. Manage vendors and financials Lead RFPs and SOWs for AI vendors, data providers, and implementation partners, including evaluation of cost, performance, and scalability. Track and optimize cloud and AI platform spend, balancing cost with value; negotiate campus-wide licensing where beneficial. What you bring: Education Bachelor's or Master's degree in Data Science, Computer Science, Business Analytics, or a related discipline. Knowledge and skills Product and outcome mindset: frames problems as hypotheses, focuses on measurable impact, and is willing to stop or pivot when evidence is weak. Delivery excellence: strong Agile practices, risk-based planning, and disciplined stage-gates from idea to production. Technical fluency: able to bridge data science, engineering, security, and business stakeholders, and make informed technical decisions. Responsible AI and data literacy: understands and embeds ethics, privacy, and accessibility by design. Change leadership: confident working across diverse academic and professional services communities to drive adoption. Experience with major cloud and AI stacks such as Azure OpenAI / OpenAI, Azure ML, Databricks, Kubernetes, and Docker. Familiarity with data platforms such as Azure Data Lake, Synapse/ADF, Delta Lake, and messaging platforms (e.g., event hubs, service bus). Exposure to MLOps and observability tools (e.g., MLflow/model registry, GitHub Actions, Prometheus/Grafana, Evidently AI). Knowledge of integrating with SIS (Banner/Workday Student), LMS (Moodle/Canvas), CRM (Salesforce), ERP (Oracle/Workday), and IdP (Azure AD). Comfort with collaboration and reporting tools such as Jira/Azure Boards, Confluence, and Power BI. Experience 6+ years in IT delivery, product, or program leadership roles, including at least 3 years leading AI/ML or advanced analytics initiatives end-to-end. Proven track record running Agile PoCs and MVPs and scaling them into production within complex organizations. Strong understanding of AI/ML techniques (e.g., classification, NLP, GenAI, RAG, prompt engineering), data pipelines, APIs, and microservices. Hands-on experience with cloud platforms (Azure preferred; AWS or GCP also valued) and MLOps tools (e.g., MLflow, Azure ML, Databricks, SageMaker or Vertex) plus observability practices. Familiarity with higher education processes and integrations across SIS, LMS, CRM, and ERP environments. Knowledge of data privacy, accessibility, security, and Responsible AI in academic or similarly regulated contexts. Excellent stakeholder communication skills with the ability to translate technical topics into clear outcomes for non-technical audiences. Experience designing or operating an AI platform or shared AI services used across multiple domains or business units. Hands-on work with vector databases and retrieval pipelines (e.g., Azure AI Search, Pinecone) and guardrails for GenAI. Background in enterprise architecture and integration patterns (event-driven, REST, GraphQL). Relevant certifications such as Agile/Scrum (PSM/CSM), Azure AI Engineer/DP-100, PMI-ACP/SAFe, or security/privacy certifications. If you are excited by the opportunity to shape the future of AI in higher education and deliver impact at scale, we encourage you to apply and join us on this journey.

Global University Systems is building a modern AI platform to power how our universities recruit, teach, support, and serve students. The Director of AI will lead this transformation, turning promising ideas into production-grade AI solutions that create real value for students and staff. This role owns the AI roadmap end-to-end: from identifying high-impact use cases, to running rapid experiments, to scaling successful solutions across multiple Higher Education Institutions. What you'll do: Set vision and strategy Own and continually refine the AI initiatives portfolio and roadmap for the group. Run a structured intake process for new ideas, assessing value, feasibility, data readiness, ethical risk, and compliance. Define clear success measures for every proof of concept (PoC) and MVP, including KPIs, leading indicators, and decision gates to continue, pivot, or stop. Lead PoCs and MVPs Run time-boxed PoCs (2-8 weeks) and MVPs (8-16 weeks) using Agile methods (Scrum or Kanban) with regular demos and retrospectives. Build and lead cross-functional squads including Product Owner, Data Scientists, ML Engineers, Integration Engineers, Solution Architect, and domain experts from Admissions, Registry and Student Services. Design experiments, test hypotheses, and iterate quickly, ensuring human-in-the-loop for critical decisions such as admissions triage or student risk flagging. Embed Responsible AI practices from the start, including bias assessment, explainability, accessibility, documentation, and impact assessments tailored to higher education. Scale platforms and solutions Take validated MVPs into production with robust architecture, integration patterns, security controls, SLAs, and operational runbooks. Establish MLOps across the university environment, including model registry, CI/CD for ML, feature stores, monitoring for drift, and retraining policies. Build reusable AI platform capabilities (e.g., orchestration, RAG services, prompt safety, connectors) that support multiple domains such as: Recruitment & Admissions: enquiry triage, lead scoring, document extraction, and decision support. Student Records & Registry: data quality checks, anomaly detection, and predictive alerts for progression and retention. Timetabling & Operations: demand forecasting, optimization support, and conflict detection. Teaching & Learning: content summarization, tutoring assistants, accessibility tools, and feedback synthesis respecting academic integrity. Student Support & Wellbeing: intelligent case routing, early warning signals, and proactive nudges designed with strong ethics and safeguarding. Research Administration: grant discovery, compliance support, and metadata enrichment. Coordinate integrations with core systems including SIS (e.g., Banner, Workday Student), LMS/VLE (Moodle, Canvas), CRM (Salesforce), library systems, HR/Finance (ERP), and identity platforms (e.g., Azure AD). Govern AI responsibly Implement a practical AI governance framework that includes a use case register, risk scoring, impact assessments, model documentation, and audit trails. Ensure compliance with GDPR, accessibility standards (e.g., WCAG), information security policies, and emerging AI regulations. Define and enforce guardrails for data and GenAI use: data access controls, PII handling, prompt/data leakage prevention, and content moderation. Drive adoption and change Partner with Deans, Registry, Admissions, Student Services, IT, Legal and other stakeholders to align on priorities and rollout plans. Communicate progress through clear dashboards and storytelling, highlighting wins and lessons learned to build momentum. Prepare teams and students for AI adoption with training, standard operating procedures, ethical use guidelines, and tailored communications. Manage vendors and financials Lead RFPs and SOWs for AI vendors, data providers, and implementation partners, including evaluation of cost, performance, and scalability. Track and optimize cloud and AI platform spend, balancing cost with value; negotiate campus-wide licensing where beneficial. What you bring: Education Bachelor's or Master's degree in Data Science, Computer Science, Business Analytics, or a related discipline. Knowledge and skills Product and outcome mindset: frames problems as hypotheses, focuses on measurable impact, and is willing to stop or pivot when evidence is weak. Delivery excellence: strong Agile practices, risk-based planning, and disciplined stage-gates from idea to production. Technical fluency: able to bridge data science, engineering, security, and business stakeholders, and make informed technical decisions. Responsible AI and data literacy: understands and embeds ethics, privacy, and accessibility by design. Change leadership: confident working across diverse academic and professional services communities to drive adoption. Experience with major cloud and AI stacks such as Azure OpenAI / OpenAI, Azure ML, Databricks, Kubernetes, and Docker. Familiarity with data platforms such as Azure Data Lake, Synapse/ADF, Delta Lake, and messaging platforms (e.g., event hubs, service bus). Exposure to MLOps and observability tools (e.g., MLflow/model registry, GitHub Actions, Prometheus/Grafana, Evidently AI). Knowledge of integrating with SIS (Banner/Workday Student), LMS (Moodle/Canvas), CRM (Salesforce), ERP (Oracle/Workday), and IdP (Azure AD). Comfort with collaboration and reporting tools such as Jira/Azure Boards, Confluence, and Power BI. Experience 6+ years in IT delivery, product, or program leadership roles, including at least 3 years leading AI/ML or advanced analytics initiatives end-to-end. Proven track record running Agile PoCs and MVPs and scaling them into production within complex organizations. Strong understanding of AI/ML techniques (e.g., classification, NLP, GenAI, RAG, prompt engineering), data pipelines, APIs, and microservices. Hands-on experience with cloud platforms (Azure preferred; AWS or GCP also valued) and MLOps tools (e.g., MLflow, Azure ML, Databricks, SageMaker or Vertex) plus observability practices. Familiarity with higher education processes and integrations across SIS, LMS, CRM, and ERP environments. Knowledge of data privacy, accessibility, security, and Responsible AI in academic or similarly regulated contexts. Excellent stakeholder communication skills with the ability to translate technical topics into clear outcomes for non-technical audiences. Experience designing or operating an AI platform or shared AI services used across multiple domains or business units. Hands-on work with vector databases and retrieval pipelines (e.g., Azure AI Search, Pinecone) and guardrails for GenAI. Background in enterprise architecture and integration patterns (event-driven, REST, GraphQL). Relevant certifications such as Agile/Scrum (PSM/CSM), Azure AI Engineer/DP-100, PMI-ACP/SAFe, or security/privacy certifications. If you are excited by the opportunity to shape the future of AI in higher education and deliver impact at scale, we encourage you to apply and join us on this journey.

Acuiti Labs is a specialist Global SAP consulting firm headquartered in London, UK, servicing clients globally for 'Consume to Cash' process transformation and optimization. We solve business challenges and problems using the most appropriate solution architecture, technology which fits into the client's requirements and provides optimum functionalities, build tech platforms, and enable market-winning digital strategies. Our core expertise and experience are in technology R&D, digital and business strategy. We deploy efficient and effective talent solutions to enable innovation and build software products and solutions in a robust and economic manner. We also have innovative business engagement models to suit the needs of each client. For moreinformation, please visit our website. Most Innovative Companies in The UK - 2024 Great Place to Work Certified - 2022, 2023, 2024 & 2025 What we believe in: We take pride in having a diverse and talented workforce spread across various geographical locations. We are a gender-neutral organization and we strongly believe in Diversity and Inclusion. Our core values include - Integrity Learning Organizational pride Respect What We Do: Innovation is at the heart of everything that Acuiti Labs offer. As an SAP Silver Partner, and an SAP BRIM company, Acuiti Labs has been delivering business technology solutions & digital transformation deploying SAP BRIM (Billing) on S/4HANA and cloud-based applications such as Subscription Billing, CPQ & Entitlement Management. Acuiti Labs come with the experience of multiple industry use cases to support the subscription and consumption-based Target Operating Models. This includes Mobility-as-a-Service (Travel using Public Transport and Private Vehicles), Tourism-as-a-Service (Hotels, Entertainment Parks), Ports-as-a-Service (Airports and Seaports), Postal-as-a-Service, Telco-as-a -service, and Software-as-a-Service. "Our core expertise and experience lie in providing reliable technology, enabling digital transformation for an intelligent enterprise, and offering business strategy consulting, and deploying innovative and efficient solutions. What we offer you: We are proud to be an organization that firmly believes in having a company culture that is friendly,motivating, nurturing, and challenging at the same time. we enthusiastically promote new policies and practices that ensures wellbeing of our employees. We offer comprehensive benefits including life insurance, group medical coverage for you and your family, and personal accident protection. Enjoy a supportive work-life balance with flexible hours, paid time off, and various lifestyle perks. Be recognized with monthly rewards, spot bonuses, and growth shares, while advancing your career with training, global exposure, and onsite opportunities. We're committed to your development, diversity, and well-being. Role Overview TheInformation Security Officer (ISO)will be responsible for establishing, implementing, monitoring, and improving Acuiti Labs'Information Security Management System (ISMS)andData Protection frameworkin alignment withISO/IEC 27001:2013,ISO/IEC 27001:2022, andISO/IEC 27701:2019standards. This role combines strategic planning, risk management, compliance oversight, and hands on execution to ensure robust protection of Acuiti Labs' information assets and adherence to regulatory and client requirements. Key Responsibilities 1. Planning Define information security goals and objectives aligned with Acuiti Labs' business strategy. Establish the scope and boundaries of the organization's ISMS. Develop and maintain information security policies, standards, and guidelines. Create classification policies for information assets and ensure appropriate handling procedures. Plan and implement ISMS in compliance withISO/IEC 27001standards. Develop risk management and security implementation frameworks with measurable KPIs. Define and maintain a process for continuous review and improvement of security policies and procedures. 2. Information Security Management Maintain and improve the organization-wideInformation Security and Risk Management Plan. Ensure integration of security principles into all business and IT processes. Conduct regularrisk assessments, vulnerability analyses, and impact assessments. Define and implementrisk treatmentandresidual risk evaluationmeasures. Oversee incident response, including documentation, analysis, and remediation of security breaches. Monitor compliance with legal, regulatory, and contractual requirements. Lead organization-widesecurity awareness and training programsand measure their effectiveness. DriveBusiness Continuity and Disaster Recovery Planning (BCP/DR)initiatives, including periodic drills and updates. Manage change control processes for ISMS and IT infrastructure updates. Ensure vendor and contractor compliance with organizational security standards. 3. Data Protection Officer Responsibilities Serve as the primary point of contact fordata privacy and protection matters. Ensure compliance withISO/IEC 27701:2019,GDPR, and other relevant data protection laws. Maintain detailed records of all data processing activities. Conduct periodicdata protection impact assessments (DPIAs). Respond todata subject requestsand coordinate with supervisory authorities as needed. Monitor changes in privacy laws and update internal practices accordingly. 4. Information Security Auditing Conduct internalISMS auditsat least annually or after significant infrastructure changes. Evaluate compliance withlegal, regulatory, and organizational information security requirements. Prepare and present audit reports with actionable recommendations to senior management. Lead remediation efforts and ensure timely closure of audit findings. Qualifications Bachelor's or Master's degree in Information Technology, Computer Science, or related field. Relevant certifications such asCISSP, CISM, CISA, or CRISCare highly desirable. 5-10 years of progressive experience in Information Security, Risk Management, or IT Governance, ideally within theIT or SAP consulting industry. Proven experience implementing or maintainingISO/IEC 27001andISO/IEC 27701standards. Strong understanding ofIT audit principles,cybersecurity frameworks, andrisk assessment methodologies. Desired Skills and Competencies In-depth understanding ofinfrastructure security,cloud platforms (AWS, Azure),network security, andidentity management. Experience withMicrosoft technologies(Windows Server, Active Directory, M365) andServiceNow. Strong knowledge ofSAP ecosystemsecurity considerations preferred. Exceptional communication, leadership, and stakeholder management skills. Ability to work independently, manage multiple priorities, and drive cross functional collaboration. Strong ethical standards, analytical mindset, and commitment to continuous improvement. Awareness of global data privacy regulations and cybersecurity trends.

Team/Role Overview Excited to grow your career? We value our talented employees, and whenever possible strive to help one of our associates grow professionally before recruiting new talent to our open positions. If you think the open position you see is right for you, we encourage you to apply! The Senior Audit Manager is within the AI Technology, Cyber, Data and GenAI Engineering team and is a senior level management position, reporting to the Audit Director - AI Technology, Cyber, Data and GenAI Engineering, with an overall objective to execute audit activities and assessments of the risk and control environment for the adoption of AI/GenAI, specifically related to AI Technology, Cyber, Data and GenAI Engineering. This role will primarily focus on AI Technology, Cyber, Data and GenAI Engineering with the overall objective of ensuring that Citi Internal Audit's approach to AI positions Citi IA as the leading IA function in the financial services industry. Citi IA is a dynamic global function of over 2,500 professionals located across more than 60 countries, covering Citi's global businesses and service to clients and customers through its network in 98 countries. Through a culture of continuous improvement, Citi IA is focused on maintaining its position as a best in class IA function and is committed to investing in people, learning and development, innovation, and methodology programs. The Internal Audit mission is to provide independent, objective, reliable, valued and timely assurance to the Board, senior management and regulators of Citigroup and Citibank (and its subsidiaries), over the effectiveness of culture, ethical conduct, governance, risk management, and controls that mitigate current and evolving risks and to enhance the control environment. IA is a change agent within Citi to enhance the control culture of Citi worldwide and therefore support senior management decision making around the globe. Citi operates in over 100 countries and provides consumers, corporations, governments, and institutions with a broad range of financial services and products. Citi strives to create the best outcomes for clients and customers with financial ingenuity that leads to solutions that are simple, creative, and responsive. What you will do Deliver audit reports, Internal Audit and Regulatory issue validation and business monitoring and governance committee reports relating to AI Technology, Cyber, Data and GenAI Engineering Act as a trusted subject matter expert on AI Technology, Cyber, Data and GenAI Engineering across the IA team Oversight of portfolios within the AI Technology, Cyber, Data and GenAI Engineering team including stakeholder engagement, assessment of key emerging and inherent risks, etc Participate in business initiatives and pro actively advise and assist the business on change initiatives Implement integrated auditing concepts and technology, and follow trends in the Audit field and adapt them for the Audit function Identify solutions for a variety of complex and unique control issues, utilizing complex judgement and sophisticated analytical thought Analyse report findings, and recommend interventions where needed, proposing creative and pragmatic solutions to risk and control issues Partner with Directors and Managing Directors to develop approaches for addressing broader corporate emerging issues Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency, as well as effectively supervising the activity of others and creating accountability with those who fail to maintain these standards What we will need from you Previous experience in a related role Sound understanding in AI Technology, Cyber, Data and GenAI Engineering Understanding of GenAI security, data and operational architecture Understanding of financial services regulations and how they intersect with AI/GenAI e.g. conduct risk, operational resilience, data protection, algorithmic trading, AML/KYC, consumer protection Related certifications such as Certified Information Systems (CISA), Certified Internal Auditor (CIA), Certified in Risk and Information Systems (CRISC) or similar. AI related certifications are a plus Demonstrated successful experience in business, functional and people management Proven ability to execute concurrently on a portfolio of high quality deliverables according to strict timetables Demonstrated ability to implement continuous improvement and innovation in audit tools and techniques Consistently demonstrates clear and concise written and verbal communication Demonstrated ability to remain unbiased in a diverse working environment Effective negotiation skills Education Bachelor's degree/University degree in law, ethics, decision science, computer science, data science, finance, accounting or a related field, or equivalent experience. Master's degree preferred. What we can offer you We work hard to have a positive financial and social impact on the communities we serve. In turn, we put our employees first and provide the best in class benefits they need to be well, live well and save well. By joining Citi London, you will not only be part of a business casual workplace with a hybrid working model (up to 2 days working at home per week), but also receive a competitive base salary (annually reviewed), and enjoy a whole host of additional benefits such as: Generous holiday allowance starting at 27 days plus bank holidays; increasing with tenure. A discretionary annual performance related bonus Private medical insurance packages to suit your personal circumstances. Employee Assistance Program Pension Plan Paid Parental Leave Exclusive discounts for employees, family, and friends Access to an array of learning and development resources Alongside these benefits Citi is committed to ensuring our workplace is where everyone feels comfortable coming to work as their whole self every day. We want the best talent around the world to be energised to join us, motivated to stay, and empowered to thrive. Sounds like Citi has everything you need? Then apply to discover the true extent of your capabilities. Citi is an equal opportunity employer, and qualified candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other characteristic protected by law. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi. View Citi's EEO Policy Statement and the Know Your Rights poster.

Experian's Offensive Security team charges itself with improving the organisation's security posture through clarifying risk and verifying the efficacy of our technical, people, physical and process controls from an attacker perspective. The team perform regular Adversary Simulation (Red Team) testing and a range of Ad-Hoc and Tactical Assessments based on changes to the threat landscape and organisational needs. To succeed in this role, you have breadth and depth of knowledge in security. This knowledge will include operating systems, networking and protocols, firewalls, databases, and middleware applications. Additionally, you will have expertise in forensics, scripting and programming, vulnerabilities, and the usage of GenAI / social engineering techniques. This is a fully remote, UK-based position reporting to the Head of Offensive Security. Responsibilities Collaborate with other teams within the Cyber Fusion Centre and the wider organisation. This ensures that we understand and articulate Cyber Risks in a threat-informed manner. The ultimate goal is to contribute to the successful defense of the organisation. Support Offensive Security's engagement at multiple organizational levels, from senior leaders to technical analysts to help improve risk understanding and verify the efficacy of remediation/mitigative actions. Participate in performing physical exploitation, network exploitation and social engineering assessments against authorized targets. Use CyberThreat Intelligence, Offensive Security Research, previous Adversary Simulation (Red Team) findings and internal risk intelligence to develop test cases demonstrating TTP effectiveness against Experian's control environment. Research and stay up to date with the latest cyber threats, attack vectors and attacker methodologies. Develop scripts, tools and methodologies to increase Offensive Security's capabilities and educate other team members around automation and AI. Use MITRE ATT&CK Framework and other structured attack analysis tools to describe and classify attacker methodology and significance. About Experian Experian is a global data and technology company, powering opportunities for people and businesses around the world. We help to redefine lending practices, uncover and prevent fraud, simplify healthcare, create marketing solutions, and gain deeper insights into the automotive market, all using our unique combination of data, analytics and software. We also assist millions of people to realize their financial goals and help them save time and money. We invest in people and new advanced technologies to unlock the power of data. As a FTSE 100 Index company listed on the London Stock Exchange (EXPN), we have a team of 22,500 people across 32 countries. Our corporate headquarters are in Dublin, Ireland. Learn more at Experience and Skills What your core background is Background in offensive security and adversary simulation. Detailed knowledge of global cyber threats and the procedures used by cyber adversaries. Network penetration testing and manipulation of network infrastructure. Web application penetration testing assessments. Email, phone, or physical social-engineering assessments. Development, extension, or modifying of exploits, shecode or exploit tools. Covert physical intrusion. Cloud security or penetration testing (any major provider). AI Red Teaming/Testing and usage of Agentic AI for automation. Industry certifications such as OSCP, OSCE, OSWE, GPEN, GCIH, GWAPT, or GXPN or equivalent experience. Specialist skills Proficient in attacker tooling, including post-exploitation frameworks and tooling. Proficient in any of following programming languages (C, C++, C#, Python, PowerShell, Bash, or Ruby) Proficient in Social Engineering techniques across OSINT, phishing, vishing and impersonation. Knowledge of current cloud attack methodologies and mitigations. Experience of Windows Operating System architecture and internals and use thereof in an enterprise environment. Core Information Technology concepts such as TCP/IP networking, Windows & Active Directory, Unix/Linux, Mainframe, Cloud Service Providers, Relational Databases, Data Warehouses, and filesystems Knowledge of IT technologies and methods to secure them i.e. databases, SharePoint, storage area networks and cloud-based storage. Benefits package includes Great compensation package and discretionary bonus plan Core benefits include pension, bupa healthcare, sharesave scheme and more 25 days annual leave with 8 bank holidays and 3 volunteering days. You can purchase additional annual leave. Experian is proud to be an Equal Opportunity and affirmative action employer. Innovation is an important part of Experian's DNA and practices, and our diverse workforce drives our success. Everyone can succeed at Experian and bring their whole self to work, irrespective of their gender, ethnicity, religion, colour, sexuality, physical ability or age. If you have a disability or special need that requires accommodation, please let us know at the earliest opportunity. Experian Careers - Creating a better tomorrow together

Identity & Access Management - Authentication Services Product Owner Corporate Title: Vice President Division: Group CTO Department: Group Platform Services and Engineering Location: London, UK (Hybrid) Company Overview Nomura is a global financial services group with an integrated network spanning approximately 30 countries and regions. By connecting markets East & West, Nomura services the needs of individuals, institutions, corporates and governments through its three business divisions: Wealth Management, Investment Management, and Wholesale (Global Markets and Investment Banking). Founded in 1925, the firm is built on a tradition of disciplined entrepreneurship, serving clients with creative solutions and considered thought leadership. For further information about Nomura, visit . Role/Department Overview We are seeking an experienced Authentication Services and Directory Services Product Owner to lead the strategic development and management of our comprehensive enterprise identity infrastructure. This role will drive the product roadmap for both authentication services and directory services, including Microsoft Entra ID (formerly Azure AD), Active Directory, LDAP, Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Microsoft Authenticator implementations across hybrid and cloud environments. The Product Owner will work closely with a dedicated Technical Lead who provides deep technical expertise and architectural guidance. Key Responsibilities Product Strategy & Vision Define and execute integrated product strategy for authentication services and directory infrastructure. Develop comprehensive roadmaps that align directory services with authentication and identity management solutions. Drive modernization initiatives from legacy directory services to cloud-first identity platforms. Establish enterprise-wide identity and directory service standards and governance frameworks. Align directory and authentication services with business objectives, security requirements, and digital transformation goals. Directory Services Leadership Own the strategic direction for enterprise directory services architecture and evolution. Partner with Technical Lead to translate business requirements into technical directory service solutions. Drive directory modernization projects including cloud migration and hybrid identity scenarios. Drive directory service standards and data governance policies. Lead directory consolidation, cleanup, and decommissioning projects to reduce technical debt. Authentication Services Management Drive enterprise authentication strategy including passwordless and modern authentication adoption. Collaborate with Tech Lead on Entra ID implementation strategy including conditional access and identity governance. Manage SSO strategy and implementation across enterprise applications and cloud services. Lead MFA deployment strategies and Microsoft Authenticator rollout initiatives. Define authentication business requirements and success criteria for technical implementation. Business & Strategic Focus Work with Tech Lead to ensure technical feasibility of product roadmap initiatives. Translate complex technical solutions into business value propositions and ROI analysis. Coordinate cross-platform identity federation requirements with technical implementation details. Drive business case development for identity infrastructure investments and modernization projects. Manage vendor relationships and contract negotiations while leveraging Tech Lead's technical evaluation. Stakeholder Management & Governance Collaborate with IT security, infrastructure, application development, and business teams. Partner with business units to understand directory and authentication requirements. Work closely with Microsoft and other vendors on product roadmaps and strategic initiatives. Present product updates, ROI analysis, and strategic recommendations to executive leadership. Establish identity governance committees and change management processes. Product Development & Operations Manage integrated product backlog for directory services and authentication initiatives. Define user stories, acceptance criteria, and business success metrics for identity projects. Partner with Tech Lead to ensure technical requirements are properly captured and prioritized. Drive automation initiatives for directory maintenance, user lifecycle, and access management. Coordinate capacity planning and business continuity requirements with technical implementation. Performance & Business Outcomes Establish KPIs and business metrics for directory services and authentication platform success. Monitor business impact of identity infrastructure including user productivity and security posture. Drive continuous improvement initiatives based on business outcomes and user feedback. Manage stakeholder communication during incidents while Tech Lead handles technical resolution. Oversee budget management and cost optimization for identity services. Compliance & Risk Management Ensure directory services and authentication solutions meet regulatory and compliance requirements. Collaborate with security and legal teams on identity-related risk assessments. Drive implementation of governance policies and business process improvements. Manage audit coordination, compliance reporting, and regulatory documentation. Oversee business aspects of privileged access management and administrative delegation models. Skills, Experience, Qualifications and Knowledge Required Bachelor's degree in Computer Science, Information Technology, or a related field; Master's degree preferred. Considerable experience across Identity and Access Management disciplines, including a focus on Authentication solutions. Previous experience operating as a Product Owner, driving a backlog of prioritized work. Proven experience in working with financial institutions, understanding regulatory compliance, and security requirements. Strong knowledge of identity protocols (e.g., SAML, OAuth, OpenID Connect) and enterprise security frameworks. Excellent analytical, problem-solving, and communication skills. Relevant certifications such as CISSP, CISM, or CISA are highly desirable. Nomura Competencies Explore Insights & Vision Identify the underlying causes of problems faced by you or your team and define a clear vision and direction for the future. Making Strategic Decisions Evaluate all the options for resolving the problems and effectively prioritize actions or recommendations. Inspire Entrepreneurship in People Inspire team members through effective communication of ideas and motivate them to actively enhance productivity. Elevate Organizational Capability Engage proactively in professional development and enhance team productivity through the promotion of knowledge sharing. Inclusion Respect DEI, foster a culture of psychological safety in the workplace and cultivate a "Risk Culture" (Challenge, Escalate and Respect). Right to Work The UK Government has taken steps to reduce net migration to the UK by limiting the number of overseas workers from outside the EEA coming to the UK for employment. Please note that whilst we are able to consider applications from overseas workers from outside the EEA (who require a Tier 2 (General) visa) we can only employ them if we can provide evidence that there are no other suitable candidates for this vacancy from inside the EEA. Please contact us if you are visiting our offices and require any form of personal assistance or physical adaptations to be provided for your appointment. A member of staff will be happy to help. Diversity Statement Nomura is committed to an employment policy of equal opportunities and is fundamentally opposed to any less favourable treatment accorded to existing or potential members of staff on the grounds of race, creed, colour, nationality, disability, marital status, pregnancy, gender or sexual orientation. If you require any assistance or reasonable adjustments due to a disability or long-term health condition, please do not hesitate to contact us. Nomura is an Equal Opportunity Employer.