Head of Security Operations Department: IT Operations Employment Type: Permanent - Full Time Location: London Reporting To: Kirsty Kelly Description As Head of Security Operations, you will be responsible for leading the day-to-day operational cybersecurity functions for the Group. You will ensure robust, efficient and globally coordinated security operations that protect the organisation's people, systems, and data. This includes direct ownership of security controls, security testing, vendor management, vulnerability and threat management, and incident response. You will work daily with the Group CISO to support consistent, high-assurance security practices across all regions, in-line with regional regulation and to support the management of cyber incidents. It is essential the individual who will fill this role has prior management experience, has supported building security teams previously and has knowledge around their responsibility at this level to report incidents and security concerns within regulatory timelines and standards. About the role Within this role, you will have been supporting the Group CISO by managing the security team and programmes of work in your responsibility area. You will be responsible for the management of any global Cyber Incidents by supporting the CISO team. Additionally, you will be: Working collaboratively with the SOC to ensure 24/7 visibility and threat detection across global environments, driving maturity and constant improvements to support the ever-changing threat landscape. Defining and monitoring KPIs for detection, response, and containment performance. Owning and managing key security controls, along with managing the vendors responsible for supporting CFC. Ensuring security controls are deployed, tuned, and monitored effectively across cloud and on-premises assets. Leading the organisation's global vulnerability management program, ensuring threat led and risk-based prioritization, along with collaboration with IT for timely remediation. Leading on and refining the incident response playbooks Support the Group CISO to define security maturity programme roadmaps, priorities and success metrics. As well as many more SecOps focused tasks. About you The ideal candidate will come with demonstrated leadership and ability with the ability to motivate high-performing, globally distributed security teams. Also, you will have: Experience with cloud-native security in AWS, Azure, or GCP. Proven success scaling security operations across geographies Exceptional analytical and decision-making abilities during BAU and incidents. Strong technical ability to understand and manage security tooling, integrations, and data pipelines. Core Values Love what you do: We show up each day ready to take on the world. Our passion and intensity set us apart and makes the difference to our colleagues, customers, brokers and carriers. Challenge everything: We're never afraid to question the way that things are done and we constantly challenge ourselves and others to makes things better. Have fun, be good: Insurance is a serious business, but we don't take ourselves too seriously. We make it fun to work at CFC, we welcome all viewpoints, and we treat everyone how we would expect to be treated.
Jul 02, 2025
Full time
Head of Security Operations Department: IT Operations Employment Type: Permanent - Full Time Location: London Reporting To: Kirsty Kelly Description As Head of Security Operations, you will be responsible for leading the day-to-day operational cybersecurity functions for the Group. You will ensure robust, efficient and globally coordinated security operations that protect the organisation's people, systems, and data. This includes direct ownership of security controls, security testing, vendor management, vulnerability and threat management, and incident response. You will work daily with the Group CISO to support consistent, high-assurance security practices across all regions, in-line with regional regulation and to support the management of cyber incidents. It is essential the individual who will fill this role has prior management experience, has supported building security teams previously and has knowledge around their responsibility at this level to report incidents and security concerns within regulatory timelines and standards. About the role Within this role, you will have been supporting the Group CISO by managing the security team and programmes of work in your responsibility area. You will be responsible for the management of any global Cyber Incidents by supporting the CISO team. Additionally, you will be: Working collaboratively with the SOC to ensure 24/7 visibility and threat detection across global environments, driving maturity and constant improvements to support the ever-changing threat landscape. Defining and monitoring KPIs for detection, response, and containment performance. Owning and managing key security controls, along with managing the vendors responsible for supporting CFC. Ensuring security controls are deployed, tuned, and monitored effectively across cloud and on-premises assets. Leading the organisation's global vulnerability management program, ensuring threat led and risk-based prioritization, along with collaboration with IT for timely remediation. Leading on and refining the incident response playbooks Support the Group CISO to define security maturity programme roadmaps, priorities and success metrics. As well as many more SecOps focused tasks. About you The ideal candidate will come with demonstrated leadership and ability with the ability to motivate high-performing, globally distributed security teams. Also, you will have: Experience with cloud-native security in AWS, Azure, or GCP. Proven success scaling security operations across geographies Exceptional analytical and decision-making abilities during BAU and incidents. Strong technical ability to understand and manage security tooling, integrations, and data pipelines. Core Values Love what you do: We show up each day ready to take on the world. Our passion and intensity set us apart and makes the difference to our colleagues, customers, brokers and carriers. Challenge everything: We're never afraid to question the way that things are done and we constantly challenge ourselves and others to makes things better. Have fun, be good: Insurance is a serious business, but we don't take ourselves too seriously. We make it fun to work at CFC, we welcome all viewpoints, and we treat everyone how we would expect to be treated.
Head of Engineering - Energy & Commodities Location: UK (Hybrid working model) Permanent Attractive Salary & Benefits Advertised on behalf of a leading global market infrastructure provider by VANRATH Overview VANRATH is proud to be partnering with a global leader in financial and commodities market infrastructure to recruit a Head of Engineering for their Energy & Commodities (E&C) division. This is an exceptional opportunity for a senior engineering leader to shape the technical direction of a high-impact division within one of the world's most recognised market infrastructure firms. This company is a global powerhouse operating across 27 countries, with over 5,000 employees. Their E&C division is ranked globally in energy and commodities broking and is at the forefront of technical innovation and delivery excellence. The Role As Head of Engineering, you'll be responsible for leading multiple agile development teams delivering mission-critical systems for the Energy & Commodities business line. Reporting directly to the divisional CIO, you will drive modernisation, engineering excellence, and cultural transformation while ensuring high-quality, scalable software solutions are delivered across the portfolio. This is a hands-on leadership role that balances strategic thinking, team coaching, and active engagement in technical decision-making. Key Responsibilities Lead and manage 4-5 agile engineering teams aligned to the E&C portfolio Set the technical direction and ensure alignment with architectural standards Deliver robust, scalable solutions across a hybrid tech environment (on-prem + AWS) Foster a strong engineering culture with a focus on quality, performance, and agility Partner with Product Owners, Scrum Masters, and other stakeholders to unblock teams and ensure delivery Champion software best practices, DevSecOps, and continuous improvement Support incident management and ensure production stability Communicate effectively with senior leadership on technical strategy and risks Play an active role in hiring, mentoring, and upskilling engineering talent Technical Environment Languages: C#, Java, JavaScript/TypeScript (React), C++ Architecture: Event-driven, Microservices, Micro Frontends DevOps: GitLab, TeamCity, CI/CD pipelines Cloud: AWS (hybrid infrastructure) Tools: Git, automated testing frameworks, GraphQL (desirable) Methodologies: Agile/Scrum, SAFe (preferred), Domain-Driven Design (DDD), CQRS Ideal Candidate Profile Extensive experience managing multiple engineering teams in complex enterprise environments Proven full-stack engineering leadership with deep knowledge of modern software design and architecture Hands-on technical competence and experience with distributed systems, low latency architecture, and modern cloud platforms Strong people leadership, communication, and mentoring skills Financial services or commodities markets experience (preferred) Comfortable influencing technical decisions and culture at an organisational level What's on Offer? Competitive salary and comprehensive benefits package Flexible hybrid working model High-profile leadership role with visibility across a global organisation Opportunity to shape engineering culture and future direction in a top-tier financial infrastructure business Interested? This role is being advertised on behalf of our client by VANRATH . To find out more or submit your CV in confidence, please contact us directly or apply below.
Jul 01, 2025
Full time
Head of Engineering - Energy & Commodities Location: UK (Hybrid working model) Permanent Attractive Salary & Benefits Advertised on behalf of a leading global market infrastructure provider by VANRATH Overview VANRATH is proud to be partnering with a global leader in financial and commodities market infrastructure to recruit a Head of Engineering for their Energy & Commodities (E&C) division. This is an exceptional opportunity for a senior engineering leader to shape the technical direction of a high-impact division within one of the world's most recognised market infrastructure firms. This company is a global powerhouse operating across 27 countries, with over 5,000 employees. Their E&C division is ranked globally in energy and commodities broking and is at the forefront of technical innovation and delivery excellence. The Role As Head of Engineering, you'll be responsible for leading multiple agile development teams delivering mission-critical systems for the Energy & Commodities business line. Reporting directly to the divisional CIO, you will drive modernisation, engineering excellence, and cultural transformation while ensuring high-quality, scalable software solutions are delivered across the portfolio. This is a hands-on leadership role that balances strategic thinking, team coaching, and active engagement in technical decision-making. Key Responsibilities Lead and manage 4-5 agile engineering teams aligned to the E&C portfolio Set the technical direction and ensure alignment with architectural standards Deliver robust, scalable solutions across a hybrid tech environment (on-prem + AWS) Foster a strong engineering culture with a focus on quality, performance, and agility Partner with Product Owners, Scrum Masters, and other stakeholders to unblock teams and ensure delivery Champion software best practices, DevSecOps, and continuous improvement Support incident management and ensure production stability Communicate effectively with senior leadership on technical strategy and risks Play an active role in hiring, mentoring, and upskilling engineering talent Technical Environment Languages: C#, Java, JavaScript/TypeScript (React), C++ Architecture: Event-driven, Microservices, Micro Frontends DevOps: GitLab, TeamCity, CI/CD pipelines Cloud: AWS (hybrid infrastructure) Tools: Git, automated testing frameworks, GraphQL (desirable) Methodologies: Agile/Scrum, SAFe (preferred), Domain-Driven Design (DDD), CQRS Ideal Candidate Profile Extensive experience managing multiple engineering teams in complex enterprise environments Proven full-stack engineering leadership with deep knowledge of modern software design and architecture Hands-on technical competence and experience with distributed systems, low latency architecture, and modern cloud platforms Strong people leadership, communication, and mentoring skills Financial services or commodities markets experience (preferred) Comfortable influencing technical decisions and culture at an organisational level What's on Offer? Competitive salary and comprehensive benefits package Flexible hybrid working model High-profile leadership role with visibility across a global organisation Opportunity to shape engineering culture and future direction in a top-tier financial infrastructure business Interested? This role is being advertised on behalf of our client by VANRATH . To find out more or submit your CV in confidence, please contact us directly or apply below.
Job Description Out of the successful launch of Chase in 2021, we're a new team, with a new mission. We're creating products that solve real world problems and put customers at the center - all in an environment that nurtures skills and helps you realize your potential. Our team is key to our success. We're people-first. We value collaboration, curiosity and commitment. As a Platform Engineer at JPMorgan Chase within the Platform SDLC team, you are the heart of this venture, focused on getting smart ideas into the hands of our customers. You have a curious mindset, thrive in collaborative squads, and are passionate about new technology. By your nature, you are also solution-oriented, commercially savvy and have a head for fintech. You thrive in working in tribes and squads that focus on specific products and projects - and depending on your strengths and interests, you'll have the opportunity to move between them. While we're looking for professional skills, culture is just as important to us. We understand that everyone's unique - and that diversity of thought, experience and background is what makes a good team great. By bringing people with different points of view together, we can represent everyone and truly reflect the communities we serve. This way, there's scope for you to make a huge difference - on us as a company, and on our clients and business partners around the world. As a Platform SDLC Engineer you will play a crucial role in designing, implementing, and maintaining automation solutions for software development processes. You will collaborate closely with cross-functional teams to identify automation opportunities, build out custom workflows, and develop utility tools to enhance productivity and efficiency across the organization. Building secure SDLC pipelines which perform Vulnerability scanning, ensuring an immutable artifact signed and testing evidence is validated. Working towards the long term aim of developing an Internal Developer Platform (IDP) building golden paths and enabling developer self-service. Job responsibilities Designing and Implementing Automation Workflows: Work closely with software development teams to analyze existing workflows and identify opportunities for automation using GitHub Actions. Design and implement custom workflows tailored to specific project requirements. This includes infrastructure as code development pipelines. Developing GoLang Utilities: Utilize GoLang to develop efficient utility tools, scripts, and applications to automate repetitive tasks, enhance developer productivity, and improve the overall efficiency of the SDLC processes. Managing Continuous Integration/Continuous Deployment (CI/CD) Pipelines: Architect, configure, and manage CI/CD pipelines using GitHub Actions to automate the build, test, and deployment processes. Ensure smooth integration with version control systems and other development tools. Also facilitating reproducible builds and deployments. Monitoring and Optimizing performance: Monitor and analyze the performance of automation workflows and utility tools, identifying areas for optimization and improvement. Proactively implement enhancements to streamline processes and reduce cycle times. Creating Documentation and Training: Create comprehensive documentation for automation workflows, utility tools, and best practices. Provide training and support to development teams to ensure successful adoption and utilization of automation solutions. Staying Updated with Emerging Technologies: Keep abreast of the latest trends and advancements in automation, CI/CD, DevOps and DevSecOps practices. Evaluate new tools and technologies, recommending adoption where appropriate to drive continuous improvement. Required qualifications, capabilities, and skills Demonstrated proficiency with building software build pipelines, ideally with Github Actions Primarily identify as a software engineer and excel at designing and coding services and utilities using Golang. Have a strong focus on automated testing following TDD best practices. Well versed in using git scm. Passionate working with cloud-based infrastructure systems. Enjoy integrating various services, tools, and components together and value 'systems thinking'. Our Technology Stack The platform's SDLC technology stack consists of GitHub Actions, enabling seamless CI/CD workflows with automated testing, deployment, and infrastructure management. Automation utilities are written in Golang, Python and shell scripts ensuring high performance, reliability, and maintainability. Also leverage docker containers to speed-up SDLC build pipelines by consolidating all utilities and configuration into images. Additionally, the platform integrates with a Kubernetes environment on Google Cloud Platform (GCP) and services such as Cloud Key Management . We wisely choose open-source software when it meets our needs, and aren't hesitant to build custom solutions when necessary. We approach each challenge with an open mind, selecting the best technology for each task. We're comfortable with innovation, but always remember our ultimate goal: to create lasting solutions for our customers. About Us J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world's most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives. We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation. About The Team Our Corporate Technology team relies on smart, driven people like you to develop applications and provide tech support for all our corporate functions across our network. Your efforts will touch lives all over the financial spectrum and across all our divisions: Global Finance, Corporate Treasury, Risk Management, Human Resources, Compliance, Legal, and within the Corporate Administrative Office. You'll be part of a team specifically built to meet and exceed our evolving technology needs, as well as our technology controls agenda.
Jul 01, 2025
Full time
Job Description Out of the successful launch of Chase in 2021, we're a new team, with a new mission. We're creating products that solve real world problems and put customers at the center - all in an environment that nurtures skills and helps you realize your potential. Our team is key to our success. We're people-first. We value collaboration, curiosity and commitment. As a Platform Engineer at JPMorgan Chase within the Platform SDLC team, you are the heart of this venture, focused on getting smart ideas into the hands of our customers. You have a curious mindset, thrive in collaborative squads, and are passionate about new technology. By your nature, you are also solution-oriented, commercially savvy and have a head for fintech. You thrive in working in tribes and squads that focus on specific products and projects - and depending on your strengths and interests, you'll have the opportunity to move between them. While we're looking for professional skills, culture is just as important to us. We understand that everyone's unique - and that diversity of thought, experience and background is what makes a good team great. By bringing people with different points of view together, we can represent everyone and truly reflect the communities we serve. This way, there's scope for you to make a huge difference - on us as a company, and on our clients and business partners around the world. As a Platform SDLC Engineer you will play a crucial role in designing, implementing, and maintaining automation solutions for software development processes. You will collaborate closely with cross-functional teams to identify automation opportunities, build out custom workflows, and develop utility tools to enhance productivity and efficiency across the organization. Building secure SDLC pipelines which perform Vulnerability scanning, ensuring an immutable artifact signed and testing evidence is validated. Working towards the long term aim of developing an Internal Developer Platform (IDP) building golden paths and enabling developer self-service. Job responsibilities Designing and Implementing Automation Workflows: Work closely with software development teams to analyze existing workflows and identify opportunities for automation using GitHub Actions. Design and implement custom workflows tailored to specific project requirements. This includes infrastructure as code development pipelines. Developing GoLang Utilities: Utilize GoLang to develop efficient utility tools, scripts, and applications to automate repetitive tasks, enhance developer productivity, and improve the overall efficiency of the SDLC processes. Managing Continuous Integration/Continuous Deployment (CI/CD) Pipelines: Architect, configure, and manage CI/CD pipelines using GitHub Actions to automate the build, test, and deployment processes. Ensure smooth integration with version control systems and other development tools. Also facilitating reproducible builds and deployments. Monitoring and Optimizing performance: Monitor and analyze the performance of automation workflows and utility tools, identifying areas for optimization and improvement. Proactively implement enhancements to streamline processes and reduce cycle times. Creating Documentation and Training: Create comprehensive documentation for automation workflows, utility tools, and best practices. Provide training and support to development teams to ensure successful adoption and utilization of automation solutions. Staying Updated with Emerging Technologies: Keep abreast of the latest trends and advancements in automation, CI/CD, DevOps and DevSecOps practices. Evaluate new tools and technologies, recommending adoption where appropriate to drive continuous improvement. Required qualifications, capabilities, and skills Demonstrated proficiency with building software build pipelines, ideally with Github Actions Primarily identify as a software engineer and excel at designing and coding services and utilities using Golang. Have a strong focus on automated testing following TDD best practices. Well versed in using git scm. Passionate working with cloud-based infrastructure systems. Enjoy integrating various services, tools, and components together and value 'systems thinking'. Our Technology Stack The platform's SDLC technology stack consists of GitHub Actions, enabling seamless CI/CD workflows with automated testing, deployment, and infrastructure management. Automation utilities are written in Golang, Python and shell scripts ensuring high performance, reliability, and maintainability. Also leverage docker containers to speed-up SDLC build pipelines by consolidating all utilities and configuration into images. Additionally, the platform integrates with a Kubernetes environment on Google Cloud Platform (GCP) and services such as Cloud Key Management . We wisely choose open-source software when it meets our needs, and aren't hesitant to build custom solutions when necessary. We approach each challenge with an open mind, selecting the best technology for each task. We're comfortable with innovation, but always remember our ultimate goal: to create lasting solutions for our customers. About Us J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world's most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives. We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation. About The Team Our Corporate Technology team relies on smart, driven people like you to develop applications and provide tech support for all our corporate functions across our network. Your efforts will touch lives all over the financial spectrum and across all our divisions: Global Finance, Corporate Treasury, Risk Management, Human Resources, Compliance, Legal, and within the Corporate Administrative Office. You'll be part of a team specifically built to meet and exceed our evolving technology needs, as well as our technology controls agenda.
Head of Infrastructure for Enterprise Technology Brand: HSBC Area of Interest: Technology Location: Sheffield, GB, S1 4NB Work style: Office Worker S ome careers have more impact than others If you're looking for further opportunities to develop your career, take the next step in fulfilling your potential right here at HSBC. HSBC is one of the largest banking and financial services organisations in the world, with operations in 62 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions. We are currently seeking an experienced professional to join our team in the role of ET Head of Infrastructure Department Background: The Enterprise Technology function powers the systems that enable our internal functions-from Finance and HR to Risk, Compliance, and Legal-to operate efficiently, securely, and with insight. We are now hiring a Head of Infrastructure to lead the modernisation of this foundational estate-creating infrastructure platforms that accelerate the internal customer journey, increase service agility, and improve resilience. The Opportunity: As Head of Infrastructure for Enterprise Technology, you will lead the design, transformation, and operation of infrastructure platforms that support foundational enterprise services. Your focus will be on enabling seamless internal customer experiences across a wide range of technology foundations. Reporting to the CTO for Enterprise Technology, you'll help modernise the backbone of HSBC's internal systems-bringing speed, reliability, and innovation to the journeys of our employees and internal stakeholders. What you'll do: Lead infrastructure modernisation across the ET estate to enhance the experience of internal customers across Finance, HR, Risk, Legal, Compliance, Colleague and Centralised services, ET engineering and wider group engineering teams. Design and execute transformation roadmaps that improve service agility, reduce time-to-value, and support digital journeys for enterprise functions. Enable modern DevSecOps pipelines, infrastructure-as-code, and platform engineering best practices. Collaborate with platform owners, security leads, and infrastructure architects to deliver scalable hybrid solutions across a diverse infrastructure landscape. Champion user-centric service design principles across infrastructure delivery-reducing friction and enhancing platform usability. Evolve DR and resilience engineering capabilities to ensure seamless service continuity for key enterprise platforms. Drive infrastructure automation and self-service capabilities to empower business-aligned technology teams. Govern vendor-delivered infrastructure services to ensure alignment with HSBC's service, cost, and experience objectives. Act as a transformation leader-coaching teams, shaping culture, and aligning modern infrastructure delivery with broader business outcomes. What you will need to succeed in the role: Extensive experience leading infrastructure and platform transformation in large, regulated, and complex organisations-ideally within financial services. Strong understanding of enterprise systems that support internal customer journeys (e.g., HRIS, ERP, GRC platforms). Proven success modernising legacy environments into modern, cloud-enabled, customer-aligned platforms. Strategic and hands-on expertise in platform engineering, SRE, containerisation, hybrid cloud, and infrastructure automation. Experience embedding operational excellence into infrastructure teams using metrics-driven approaches (e.g., SLIs/SLOs). Ability to bridge technical depth with empathetic leadership, business alignment, and user-focused thinking. Bachelor's degree in Computer Science or related field. Certifications in architecture, cloud (AWS/Azure/GCP), or IT service management are advantageous. Previous background across multiple industries would be beneficial to support 3rd party vendor engagement This role is based in Sheffield Being open to different points of view is important for our business and the communities we serve. At HSBC, we're dedicated to creating diverse and inclusive workplaces - no matter their gender, ethnicity, disability, religion, sexual orientation, or age. Wearecommittedto removing barriers and ensuring careersatHSBCareinclusiveandaccessible for everyone to be at their best. Ifyouhaveaneedthatrequiresaccommodationsor changes duringtherecruitmentprocess, please get in touch with our Recruitment Helpdesk:
Jun 30, 2025
Full time
Head of Infrastructure for Enterprise Technology Brand: HSBC Area of Interest: Technology Location: Sheffield, GB, S1 4NB Work style: Office Worker S ome careers have more impact than others If you're looking for further opportunities to develop your career, take the next step in fulfilling your potential right here at HSBC. HSBC is one of the largest banking and financial services organisations in the world, with operations in 62 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions. We are currently seeking an experienced professional to join our team in the role of ET Head of Infrastructure Department Background: The Enterprise Technology function powers the systems that enable our internal functions-from Finance and HR to Risk, Compliance, and Legal-to operate efficiently, securely, and with insight. We are now hiring a Head of Infrastructure to lead the modernisation of this foundational estate-creating infrastructure platforms that accelerate the internal customer journey, increase service agility, and improve resilience. The Opportunity: As Head of Infrastructure for Enterprise Technology, you will lead the design, transformation, and operation of infrastructure platforms that support foundational enterprise services. Your focus will be on enabling seamless internal customer experiences across a wide range of technology foundations. Reporting to the CTO for Enterprise Technology, you'll help modernise the backbone of HSBC's internal systems-bringing speed, reliability, and innovation to the journeys of our employees and internal stakeholders. What you'll do: Lead infrastructure modernisation across the ET estate to enhance the experience of internal customers across Finance, HR, Risk, Legal, Compliance, Colleague and Centralised services, ET engineering and wider group engineering teams. Design and execute transformation roadmaps that improve service agility, reduce time-to-value, and support digital journeys for enterprise functions. Enable modern DevSecOps pipelines, infrastructure-as-code, and platform engineering best practices. Collaborate with platform owners, security leads, and infrastructure architects to deliver scalable hybrid solutions across a diverse infrastructure landscape. Champion user-centric service design principles across infrastructure delivery-reducing friction and enhancing platform usability. Evolve DR and resilience engineering capabilities to ensure seamless service continuity for key enterprise platforms. Drive infrastructure automation and self-service capabilities to empower business-aligned technology teams. Govern vendor-delivered infrastructure services to ensure alignment with HSBC's service, cost, and experience objectives. Act as a transformation leader-coaching teams, shaping culture, and aligning modern infrastructure delivery with broader business outcomes. What you will need to succeed in the role: Extensive experience leading infrastructure and platform transformation in large, regulated, and complex organisations-ideally within financial services. Strong understanding of enterprise systems that support internal customer journeys (e.g., HRIS, ERP, GRC platforms). Proven success modernising legacy environments into modern, cloud-enabled, customer-aligned platforms. Strategic and hands-on expertise in platform engineering, SRE, containerisation, hybrid cloud, and infrastructure automation. Experience embedding operational excellence into infrastructure teams using metrics-driven approaches (e.g., SLIs/SLOs). Ability to bridge technical depth with empathetic leadership, business alignment, and user-focused thinking. Bachelor's degree in Computer Science or related field. Certifications in architecture, cloud (AWS/Azure/GCP), or IT service management are advantageous. Previous background across multiple industries would be beneficial to support 3rd party vendor engagement This role is based in Sheffield Being open to different points of view is important for our business and the communities we serve. At HSBC, we're dedicated to creating diverse and inclusive workplaces - no matter their gender, ethnicity, disability, religion, sexual orientation, or age. Wearecommittedto removing barriers and ensuring careersatHSBCareinclusiveandaccessible for everyone to be at their best. Ifyouhaveaneedthatrequiresaccommodationsor changes duringtherecruitmentprocess, please get in touch with our Recruitment Helpdesk:
Data and Security Compliance Manager - Fixed Term Location: Bristol HR Director, Victoria James • 03 February 2025 We are looking for an experienced Data and Security Compliance Manager to lead and maintain our compliance with ISO 9001, IS0 14001, ISO 27001, Cyber Essentials Plus, MOD-level SAQs, FSQS and GDPR regulations. The role is crucial in ensuring our agency adheres to best practices and legislation in data protection, information security, quality management, environmental compliance and industry-specific security standards. The ideal candidate will have experience in compliance management, risk assessment, audits, security frameworks and policy implementation. They will need to work across teams such as IT, Operations, Finance, Delivery and Engineering to ensure robust governance, risk management and compliance strategies are in place, supporting both operational efficiency and regulatory requirements. Key responsibilities Compliance and certification management Ensure we have the processes and infrastructure in place to maintain and oversee compliance with: ISO 9001, 14001 and 27001 Cyber Essentials Plus certification MOD-level SAQs FSQS (Financial Services Qualification System) GDPR and UK Data Protection Law PCI-DSS compliance New requirements as applicable Manage our internal and external audits, certifications and compliance renewals Ensure continuous monitoring and improvement of compliance frameworks Review client and supplier contracts/master service agreements and Statements of Work from a compliance perspective and act as the conduit between contracts and project teams to ensure we are meeting our commitments Supplier/vendor management including vendor specific assessments and flow down policy control and compliance Information security and Cyber Essentials Plus Oversee Cyber Essentials Plus compliance ensuring security controls are in place Work closely with the IT team to assess vulnerabilities, manage risk and implement cyber security policies Work with the Head of IT to manage incident response planning and ensure security incidents are managed in line with best practices Data protection and GDPR compliance Working closely with our DPO to ensure adherence to GDPR, UK Data Protection Act and other relevant privacy regulations Create and maintain any Records of Processing Activities (RoPA) and conduct Data Protection Impact Assessments (DPIAs) Implement processes around Data Subject Access Requests (DSARs) and breach management Ensure compliance with any client and third-party data processing agreements (DPAs) and data retention rules Risk management and policy development Review, update, maintain and enforce policies and procedures related to: Information security Data protection Environmental sustainability Business continuity Incident response Supplier security assessment Maintain a risk register identifying compliance risks and implementing mitigation strategies Conduct internal security audits and ensure corrective actions are taken FSQS and MOD compliance , JOSCAR, SOC and standard DevSecOps requirements Manage FSQS accreditation, ensuring all necessary documentation is up to date Support MOD SAQ (Supplier Assurance Questionnaire) compliance, working with internal teams to meet security requirements such as MOD Security Policy JSP440 Ensure adherence to government and financial sector security regulations across the agency Internal training Delivery compliance training to staff on GDPR, security awareness and best practices and ISO requirements Ensure teams are aware of best practices in cyber security, data protection and quality management Foster a culture of compliance and continuous improvement across the business Skills and experience Experience managing compliance frameworks include ISO 9001, 14001, 27001, Cyber Essentials Plus, GDPR, and PCI-DSS compliance Strong understanding of information security, cyber security frameworks and risk management Experience with internal and external audits, certification renewals and policy development Proven knowledge of data protection laws Ability to develop and deliver compliance training Excellent project management and stakeholder engagement skills Knowledge of cloud security frameworks (AWS, Azure, SaaS security) Experience in business continuity and disaster recovery planning Understanding of government and other regulatory body security frameworks (MOD, FSQS, NSCS) Apply Please complete all fields unless stated as optional. First Name Last Name Email Phone Resume/CV LinkedIn Profile Website GDPR compliance When you apply to a job on this site, the personal data contained in your application will be collected by Great State ("Controller"), which is located at 1 Victoria Street, Bristol BS1 6AA and can be contacted by emailing . Great State's data protection officer is Evalian, who can be contacted at . Your personal data will be processed for the purposes of managing Great State's recruitment related activities, which include setting up and conducting interviews and tests for applicants, evaluating and assessing the results thereto, and as is otherwise needed in the recruitment and hiring processes. Such processing is legally permissible under Art. 6(1)(f) of Regulation (EU) 2016/679 (General Data Protection Regulation) as necessary for the purposes of the legitimate interests pursued by the Controller, which are the solicitation, evaluation, and selection of applicants for employment. Your personal data will be shared with Greenhouse Software, Inc., a cloud services provider located in the United States of America and engaged by Great State to help manage its recruitment and hiring process on Great State's behalf. Accordingly, if you are located outside of the United States, your personal data will be transferred to the United States once you submit it through this site. Because the European Union Commission has determined that United States data privacy laws do not ensure an adequate level of protection for personal data collected from EU data subjects, the transfer will be subject to appropriate additional safeguards under the EU-US Privacy Shield. You can obtain details of Greenhouse's Privacy Shield certification by contacting us at . Your personal data will be retained by Great State as long as Great State determines it is necessary to evaluate your application for employment. Under the GDPR, you have the right to request access to your personal data, to request that your personal data be rectified or erased, and to request that processing of your personal data be restricted. You also have to right to data portability. In addition, you may lodge a complaint with an EU supervisory authority.
Jun 28, 2025
Full time
Data and Security Compliance Manager - Fixed Term Location: Bristol HR Director, Victoria James • 03 February 2025 We are looking for an experienced Data and Security Compliance Manager to lead and maintain our compliance with ISO 9001, IS0 14001, ISO 27001, Cyber Essentials Plus, MOD-level SAQs, FSQS and GDPR regulations. The role is crucial in ensuring our agency adheres to best practices and legislation in data protection, information security, quality management, environmental compliance and industry-specific security standards. The ideal candidate will have experience in compliance management, risk assessment, audits, security frameworks and policy implementation. They will need to work across teams such as IT, Operations, Finance, Delivery and Engineering to ensure robust governance, risk management and compliance strategies are in place, supporting both operational efficiency and regulatory requirements. Key responsibilities Compliance and certification management Ensure we have the processes and infrastructure in place to maintain and oversee compliance with: ISO 9001, 14001 and 27001 Cyber Essentials Plus certification MOD-level SAQs FSQS (Financial Services Qualification System) GDPR and UK Data Protection Law PCI-DSS compliance New requirements as applicable Manage our internal and external audits, certifications and compliance renewals Ensure continuous monitoring and improvement of compliance frameworks Review client and supplier contracts/master service agreements and Statements of Work from a compliance perspective and act as the conduit between contracts and project teams to ensure we are meeting our commitments Supplier/vendor management including vendor specific assessments and flow down policy control and compliance Information security and Cyber Essentials Plus Oversee Cyber Essentials Plus compliance ensuring security controls are in place Work closely with the IT team to assess vulnerabilities, manage risk and implement cyber security policies Work with the Head of IT to manage incident response planning and ensure security incidents are managed in line with best practices Data protection and GDPR compliance Working closely with our DPO to ensure adherence to GDPR, UK Data Protection Act and other relevant privacy regulations Create and maintain any Records of Processing Activities (RoPA) and conduct Data Protection Impact Assessments (DPIAs) Implement processes around Data Subject Access Requests (DSARs) and breach management Ensure compliance with any client and third-party data processing agreements (DPAs) and data retention rules Risk management and policy development Review, update, maintain and enforce policies and procedures related to: Information security Data protection Environmental sustainability Business continuity Incident response Supplier security assessment Maintain a risk register identifying compliance risks and implementing mitigation strategies Conduct internal security audits and ensure corrective actions are taken FSQS and MOD compliance , JOSCAR, SOC and standard DevSecOps requirements Manage FSQS accreditation, ensuring all necessary documentation is up to date Support MOD SAQ (Supplier Assurance Questionnaire) compliance, working with internal teams to meet security requirements such as MOD Security Policy JSP440 Ensure adherence to government and financial sector security regulations across the agency Internal training Delivery compliance training to staff on GDPR, security awareness and best practices and ISO requirements Ensure teams are aware of best practices in cyber security, data protection and quality management Foster a culture of compliance and continuous improvement across the business Skills and experience Experience managing compliance frameworks include ISO 9001, 14001, 27001, Cyber Essentials Plus, GDPR, and PCI-DSS compliance Strong understanding of information security, cyber security frameworks and risk management Experience with internal and external audits, certification renewals and policy development Proven knowledge of data protection laws Ability to develop and deliver compliance training Excellent project management and stakeholder engagement skills Knowledge of cloud security frameworks (AWS, Azure, SaaS security) Experience in business continuity and disaster recovery planning Understanding of government and other regulatory body security frameworks (MOD, FSQS, NSCS) Apply Please complete all fields unless stated as optional. First Name Last Name Email Phone Resume/CV LinkedIn Profile Website GDPR compliance When you apply to a job on this site, the personal data contained in your application will be collected by Great State ("Controller"), which is located at 1 Victoria Street, Bristol BS1 6AA and can be contacted by emailing . Great State's data protection officer is Evalian, who can be contacted at . Your personal data will be processed for the purposes of managing Great State's recruitment related activities, which include setting up and conducting interviews and tests for applicants, evaluating and assessing the results thereto, and as is otherwise needed in the recruitment and hiring processes. Such processing is legally permissible under Art. 6(1)(f) of Regulation (EU) 2016/679 (General Data Protection Regulation) as necessary for the purposes of the legitimate interests pursued by the Controller, which are the solicitation, evaluation, and selection of applicants for employment. Your personal data will be shared with Greenhouse Software, Inc., a cloud services provider located in the United States of America and engaged by Great State to help manage its recruitment and hiring process on Great State's behalf. Accordingly, if you are located outside of the United States, your personal data will be transferred to the United States once you submit it through this site. Because the European Union Commission has determined that United States data privacy laws do not ensure an adequate level of protection for personal data collected from EU data subjects, the transfer will be subject to appropriate additional safeguards under the EU-US Privacy Shield. You can obtain details of Greenhouse's Privacy Shield certification by contacting us at . Your personal data will be retained by Great State as long as Great State determines it is necessary to evaluate your application for employment. Under the GDPR, you have the right to request access to your personal data, to request that your personal data be rectified or erased, and to request that processing of your personal data be restricted. You also have to right to data portability. In addition, you may lodge a complaint with an EU supervisory authority.
Role overview: Working for a security vendor, you'll be responsible for supporting the Head of SecOps in overseeing the company's Security Operations activity, improving and challenging existing processes and procedures in a very agile and fast moving information security environment. Main tasks and responsibilities: Operate within a global team that takes responsibility for the security monitoring of key technologies and tools across the estate Lead and manage a team of Security Analysts & the Vulnerability management team Comfortable operating in a technical capacity performing hands-on incident response and supporting/managing SOC analysts Act as a SME in matters related threat and vulnerability management incl incident response Understand security incidents and the likely impact these will have on the business Define and report on KPIs with recommendations for improvement Identify security risks, threats and vulnerabilities of the company's network, systems, applications and new technology initiatives Implement and maintain operating run books, operating processes and procedures Help to develop and configure use cases, and alerting rules within SIEM technologies Mange the vulnerability management programme that includes vulnerability scanning, security testing, threat monitoring and data loss and leakage prevention Direct on-going threat intelligence activities Mentor and develop security analysts Skills: Prior experience working/managing a SOC Demonstrable experience and operational knowledge of SIEM, firewalls, intrusion detection and vulnerability management systems/solutions Detailed understanding of Security Monitoring, Threat Intelligence, Vulnerability management and Incident Response Experience managing security incidents within a complex environment. Strong foundation in network security and common attack methodologies Exposure to user behaviour analytical tools is preferable Good understanding of common protocols such as HTTP, SMTP, SSL/TLS, SSH, DNS Must demonstrate strong analytical and problem-solving skills to enable effective security incident and problem resolution Knowledge of latest threat trends and security landscape Pre-requisites: Excellent analytical skills with the ability to see the bigger picture Excellent communication skills with the ability to influence multiple stakeholders Willingness to learn and adapt to new technologies coupled with a passion for cyber security Ability to self-motivate and define priorities to meet deadlines Good team-oriented interpersonal skills, with the ability to interface effectively with a broad range of people and roles Further info: Competitive salary & flex bens Flexible locations / remote To apply: Please either register your CV and complete the information fields requested or send your CV to referencing WDA154 and your current salary
Jun 28, 2025
Full time
Role overview: Working for a security vendor, you'll be responsible for supporting the Head of SecOps in overseeing the company's Security Operations activity, improving and challenging existing processes and procedures in a very agile and fast moving information security environment. Main tasks and responsibilities: Operate within a global team that takes responsibility for the security monitoring of key technologies and tools across the estate Lead and manage a team of Security Analysts & the Vulnerability management team Comfortable operating in a technical capacity performing hands-on incident response and supporting/managing SOC analysts Act as a SME in matters related threat and vulnerability management incl incident response Understand security incidents and the likely impact these will have on the business Define and report on KPIs with recommendations for improvement Identify security risks, threats and vulnerabilities of the company's network, systems, applications and new technology initiatives Implement and maintain operating run books, operating processes and procedures Help to develop and configure use cases, and alerting rules within SIEM technologies Mange the vulnerability management programme that includes vulnerability scanning, security testing, threat monitoring and data loss and leakage prevention Direct on-going threat intelligence activities Mentor and develop security analysts Skills: Prior experience working/managing a SOC Demonstrable experience and operational knowledge of SIEM, firewalls, intrusion detection and vulnerability management systems/solutions Detailed understanding of Security Monitoring, Threat Intelligence, Vulnerability management and Incident Response Experience managing security incidents within a complex environment. Strong foundation in network security and common attack methodologies Exposure to user behaviour analytical tools is preferable Good understanding of common protocols such as HTTP, SMTP, SSL/TLS, SSH, DNS Must demonstrate strong analytical and problem-solving skills to enable effective security incident and problem resolution Knowledge of latest threat trends and security landscape Pre-requisites: Excellent analytical skills with the ability to see the bigger picture Excellent communication skills with the ability to influence multiple stakeholders Willingness to learn and adapt to new technologies coupled with a passion for cyber security Ability to self-motivate and define priorities to meet deadlines Good team-oriented interpersonal skills, with the ability to interface effectively with a broad range of people and roles Further info: Competitive salary & flex bens Flexible locations / remote To apply: Please either register your CV and complete the information fields requested or send your CV to referencing WDA154 and your current salary
About us: We are champions of rail, inspired to build a greener, more sustainable future of travel. Trainline enables millions of travellers to find and book the best value tickets across carriers, fares, and journey options through our highly rated mobile app, website, and B2B partner channels. Great journeys start with Trainline Now Europe's number 1 downloaded rail app, with over 125 million monthly visits and £5.9 billion in annual ticket sales, we collaborate with 270+ rail and coach companies in over 40 countries. We want to create a world where travel is as simple, seamless, eco-friendly and affordable as it should be. Today, we're a FTSE 250 company driven by our incredible team of over 1,000 Trainliners from 50+ nationalities, based across London, Paris, Barcelona, Milan, Edinburgh and Madrid. With our focus on growth in the UK and Europe, now is the perfect time to join us on this high-speed journey. Introducing Security We are seeking a highly motivated and detail-oriented Security Operations Engineer to join our dynamic Security Operations Team. As a Security Operations Engineer, you will play a critical role in safeguarding our organization's assets and data by overseeing the management of Trainline's SIEM. This is done by ensuring the SIEM is fully operational and that we have the logs and alerts needed to support incident detection and response efforts. Along with this the Security Operations Engineer will support the wider team in monitoring, analysing, and responding to Security events and incidents. You will ensure that our wider set of Security tools are optimized to their full potential in-line with industry best practice. Create and maintain detailed documentation and provide key insights to management through customized dashboards and reports. If you are passionate about cybersecurity, eager to stay ahead of emerging threats, and looking to grow within a fast-paced and evolving environment, we'd love to hear from you! As a Security Analyst at Trainline, you will Own the management and configuration of our SIEM platform (Splunk), ensuring its fully operational, updated, configured to best practice and providing value for money. Drive the creation of new alerts, working with the wider Security Operations team to ensure appropriate enrichment and value, and support the tuning of noisy alerts. Identify gaps in our logging and manage the onboarding of these from pre-implementation considerations, through to log availability monitoring. Undertake threat hunts to identify gaps in our logging and alerting. Use this along with threat intel to help drive our maturity road map. Support day-to-day management and configuration of other key security tools (for example Crowdstrike). Ensure these are configured and used to their full potential and in line with good industry practices. Collaborate with SMEs across the business to support and advise on the implementation of security best practice across our tooling and processes. Support the wider Security Operations team with the monitoring of our SecOps alert queue. Triage and investigate alerts providing detailed analysis and recommendations on remediation actions. Work with our Incident Management Team to respond to Security incidents. Provide Security analysis to validate and size up the problem, along with making recommendations for containment.Follow up after incidents with post incident review (PIR), ensuring any outstanding actions are tracked, and trends are identified. Continuously develop and improve the documentation for our Security tooling. Ensuring knowledge is shared with the wider team, and that we have standardised responses for reliability issues. Create, maintain, and analyse Security Operations dashboards and reports fed into management and stakeholders across the business. Identify key trends to help inform Trainlines threat landscape and key Security risks. (Once established within the team) join the on-call rota, responding to high priority incidents out-of-hours to ensure uninterrupted protection of mission critical systems and data. Support the wider Security team in our compliance and accreditation activities (GDRP, PCI, ISO12001). We'd love to hear from you if you have Strong technical knowledge, this could be across the domain (Security, Networks, Infrastructure, End User Compute). Hands-on experience with SIEM platforms (Splunk, Microsoft Sentinel, Elastic, etc). Familiarity with other security tools (EDR, Vulnerability Management, Firewalls, IDS). An understanding of cloud platforms (AWS, Azure, GCP) and relevant Security principles. A desire to be continuously upskilling your Security knowledge and skills. Ability to work under pressure and manage multiple priorities in a dynamic environment. Strong analytical and problem-solving skills. Clear communication and documentation skills, notably for PIRs and stakeholder updates. More information: Enjoy fantastic perks like private healthcare & dental insurance, a generous work from abroad policy, 2-for-1 share purchase plans, an EV Scheme to further reduce carbon emissions, extra festive time off, and excellent family-friendly benefits. We prioritise career growth with clear career paths, transparent pay bands, personal learning budgets, and regular learning days. Jump on board and supercharge your career from day one! Our values represent the things that matter most to us and what we live and breathe everyday, in everything we do: Think Big - We're building the future of rail ️ Own It - We focus on every customer, partner and journey Travel Together - We're one team ️ Do Good - We make a positive impact We know that having a diverse team makes us better and helps us succeed. And we mean all forms of diversity - gender, ethnicity, sexuality, disability, nationality and diversity of thought. That's why we're committed to creating inclusive places to work, where everyone belongs and differences are valued and celebrated. Interested in finding out more about what it's like to work at Trainline? Why not check us out on LinkedIn , Instagram and Glassdoor !
Jun 27, 2025
Full time
About us: We are champions of rail, inspired to build a greener, more sustainable future of travel. Trainline enables millions of travellers to find and book the best value tickets across carriers, fares, and journey options through our highly rated mobile app, website, and B2B partner channels. Great journeys start with Trainline Now Europe's number 1 downloaded rail app, with over 125 million monthly visits and £5.9 billion in annual ticket sales, we collaborate with 270+ rail and coach companies in over 40 countries. We want to create a world where travel is as simple, seamless, eco-friendly and affordable as it should be. Today, we're a FTSE 250 company driven by our incredible team of over 1,000 Trainliners from 50+ nationalities, based across London, Paris, Barcelona, Milan, Edinburgh and Madrid. With our focus on growth in the UK and Europe, now is the perfect time to join us on this high-speed journey. Introducing Security We are seeking a highly motivated and detail-oriented Security Operations Engineer to join our dynamic Security Operations Team. As a Security Operations Engineer, you will play a critical role in safeguarding our organization's assets and data by overseeing the management of Trainline's SIEM. This is done by ensuring the SIEM is fully operational and that we have the logs and alerts needed to support incident detection and response efforts. Along with this the Security Operations Engineer will support the wider team in monitoring, analysing, and responding to Security events and incidents. You will ensure that our wider set of Security tools are optimized to their full potential in-line with industry best practice. Create and maintain detailed documentation and provide key insights to management through customized dashboards and reports. If you are passionate about cybersecurity, eager to stay ahead of emerging threats, and looking to grow within a fast-paced and evolving environment, we'd love to hear from you! As a Security Analyst at Trainline, you will Own the management and configuration of our SIEM platform (Splunk), ensuring its fully operational, updated, configured to best practice and providing value for money. Drive the creation of new alerts, working with the wider Security Operations team to ensure appropriate enrichment and value, and support the tuning of noisy alerts. Identify gaps in our logging and manage the onboarding of these from pre-implementation considerations, through to log availability monitoring. Undertake threat hunts to identify gaps in our logging and alerting. Use this along with threat intel to help drive our maturity road map. Support day-to-day management and configuration of other key security tools (for example Crowdstrike). Ensure these are configured and used to their full potential and in line with good industry practices. Collaborate with SMEs across the business to support and advise on the implementation of security best practice across our tooling and processes. Support the wider Security Operations team with the monitoring of our SecOps alert queue. Triage and investigate alerts providing detailed analysis and recommendations on remediation actions. Work with our Incident Management Team to respond to Security incidents. Provide Security analysis to validate and size up the problem, along with making recommendations for containment.Follow up after incidents with post incident review (PIR), ensuring any outstanding actions are tracked, and trends are identified. Continuously develop and improve the documentation for our Security tooling. Ensuring knowledge is shared with the wider team, and that we have standardised responses for reliability issues. Create, maintain, and analyse Security Operations dashboards and reports fed into management and stakeholders across the business. Identify key trends to help inform Trainlines threat landscape and key Security risks. (Once established within the team) join the on-call rota, responding to high priority incidents out-of-hours to ensure uninterrupted protection of mission critical systems and data. Support the wider Security team in our compliance and accreditation activities (GDRP, PCI, ISO12001). We'd love to hear from you if you have Strong technical knowledge, this could be across the domain (Security, Networks, Infrastructure, End User Compute). Hands-on experience with SIEM platforms (Splunk, Microsoft Sentinel, Elastic, etc). Familiarity with other security tools (EDR, Vulnerability Management, Firewalls, IDS). An understanding of cloud platforms (AWS, Azure, GCP) and relevant Security principles. A desire to be continuously upskilling your Security knowledge and skills. Ability to work under pressure and manage multiple priorities in a dynamic environment. Strong analytical and problem-solving skills. Clear communication and documentation skills, notably for PIRs and stakeholder updates. More information: Enjoy fantastic perks like private healthcare & dental insurance, a generous work from abroad policy, 2-for-1 share purchase plans, an EV Scheme to further reduce carbon emissions, extra festive time off, and excellent family-friendly benefits. We prioritise career growth with clear career paths, transparent pay bands, personal learning budgets, and regular learning days. Jump on board and supercharge your career from day one! Our values represent the things that matter most to us and what we live and breathe everyday, in everything we do: Think Big - We're building the future of rail ️ Own It - We focus on every customer, partner and journey Travel Together - We're one team ️ Do Good - We make a positive impact We know that having a diverse team makes us better and helps us succeed. And we mean all forms of diversity - gender, ethnicity, sexuality, disability, nationality and diversity of thought. That's why we're committed to creating inclusive places to work, where everyone belongs and differences are valued and celebrated. Interested in finding out more about what it's like to work at Trainline? Why not check us out on LinkedIn , Instagram and Glassdoor !
Job Description Out of the successful launch of Chase in 2021, we're a new team, with a new mission. We're creating products that solve real world problems and put customers at the center - all in an environment that nurtures skills and helps you realize your potential. Our team is key to our success. We're people-first. We value collaboration, curiosity and commitment. As a Platform Engineer at JPMorgan Chase within the Platform SDLC team, you are the heart of this venture, focused on getting smart ideas into the hands of our customers. You have a curious mindset, thrive in collaborative squads, and are passionate about new technology. By your nature, you are also solution-oriented, commercially savvy and have a head for fintech. You thrive in working in tribes and squads that focus on specific products and projects - and depending on your strengths and interests, you'll have the opportunity to move between them. While we're looking for professional skills, culture is just as important to us. We understand that everyone's unique - and that diversity of thought, experience and background is what makes a good team great. By bringing people with different points of view together, we can represent everyone and truly reflect the communities we serve. This way, there's scope for you to make a huge difference - on us as a company, and on our clients and business partners around the world. As a Platform SDLC Engineer you will play a crucial role in designing, implementing, and maintaining automation solutions for software development processes. You will collaborate closely with cross-functional teams to identify automation opportunities, build out custom workflows, and develop utility tools to enhance productivity and efficiency across the organization. Building secure SDLC pipelines which perform Vulnerability scanning, ensuring an immutable artifact signed and testing evidence is validated. Working towards the long term aim of developing an Internal Developer Platform (IDP) building golden paths and enabling developer self-service. Job responsibilities Designing and Implementing Automation Workflows: Work closely with software development teams to analyze existing workflows and identify opportunities for automation using GitHub Actions. Design and implement custom workflows tailored to specific project requirements. This includes infrastructure as code development pipelines. Developing GoLang Utilities: Utilize GoLang to develop efficient utility tools, scripts, and applications to automate repetitive tasks, enhance developer productivity, and improve the overall efficiency of the SDLC processes. Managing Continuous Integration/Continuous Deployment (CI/CD) Pipelines: Architect, configure, and manage CI/CD pipelines using GitHub Actions to automate the build, test, and deployment processes. Ensure smooth integration with version control systems and other development tools. Also facilitating reproducible builds and deployments. Monitoring and Optimizing performance: Monitor and analyze the performance of automation workflows and utility tools, identifying areas for optimization and improvement. Proactively implement enhancements to streamline processes and reduce cycle times. Creating Documentation and Training: Create comprehensive documentation for automation workflows, utility tools, and best practices. Provide training and support to development teams to ensure successful adoption and utilization of automation solutions. Staying Updated with Emerging Technologies: Keep abreast of the latest trends and advancements in automation, CI/CD, DevOps and DevSecOps practices. Evaluate new tools and technologies, recommending adoption where appropriate to drive continuous improvement. Required qualifications, capabilities, and skills Demonstrated proficiency with building software build pipelines, ideally with Github Actions Primarily identify as a software engineer and excel at designing and coding services and utilities using Golang. Have a strong focus on automated testing following TDD best practices. Well versed in using git scm. Passionate working with cloud-based infrastructure systems. Enjoy integrating various services, tools, and components together and value 'systems thinking'. Our Technology Stack The platform's SDLC technology stack consists of GitHub Actions, enabling seamless CI/CD workflows with automated testing, deployment, and infrastructure management. Automation utilities are written in Golang, Python and shell scripts ensuring high performance, reliability, and maintainability. Also leverage docker containers to speed-up SDLC build pipelines by consolidating all utilities and configuration into images. Additionally, the platform integrates with a Kubernetes environment on Google Cloud Platform (GCP) and services such as Cloud Key Management . We wisely choose open-source software when it meets our needs, and aren't hesitant to build custom solutions when necessary. We approach each challenge with an open mind, selecting the best technology for each task. We're comfortable with innovation, but always remember our ultimate goal: to create lasting solutions for our customers. About Us J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world's most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives. We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation. About The Team J.P. Morgan's Commercial & Investment Bank is a global leader across banking, markets, securities services and payments. Corporations, governments and institutions throughout the world entrust us with their business in more than 100 countries. The Commercial & Investment Bank provides strategic advice, raises capital, manages risk and extends liquidity in markets around the world.
Jun 27, 2025
Full time
Job Description Out of the successful launch of Chase in 2021, we're a new team, with a new mission. We're creating products that solve real world problems and put customers at the center - all in an environment that nurtures skills and helps you realize your potential. Our team is key to our success. We're people-first. We value collaboration, curiosity and commitment. As a Platform Engineer at JPMorgan Chase within the Platform SDLC team, you are the heart of this venture, focused on getting smart ideas into the hands of our customers. You have a curious mindset, thrive in collaborative squads, and are passionate about new technology. By your nature, you are also solution-oriented, commercially savvy and have a head for fintech. You thrive in working in tribes and squads that focus on specific products and projects - and depending on your strengths and interests, you'll have the opportunity to move between them. While we're looking for professional skills, culture is just as important to us. We understand that everyone's unique - and that diversity of thought, experience and background is what makes a good team great. By bringing people with different points of view together, we can represent everyone and truly reflect the communities we serve. This way, there's scope for you to make a huge difference - on us as a company, and on our clients and business partners around the world. As a Platform SDLC Engineer you will play a crucial role in designing, implementing, and maintaining automation solutions for software development processes. You will collaborate closely with cross-functional teams to identify automation opportunities, build out custom workflows, and develop utility tools to enhance productivity and efficiency across the organization. Building secure SDLC pipelines which perform Vulnerability scanning, ensuring an immutable artifact signed and testing evidence is validated. Working towards the long term aim of developing an Internal Developer Platform (IDP) building golden paths and enabling developer self-service. Job responsibilities Designing and Implementing Automation Workflows: Work closely with software development teams to analyze existing workflows and identify opportunities for automation using GitHub Actions. Design and implement custom workflows tailored to specific project requirements. This includes infrastructure as code development pipelines. Developing GoLang Utilities: Utilize GoLang to develop efficient utility tools, scripts, and applications to automate repetitive tasks, enhance developer productivity, and improve the overall efficiency of the SDLC processes. Managing Continuous Integration/Continuous Deployment (CI/CD) Pipelines: Architect, configure, and manage CI/CD pipelines using GitHub Actions to automate the build, test, and deployment processes. Ensure smooth integration with version control systems and other development tools. Also facilitating reproducible builds and deployments. Monitoring and Optimizing performance: Monitor and analyze the performance of automation workflows and utility tools, identifying areas for optimization and improvement. Proactively implement enhancements to streamline processes and reduce cycle times. Creating Documentation and Training: Create comprehensive documentation for automation workflows, utility tools, and best practices. Provide training and support to development teams to ensure successful adoption and utilization of automation solutions. Staying Updated with Emerging Technologies: Keep abreast of the latest trends and advancements in automation, CI/CD, DevOps and DevSecOps practices. Evaluate new tools and technologies, recommending adoption where appropriate to drive continuous improvement. Required qualifications, capabilities, and skills Demonstrated proficiency with building software build pipelines, ideally with Github Actions Primarily identify as a software engineer and excel at designing and coding services and utilities using Golang. Have a strong focus on automated testing following TDD best practices. Well versed in using git scm. Passionate working with cloud-based infrastructure systems. Enjoy integrating various services, tools, and components together and value 'systems thinking'. Our Technology Stack The platform's SDLC technology stack consists of GitHub Actions, enabling seamless CI/CD workflows with automated testing, deployment, and infrastructure management. Automation utilities are written in Golang, Python and shell scripts ensuring high performance, reliability, and maintainability. Also leverage docker containers to speed-up SDLC build pipelines by consolidating all utilities and configuration into images. Additionally, the platform integrates with a Kubernetes environment on Google Cloud Platform (GCP) and services such as Cloud Key Management . We wisely choose open-source software when it meets our needs, and aren't hesitant to build custom solutions when necessary. We approach each challenge with an open mind, selecting the best technology for each task. We're comfortable with innovation, but always remember our ultimate goal: to create lasting solutions for our customers. About Us J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world's most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives. We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation. About The Team J.P. Morgan's Commercial & Investment Bank is a global leader across banking, markets, securities services and payments. Corporations, governments and institutions throughout the world entrust us with their business in more than 100 countries. The Commercial & Investment Bank provides strategic advice, raises capital, manages risk and extends liquidity in markets around the world.
dunnhumby is the global leader in Customer Data Science, empowering businesses everywhere to compete and thrive in the modern data-driven economy. We always put the Customer First. Our mission: to enable businesses to grow and reimagine themselves by becoming advocates and champions for their Customers. With deep heritage and expertise in retail - one of the world's most competitive markets, with a deluge of multi-dimensional data - dunnhumby today enables businesses all over the world, across industries, to be Customer First. dunnhumby employs nearly 2,500 experts in offices throughout Europe, Asia, Africa, and the Americas working for transformative, iconic brands such as Tesco, Coca-Cola, Meijer, Procter & Gamble and Metro. We're looking for a Director of Platform Engineering to spearhead dunnhumby's transition to a platform centric approach and lead our efforts in building a world-class platform engineering enablement ecosystem. This role will focus on creating a platform that empowers products, fosters innovation, and delivers exceptional user interactions delivering robust internal developer platform (IDP) capabilities, strengthening CI/CD pipelines, enabling on-demand environments, and scaling platform foundations such as observability, security, and FinOps - while adhering to best practices in DevOps and modern software delivery What we expect from you Drive the development of a comprehensive IDP (e.g., based on Backstage ) with self-service capabilities, reusable templates, and golden paths to improve discoverability, standardization, and onboarding through the platform. Lead the design and scaling of CI/CD pipelines that incorporate GitOps principles using tools like ArgoCD , Octopus Deploy , and GitHub Actions . Enable progressive delivery via feature flags , canary deployments , and automated rollback mechanisms. Promote best-in-class DevSecOps practices, integrating quality and security checks seamlessly into pipelines. Build out on-demand environments for development, QA, and staging through Infrastructure-as-Code and container orchestration. Support multi-tenancy and environment rationalization to reduce duplication and inefficiency. Define and implement observability standards, including logging, metrics, tracing, and alerting . Use tools like New Relic , Prometheus , and Grafana , alongside building custom instrumentation for key platform services. Drive incident readiness and operational resilience by enabling actionable monitoring and alerting. Drive cloud cost visibility and optimization efforts across engineering through dashboards, tagging standards, and automation. Partner with stakeholders to embed FinOps principles in engineering decisions and build accountability into platform usage. Establish a systematic measurement framework for platform adoption, developer experience, and operational performance. Define and track KPIs like lead time for change, deployment frequency, MTTR, platform usage, and self-service success rates . Build measurement into platform tooling for continuous feedback loops. Collaborate cross-functionally with product, security, data, and architecture teams to align on roadmaps and shared goals. What we expect from you: Extensive experience in software development, platform engineering with strong leadership exposure Demonstrated leadership in managing senior engineers and driving cross-team initiatives Deep experience in CI/CD, GitOps, and DevOps workflows using ArgoCD, Octopus, GitHub Actions or similar tools. Proven success in building and operating developer platforms and enablement frameworks. Experience with cloud-native technologies, Kubernetes, and Infrastructure as Code (Terraform, Helm, etc.). Strong understanding of observability tooling (especially New Relic, Prometheus, Grafana) and incident response best practices. Familiarity with FinOps, platform cost tracking, and infrastructure efficiency techniques. Excellent communication, leadership, and stakeholder management skills. Attract, hire, and develop talented platform engineers with expertise in design, development, and security. This position will be based in Manchester but will require regular travel to London. What you can expect from us We won't just meet your expectations. We'll defy them. So you'll enjoy the comprehensive rewards package you'd expect from a leading technology company. But also, a degree of personal flexibility you might not expect. Plus, thoughtful perks, like flexible working hours and your birthday off. You'll also benefit from an investment in cutting-edge technology that reflects our global ambition. But with a nimble, small-business feel that gives you the freedom to play, experiment and learn. And we don't just talk about diversity and inclusion. We live it every day - with thriving networks including dh Gender Equality Network, dh Proud, dh Family, dh One, dh Enabled and dh Thrive as the living proof. We want everyone to have the opportunity to shine and perform at your best throughout our recruitment process. Please let us know how we can make this process work best for you. Our approach to Flexible Working At dunnhumby, we value and respect difference and are committed to building an inclusive culture by creating an environment where you can balance a successful career with your commitments and interests outside of work. We believe that you will do your best at work if you have a work / life balance. Some roles lend themselves to flexible options more than others, so if this is important to you please raise this with your recruiter, as we are open to discussing agile working opportunities during the hiring process. For further information about how we collect and use your personal information please see our Privacy Notice which can be found (here) Apply for this job indicates a required field First Name Last Name Email Phone Resume/CV Enter manually Accepted file types: pdf, doc, docx, txt, rtf Enter manually Accepted file types: pdf, doc, docx, txt, rtf Will you require sponsorship now or in the future to be able to work in the country the role will be located? Select I confirm that all information I have provided in this application is true and accurate' Select
Jun 26, 2025
Full time
dunnhumby is the global leader in Customer Data Science, empowering businesses everywhere to compete and thrive in the modern data-driven economy. We always put the Customer First. Our mission: to enable businesses to grow and reimagine themselves by becoming advocates and champions for their Customers. With deep heritage and expertise in retail - one of the world's most competitive markets, with a deluge of multi-dimensional data - dunnhumby today enables businesses all over the world, across industries, to be Customer First. dunnhumby employs nearly 2,500 experts in offices throughout Europe, Asia, Africa, and the Americas working for transformative, iconic brands such as Tesco, Coca-Cola, Meijer, Procter & Gamble and Metro. We're looking for a Director of Platform Engineering to spearhead dunnhumby's transition to a platform centric approach and lead our efforts in building a world-class platform engineering enablement ecosystem. This role will focus on creating a platform that empowers products, fosters innovation, and delivers exceptional user interactions delivering robust internal developer platform (IDP) capabilities, strengthening CI/CD pipelines, enabling on-demand environments, and scaling platform foundations such as observability, security, and FinOps - while adhering to best practices in DevOps and modern software delivery What we expect from you Drive the development of a comprehensive IDP (e.g., based on Backstage ) with self-service capabilities, reusable templates, and golden paths to improve discoverability, standardization, and onboarding through the platform. Lead the design and scaling of CI/CD pipelines that incorporate GitOps principles using tools like ArgoCD , Octopus Deploy , and GitHub Actions . Enable progressive delivery via feature flags , canary deployments , and automated rollback mechanisms. Promote best-in-class DevSecOps practices, integrating quality and security checks seamlessly into pipelines. Build out on-demand environments for development, QA, and staging through Infrastructure-as-Code and container orchestration. Support multi-tenancy and environment rationalization to reduce duplication and inefficiency. Define and implement observability standards, including logging, metrics, tracing, and alerting . Use tools like New Relic , Prometheus , and Grafana , alongside building custom instrumentation for key platform services. Drive incident readiness and operational resilience by enabling actionable monitoring and alerting. Drive cloud cost visibility and optimization efforts across engineering through dashboards, tagging standards, and automation. Partner with stakeholders to embed FinOps principles in engineering decisions and build accountability into platform usage. Establish a systematic measurement framework for platform adoption, developer experience, and operational performance. Define and track KPIs like lead time for change, deployment frequency, MTTR, platform usage, and self-service success rates . Build measurement into platform tooling for continuous feedback loops. Collaborate cross-functionally with product, security, data, and architecture teams to align on roadmaps and shared goals. What we expect from you: Extensive experience in software development, platform engineering with strong leadership exposure Demonstrated leadership in managing senior engineers and driving cross-team initiatives Deep experience in CI/CD, GitOps, and DevOps workflows using ArgoCD, Octopus, GitHub Actions or similar tools. Proven success in building and operating developer platforms and enablement frameworks. Experience with cloud-native technologies, Kubernetes, and Infrastructure as Code (Terraform, Helm, etc.). Strong understanding of observability tooling (especially New Relic, Prometheus, Grafana) and incident response best practices. Familiarity with FinOps, platform cost tracking, and infrastructure efficiency techniques. Excellent communication, leadership, and stakeholder management skills. Attract, hire, and develop talented platform engineers with expertise in design, development, and security. This position will be based in Manchester but will require regular travel to London. What you can expect from us We won't just meet your expectations. We'll defy them. So you'll enjoy the comprehensive rewards package you'd expect from a leading technology company. But also, a degree of personal flexibility you might not expect. Plus, thoughtful perks, like flexible working hours and your birthday off. You'll also benefit from an investment in cutting-edge technology that reflects our global ambition. But with a nimble, small-business feel that gives you the freedom to play, experiment and learn. And we don't just talk about diversity and inclusion. We live it every day - with thriving networks including dh Gender Equality Network, dh Proud, dh Family, dh One, dh Enabled and dh Thrive as the living proof. We want everyone to have the opportunity to shine and perform at your best throughout our recruitment process. Please let us know how we can make this process work best for you. Our approach to Flexible Working At dunnhumby, we value and respect difference and are committed to building an inclusive culture by creating an environment where you can balance a successful career with your commitments and interests outside of work. We believe that you will do your best at work if you have a work / life balance. Some roles lend themselves to flexible options more than others, so if this is important to you please raise this with your recruiter, as we are open to discussing agile working opportunities during the hiring process. For further information about how we collect and use your personal information please see our Privacy Notice which can be found (here) Apply for this job indicates a required field First Name Last Name Email Phone Resume/CV Enter manually Accepted file types: pdf, doc, docx, txt, rtf Enter manually Accepted file types: pdf, doc, docx, txt, rtf Will you require sponsorship now or in the future to be able to work in the country the role will be located? Select I confirm that all information I have provided in this application is true and accurate' Select
Principal Cloud Native Security Consultant London - Hybrid (2 days in office per week) Report To: Security Engineering Manager Job Location: London - Hybrid (2 days in office per week) Employment Status: Full Time Salary: Competitive and Market Based Who is ControlPlane? ControlPlane is a London headquartered consultancy specialising in cloud-native, Kubernetes, and open source solutions. Our expertise lies in helping organisations adopt and secure complex cloud infrastructures by implementing security measures that are "secure-by-design" and "secure-by-default." This engineering excellence has driven ControlPlane deeper into cybersecurity providing services like threat modelling, penetration testing, and supply chain security to ensure robust protection against cyberattacks in containerised and cloud-native environments. We are acclaimed for our contributions to securing highly regulated industries, such as finance, healthcare, and national infrastructure. We help businesses improve their security posture through services like DevSecOps consulting, zero-trust architectures, and platform engineering. ControlPlane also focuses on advancing best practices in the Kubernetes ecosystem, offering specialised training and community engagement. Our clients range from multinational banks to tech giants and public clouds, where we assist with both security and operational needs. In addition to consulting, we are active in the open source community, supporting projects like Flux CD and providing security tools for Kubernetes environments. Over the coming years you'll see us retain our focus on solving difficult problems for clients with intense security controls using pragmatic, real world solutions. Taking our extensive R&D to help organisations consume next generation and open source projects safely and securely - that might be extending our work with FINOS AI Readiness or the overhaul of open source supply chain security. What We're Looking For in a Principal Cloud Native Security Consultant: As a Principal level consultant you will represent the technical and cultural values of ControlPlane, leading our customers by example in the complex and fast-changing world of cloud native technology. You will assume end to end responsibilities accross a mix of client consulting and internal projects You will be comfortable leading engagements and defining end-to-end security architectures for cloud infrastructure, through a mixture of threat modelling and proof of concepts. You will also have insight into security operations and incident response for cloud environments, with experience of defining events, SOC integration & engineering and running table top exercises for incident response We're looking for principal level skill sets. You should have strong knowledge of container and cloud security architecture principles, and you enjoy getting hands-on, experimenting with cloud infrastructure, and want to expand your horizons in this area. You value transparency and candid feedback, and are driven by a strong desire to become the best you can be. ControlPlane thrives on community participation and collaboration through meetups and conferences, working groups, and training. We encourage our employees to be passionate about sharing information with friends and colleagues. You may be asked to: - Actively participate to Special Interest Groups and Technical Advisory Groups with our business partners, collaborators, and friends - Deliver Kubernetes Security and Kubernetes Threat Modeling training - Attend conferences and meetups in the UK and abroad This is a unique job role within a successful start-up company where you will have the chance to make a positive impact, learn, grow and work with great colleagues who consistently challenge the status quo. Roles, Responsibilities and Requirements of Our Cloud Native Security Consultant: Experience of leading Threat Modelling engagements or designing Cloud Native security architectures (AWS, GCP, Azure) Security Operations and Incident Response experience within a cloud environment, including defining events, SOC engineering and running table top exercises Consulting experience including managing engagements, running workshops and presenting to project security authorities. Kubernetes and container experience (some of EKS, GKE, AKS, OpenShift, and container runtimes) DevSecOps principles and Engineering practices CI/CD experience, automating security tests and hardening pipelines Knowledge of security tooling from enterprise tools such as Aqua, Prisma Cloud, Sysdig, Splunk and Logrythm to Open Source tools such as falco, kube-hunter, and kube-bench. Knowledge and experience of hardening guides, compliance standards and MITRE ATT&CK and Adversary Tools, Techniques and Procedures. Security related qualifications such as OSCP, Cloud Provider Security certifications, or CISSP A desire to learn, or experience with: CLI tooling in any of the above technologies. Golang or Python Vault, service mesh, in-toto, Tekton Chains, SPIFFE, and/or Sigstore Terraform and cloud infrastructure best practices (IaC, regulated systems) ControlPlane is a dynamic, cutting edge and passionate business for which to work. Our employees are the heart of our business, which means we care about our company culture and our employees' wellbeing and progression. Alongside this, as our colleague you will have the following benefits: Generous and competitive salary Bonus 33 days of paid holiday, including paid leave for the standard 8 UK Bank Holidays Cycle to Work scheme Enhanced Parental Leave Private Medical insurance An individual training budget for personal development, including but not limited to: Training (books, courses, coaching, as well as internal training which is of course included beyond budget) Qualifications Conferences 10 days for training 7.5 days to attend and present at conferences 10 days company research and development time We believe our peers are equally as important as the technology we use. We're looking for people of the highest personal calibre, quietly confident, with a good work ethic, keenness to learn, emotional maturity and respect, who know that "we" is more than "me", and who embrace human diversity of all kinds. As we grow you will help us to build a company culture of which we can all be proud. If you espouse these values, we want you! NOTE FOR RECRUITMENT AGENCIES: Please do not call or email our team speculatively, we do not accept unsolicited CVs. Apply for this job indicates a required field First Name Last Name Preferred First Name Email Phone Resume/CV Enter manually Accepted file types: pdf, doc, docx, txt, rtf Enter manually Accepted file types: pdf, doc, docx, txt, rtf
Jun 26, 2025
Full time
Principal Cloud Native Security Consultant London - Hybrid (2 days in office per week) Report To: Security Engineering Manager Job Location: London - Hybrid (2 days in office per week) Employment Status: Full Time Salary: Competitive and Market Based Who is ControlPlane? ControlPlane is a London headquartered consultancy specialising in cloud-native, Kubernetes, and open source solutions. Our expertise lies in helping organisations adopt and secure complex cloud infrastructures by implementing security measures that are "secure-by-design" and "secure-by-default." This engineering excellence has driven ControlPlane deeper into cybersecurity providing services like threat modelling, penetration testing, and supply chain security to ensure robust protection against cyberattacks in containerised and cloud-native environments. We are acclaimed for our contributions to securing highly regulated industries, such as finance, healthcare, and national infrastructure. We help businesses improve their security posture through services like DevSecOps consulting, zero-trust architectures, and platform engineering. ControlPlane also focuses on advancing best practices in the Kubernetes ecosystem, offering specialised training and community engagement. Our clients range from multinational banks to tech giants and public clouds, where we assist with both security and operational needs. In addition to consulting, we are active in the open source community, supporting projects like Flux CD and providing security tools for Kubernetes environments. Over the coming years you'll see us retain our focus on solving difficult problems for clients with intense security controls using pragmatic, real world solutions. Taking our extensive R&D to help organisations consume next generation and open source projects safely and securely - that might be extending our work with FINOS AI Readiness or the overhaul of open source supply chain security. What We're Looking For in a Principal Cloud Native Security Consultant: As a Principal level consultant you will represent the technical and cultural values of ControlPlane, leading our customers by example in the complex and fast-changing world of cloud native technology. You will assume end to end responsibilities accross a mix of client consulting and internal projects You will be comfortable leading engagements and defining end-to-end security architectures for cloud infrastructure, through a mixture of threat modelling and proof of concepts. You will also have insight into security operations and incident response for cloud environments, with experience of defining events, SOC integration & engineering and running table top exercises for incident response We're looking for principal level skill sets. You should have strong knowledge of container and cloud security architecture principles, and you enjoy getting hands-on, experimenting with cloud infrastructure, and want to expand your horizons in this area. You value transparency and candid feedback, and are driven by a strong desire to become the best you can be. ControlPlane thrives on community participation and collaboration through meetups and conferences, working groups, and training. We encourage our employees to be passionate about sharing information with friends and colleagues. You may be asked to: - Actively participate to Special Interest Groups and Technical Advisory Groups with our business partners, collaborators, and friends - Deliver Kubernetes Security and Kubernetes Threat Modeling training - Attend conferences and meetups in the UK and abroad This is a unique job role within a successful start-up company where you will have the chance to make a positive impact, learn, grow and work with great colleagues who consistently challenge the status quo. Roles, Responsibilities and Requirements of Our Cloud Native Security Consultant: Experience of leading Threat Modelling engagements or designing Cloud Native security architectures (AWS, GCP, Azure) Security Operations and Incident Response experience within a cloud environment, including defining events, SOC engineering and running table top exercises Consulting experience including managing engagements, running workshops and presenting to project security authorities. Kubernetes and container experience (some of EKS, GKE, AKS, OpenShift, and container runtimes) DevSecOps principles and Engineering practices CI/CD experience, automating security tests and hardening pipelines Knowledge of security tooling from enterprise tools such as Aqua, Prisma Cloud, Sysdig, Splunk and Logrythm to Open Source tools such as falco, kube-hunter, and kube-bench. Knowledge and experience of hardening guides, compliance standards and MITRE ATT&CK and Adversary Tools, Techniques and Procedures. Security related qualifications such as OSCP, Cloud Provider Security certifications, or CISSP A desire to learn, or experience with: CLI tooling in any of the above technologies. Golang or Python Vault, service mesh, in-toto, Tekton Chains, SPIFFE, and/or Sigstore Terraform and cloud infrastructure best practices (IaC, regulated systems) ControlPlane is a dynamic, cutting edge and passionate business for which to work. Our employees are the heart of our business, which means we care about our company culture and our employees' wellbeing and progression. Alongside this, as our colleague you will have the following benefits: Generous and competitive salary Bonus 33 days of paid holiday, including paid leave for the standard 8 UK Bank Holidays Cycle to Work scheme Enhanced Parental Leave Private Medical insurance An individual training budget for personal development, including but not limited to: Training (books, courses, coaching, as well as internal training which is of course included beyond budget) Qualifications Conferences 10 days for training 7.5 days to attend and present at conferences 10 days company research and development time We believe our peers are equally as important as the technology we use. We're looking for people of the highest personal calibre, quietly confident, with a good work ethic, keenness to learn, emotional maturity and respect, who know that "we" is more than "me", and who embrace human diversity of all kinds. As we grow you will help us to build a company culture of which we can all be proud. If you espouse these values, we want you! NOTE FOR RECRUITMENT AGENCIES: Please do not call or email our team speculatively, we do not accept unsolicited CVs. Apply for this job indicates a required field First Name Last Name Preferred First Name Email Phone Resume/CV Enter manually Accepted file types: pdf, doc, docx, txt, rtf Enter manually Accepted file types: pdf, doc, docx, txt, rtf
Job Title: Senior Cloud Native Security Consultant Report To: Security Engineering Manager Job Location: Remote and/or London (right to work in UK or EU required) Employment Status: Full Time Salary: Competitive and Market Based Who is ControlPlane? ControlPlane is a London headquartered consultancy specialising in cloud-native, Kubernetes, and open source solutions. Our expertise lies in helping organisations adopt and secure complex cloud infrastructures by implementing security measures that are "secure-by-design" and "secure-by-default." This engineering excellence has driven ControlPlane deeper into cybersecurity providing services like threat modelling, penetration testing, and supply chain security to ensure robust protection against cyberattacks in containerised and cloud-native environments. We are acclaimed for our contributions to securing highly regulated industries, such as finance, healthcare, and national infrastructure. We help businesses improve their security posture through services like DevSecOps consulting, zero-trust architectures, and platform engineering. ControlPlane also focuses on advancing best practices in the Kubernetes ecosystem, offering specialised training and community engagement. Our clients range from multinational banks to tech giants and public clouds, where we assist with both security and operational needs. In addition to consulting, we are active in the open source community, supporting projects like Flux CD and providing security tools for Kubernetes environments. Over the coming years you'll see us retain our focus on solving difficult problems for clients with intense security controls using pragmatic, real world solutions. Taking our extensive R&D to help organisations consume next generation and open source projects safely and securely - that might be extending our work with FINOS AI Readiness or the overhaul of open source supply chain security. What We're Looking For in a Senior Cloud Native Security Consultant We are looking for Senior Cloud Native Security Consultants to represent the technical and cultural values of ControlPlane, leading our customers by example in the complex and fast-changing world of cloud native technology. You will perform a mix of client consulting, working on internal labs projects, and contributing to Open Source projects on ControlPlane's behalf. You will define end-to-end security architectures for cloud infrastructure platforms and CI/CD pipelines, through a combination of Threat Modelling and Proof of Concepts, and High and Low Level Designs. You will also be comfortable with modern software development frameworks such as Agile, SCRUM or XP and have development experience with Python, including modern tools such as black, mypy and flake8. We're looking for mid-to-senior level skill sets. You should have strong knowledge of container and cloud security architecture principles, and you enjoy getting hands-on, experimenting with cloud infrastructure, and want to expand your horizons in this area. You value transparency and candid feedback, and are driven by a strong desire to become the best you can be. ControlPlane thrives on community participation and collaboration through meetups and conferences, working groups, and training. We encourage our employees to be passionate about sharing information with friends and colleagues. You may be asked to: - Actively participate to Special Interest Groups and Technical Advisory Groups with our business partners, collaborators, and friends - Deliver Kubernetes Security and Kubernetes Threat Modeling training - Attend conferences and meetups in the UK and abroad This is a unique job role within a successful start-up company where you will have the chance to make a positive impact, learn, grow and work with great colleagues who consistently challenge the status quo. Roles, Responsibilities and Requirements of Our Cloud Native Security Consultant: Kubernetes and container experience (some of EKS, GKE, AKS, OpenShift, and container runtimes) Experience of Threat Modelling and designing Cloud Native security architectures (AWS, GCP, Azure) Understanding of CD/CD best practices and a range of deployment tools, such as Kubernetes, Helm and bash scripting Consulting experience including strong soft-skills to manage clients, processes and tasks in highly-regulated enterprise environments. DevSecOps principles and Engineering practices CI/CD experience, automating security tests, and hardening pipelines Knowledge of security tooling from enterprise tools such as Aqua, Prisma, Sysdig, Lacework, etc to Open Source tools such as falco, kube-hunter, and kube-bench. Knowledge and experience using hardening guides, compliance and risk management standards Security related qualifications such as OSCP, Cloud Provider Security certifications, or CISSP A desire to learn, or experience with: CLI tooling in any of the above technologies. Golang or Python Terraform and cloud infrastructure best practices (IaC, regulated systems) Vault, service mesh, in-toto, Tekton Chains, SPIFFE, and/or Sigstore experience is a plus ControlPlane is a dynamic, cutting edge and passionate business for which to work. Our employees are the heart of our business, which means we care about our company culture and our employees' wellbeing and progression. Alongside this, as our colleague you will have the following benefits: Generous and competitive salary Bonus 33 days of paid holiday, including paid leave for the standard 8 UK Bank Holidays Cycle to Work scheme Enhanced Parental Leave Private Medical insurance An individual training budget for personal development, including but not limited to: Conferences Training (books, courses, coaching, as well as internal training which is of course included beyond budget) Qualifications 10 days for training 7.5 days to attend and present at conferences 10 days company research and development time We believe our peers are equally as important as the technology we use. We're looking for people of the highest personal calibre, quietly confident, with a good work ethic, keenness to learn, emotional maturity and respect, who know that "we" is more than "me", and who embrace human diversity of all kinds. As we grow you will help us to build a company culture of which we can all be proud. If you espouse these values, we want you! NOTE FOR RECRUITMENT AGENCIES: Please do not call or email our team speculatively, we do not accept unsolicited CVs. Apply for this job indicates a required field First Name Last Name Email Phone Resume/CV Enter manually Accepted file types: pdf, doc, docx, txt, rtf Enter manually Accepted file types: pdf, doc, docx, txt, rtf
Jun 26, 2025
Full time
Job Title: Senior Cloud Native Security Consultant Report To: Security Engineering Manager Job Location: Remote and/or London (right to work in UK or EU required) Employment Status: Full Time Salary: Competitive and Market Based Who is ControlPlane? ControlPlane is a London headquartered consultancy specialising in cloud-native, Kubernetes, and open source solutions. Our expertise lies in helping organisations adopt and secure complex cloud infrastructures by implementing security measures that are "secure-by-design" and "secure-by-default." This engineering excellence has driven ControlPlane deeper into cybersecurity providing services like threat modelling, penetration testing, and supply chain security to ensure robust protection against cyberattacks in containerised and cloud-native environments. We are acclaimed for our contributions to securing highly regulated industries, such as finance, healthcare, and national infrastructure. We help businesses improve their security posture through services like DevSecOps consulting, zero-trust architectures, and platform engineering. ControlPlane also focuses on advancing best practices in the Kubernetes ecosystem, offering specialised training and community engagement. Our clients range from multinational banks to tech giants and public clouds, where we assist with both security and operational needs. In addition to consulting, we are active in the open source community, supporting projects like Flux CD and providing security tools for Kubernetes environments. Over the coming years you'll see us retain our focus on solving difficult problems for clients with intense security controls using pragmatic, real world solutions. Taking our extensive R&D to help organisations consume next generation and open source projects safely and securely - that might be extending our work with FINOS AI Readiness or the overhaul of open source supply chain security. What We're Looking For in a Senior Cloud Native Security Consultant We are looking for Senior Cloud Native Security Consultants to represent the technical and cultural values of ControlPlane, leading our customers by example in the complex and fast-changing world of cloud native technology. You will perform a mix of client consulting, working on internal labs projects, and contributing to Open Source projects on ControlPlane's behalf. You will define end-to-end security architectures for cloud infrastructure platforms and CI/CD pipelines, through a combination of Threat Modelling and Proof of Concepts, and High and Low Level Designs. You will also be comfortable with modern software development frameworks such as Agile, SCRUM or XP and have development experience with Python, including modern tools such as black, mypy and flake8. We're looking for mid-to-senior level skill sets. You should have strong knowledge of container and cloud security architecture principles, and you enjoy getting hands-on, experimenting with cloud infrastructure, and want to expand your horizons in this area. You value transparency and candid feedback, and are driven by a strong desire to become the best you can be. ControlPlane thrives on community participation and collaboration through meetups and conferences, working groups, and training. We encourage our employees to be passionate about sharing information with friends and colleagues. You may be asked to: - Actively participate to Special Interest Groups and Technical Advisory Groups with our business partners, collaborators, and friends - Deliver Kubernetes Security and Kubernetes Threat Modeling training - Attend conferences and meetups in the UK and abroad This is a unique job role within a successful start-up company where you will have the chance to make a positive impact, learn, grow and work with great colleagues who consistently challenge the status quo. Roles, Responsibilities and Requirements of Our Cloud Native Security Consultant: Kubernetes and container experience (some of EKS, GKE, AKS, OpenShift, and container runtimes) Experience of Threat Modelling and designing Cloud Native security architectures (AWS, GCP, Azure) Understanding of CD/CD best practices and a range of deployment tools, such as Kubernetes, Helm and bash scripting Consulting experience including strong soft-skills to manage clients, processes and tasks in highly-regulated enterprise environments. DevSecOps principles and Engineering practices CI/CD experience, automating security tests, and hardening pipelines Knowledge of security tooling from enterprise tools such as Aqua, Prisma, Sysdig, Lacework, etc to Open Source tools such as falco, kube-hunter, and kube-bench. Knowledge and experience using hardening guides, compliance and risk management standards Security related qualifications such as OSCP, Cloud Provider Security certifications, or CISSP A desire to learn, or experience with: CLI tooling in any of the above technologies. Golang or Python Terraform and cloud infrastructure best practices (IaC, regulated systems) Vault, service mesh, in-toto, Tekton Chains, SPIFFE, and/or Sigstore experience is a plus ControlPlane is a dynamic, cutting edge and passionate business for which to work. Our employees are the heart of our business, which means we care about our company culture and our employees' wellbeing and progression. Alongside this, as our colleague you will have the following benefits: Generous and competitive salary Bonus 33 days of paid holiday, including paid leave for the standard 8 UK Bank Holidays Cycle to Work scheme Enhanced Parental Leave Private Medical insurance An individual training budget for personal development, including but not limited to: Conferences Training (books, courses, coaching, as well as internal training which is of course included beyond budget) Qualifications 10 days for training 7.5 days to attend and present at conferences 10 days company research and development time We believe our peers are equally as important as the technology we use. We're looking for people of the highest personal calibre, quietly confident, with a good work ethic, keenness to learn, emotional maturity and respect, who know that "we" is more than "me", and who embrace human diversity of all kinds. As we grow you will help us to build a company culture of which we can all be proud. If you espouse these values, we want you! NOTE FOR RECRUITMENT AGENCIES: Please do not call or email our team speculatively, we do not accept unsolicited CVs. Apply for this job indicates a required field First Name Last Name Email Phone Resume/CV Enter manually Accepted file types: pdf, doc, docx, txt, rtf Enter manually Accepted file types: pdf, doc, docx, txt, rtf
213232-en_GB Life on the team At Computacenter, you'll be joining a vibrant and forward-thinking team within our Group Professional Services (GPS) division-home to over 1,000 skilled practitioners across the UK, France, and Germany. GPS is where deep technical expertise meets industry-leading consultancy, shaping complex solutions for some of the world's most recognised organisations. As part of our Cloud & Apps Practice, you'll work in a supportive, collaborative environment with the autonomy to shape customer outcomes and influence our technical strategy. Whether you're working alongside experienced peers, supporting major bids, or leading solution delivery, you'll be instrumental in helping us-and our customers-stay ahead of the curve. What you'll do As a DevSecOps Solution Architect, you'll be at the forefront of customer engagements, providing both pre-sales and post-sales consultancy Lead the design and implementation of secure, scalable DevSecOps solutions across cloud, on-prem, and hybrid environments Advise customers on best practices for CI/CD, containerisation, and integrating security across the SDLC Collaborate with Sales and Consulting teams to develop technical proposals and bid responses Facilitate customer workshops, design reviews, and solution assurance activities Drive innovation and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll need Proven experience leading DevOps or DevSecOps projects across cloud and hybrid platforms Strong working knowledge of agile delivery methodologies (Scrum, SAFe, Kanban, etc.) Deep expertise in Kubernetes (vanilla, EKS, AKS, OpenShift), CI/CD pipelines, and infrastructure as code (Terraform) Security integration experience across the DevSecOps lifecycle, including: SAST, DAST, SCA, and IAST tools (e.g., Checkmarx, Veracode, OWASP ZAP) Secrets management tools like HashiCorp Vault Vulnerability management solutions such as Prisma Cloud Testing frameworks like Selenium Familiarity with JIRA, Confluence, and GitLab/Jenkins-based CI/CD environments The ability to communicate complex technical concepts clearly to non-technical stakeholders SC clearance or willingness to undergo vetting We're looking for someone who operates at SFIA Level 6-comfortable working autonomously, influencing at the highest levels, and delivering consistently excellent results Ready to shape secure software delivery at scale? Join us and help define the future of DevSecOps at Computacenter. Current information for our applicants Business as usual? Not quite. Of course, the Corona crisis also presents us with major challenges. However, we are broadly positioned across various industries, plan for the long term and have always been flexible in our approach to our customers, especially in times of crisis. Our core business is digitisation. We believe that this topic will continue to grow in importance for many companies in both public and private sectors. That's why there are still areas of our business with clear hiring requirements - and we would like to bring talent like you on board! By the way, we have completely virtualised our application process and our recruiters remain available to you should you have any questions. We are still looking forward to getting to know you!
Jun 26, 2025
Full time
213232-en_GB Life on the team At Computacenter, you'll be joining a vibrant and forward-thinking team within our Group Professional Services (GPS) division-home to over 1,000 skilled practitioners across the UK, France, and Germany. GPS is where deep technical expertise meets industry-leading consultancy, shaping complex solutions for some of the world's most recognised organisations. As part of our Cloud & Apps Practice, you'll work in a supportive, collaborative environment with the autonomy to shape customer outcomes and influence our technical strategy. Whether you're working alongside experienced peers, supporting major bids, or leading solution delivery, you'll be instrumental in helping us-and our customers-stay ahead of the curve. What you'll do As a DevSecOps Solution Architect, you'll be at the forefront of customer engagements, providing both pre-sales and post-sales consultancy Lead the design and implementation of secure, scalable DevSecOps solutions across cloud, on-prem, and hybrid environments Advise customers on best practices for CI/CD, containerisation, and integrating security across the SDLC Collaborate with Sales and Consulting teams to develop technical proposals and bid responses Facilitate customer workshops, design reviews, and solution assurance activities Drive innovation and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll need Proven experience leading DevOps or DevSecOps projects across cloud and hybrid platforms Strong working knowledge of agile delivery methodologies (Scrum, SAFe, Kanban, etc.) Deep expertise in Kubernetes (vanilla, EKS, AKS, OpenShift), CI/CD pipelines, and infrastructure as code (Terraform) Security integration experience across the DevSecOps lifecycle, including: SAST, DAST, SCA, and IAST tools (e.g., Checkmarx, Veracode, OWASP ZAP) Secrets management tools like HashiCorp Vault Vulnerability management solutions such as Prisma Cloud Testing frameworks like Selenium Familiarity with JIRA, Confluence, and GitLab/Jenkins-based CI/CD environments The ability to communicate complex technical concepts clearly to non-technical stakeholders SC clearance or willingness to undergo vetting We're looking for someone who operates at SFIA Level 6-comfortable working autonomously, influencing at the highest levels, and delivering consistently excellent results Ready to shape secure software delivery at scale? Join us and help define the future of DevSecOps at Computacenter. Current information for our applicants Business as usual? Not quite. Of course, the Corona crisis also presents us with major challenges. However, we are broadly positioned across various industries, plan for the long term and have always been flexible in our approach to our customers, especially in times of crisis. Our core business is digitisation. We believe that this topic will continue to grow in importance for many companies in both public and private sectors. That's why there are still areas of our business with clear hiring requirements - and we would like to bring talent like you on board! By the way, we have completely virtualised our application process and our recruiters remain available to you should you have any questions. We are still looking forward to getting to know you!
My client is based in the London area are currently looking to recruit for an experienced Lead GCP Data Architect to join their team. They are one of the leaders within the consulting space and are currently going through a period of growth and are looking for an experienced Lead Data Architect to join their team.They are backed by a huge Multi National equity firm who are looking to bolster my clients financial position. They are expected to see year on year growth, which will allow them to implement and utilise the most in demand and cutting edge technology on the market right now. They have just implemented Gen AI within their organisation are looking to utilise the newest technologies on the market. Your role will include: Enterprise Architecture & Delivery: Spearhead the design and implementation of scalable data ecosystems-spanning data lakes, lakehouses, and warehouses-leveraging platforms such as GCP, BigQuery Snowflake, Synapse, or Microsoft Fabric. Cloud Transformation Strategy: Lead cloud adoption and modernization initiatives across GCP, utilizing infrastructure-as-code (e.g., Terraform), CI/CD automation (e.g., Azure DevOps, GitHub), and DevSecOps best practices. Data Architecture & Modeling: Bring deep technical expertise in enterprise-grade data modeling using tools like ERwin, PowerDesigner, or ER/Studio, ensuring models are optimized for performance, scalability, and long-term maintainability. Data Integration & Pipeline Engineering: Design and implement resilient ETL/ELT workflows using technologies such as BigQuery, Dataflow, Informatica, or IBM DataStage, supporting both real-time and batch data processing. Governance & Data Quality Management: Establish comprehensive data governance frameworks, including metadata management and quality assurance, using platforms like Unity Catalog, Alation, Profisee, or DQ Pro. Strategic Advisory & Stakeholder Engagement: Serve as a strategic partner to executive stakeholders (e.g., CDOs, CIOs, Heads of Data), shaping data strategies, roadmaps, and business cases through in-depth assessments and advisory engagements. Leadership & Talent Development: Guide and mentor global, cross-functional teams of data professionals-architects, engineers, analysts, and scientists-fostering a culture of innovation, excellence, and continuous learning. The right candidate will: Have extensive knowledge of writing codes, building data pipelines and doing digital transformation and ingestion within a certain tech suite and extensive experience in implementing solutions around the GCP cloud environment, In depth understanding of Presales Activities, Workshops, Buds, Proposals etc, Excellent understanding of Data Modelling (Physical, Logical, Conceptual), An understanding of Enterprise Level Architetcure, Strong hands-on experience in Data Warehouse and Data Lake technologies preferably around GCP. My client is providing access to; Hybrid 2 days (London), 28 Days Holiday, Plus Bank Holiday Private Medical Health Pension Scheme And More This role is an urgent requirement, there are limited interview slots left, if interested send an up to date CV to Shoaib Khan - (url removed) or call (phone number removed) for a catch up in complete confidence. TRG's Data Teams offer more opportunities across the UK than any other recruiter We're the proud sponsor and supporter of SQLBits, AWS RE:Invent, Power Platform World Tour, the London Power BI User Group, Newcastle Power BI User Group and Newcastle Data Platform and Cloud User Group
Jun 11, 2025
Full time
My client is based in the London area are currently looking to recruit for an experienced Lead GCP Data Architect to join their team. They are one of the leaders within the consulting space and are currently going through a period of growth and are looking for an experienced Lead Data Architect to join their team.They are backed by a huge Multi National equity firm who are looking to bolster my clients financial position. They are expected to see year on year growth, which will allow them to implement and utilise the most in demand and cutting edge technology on the market right now. They have just implemented Gen AI within their organisation are looking to utilise the newest technologies on the market. Your role will include: Enterprise Architecture & Delivery: Spearhead the design and implementation of scalable data ecosystems-spanning data lakes, lakehouses, and warehouses-leveraging platforms such as GCP, BigQuery Snowflake, Synapse, or Microsoft Fabric. Cloud Transformation Strategy: Lead cloud adoption and modernization initiatives across GCP, utilizing infrastructure-as-code (e.g., Terraform), CI/CD automation (e.g., Azure DevOps, GitHub), and DevSecOps best practices. Data Architecture & Modeling: Bring deep technical expertise in enterprise-grade data modeling using tools like ERwin, PowerDesigner, or ER/Studio, ensuring models are optimized for performance, scalability, and long-term maintainability. Data Integration & Pipeline Engineering: Design and implement resilient ETL/ELT workflows using technologies such as BigQuery, Dataflow, Informatica, or IBM DataStage, supporting both real-time and batch data processing. Governance & Data Quality Management: Establish comprehensive data governance frameworks, including metadata management and quality assurance, using platforms like Unity Catalog, Alation, Profisee, or DQ Pro. Strategic Advisory & Stakeholder Engagement: Serve as a strategic partner to executive stakeholders (e.g., CDOs, CIOs, Heads of Data), shaping data strategies, roadmaps, and business cases through in-depth assessments and advisory engagements. Leadership & Talent Development: Guide and mentor global, cross-functional teams of data professionals-architects, engineers, analysts, and scientists-fostering a culture of innovation, excellence, and continuous learning. The right candidate will: Have extensive knowledge of writing codes, building data pipelines and doing digital transformation and ingestion within a certain tech suite and extensive experience in implementing solutions around the GCP cloud environment, In depth understanding of Presales Activities, Workshops, Buds, Proposals etc, Excellent understanding of Data Modelling (Physical, Logical, Conceptual), An understanding of Enterprise Level Architetcure, Strong hands-on experience in Data Warehouse and Data Lake technologies preferably around GCP. My client is providing access to; Hybrid 2 days (London), 28 Days Holiday, Plus Bank Holiday Private Medical Health Pension Scheme And More This role is an urgent requirement, there are limited interview slots left, if interested send an up to date CV to Shoaib Khan - (url removed) or call (phone number removed) for a catch up in complete confidence. TRG's Data Teams offer more opportunities across the UK than any other recruiter We're the proud sponsor and supporter of SQLBits, AWS RE:Invent, Power Platform World Tour, the London Power BI User Group, Newcastle Power BI User Group and Newcastle Data Platform and Cloud User Group
Computacenter AG & Co. oHG
Hatfield, Hertfordshire
Select how often (in days) to receive an alert: Solution Architect - DevSecOps Location: UK - London, UK - Birmingham, UK - Edinburgh, UK - Hatfield, UK - Manchester, UK - Milton Keynes, UK - Nottingham, UK - Reading Job-ID: 213232 Contract type: Standard Business Unit: IT Consulting Life on the team At Computacenter, you'll be joining a vibrant and forward-thinking team within our Group Professional Services (GPS) division-home to over 1,000 skilled practitioners across the UK, France, and Germany. GPS is where deep technical expertise meets industry-leading consultancy, shaping complex solutions for some of the world's most recognised organisations. As part of our Cloud & Apps Practice, you'll work in a supportive, collaborative environment with the autonomy to shape customer outcomes and influence our technical strategy. Whether you're working alongside experienced peers, supporting major bids, or leading solution delivery, you'll be instrumental in helping us-and our customers-stay ahead of the curve. What you'll do As a DevSecOps Solution Architect, you'll be at the forefront of customer engagements, providing both pre-sales and post-sales consultancy Lead the design and implementation of secure, scalable DevSecOps solutions across cloud, on-prem, and hybrid environments Advise customers on best practices for CI/CD, containerisation, and integrating security across the SDLC Collaborate with Sales and Consulting teams to develop technical proposals and bid responses Facilitate customer workshops, design reviews, and solution assurance activities Drive innovation and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll need Proven experience leading DevOps or DevSecOps projects across cloud and hybrid platforms Strong working knowledge of agile delivery methodologies (Scrum, SAFe, Kanban, etc.) Deep expertise in Kubernetes (vanilla, EKS, AKS, OpenShift), CI/CD pipelines, and infrastructure as code (Terraform) Security integration experience across the DevSecOps lifecycle, including: SAST, DAST, SCA, and IAST tools (e.g., Checkmarx, Veracode, OWASP ZAP) Secrets management tools like HashiCorp Vault Vulnerability management solutions such as Prisma Cloud Testing frameworks like Selenium Familiarity with JIRA, Confluence, and GitLab/Jenkins-based CI/CD environments The ability to communicate complex technical concepts clearly to non-technical stakeholders SC clearance or willingness to undergo vetting We're looking for someone who operates at SFIA Level 6-comfortable working autonomously, influencing at the highest levels, and delivering consistently excellent results Ready to shape secure software delivery at scale? Join us and help define the future of DevSecOps at Computacenter. Current information for our applicants Business as usual? Not quite. Of course, the Corona crisis also presents us with major challenges. However, we are broadly positioned across various industries, plan for the long term and have always been flexible in our approach to our customers, especially in times of crisis. Our core business is digitisation. We believe that this topic will continue to grow in importance for many companies in both public and private sectors. That's why there are still areas of our business with clear hiring requirements - and we would like to bring talent like you on board! By the way, we have completely virtualised our application process and our recruiters remain available to you should you have any questions. We are still looking forward to getting to know you! About us Computacenter is a leading independent provider of IT infrastructure services. We work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology and managing our customers' infrastructures. We offer a friendly, open working environment without too much fuss about hierarchy. We are looking for professionals with diverse competencies, personalities and strengths who want to live our shared value of teamwork and performance. Interested in joining a company with a strong sense of community? We're growing. We're hiring. We encourage. We empower. We support.
Jun 06, 2025
Full time
Select how often (in days) to receive an alert: Solution Architect - DevSecOps Location: UK - London, UK - Birmingham, UK - Edinburgh, UK - Hatfield, UK - Manchester, UK - Milton Keynes, UK - Nottingham, UK - Reading Job-ID: 213232 Contract type: Standard Business Unit: IT Consulting Life on the team At Computacenter, you'll be joining a vibrant and forward-thinking team within our Group Professional Services (GPS) division-home to over 1,000 skilled practitioners across the UK, France, and Germany. GPS is where deep technical expertise meets industry-leading consultancy, shaping complex solutions for some of the world's most recognised organisations. As part of our Cloud & Apps Practice, you'll work in a supportive, collaborative environment with the autonomy to shape customer outcomes and influence our technical strategy. Whether you're working alongside experienced peers, supporting major bids, or leading solution delivery, you'll be instrumental in helping us-and our customers-stay ahead of the curve. What you'll do As a DevSecOps Solution Architect, you'll be at the forefront of customer engagements, providing both pre-sales and post-sales consultancy Lead the design and implementation of secure, scalable DevSecOps solutions across cloud, on-prem, and hybrid environments Advise customers on best practices for CI/CD, containerisation, and integrating security across the SDLC Collaborate with Sales and Consulting teams to develop technical proposals and bid responses Facilitate customer workshops, design reviews, and solution assurance activities Drive innovation and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll need Proven experience leading DevOps or DevSecOps projects across cloud and hybrid platforms Strong working knowledge of agile delivery methodologies (Scrum, SAFe, Kanban, etc.) Deep expertise in Kubernetes (vanilla, EKS, AKS, OpenShift), CI/CD pipelines, and infrastructure as code (Terraform) Security integration experience across the DevSecOps lifecycle, including: SAST, DAST, SCA, and IAST tools (e.g., Checkmarx, Veracode, OWASP ZAP) Secrets management tools like HashiCorp Vault Vulnerability management solutions such as Prisma Cloud Testing frameworks like Selenium Familiarity with JIRA, Confluence, and GitLab/Jenkins-based CI/CD environments The ability to communicate complex technical concepts clearly to non-technical stakeholders SC clearance or willingness to undergo vetting We're looking for someone who operates at SFIA Level 6-comfortable working autonomously, influencing at the highest levels, and delivering consistently excellent results Ready to shape secure software delivery at scale? Join us and help define the future of DevSecOps at Computacenter. Current information for our applicants Business as usual? Not quite. Of course, the Corona crisis also presents us with major challenges. However, we are broadly positioned across various industries, plan for the long term and have always been flexible in our approach to our customers, especially in times of crisis. Our core business is digitisation. We believe that this topic will continue to grow in importance for many companies in both public and private sectors. That's why there are still areas of our business with clear hiring requirements - and we would like to bring talent like you on board! By the way, we have completely virtualised our application process and our recruiters remain available to you should you have any questions. We are still looking forward to getting to know you! About us Computacenter is a leading independent provider of IT infrastructure services. We work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology and managing our customers' infrastructures. We offer a friendly, open working environment without too much fuss about hierarchy. We are looking for professionals with diverse competencies, personalities and strengths who want to live our shared value of teamwork and performance. Interested in joining a company with a strong sense of community? We're growing. We're hiring. We encourage. We empower. We support.
Select how often (in days) to receive an alert: Solution Architect - DevSecOps Location: UK - London, UK - Birmingham, UK - Edinburgh, UK - Hatfield, UK - Manchester, UK - Milton Keynes, UK - Nottingham, UK - Reading Job-ID: 213232 Contract type: Standard Business Unit: IT Consulting Life on the team At Computacenter, you'll be joining a vibrant and forward-thinking team within our Group Professional Services (GPS) division-home to over 1,000 skilled practitioners across the UK, France, and Germany. GPS is where deep technical expertise meets industry-leading consultancy, shaping complex solutions for some of the world's most recognised organisations. As part of our Cloud & Apps Practice, you'll work in a supportive, collaborative environment with the autonomy to shape customer outcomes and influence our technical strategy. Whether you're working alongside experienced peers, supporting major bids, or leading solution delivery, you'll be instrumental in helping us-and our customers-stay ahead of the curve. What you'll do As a DevSecOps Solution Architect, you'll be at the forefront of customer engagements, providing both pre-sales and post-sales consultancy Lead the design and implementation of secure, scalable DevSecOps solutions across cloud, on-prem, and hybrid environments Advise customers on best practices for CI/CD, containerisation, and integrating security across the SDLC Collaborate with Sales and Consulting teams to develop technical proposals and bid responses Facilitate customer workshops, design reviews, and solution assurance activities Drive innovation and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll need Proven experience leading DevOps or DevSecOps projects across cloud and hybrid platforms Strong working knowledge of agile delivery methodologies (Scrum, SAFe, Kanban, etc.) Deep expertise in Kubernetes (vanilla, EKS, AKS, OpenShift), CI/CD pipelines, and infrastructure as code (Terraform) Security integration experience across the DevSecOps lifecycle, including: SAST, DAST, SCA, and IAST tools (e.g., Checkmarx, Veracode, OWASP ZAP) Secrets management tools like HashiCorp Vault Vulnerability management solutions such as Prisma Cloud Testing frameworks like Selenium Familiarity with JIRA, Confluence, and GitLab/Jenkins-based CI/CD environments The ability to communicate complex technical concepts clearly to non-technical stakeholders SC clearance or willingness to undergo vetting We're looking for someone who operates at SFIA Level 6-comfortable working autonomously, influencing at the highest levels, and delivering consistently excellent results Ready to shape secure software delivery at scale? Join us and help define the future of DevSecOps at Computacenter. Current information for our applicants Business as usual? Not quite. Of course, the Corona crisis also presents us with major challenges. However, we are broadly positioned across various industries, plan for the long term and have always been flexible in our approach to our customers, especially in times of crisis. Our core business is digitisation. We believe that this topic will continue to grow in importance for many companies in both public and private sectors. That's why there are still areas of our business with clear hiring requirements - and we would like to bring talent like you on board! By the way, we have completely virtualised our application process and our recruiters remain available to you should you have any questions. We are still looking forward to getting to know you! About us Computacenter is a leading independent provider of IT infrastructure services. We work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology and managing our customers' infrastructures. We offer a friendly, open working environment without too much fuss about hierarchy. We are looking for professionals with diverse competencies, personalities and strengths who want to live our shared value of teamwork and performance. Interested in joining a company with a strong sense of community? We're growing. We're hiring. We encourage. We empower. We support.
Jun 06, 2025
Full time
Select how often (in days) to receive an alert: Solution Architect - DevSecOps Location: UK - London, UK - Birmingham, UK - Edinburgh, UK - Hatfield, UK - Manchester, UK - Milton Keynes, UK - Nottingham, UK - Reading Job-ID: 213232 Contract type: Standard Business Unit: IT Consulting Life on the team At Computacenter, you'll be joining a vibrant and forward-thinking team within our Group Professional Services (GPS) division-home to over 1,000 skilled practitioners across the UK, France, and Germany. GPS is where deep technical expertise meets industry-leading consultancy, shaping complex solutions for some of the world's most recognised organisations. As part of our Cloud & Apps Practice, you'll work in a supportive, collaborative environment with the autonomy to shape customer outcomes and influence our technical strategy. Whether you're working alongside experienced peers, supporting major bids, or leading solution delivery, you'll be instrumental in helping us-and our customers-stay ahead of the curve. What you'll do As a DevSecOps Solution Architect, you'll be at the forefront of customer engagements, providing both pre-sales and post-sales consultancy Lead the design and implementation of secure, scalable DevSecOps solutions across cloud, on-prem, and hybrid environments Advise customers on best practices for CI/CD, containerisation, and integrating security across the SDLC Collaborate with Sales and Consulting teams to develop technical proposals and bid responses Facilitate customer workshops, design reviews, and solution assurance activities Drive innovation and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll need Proven experience leading DevOps or DevSecOps projects across cloud and hybrid platforms Strong working knowledge of agile delivery methodologies (Scrum, SAFe, Kanban, etc.) Deep expertise in Kubernetes (vanilla, EKS, AKS, OpenShift), CI/CD pipelines, and infrastructure as code (Terraform) Security integration experience across the DevSecOps lifecycle, including: SAST, DAST, SCA, and IAST tools (e.g., Checkmarx, Veracode, OWASP ZAP) Secrets management tools like HashiCorp Vault Vulnerability management solutions such as Prisma Cloud Testing frameworks like Selenium Familiarity with JIRA, Confluence, and GitLab/Jenkins-based CI/CD environments The ability to communicate complex technical concepts clearly to non-technical stakeholders SC clearance or willingness to undergo vetting We're looking for someone who operates at SFIA Level 6-comfortable working autonomously, influencing at the highest levels, and delivering consistently excellent results Ready to shape secure software delivery at scale? Join us and help define the future of DevSecOps at Computacenter. Current information for our applicants Business as usual? Not quite. Of course, the Corona crisis also presents us with major challenges. However, we are broadly positioned across various industries, plan for the long term and have always been flexible in our approach to our customers, especially in times of crisis. Our core business is digitisation. We believe that this topic will continue to grow in importance for many companies in both public and private sectors. That's why there are still areas of our business with clear hiring requirements - and we would like to bring talent like you on board! By the way, we have completely virtualised our application process and our recruiters remain available to you should you have any questions. We are still looking forward to getting to know you! About us Computacenter is a leading independent provider of IT infrastructure services. We work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology and managing our customers' infrastructures. We offer a friendly, open working environment without too much fuss about hierarchy. We are looking for professionals with diverse competencies, personalities and strengths who want to live our shared value of teamwork and performance. Interested in joining a company with a strong sense of community? We're growing. We're hiring. We encourage. We empower. We support.
Computacenter AG & Co. oHG
Milton Keynes, Buckinghamshire
Select how often (in days) to receive an alert: Solution Architect - DevSecOps Location: UK - London, UK - Birmingham, UK - Edinburgh, UK - Hatfield, UK - Manchester, UK - Milton Keynes, UK - Nottingham, UK - Reading Job-ID: 213232 Contract type: Standard Business Unit: IT Consulting Life on the team At Computacenter, you'll be joining a vibrant and forward-thinking team within our Group Professional Services (GPS) division-home to over 1,000 skilled practitioners across the UK, France, and Germany. GPS is where deep technical expertise meets industry-leading consultancy, shaping complex solutions for some of the world's most recognised organisations. As part of our Cloud & Apps Practice, you'll work in a supportive, collaborative environment with the autonomy to shape customer outcomes and influence our technical strategy. Whether you're working alongside experienced peers, supporting major bids, or leading solution delivery, you'll be instrumental in helping us-and our customers-stay ahead of the curve. What you'll do As a DevSecOps Solution Architect, you'll be at the forefront of customer engagements, providing both pre-sales and post-sales consultancy Lead the design and implementation of secure, scalable DevSecOps solutions across cloud, on-prem, and hybrid environments Advise customers on best practices for CI/CD, containerisation, and integrating security across the SDLC Collaborate with Sales and Consulting teams to develop technical proposals and bid responses Facilitate customer workshops, design reviews, and solution assurance activities Drive innovation and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll need Proven experience leading DevOps or DevSecOps projects across cloud and hybrid platforms Strong working knowledge of agile delivery methodologies (Scrum, SAFe, Kanban, etc.) Deep expertise in Kubernetes (vanilla, EKS, AKS, OpenShift), CI/CD pipelines, and infrastructure as code (Terraform) Security integration experience across the DevSecOps lifecycle, including: SAST, DAST, SCA, and IAST tools (e.g., Checkmarx, Veracode, OWASP ZAP) Secrets management tools like HashiCorp Vault Vulnerability management solutions such as Prisma Cloud Testing frameworks like Selenium Familiarity with JIRA, Confluence, and GitLab/Jenkins-based CI/CD environments The ability to communicate complex technical concepts clearly to non-technical stakeholders SC clearance or willingness to undergo vetting We're looking for someone who operates at SFIA Level 6-comfortable working autonomously, influencing at the highest levels, and delivering consistently excellent results Ready to shape secure software delivery at scale? Join us and help define the future of DevSecOps at Computacenter. Current information for our applicants Business as usual? Not quite. Of course, the Corona crisis also presents us with major challenges. However, we are broadly positioned across various industries, plan for the long term and have always been flexible in our approach to our customers, especially in times of crisis. Our core business is digitisation. We believe that this topic will continue to grow in importance for many companies in both public and private sectors. That's why there are still areas of our business with clear hiring requirements - and we would like to bring talent like you on board! By the way, we have completely virtualised our application process and our recruiters remain available to you should you have any questions. We are still looking forward to getting to know you! About us Computacenter is a leading independent provider of IT infrastructure services. We work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology and managing our customers' infrastructures. We offer a friendly, open working environment without too much fuss about hierarchy. We are looking for professionals with diverse competencies, personalities and strengths who want to live our shared value of teamwork and performance. Interested in joining a company with a strong sense of community? We're growing. We're hiring. We encourage. We empower. We support.
Jun 06, 2025
Full time
Select how often (in days) to receive an alert: Solution Architect - DevSecOps Location: UK - London, UK - Birmingham, UK - Edinburgh, UK - Hatfield, UK - Manchester, UK - Milton Keynes, UK - Nottingham, UK - Reading Job-ID: 213232 Contract type: Standard Business Unit: IT Consulting Life on the team At Computacenter, you'll be joining a vibrant and forward-thinking team within our Group Professional Services (GPS) division-home to over 1,000 skilled practitioners across the UK, France, and Germany. GPS is where deep technical expertise meets industry-leading consultancy, shaping complex solutions for some of the world's most recognised organisations. As part of our Cloud & Apps Practice, you'll work in a supportive, collaborative environment with the autonomy to shape customer outcomes and influence our technical strategy. Whether you're working alongside experienced peers, supporting major bids, or leading solution delivery, you'll be instrumental in helping us-and our customers-stay ahead of the curve. What you'll do As a DevSecOps Solution Architect, you'll be at the forefront of customer engagements, providing both pre-sales and post-sales consultancy Lead the design and implementation of secure, scalable DevSecOps solutions across cloud, on-prem, and hybrid environments Advise customers on best practices for CI/CD, containerisation, and integrating security across the SDLC Collaborate with Sales and Consulting teams to develop technical proposals and bid responses Facilitate customer workshops, design reviews, and solution assurance activities Drive innovation and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll need Proven experience leading DevOps or DevSecOps projects across cloud and hybrid platforms Strong working knowledge of agile delivery methodologies (Scrum, SAFe, Kanban, etc.) Deep expertise in Kubernetes (vanilla, EKS, AKS, OpenShift), CI/CD pipelines, and infrastructure as code (Terraform) Security integration experience across the DevSecOps lifecycle, including: SAST, DAST, SCA, and IAST tools (e.g., Checkmarx, Veracode, OWASP ZAP) Secrets management tools like HashiCorp Vault Vulnerability management solutions such as Prisma Cloud Testing frameworks like Selenium Familiarity with JIRA, Confluence, and GitLab/Jenkins-based CI/CD environments The ability to communicate complex technical concepts clearly to non-technical stakeholders SC clearance or willingness to undergo vetting We're looking for someone who operates at SFIA Level 6-comfortable working autonomously, influencing at the highest levels, and delivering consistently excellent results Ready to shape secure software delivery at scale? Join us and help define the future of DevSecOps at Computacenter. Current information for our applicants Business as usual? Not quite. Of course, the Corona crisis also presents us with major challenges. However, we are broadly positioned across various industries, plan for the long term and have always been flexible in our approach to our customers, especially in times of crisis. Our core business is digitisation. We believe that this topic will continue to grow in importance for many companies in both public and private sectors. That's why there are still areas of our business with clear hiring requirements - and we would like to bring talent like you on board! By the way, we have completely virtualised our application process and our recruiters remain available to you should you have any questions. We are still looking forward to getting to know you! About us Computacenter is a leading independent provider of IT infrastructure services. We work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology and managing our customers' infrastructures. We offer a friendly, open working environment without too much fuss about hierarchy. We are looking for professionals with diverse competencies, personalities and strengths who want to live our shared value of teamwork and performance. Interested in joining a company with a strong sense of community? We're growing. We're hiring. We encourage. We empower. We support.
Select how often (in days) to receive an alert: Solution Architect - DevSecOps Location: UK - London, UK - Birmingham, UK - Edinburgh, UK - Hatfield, UK - Manchester, UK - Milton Keynes, UK - Nottingham, UK - Reading Job-ID: 213232 Contract type: Standard Business Unit: IT Consulting Life on the team At Computacenter, you'll be joining a vibrant and forward-thinking team within our Group Professional Services (GPS) division-home to over 1,000 skilled practitioners across the UK, France, and Germany. GPS is where deep technical expertise meets industry-leading consultancy, shaping complex solutions for some of the world's most recognised organisations. As part of our Cloud & Apps Practice, you'll work in a supportive, collaborative environment with the autonomy to shape customer outcomes and influence our technical strategy. Whether you're working alongside experienced peers, supporting major bids, or leading solution delivery, you'll be instrumental in helping us-and our customers-stay ahead of the curve. What you'll do As a DevSecOps Solution Architect, you'll be at the forefront of customer engagements, providing both pre-sales and post-sales consultancy Lead the design and implementation of secure, scalable DevSecOps solutions across cloud, on-prem, and hybrid environments Advise customers on best practices for CI/CD, containerisation, and integrating security across the SDLC Collaborate with Sales and Consulting teams to develop technical proposals and bid responses Facilitate customer workshops, design reviews, and solution assurance activities Drive innovation and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll need Proven experience leading DevOps or DevSecOps projects across cloud and hybrid platforms Strong working knowledge of agile delivery methodologies (Scrum, SAFe, Kanban, etc.) Deep expertise in Kubernetes (vanilla, EKS, AKS, OpenShift), CI/CD pipelines, and infrastructure as code (Terraform) Security integration experience across the DevSecOps lifecycle, including: SAST, DAST, SCA, and IAST tools (e.g., Checkmarx, Veracode, OWASP ZAP) Secrets management tools like HashiCorp Vault Vulnerability management solutions such as Prisma Cloud Testing frameworks like Selenium Familiarity with JIRA, Confluence, and GitLab/Jenkins-based CI/CD environments The ability to communicate complex technical concepts clearly to non-technical stakeholders SC clearance or willingness to undergo vetting We're looking for someone who operates at SFIA Level 6-comfortable working autonomously, influencing at the highest levels, and delivering consistently excellent results Ready to shape secure software delivery at scale? Join us and help define the future of DevSecOps at Computacenter. Current information for our applicants Business as usual? Not quite. Of course, the Corona crisis also presents us with major challenges. However, we are broadly positioned across various industries, plan for the long term and have always been flexible in our approach to our customers, especially in times of crisis. Our core business is digitisation. We believe that this topic will continue to grow in importance for many companies in both public and private sectors. That's why there are still areas of our business with clear hiring requirements - and we would like to bring talent like you on board! By the way, we have completely virtualised our application process and our recruiters remain available to you should you have any questions. We are still looking forward to getting to know you! About us Computacenter is a leading independent provider of IT infrastructure services. We work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology and managing our customers' infrastructures. We offer a friendly, open working environment without too much fuss about hierarchy. We are looking for professionals with diverse competencies, personalities and strengths who want to live our shared value of teamwork and performance. Interested in joining a company with a strong sense of community? We're growing. We're hiring. We encourage. We empower. We support.
Jun 06, 2025
Full time
Select how often (in days) to receive an alert: Solution Architect - DevSecOps Location: UK - London, UK - Birmingham, UK - Edinburgh, UK - Hatfield, UK - Manchester, UK - Milton Keynes, UK - Nottingham, UK - Reading Job-ID: 213232 Contract type: Standard Business Unit: IT Consulting Life on the team At Computacenter, you'll be joining a vibrant and forward-thinking team within our Group Professional Services (GPS) division-home to over 1,000 skilled practitioners across the UK, France, and Germany. GPS is where deep technical expertise meets industry-leading consultancy, shaping complex solutions for some of the world's most recognised organisations. As part of our Cloud & Apps Practice, you'll work in a supportive, collaborative environment with the autonomy to shape customer outcomes and influence our technical strategy. Whether you're working alongside experienced peers, supporting major bids, or leading solution delivery, you'll be instrumental in helping us-and our customers-stay ahead of the curve. What you'll do As a DevSecOps Solution Architect, you'll be at the forefront of customer engagements, providing both pre-sales and post-sales consultancy Lead the design and implementation of secure, scalable DevSecOps solutions across cloud, on-prem, and hybrid environments Advise customers on best practices for CI/CD, containerisation, and integrating security across the SDLC Collaborate with Sales and Consulting teams to develop technical proposals and bid responses Facilitate customer workshops, design reviews, and solution assurance activities Drive innovation and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll need Proven experience leading DevOps or DevSecOps projects across cloud and hybrid platforms Strong working knowledge of agile delivery methodologies (Scrum, SAFe, Kanban, etc.) Deep expertise in Kubernetes (vanilla, EKS, AKS, OpenShift), CI/CD pipelines, and infrastructure as code (Terraform) Security integration experience across the DevSecOps lifecycle, including: SAST, DAST, SCA, and IAST tools (e.g., Checkmarx, Veracode, OWASP ZAP) Secrets management tools like HashiCorp Vault Vulnerability management solutions such as Prisma Cloud Testing frameworks like Selenium Familiarity with JIRA, Confluence, and GitLab/Jenkins-based CI/CD environments The ability to communicate complex technical concepts clearly to non-technical stakeholders SC clearance or willingness to undergo vetting We're looking for someone who operates at SFIA Level 6-comfortable working autonomously, influencing at the highest levels, and delivering consistently excellent results Ready to shape secure software delivery at scale? Join us and help define the future of DevSecOps at Computacenter. Current information for our applicants Business as usual? Not quite. Of course, the Corona crisis also presents us with major challenges. However, we are broadly positioned across various industries, plan for the long term and have always been flexible in our approach to our customers, especially in times of crisis. Our core business is digitisation. We believe that this topic will continue to grow in importance for many companies in both public and private sectors. That's why there are still areas of our business with clear hiring requirements - and we would like to bring talent like you on board! By the way, we have completely virtualised our application process and our recruiters remain available to you should you have any questions. We are still looking forward to getting to know you! About us Computacenter is a leading independent provider of IT infrastructure services. We work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology and managing our customers' infrastructures. We offer a friendly, open working environment without too much fuss about hierarchy. We are looking for professionals with diverse competencies, personalities and strengths who want to live our shared value of teamwork and performance. Interested in joining a company with a strong sense of community? We're growing. We're hiring. We encourage. We empower. We support.
Select how often (in days) to receive an alert: Solution Architect - DevSecOps Location: UK - London, UK - Birmingham, UK - Edinburgh, UK - Hatfield, UK - Manchester, UK - Milton Keynes, UK - Nottingham, UK - Reading Job-ID: 213232 Contract type: Standard Business Unit: IT Consulting Life on the team At Computacenter, you'll be joining a vibrant and forward-thinking team within our Group Professional Services (GPS) division-home to over 1,000 skilled practitioners across the UK, France, and Germany. GPS is where deep technical expertise meets industry-leading consultancy, shaping complex solutions for some of the world's most recognised organisations. As part of our Cloud & Apps Practice, you'll work in a supportive, collaborative environment with the autonomy to shape customer outcomes and influence our technical strategy. Whether you're working alongside experienced peers, supporting major bids, or leading solution delivery, you'll be instrumental in helping us-and our customers-stay ahead of the curve. What you'll do As a DevSecOps Solution Architect, you'll be at the forefront of customer engagements, providing both pre-sales and post-sales consultancy Lead the design and implementation of secure, scalable DevSecOps solutions across cloud, on-prem, and hybrid environments Advise customers on best practices for CI/CD, containerisation, and integrating security across the SDLC Collaborate with Sales and Consulting teams to develop technical proposals and bid responses Facilitate customer workshops, design reviews, and solution assurance activities Drive innovation and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll need Proven experience leading DevOps or DevSecOps projects across cloud and hybrid platforms Strong working knowledge of agile delivery methodologies (Scrum, SAFe, Kanban, etc.) Deep expertise in Kubernetes (vanilla, EKS, AKS, OpenShift), CI/CD pipelines, and infrastructure as code (Terraform) Security integration experience across the DevSecOps lifecycle, including: SAST, DAST, SCA, and IAST tools (e.g., Checkmarx, Veracode, OWASP ZAP) Secrets management tools like HashiCorp Vault Vulnerability management solutions such as Prisma Cloud Testing frameworks like Selenium Familiarity with JIRA, Confluence, and GitLab/Jenkins-based CI/CD environments The ability to communicate complex technical concepts clearly to non-technical stakeholders SC clearance or willingness to undergo vetting We're looking for someone who operates at SFIA Level 6-comfortable working autonomously, influencing at the highest levels, and delivering consistently excellent results Ready to shape secure software delivery at scale? Join us and help define the future of DevSecOps at Computacenter. Current information for our applicants Business as usual? Not quite. Of course, the Corona crisis also presents us with major challenges. However, we are broadly positioned across various industries, plan for the long term and have always been flexible in our approach to our customers, especially in times of crisis. Our core business is digitisation. We believe that this topic will continue to grow in importance for many companies in both public and private sectors. That's why there are still areas of our business with clear hiring requirements - and we would like to bring talent like you on board! By the way, we have completely virtualised our application process and our recruiters remain available to you should you have any questions. We are still looking forward to getting to know you! About us Computacenter is a leading independent provider of IT infrastructure services. We work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology and managing our customers' infrastructures. We offer a friendly, open working environment without too much fuss about hierarchy. We are looking for professionals with diverse competencies, personalities and strengths who want to live our shared value of teamwork and performance. Interested in joining a company with a strong sense of community? We're growing. We're hiring. We encourage. We empower. We support.
Jun 06, 2025
Full time
Select how often (in days) to receive an alert: Solution Architect - DevSecOps Location: UK - London, UK - Birmingham, UK - Edinburgh, UK - Hatfield, UK - Manchester, UK - Milton Keynes, UK - Nottingham, UK - Reading Job-ID: 213232 Contract type: Standard Business Unit: IT Consulting Life on the team At Computacenter, you'll be joining a vibrant and forward-thinking team within our Group Professional Services (GPS) division-home to over 1,000 skilled practitioners across the UK, France, and Germany. GPS is where deep technical expertise meets industry-leading consultancy, shaping complex solutions for some of the world's most recognised organisations. As part of our Cloud & Apps Practice, you'll work in a supportive, collaborative environment with the autonomy to shape customer outcomes and influence our technical strategy. Whether you're working alongside experienced peers, supporting major bids, or leading solution delivery, you'll be instrumental in helping us-and our customers-stay ahead of the curve. What you'll do As a DevSecOps Solution Architect, you'll be at the forefront of customer engagements, providing both pre-sales and post-sales consultancy Lead the design and implementation of secure, scalable DevSecOps solutions across cloud, on-prem, and hybrid environments Advise customers on best practices for CI/CD, containerisation, and integrating security across the SDLC Collaborate with Sales and Consulting teams to develop technical proposals and bid responses Facilitate customer workshops, design reviews, and solution assurance activities Drive innovation and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll need Proven experience leading DevOps or DevSecOps projects across cloud and hybrid platforms Strong working knowledge of agile delivery methodologies (Scrum, SAFe, Kanban, etc.) Deep expertise in Kubernetes (vanilla, EKS, AKS, OpenShift), CI/CD pipelines, and infrastructure as code (Terraform) Security integration experience across the DevSecOps lifecycle, including: SAST, DAST, SCA, and IAST tools (e.g., Checkmarx, Veracode, OWASP ZAP) Secrets management tools like HashiCorp Vault Vulnerability management solutions such as Prisma Cloud Testing frameworks like Selenium Familiarity with JIRA, Confluence, and GitLab/Jenkins-based CI/CD environments The ability to communicate complex technical concepts clearly to non-technical stakeholders SC clearance or willingness to undergo vetting We're looking for someone who operates at SFIA Level 6-comfortable working autonomously, influencing at the highest levels, and delivering consistently excellent results Ready to shape secure software delivery at scale? Join us and help define the future of DevSecOps at Computacenter. Current information for our applicants Business as usual? Not quite. Of course, the Corona crisis also presents us with major challenges. However, we are broadly positioned across various industries, plan for the long term and have always been flexible in our approach to our customers, especially in times of crisis. Our core business is digitisation. We believe that this topic will continue to grow in importance for many companies in both public and private sectors. That's why there are still areas of our business with clear hiring requirements - and we would like to bring talent like you on board! By the way, we have completely virtualised our application process and our recruiters remain available to you should you have any questions. We are still looking forward to getting to know you! About us Computacenter is a leading independent provider of IT infrastructure services. We work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology and managing our customers' infrastructures. We offer a friendly, open working environment without too much fuss about hierarchy. We are looking for professionals with diverse competencies, personalities and strengths who want to live our shared value of teamwork and performance. Interested in joining a company with a strong sense of community? We're growing. We're hiring. We encourage. We empower. We support.
Clearance Required: DV Cleared Inspirec have partnered with a Digital Transformation and Cyber Security Consultancy who are looking to build a team to continue solving problems using software and technology for their clients. We are seeking a highly skilled and experienced Senior Cyber Security Consultant to join our client s team. This role requires a hands-on technical expert with at least 7 years of experience in cyber security and a strong background in working with the Ministry of Defence (MOD). The ideal candidate must possess DV Clearance and have a deep understanding of secure systems, risk management, and cyber security best practices within a defence environment. RESPONSIBILITIES Provide technical cyber security consultancy to public and private sector clients. Perform security assessments, penetration testing, and vulnerability management to protect critical systems. Design, implement, and maintain security architectures and frameworks aligned with government standards. Lead and support risk assessments, threat modelling, and incident response initiatives. Work closely with stakeholders to ensure compliance with NCSC and other relevant security policies. Develop and deliver security strategies, policies, and best practice guidance to internal teams and external clients. Engage in security auditing, accreditation processes, and governance activities. Stay ahead of emerging cyber threats and advise on mitigation strategies. EXPERIENCE REQUIRED DV Clearance (Developed Vetting) is mandatory. Minimum of 7 years experience in cyber security, preferably in a technical hands-on role i.e Azure Security Architect. Must have experience working with the Ministry of Defence. Strong technical expertise in areas such as network security, endpoint security, cloud security, and secure system architecture. Experience in penetration testing, vulnerability management, and cyber threat intelligence. Solid knowledge of security technologies such as SIEM, IDS/IPS, firewalls, and endpoint detection and response (EDR). Strong understanding of risk assessment methodologies and security governance frameworks. Excellent stakeholder engagement and communication skills, with the ability to convey technical information to non-technical audiences. Ability to work autonomously and as part of a team in high-security environments. DFIR experience would be good to have. QUALIFICATIONS CISSP, CISM, CEH, CREST, or equivalent security certifications. Experience with cloud security (AWS, Azure, or Google Cloud). Knowledge of secure coding practices and DevSecOps principles. Experience in incident response and forensic investigations. BENEFITS Our client prioritises employee well-being and mental health by offering a comprehensive range of benefits so to enhance both health and career growth. Salary depending on experience and background. Health Benefits: 24/7 GP Access, Counselling Services, Virtual Physiotherapy, Discounted Gym Memberships, Virtual Gym Classes, Discounted Private Health Cover, Eye Care Discounts. Wealth Benefits: Shopping Discounts, Debt Support, Money Advice, Free Credit Reports, Travel Money Savings. Education Benefits: Learning Courses, Business Skills Training. Offered only to employees based in the UK. Note: Due to the nature of this role, applicants must be UK nationals and hold active DV Clearance.
Mar 09, 2025
Full time
Clearance Required: DV Cleared Inspirec have partnered with a Digital Transformation and Cyber Security Consultancy who are looking to build a team to continue solving problems using software and technology for their clients. We are seeking a highly skilled and experienced Senior Cyber Security Consultant to join our client s team. This role requires a hands-on technical expert with at least 7 years of experience in cyber security and a strong background in working with the Ministry of Defence (MOD). The ideal candidate must possess DV Clearance and have a deep understanding of secure systems, risk management, and cyber security best practices within a defence environment. RESPONSIBILITIES Provide technical cyber security consultancy to public and private sector clients. Perform security assessments, penetration testing, and vulnerability management to protect critical systems. Design, implement, and maintain security architectures and frameworks aligned with government standards. Lead and support risk assessments, threat modelling, and incident response initiatives. Work closely with stakeholders to ensure compliance with NCSC and other relevant security policies. Develop and deliver security strategies, policies, and best practice guidance to internal teams and external clients. Engage in security auditing, accreditation processes, and governance activities. Stay ahead of emerging cyber threats and advise on mitigation strategies. EXPERIENCE REQUIRED DV Clearance (Developed Vetting) is mandatory. Minimum of 7 years experience in cyber security, preferably in a technical hands-on role i.e Azure Security Architect. Must have experience working with the Ministry of Defence. Strong technical expertise in areas such as network security, endpoint security, cloud security, and secure system architecture. Experience in penetration testing, vulnerability management, and cyber threat intelligence. Solid knowledge of security technologies such as SIEM, IDS/IPS, firewalls, and endpoint detection and response (EDR). Strong understanding of risk assessment methodologies and security governance frameworks. Excellent stakeholder engagement and communication skills, with the ability to convey technical information to non-technical audiences. Ability to work autonomously and as part of a team in high-security environments. DFIR experience would be good to have. QUALIFICATIONS CISSP, CISM, CEH, CREST, or equivalent security certifications. Experience with cloud security (AWS, Azure, or Google Cloud). Knowledge of secure coding practices and DevSecOps principles. Experience in incident response and forensic investigations. BENEFITS Our client prioritises employee well-being and mental health by offering a comprehensive range of benefits so to enhance both health and career growth. Salary depending on experience and background. Health Benefits: 24/7 GP Access, Counselling Services, Virtual Physiotherapy, Discounted Gym Memberships, Virtual Gym Classes, Discounted Private Health Cover, Eye Care Discounts. Wealth Benefits: Shopping Discounts, Debt Support, Money Advice, Free Credit Reports, Travel Money Savings. Education Benefits: Learning Courses, Business Skills Training. Offered only to employees based in the UK. Note: Due to the nature of this role, applicants must be UK nationals and hold active DV Clearance.
Cyber Security Engineer - hybrid. London office or Leeds 2-3 days PER MONTH Are you an experienced Cyber Security Engineer looking for your next challenge and with experience in SPLUNK and PROMETHEUS/GRAFANA? We are seeking talented professionals to join a dynamic team in a cutting-edge technology company. This is an exciting opportunity to work on high-impact security projects while maintaining a strong work-life balance. Key Details: Location: Must be based in the UK, with on-site work required in London or North Yorkshire 2-3 days per month . Language: Fluent English required. Employment Type: Permanent or contract positions available. If on contract, both inside and outside IR35 is possible. What You'll Do: Implement and maintain security controls to protect networks, systems, and data. Conduct security assessments and risk analysis to identify vulnerabilities. Collaborate with cross-functional teams to ensure compliance with security standards. Respond to security incidents and support forensic investigations. Develop and enhance security policies, procedures, and best practices. Stay ahead of the latest threats and security technologies. What We're Looking For: 4-8 years experience required Expertise in Splunk and Prometheus/Grafana is a MUST Proven experience in cyber security, including risk management and security frameworks. Strong understanding of network security, threat detection, and incident response. Hands-on experience with security tools and technologies. Experience in cloud security and DevSecOps practices is a plus. Ability to work independently and collaboratively in a fast-paced environment. This is a unique opportunity to contribute to a forward-thinking organization while benefiting from flexible work arrangements. If you are passionate about cyber security and eager to make an impact, we'd love to hear from you!
Mar 08, 2025
Full time
Cyber Security Engineer - hybrid. London office or Leeds 2-3 days PER MONTH Are you an experienced Cyber Security Engineer looking for your next challenge and with experience in SPLUNK and PROMETHEUS/GRAFANA? We are seeking talented professionals to join a dynamic team in a cutting-edge technology company. This is an exciting opportunity to work on high-impact security projects while maintaining a strong work-life balance. Key Details: Location: Must be based in the UK, with on-site work required in London or North Yorkshire 2-3 days per month . Language: Fluent English required. Employment Type: Permanent or contract positions available. If on contract, both inside and outside IR35 is possible. What You'll Do: Implement and maintain security controls to protect networks, systems, and data. Conduct security assessments and risk analysis to identify vulnerabilities. Collaborate with cross-functional teams to ensure compliance with security standards. Respond to security incidents and support forensic investigations. Develop and enhance security policies, procedures, and best practices. Stay ahead of the latest threats and security technologies. What We're Looking For: 4-8 years experience required Expertise in Splunk and Prometheus/Grafana is a MUST Proven experience in cyber security, including risk management and security frameworks. Strong understanding of network security, threat detection, and incident response. Hands-on experience with security tools and technologies. Experience in cloud security and DevSecOps practices is a plus. Ability to work independently and collaboratively in a fast-paced environment. This is a unique opportunity to contribute to a forward-thinking organization while benefiting from flexible work arrangements. If you are passionate about cyber security and eager to make an impact, we'd love to hear from you!
