At Kroo Bank, we're building a better bank from the ground up. One that puts customers first, treats money responsibly, and uses technology to make everyday banking simpler, fairer and more transparent. We're a fully regulated UK bank, backed by long term investors, with a growing customer base and big ambitions. We move fast, think carefully, and hold ourselves to the highest standards, whether that's how we engage with our customers, build products, manage risk, or look after our people. Job Overview Drive our IT security strategy and implementation forward whilst protecting the business from security threats against unauthorised, disruption or destruction of digital data. Direct strategy, operations and product development for the protection of the enterprise information assets and manage the program of delivery. The scope of responsibility will encompass security awareness, security operations and applications and infrastructure, including the policies and procedures which apply. Responsibilities Managing the daily operation and implementation of the information security strategy Developing and maintaining a forward looking security roadmap covering cloud, mobile, AI, and software platforms. Collaborating with the technology leadership to deliver new security technology approaches and implementing next generation solutions and controls Ensuring secure configuration and continuous compliance across IaaS, PaaS, and SaaS environments. Conducting a continuous assessment of current security practices and systems and identifying areas for improvement Performing security audits and risk assessments and reporting on ways to minimise threats and security exposure Owning the Information Security Management System (ISMS) and maintain ISO 27001 certification maintenance Ensuring compliance and governance with applicable regulations Collaborating with operational teams to develop, implement and test business continuity plans to ensure service is continuous when a change programme is introduced, or a security breach occurs or in the event that the disaster recovery plan needs to be triggered Protecting the intellectual property of the organisation at all times Monitoring security vulnerabilities and hacking threats in network and host systems Leading security operations (including Managed SOC), threat intelligence, detection, and response capabilities Defining KPIs and KRIs to measure security maturity and providing regular security reporting to Executive and Board level stakeholders. Managing and developing the information security team Championing and educating the organisation about the latest security strategies and technologies Managing the IT security budget and communicating this with the appropriate parties Qualifications Significant senior leadership experience in information security within a FCA and PRA regulated UK bank, fintech, or other regulated financial services organisation, with demonstrated engagement on CBEST matters (including oversight of threat led penetration testing) at Board Risk Committee level. Demonstrable experience achieving and maintaining ISO/IEC 27001 certification. Strong background in software application security and mobile security. Experience implementing and improving DevSecOps processes in cloud native (AWS or GCP) environments. Knowledge of AI/ML security risks and governance frameworks like ISO 42001 or NIST AI RMF. Experience leading security operations, incident response, and threat management. Ability to work collaboratively with the 2nd line of defence to ensure the Bank remains within risk appetite Ability to work with team members at all levels from Software Engineers & IT through to board level. What we offer Generous holiday time: 25 days annual leave, 8 bank holidays, 1 Kroo bank holiday (June 24th), and 1 day off during the week of your birthday. Personal days: We know that life can be unpredictable, so we offer 3 personal days to use as needed. Employer-sponsored volunteer program: We're passionate about giving back to our community, and we support our employees in doing the same with up to 4 hours per month of employer-sponsored volunteer time. Mental health support: We care about the mental health of our team members and offer access to Spill, our mental health support partner. Workplace pension: We want you to feel secure about your future, so we offer a workplace pension with a 5% employee contribution and a 3% employer top up. Top notch equipment: We provide top of the line equipment necessary for smooth hybrid work, including a MacBook laptop. Additionally, we also offer support in establishing your home office by contributing towards your setup if required. Modern office: When you're in the office, you'll enjoy access to our modern, bustling workspace in Farringdon (Central London). Cycle to Work scheme: We encourage sustainable transportation with our Cycle to Work scheme. Electric Car scheme: We're committed to reducing our carbon footprint, and our Electric Car scheme makes it easy for our employees to do the same. Enhanced parental leave: We know that family comes first, and we offer an enhanced parental leave policy to support our employees in starting and growing their families. Room for growth: As a fast paced, high growth start up, we're dedicated to providing our employees with room to grow and excel. You get full healthcare for you and your nuclear family via Vitality. Hybrid Working At Kroo Bank, we have a hybrid policy that gives both individuals and teams a lot of freedom when it comes to using the office space to boost productivity. Our London office is a great resource when used effectively. So, employees who can occasionally come to the office are a good fit for how we work right now. Keep in mind that this job involves working from Monday to Friday, with a mix of remote and office work, so you won't need to be on site all the time. Diversity and Inclusion We wholeheartedly uphold our commitment to fostering a diverse and inclusive workplace. Every employee is highly regarded, respected, and supported without any form of judgement or prejudice. We consider Diversity, Equality, and Inclusion as fundamental pillars guiding our path in all aspects of our bank. We also ensure that reasonable adjustments are made available to all candidates throughout the recruitment process. To all Recruitment Agencies At Kroo Bank, agency resumes are strictly prohibited. Do not submit agency resumes or forward them to our job advertisements or Kroo Bank employees. Be aware that Kroo Bank will not assume any responsibility for fees incurred due to unsolicited resumes. To ensure a fair and efficient application process, all candidates are kindly requested to submit their applications directly through the advertised platform. We kindly ask that you refrain from reaching out to the company or its employees via email, LinkedIn, or any other communication channels for inquiries or updates. Please note that any attempts to contact us through these channels will not receive a response. Thank you for your understanding and cooperation.
Apr 15, 2026
Full time
At Kroo Bank, we're building a better bank from the ground up. One that puts customers first, treats money responsibly, and uses technology to make everyday banking simpler, fairer and more transparent. We're a fully regulated UK bank, backed by long term investors, with a growing customer base and big ambitions. We move fast, think carefully, and hold ourselves to the highest standards, whether that's how we engage with our customers, build products, manage risk, or look after our people. Job Overview Drive our IT security strategy and implementation forward whilst protecting the business from security threats against unauthorised, disruption or destruction of digital data. Direct strategy, operations and product development for the protection of the enterprise information assets and manage the program of delivery. The scope of responsibility will encompass security awareness, security operations and applications and infrastructure, including the policies and procedures which apply. Responsibilities Managing the daily operation and implementation of the information security strategy Developing and maintaining a forward looking security roadmap covering cloud, mobile, AI, and software platforms. Collaborating with the technology leadership to deliver new security technology approaches and implementing next generation solutions and controls Ensuring secure configuration and continuous compliance across IaaS, PaaS, and SaaS environments. Conducting a continuous assessment of current security practices and systems and identifying areas for improvement Performing security audits and risk assessments and reporting on ways to minimise threats and security exposure Owning the Information Security Management System (ISMS) and maintain ISO 27001 certification maintenance Ensuring compliance and governance with applicable regulations Collaborating with operational teams to develop, implement and test business continuity plans to ensure service is continuous when a change programme is introduced, or a security breach occurs or in the event that the disaster recovery plan needs to be triggered Protecting the intellectual property of the organisation at all times Monitoring security vulnerabilities and hacking threats in network and host systems Leading security operations (including Managed SOC), threat intelligence, detection, and response capabilities Defining KPIs and KRIs to measure security maturity and providing regular security reporting to Executive and Board level stakeholders. Managing and developing the information security team Championing and educating the organisation about the latest security strategies and technologies Managing the IT security budget and communicating this with the appropriate parties Qualifications Significant senior leadership experience in information security within a FCA and PRA regulated UK bank, fintech, or other regulated financial services organisation, with demonstrated engagement on CBEST matters (including oversight of threat led penetration testing) at Board Risk Committee level. Demonstrable experience achieving and maintaining ISO/IEC 27001 certification. Strong background in software application security and mobile security. Experience implementing and improving DevSecOps processes in cloud native (AWS or GCP) environments. Knowledge of AI/ML security risks and governance frameworks like ISO 42001 or NIST AI RMF. Experience leading security operations, incident response, and threat management. Ability to work collaboratively with the 2nd line of defence to ensure the Bank remains within risk appetite Ability to work with team members at all levels from Software Engineers & IT through to board level. What we offer Generous holiday time: 25 days annual leave, 8 bank holidays, 1 Kroo bank holiday (June 24th), and 1 day off during the week of your birthday. Personal days: We know that life can be unpredictable, so we offer 3 personal days to use as needed. Employer-sponsored volunteer program: We're passionate about giving back to our community, and we support our employees in doing the same with up to 4 hours per month of employer-sponsored volunteer time. Mental health support: We care about the mental health of our team members and offer access to Spill, our mental health support partner. Workplace pension: We want you to feel secure about your future, so we offer a workplace pension with a 5% employee contribution and a 3% employer top up. Top notch equipment: We provide top of the line equipment necessary for smooth hybrid work, including a MacBook laptop. Additionally, we also offer support in establishing your home office by contributing towards your setup if required. Modern office: When you're in the office, you'll enjoy access to our modern, bustling workspace in Farringdon (Central London). Cycle to Work scheme: We encourage sustainable transportation with our Cycle to Work scheme. Electric Car scheme: We're committed to reducing our carbon footprint, and our Electric Car scheme makes it easy for our employees to do the same. Enhanced parental leave: We know that family comes first, and we offer an enhanced parental leave policy to support our employees in starting and growing their families. Room for growth: As a fast paced, high growth start up, we're dedicated to providing our employees with room to grow and excel. You get full healthcare for you and your nuclear family via Vitality. Hybrid Working At Kroo Bank, we have a hybrid policy that gives both individuals and teams a lot of freedom when it comes to using the office space to boost productivity. Our London office is a great resource when used effectively. So, employees who can occasionally come to the office are a good fit for how we work right now. Keep in mind that this job involves working from Monday to Friday, with a mix of remote and office work, so you won't need to be on site all the time. Diversity and Inclusion We wholeheartedly uphold our commitment to fostering a diverse and inclusive workplace. Every employee is highly regarded, respected, and supported without any form of judgement or prejudice. We consider Diversity, Equality, and Inclusion as fundamental pillars guiding our path in all aspects of our bank. We also ensure that reasonable adjustments are made available to all candidates throughout the recruitment process. To all Recruitment Agencies At Kroo Bank, agency resumes are strictly prohibited. Do not submit agency resumes or forward them to our job advertisements or Kroo Bank employees. Be aware that Kroo Bank will not assume any responsibility for fees incurred due to unsolicited resumes. To ensure a fair and efficient application process, all candidates are kindly requested to submit their applications directly through the advertised platform. We kindly ask that you refrain from reaching out to the company or its employees via email, LinkedIn, or any other communication channels for inquiries or updates. Please note that any attempts to contact us through these channels will not receive a response. Thank you for your understanding and cooperation.
Wood Mackenzie is the global leader in analytics, insights and proprietary data across the entire energy and natural resources landscape.For over 50 years our work has guided the decisions of the world's most influential energy producers, utilities companies, financial institutions and governments.Now, with the world's energy system more complex and interconnected than ever before, sector-specific views are no longer enough. That's why we've redefined what's possible with Intelligence Connected.By fusing our unparalleled proprietary data with the sharpest analytical minds, all supercharged by Synoptic AI, we deliver a clear, interconnected view of the entire value chain. Our trusted team of 2,700 experts across 30 countries breaks siloes and connects industries, markets and regions across the globe.This empowers our customers to identify risk sooner, spot opportunities faster and recalibrate strategy with confidence - whether planning days, weeks, months or decades ahead.Wood Mackenzie Intelligence Connected Wood Mackenzie Values Position Overview We are seeking an experienced Cyber Security Lead Analyst to join our cyber security team. The ideal candidate will have a minimum of 5 years cyber security experience and 3+ years in cloud security and/or application security. The candidate will be able to demonstrate a proven track record of protecting enterprise environments against evolving cyber threats. This role requires a technically proficient lead analyst who can lead security initiatives and ensure our cloud and application infrastructure maintains the highest security standards, whilst maintaining business partnerships across the group. Key Responsibilities Monitor and analyze security events across cloud and on-premises environments using SIEM and security analytics tools Conduct thorough investigations of security incidents and provide detailed incident reports Develop and maintain incident response playbooks and procedures Experience with threat intelligence platforms and threat hunting Experience with security orchestration, automation and response (SOAR) platforms Understanding of data protection and encryption technologies Experience in regulated industries (financial services, healthcare, energy) Background in offensive security or penetration testing Design, implement, and maintain security controls across cloud platforms (AWS, Azure, GCP) Conduct cloud security assessments and architecture reviews Ensure compliance with cloud security best practices and frameworks (CIS Benchmarks, CSA CCM, NIST) Manage cloud-native security tools including CSPM, CWPP, and cloud WAF solutions Implement and maintain identity and access management (IAM) policies and controls Lead cyber security programs and coordinate remediation efforts Collaborate with DevOps teams to integrate security into CI/CD pipelines (DevSecOps) Stay current with emerging threats, vulnerabilities, and security technologies Contribute to security awareness training and documentation Facilitate Supplier Management and security input into bids Support compliance initiatives (SOC 2, ISO 27001, PCI-DSS, GDPR, etc.) Develop and enforce security policies, standards, and procedures Conduct security audits and risk assessments Maintain security documentation and metrics reporting Required Qualifications 5+ years of experience in cybersecurity roles 3+ years of hands-on experience with cloud security (AWS, Azure, or GCP) Proven experience leading security incidents and coordinating response efforts Experience with security frameworks such as NIST CSF, MITRE ATT&CK, or Zero Trust architecture Technical Skills Strong expertise in cloud security services and tools (AWS & Azure) Experience working with SIEM platforms (Splunk, Sentinel) Understanding of network security, firewalls, IDS/IPS, and VPN technologies Familiarity with security testing tools (vulnerability scanners, SAST/DAST, penetration testing tools) Experience with endpoint detection and response (EDR) solutions Certifications (one or more preferred) CISSP (Certified Information Systems Security Professional) CCSP (Certified Cloud Security Professional) AWS Certified Security - Specialty Microsoft Certified: Azure Security Engineer Associate Soft Skills Strong analytical and problem-solving abilities Excellent written and verbal communication skills Ability to explain complex security concepts to technical and non-technical audiences Leadership capabilities and experience mentoring team members Strong attention to detail and ability to work under pressure Collaborative mindset with cross-functional teams Business Partnering experience Education Bachelor's degree in Computer Science, Information Security, or related field (or equivalent experience) Working Conditions Some flexibility for remote work - 2 days minimum in office (Edinburgh preferred) Equal Opportunities We are an equal opportunities employer. This means we are committed to recruiting the best people regardless of their race, colour, religion, age, sex, national origin, disability or protected veteran status. You can find out more about your rights under the law at If you are applying for a role and have a physical or mental disability, we will support you with your application or through the hiring process. Inclusive - we succeed together Trusting - we choose to trust each other Customer committed - we put customers at the heart of our decisions Future Focused - we accelerate change Curious - we turn knowledge into action
Apr 15, 2026
Full time
Wood Mackenzie is the global leader in analytics, insights and proprietary data across the entire energy and natural resources landscape.For over 50 years our work has guided the decisions of the world's most influential energy producers, utilities companies, financial institutions and governments.Now, with the world's energy system more complex and interconnected than ever before, sector-specific views are no longer enough. That's why we've redefined what's possible with Intelligence Connected.By fusing our unparalleled proprietary data with the sharpest analytical minds, all supercharged by Synoptic AI, we deliver a clear, interconnected view of the entire value chain. Our trusted team of 2,700 experts across 30 countries breaks siloes and connects industries, markets and regions across the globe.This empowers our customers to identify risk sooner, spot opportunities faster and recalibrate strategy with confidence - whether planning days, weeks, months or decades ahead.Wood Mackenzie Intelligence Connected Wood Mackenzie Values Position Overview We are seeking an experienced Cyber Security Lead Analyst to join our cyber security team. The ideal candidate will have a minimum of 5 years cyber security experience and 3+ years in cloud security and/or application security. The candidate will be able to demonstrate a proven track record of protecting enterprise environments against evolving cyber threats. This role requires a technically proficient lead analyst who can lead security initiatives and ensure our cloud and application infrastructure maintains the highest security standards, whilst maintaining business partnerships across the group. Key Responsibilities Monitor and analyze security events across cloud and on-premises environments using SIEM and security analytics tools Conduct thorough investigations of security incidents and provide detailed incident reports Develop and maintain incident response playbooks and procedures Experience with threat intelligence platforms and threat hunting Experience with security orchestration, automation and response (SOAR) platforms Understanding of data protection and encryption technologies Experience in regulated industries (financial services, healthcare, energy) Background in offensive security or penetration testing Design, implement, and maintain security controls across cloud platforms (AWS, Azure, GCP) Conduct cloud security assessments and architecture reviews Ensure compliance with cloud security best practices and frameworks (CIS Benchmarks, CSA CCM, NIST) Manage cloud-native security tools including CSPM, CWPP, and cloud WAF solutions Implement and maintain identity and access management (IAM) policies and controls Lead cyber security programs and coordinate remediation efforts Collaborate with DevOps teams to integrate security into CI/CD pipelines (DevSecOps) Stay current with emerging threats, vulnerabilities, and security technologies Contribute to security awareness training and documentation Facilitate Supplier Management and security input into bids Support compliance initiatives (SOC 2, ISO 27001, PCI-DSS, GDPR, etc.) Develop and enforce security policies, standards, and procedures Conduct security audits and risk assessments Maintain security documentation and metrics reporting Required Qualifications 5+ years of experience in cybersecurity roles 3+ years of hands-on experience with cloud security (AWS, Azure, or GCP) Proven experience leading security incidents and coordinating response efforts Experience with security frameworks such as NIST CSF, MITRE ATT&CK, or Zero Trust architecture Technical Skills Strong expertise in cloud security services and tools (AWS & Azure) Experience working with SIEM platforms (Splunk, Sentinel) Understanding of network security, firewalls, IDS/IPS, and VPN technologies Familiarity with security testing tools (vulnerability scanners, SAST/DAST, penetration testing tools) Experience with endpoint detection and response (EDR) solutions Certifications (one or more preferred) CISSP (Certified Information Systems Security Professional) CCSP (Certified Cloud Security Professional) AWS Certified Security - Specialty Microsoft Certified: Azure Security Engineer Associate Soft Skills Strong analytical and problem-solving abilities Excellent written and verbal communication skills Ability to explain complex security concepts to technical and non-technical audiences Leadership capabilities and experience mentoring team members Strong attention to detail and ability to work under pressure Collaborative mindset with cross-functional teams Business Partnering experience Education Bachelor's degree in Computer Science, Information Security, or related field (or equivalent experience) Working Conditions Some flexibility for remote work - 2 days minimum in office (Edinburgh preferred) Equal Opportunities We are an equal opportunities employer. This means we are committed to recruiting the best people regardless of their race, colour, religion, age, sex, national origin, disability or protected veteran status. You can find out more about your rights under the law at If you are applying for a role and have a physical or mental disability, we will support you with your application or through the hiring process. Inclusive - we succeed together Trusting - we choose to trust each other Customer committed - we put customers at the heart of our decisions Future Focused - we accelerate change Curious - we turn knowledge into action
We are looking to hire a new role and bring someone in as our Head of Product Security, a key leadership role within our Information Security team. In this role you will shape how Our Future Health builds secure, trusted products at national scale. You'll lead the security engineering and architecture functions, ensuring they provide clear and pragmatic guidance to product, engineering, and wider technical teams. Your work centres on embedding secure by design thinking, strengthening how the organisation understands and manages risk, and helping teams see security as an enabler that supports delivery rather than slowing it down. You'll also contribute hands on technical input to complex architectural decisions where your expertise adds real value. Alongside this strategic impact, you'll manage and develop a growing team, ensuring smooth day to day operations and a culture of continuous improvement. The role needs empathetic people leadership, exceptional stakeholder management, and the ability to influence across a fast moving, agile environment. With an engineering background and solid security architecture experience, you'll bring the technical credibility and collaborative approach needed to guide teams, shape priorities, and drive the future direction of product security. At Our Future Health, our mission is to transform the prevention,detectionand treatment of conditions such as dementia, cancer, diabetes, heart disease and stroke. We're looking for people to join us on our journey. If you're looking for a new challenge where you can contribute to helping future generations live in good health for longer, then we're keen to speak with you. What you'll be doing Acting as deputy to the Director of Information Security, supporting security strategy and leadership alongside the Head of Cyber Defence. Leading the security consultancy and technical security functions, covering core services such as IAM, vulnerability management, threat modelling, and secure base image maintenance. Serving as the primary contact for security consultancy, delegating work across the team as needed. Overseeing security architecture and engineering for our cloud native (Azure) production and corporate platforms. Driving continuous improvement, prioritising enhancements and maturing operational documentation. Line managing a multidisciplinary security team, including security engineers, application security specialists, and a security architect. Coaching and mentoring team members across all security disciplines. Advising product, engineering, and data squads on embedding security into their work and processes. Communicating security risks, threats, and requirements to both technical and non technical colleagues. Promoting security standardisation and consistency across platforms. Collaborating with technical and data architects on broader architectural decisions. Supporting organisational compliance by ensuring colleagues and contractors understand and meet their security responsibilities. What you won't be doing Working in a siloed environment with no freedom to make decisions. Working in a place where you can't see the impact your expertise makes. To succeed in this role you will be able to demonstrate some of the following skills and experience: Proven ability to manage and develop high performing security teams while fostering a collaborative, people centred environment. Demonstrable experience partnering with product teams to integrate security requirements into roadmaps, balancing security with usability and overall user experience. Previous experience working with DevSecOps or similar delivery models, embedding security in a way that supports rapid, iterative development. Experience designing secure cloud native architectures at both conceptual and detailed technical levels. Familiarity with Microsoft security technologies such as Defender, Sentinel, Entra, and Purview. An understanding of modern software engineering practices including source control, testing, code review, design documentation, and effective debugging. Advanced knowledge of security risk management and threat modelling. Solid understanding of core security controls, including cloud security, IAM, network security, and vulnerability management. Knowledge of modern cloud platforms, particularly Azure. Awareness of ISO 27001 and other widely used security standards. Comfortable working with Infrastructure as Code, ideally including Terraform. Experience working in Agile environments. The ability to communicate clearly between technical and non technical teams. Comfortable operating in a fast paced, small team environment. Relevant professional certifications. Salary from £110,000 per annum. Generous Pension Scheme - We invest in your future with employer contributions of up to 12%. 30 Days Holiday + Bank Holidays - Enjoy a generous holiday allowance with the flexibility to take bank holidays when it suits you. Enhanced Parental Leave - Supporting you during life's biggest moments. Cycle to Work Scheme - Save 25-39% on a new bike and accessories through salary sacrifice. Home & Tech Savings - Get up to 8% off on IKEA and Currys products, spreading the cost over 12 months through salary sacrifice £1,000 Employee Referral Bonus - Know someone amazing? Get rewarded for bringing them on board! Wellbeing Support - Access to Mental Health First Aiders, plus 24/7 online GP services and an Employee Assistance Programme for you and your family. A Great Place to Work - We have a lovely Central London office in Holborn, and offer flexible and remote working arrangements. Join us - let's prevent disease together. At Our Future Health, we recognise the importance of having a diverse workforce and ensuring that all candidates, regardless of their background, have equitable access to our application process. We proactively encourage applicants who identify as having a disability, neurodiversity, or long-term health conditions to let us know if they require any reasonable adjustments as part of their application process. If you do require any reasonable adjustments, please email us at
Apr 15, 2026
Full time
We are looking to hire a new role and bring someone in as our Head of Product Security, a key leadership role within our Information Security team. In this role you will shape how Our Future Health builds secure, trusted products at national scale. You'll lead the security engineering and architecture functions, ensuring they provide clear and pragmatic guidance to product, engineering, and wider technical teams. Your work centres on embedding secure by design thinking, strengthening how the organisation understands and manages risk, and helping teams see security as an enabler that supports delivery rather than slowing it down. You'll also contribute hands on technical input to complex architectural decisions where your expertise adds real value. Alongside this strategic impact, you'll manage and develop a growing team, ensuring smooth day to day operations and a culture of continuous improvement. The role needs empathetic people leadership, exceptional stakeholder management, and the ability to influence across a fast moving, agile environment. With an engineering background and solid security architecture experience, you'll bring the technical credibility and collaborative approach needed to guide teams, shape priorities, and drive the future direction of product security. At Our Future Health, our mission is to transform the prevention,detectionand treatment of conditions such as dementia, cancer, diabetes, heart disease and stroke. We're looking for people to join us on our journey. If you're looking for a new challenge where you can contribute to helping future generations live in good health for longer, then we're keen to speak with you. What you'll be doing Acting as deputy to the Director of Information Security, supporting security strategy and leadership alongside the Head of Cyber Defence. Leading the security consultancy and technical security functions, covering core services such as IAM, vulnerability management, threat modelling, and secure base image maintenance. Serving as the primary contact for security consultancy, delegating work across the team as needed. Overseeing security architecture and engineering for our cloud native (Azure) production and corporate platforms. Driving continuous improvement, prioritising enhancements and maturing operational documentation. Line managing a multidisciplinary security team, including security engineers, application security specialists, and a security architect. Coaching and mentoring team members across all security disciplines. Advising product, engineering, and data squads on embedding security into their work and processes. Communicating security risks, threats, and requirements to both technical and non technical colleagues. Promoting security standardisation and consistency across platforms. Collaborating with technical and data architects on broader architectural decisions. Supporting organisational compliance by ensuring colleagues and contractors understand and meet their security responsibilities. What you won't be doing Working in a siloed environment with no freedom to make decisions. Working in a place where you can't see the impact your expertise makes. To succeed in this role you will be able to demonstrate some of the following skills and experience: Proven ability to manage and develop high performing security teams while fostering a collaborative, people centred environment. Demonstrable experience partnering with product teams to integrate security requirements into roadmaps, balancing security with usability and overall user experience. Previous experience working with DevSecOps or similar delivery models, embedding security in a way that supports rapid, iterative development. Experience designing secure cloud native architectures at both conceptual and detailed technical levels. Familiarity with Microsoft security technologies such as Defender, Sentinel, Entra, and Purview. An understanding of modern software engineering practices including source control, testing, code review, design documentation, and effective debugging. Advanced knowledge of security risk management and threat modelling. Solid understanding of core security controls, including cloud security, IAM, network security, and vulnerability management. Knowledge of modern cloud platforms, particularly Azure. Awareness of ISO 27001 and other widely used security standards. Comfortable working with Infrastructure as Code, ideally including Terraform. Experience working in Agile environments. The ability to communicate clearly between technical and non technical teams. Comfortable operating in a fast paced, small team environment. Relevant professional certifications. Salary from £110,000 per annum. Generous Pension Scheme - We invest in your future with employer contributions of up to 12%. 30 Days Holiday + Bank Holidays - Enjoy a generous holiday allowance with the flexibility to take bank holidays when it suits you. Enhanced Parental Leave - Supporting you during life's biggest moments. Cycle to Work Scheme - Save 25-39% on a new bike and accessories through salary sacrifice. Home & Tech Savings - Get up to 8% off on IKEA and Currys products, spreading the cost over 12 months through salary sacrifice £1,000 Employee Referral Bonus - Know someone amazing? Get rewarded for bringing them on board! Wellbeing Support - Access to Mental Health First Aiders, plus 24/7 online GP services and an Employee Assistance Programme for you and your family. A Great Place to Work - We have a lovely Central London office in Holborn, and offer flexible and remote working arrangements. Join us - let's prevent disease together. At Our Future Health, we recognise the importance of having a diverse workforce and ensuring that all candidates, regardless of their background, have equitable access to our application process. We proactively encourage applicants who identify as having a disability, neurodiversity, or long-term health conditions to let us know if they require any reasonable adjustments as part of their application process. If you do require any reasonable adjustments, please email us at
Hello! We're Teya. Teya is a payment and software service provider, headquartered in London serving small, local businesses across Europe. Founded in 2019, we build easy to use, integrated tools that enable our members to accept payments and boost business performance. At Teya we believe small, local businesses are the lifeblood of our communities. We're here because we don't believe there's a level playing field that gives small businesses with a fighting chance against the giants of the high street. We're here because we see banks and legacy service providers making things harder for them. We don't think the best technology or the best service should be reserved for those with the biggest headquarters. We're here to fight for a future where small, local businesses can thrive, and to commit the same dedication they offer all of us. Become a part of our story. We're looking for exceptional talent to join our mission. We offer a chance to create impact in a high-energy and connected culture, while benefiting from continuous learning opportunities, a supportive community which is proud to serve our mission, and comprehensive benefits. Your Mission As a Senior DevSecOps Engineer (Security Tooling & Enablement), you will be responsible for embedding automated security controls and guardrails into our CI/CD pipelines, cloud platforms, and developer workflows. You'll build and operate internal security tooling and integrations that enable secure delivery at scale-focusing on automation, low-friction developer experience, and high-quality security feedback loops. You will partner closely with platform, cloud, AppSec, and SecOps teams to deliver scalable, reliable, and friction-reducing security capabilities across the engineering organisation. Responsibilities Security in CI/CD & Delivery Workflows Integrate and maintain security checks (SAST, DAST, SCA, secrets scanning) into CI/CD pipelines. Provide fast, actionable, low-noise feedback to developers. Embed infrastructure and application scanning into automated deployments. Security Tooling & Platform Engineering Design, build, and operate internal security services, APIs, CLIs, and automation workflows. Apply strong software engineering practices to security tooling (testing, observability, version control). Treat security tooling as a product with clear documentation and support. Policy-as-Code & Guardrails Implement and maintain policy-as-code guardrails for IaC, Kubernetes manifests, cloud accounts and identity configurations. Work with platform teams to define secure defaults and self-service patterns. Platform Security & Detection Pipelines Support vulnerability scanning platforms and security telemetry pipelines. Ensure high-quality structured security data flows to SIEM/log platforms. Enable automated response actions via integrations and runbooks. DevSecOps Culture & Enablement Champion secure engineering practices and a shared responsibility mindset. Drive enablement activities (office hours, guides, training) to improve adoption of secure patterns. Contribute to blameless post-incident reviews and continuous improvement. Automation, AI & Operational Metrics Leverage automation and AI to reduce manual toil and enrich security findings. Define and track metrics such as time-to-feedback, signal-to-noise, and tooling adoption. Requirements 5+ years in security engineering, DevSecOps, or platform engineering with significant security integration experience. Hands on experience embedding security into CI/CD (SAST/DAST/SCA, container scanning, secrets detection). Proficiency with CI/CD platforms (e.g., GitHub Actions, GitLab CI, Jenkins) and IaC (e.g., Terraform). Strong software engineering and automation skills (Python, Go, Bash, or similar). Deep cloud native experience (AWS preferred), including IAM, networking, and logging. Experience designing and implementing policy as code and security guardrails. Ability to collaborate cross functionally, balancing security with delivery velocity. Nice-to-Haves Experience in fintech or regulated environments. Familiarity with WAF/DDoS tools, Zero Trust, and vulnerability management programmes. Exposure to SOAR or security automation platforms. Relevant certifications (AWS Security, Kubernetes Security, GIAC, CISSP, etc.). Ways of working Extreme ownership: You take end-to-end responsibility for outcomes, not just findings or tooling output Pragmatic and delivery-aware: You balance risk reduction with product velocity, focusing on changes that materially reduce risk Low-ego and collaborative: You build trust with engineers, product, and operations teams, influencing through credibility and partnership Impact-driven: You measure success through outcomes-risk reduction, adoption, and time-to-remediate-not activity Data-informed: You use metrics and trends to guide priorities and demonstrate impact High bar for craft: You produce clear documentation, reusable patterns, and automation that scale across teams AI-first mindset: You actively look for opportunities to use automation and AI to improve security outcomes Teya is proud to be an equal opportunity employer. We are committed to creating an inclusive environment where everyone regardless of race, ethnicity, gender identity or expression, sexual orientation, age, disability, religion, or background can thrive and do their best work. We believe that a diverse team leads to better ideas, stronger outcomes, and a more supportive workplace for all. If you require any reasonable adjustments at any stage of the recruitment process whether for interviews, assessments, or other parts of the application-we encourage you to let us know. We are committed to ensuring that every candidate has a fair and accessible experience with us.
Apr 14, 2026
Full time
Hello! We're Teya. Teya is a payment and software service provider, headquartered in London serving small, local businesses across Europe. Founded in 2019, we build easy to use, integrated tools that enable our members to accept payments and boost business performance. At Teya we believe small, local businesses are the lifeblood of our communities. We're here because we don't believe there's a level playing field that gives small businesses with a fighting chance against the giants of the high street. We're here because we see banks and legacy service providers making things harder for them. We don't think the best technology or the best service should be reserved for those with the biggest headquarters. We're here to fight for a future where small, local businesses can thrive, and to commit the same dedication they offer all of us. Become a part of our story. We're looking for exceptional talent to join our mission. We offer a chance to create impact in a high-energy and connected culture, while benefiting from continuous learning opportunities, a supportive community which is proud to serve our mission, and comprehensive benefits. Your Mission As a Senior DevSecOps Engineer (Security Tooling & Enablement), you will be responsible for embedding automated security controls and guardrails into our CI/CD pipelines, cloud platforms, and developer workflows. You'll build and operate internal security tooling and integrations that enable secure delivery at scale-focusing on automation, low-friction developer experience, and high-quality security feedback loops. You will partner closely with platform, cloud, AppSec, and SecOps teams to deliver scalable, reliable, and friction-reducing security capabilities across the engineering organisation. Responsibilities Security in CI/CD & Delivery Workflows Integrate and maintain security checks (SAST, DAST, SCA, secrets scanning) into CI/CD pipelines. Provide fast, actionable, low-noise feedback to developers. Embed infrastructure and application scanning into automated deployments. Security Tooling & Platform Engineering Design, build, and operate internal security services, APIs, CLIs, and automation workflows. Apply strong software engineering practices to security tooling (testing, observability, version control). Treat security tooling as a product with clear documentation and support. Policy-as-Code & Guardrails Implement and maintain policy-as-code guardrails for IaC, Kubernetes manifests, cloud accounts and identity configurations. Work with platform teams to define secure defaults and self-service patterns. Platform Security & Detection Pipelines Support vulnerability scanning platforms and security telemetry pipelines. Ensure high-quality structured security data flows to SIEM/log platforms. Enable automated response actions via integrations and runbooks. DevSecOps Culture & Enablement Champion secure engineering practices and a shared responsibility mindset. Drive enablement activities (office hours, guides, training) to improve adoption of secure patterns. Contribute to blameless post-incident reviews and continuous improvement. Automation, AI & Operational Metrics Leverage automation and AI to reduce manual toil and enrich security findings. Define and track metrics such as time-to-feedback, signal-to-noise, and tooling adoption. Requirements 5+ years in security engineering, DevSecOps, or platform engineering with significant security integration experience. Hands on experience embedding security into CI/CD (SAST/DAST/SCA, container scanning, secrets detection). Proficiency with CI/CD platforms (e.g., GitHub Actions, GitLab CI, Jenkins) and IaC (e.g., Terraform). Strong software engineering and automation skills (Python, Go, Bash, or similar). Deep cloud native experience (AWS preferred), including IAM, networking, and logging. Experience designing and implementing policy as code and security guardrails. Ability to collaborate cross functionally, balancing security with delivery velocity. Nice-to-Haves Experience in fintech or regulated environments. Familiarity with WAF/DDoS tools, Zero Trust, and vulnerability management programmes. Exposure to SOAR or security automation platforms. Relevant certifications (AWS Security, Kubernetes Security, GIAC, CISSP, etc.). Ways of working Extreme ownership: You take end-to-end responsibility for outcomes, not just findings or tooling output Pragmatic and delivery-aware: You balance risk reduction with product velocity, focusing on changes that materially reduce risk Low-ego and collaborative: You build trust with engineers, product, and operations teams, influencing through credibility and partnership Impact-driven: You measure success through outcomes-risk reduction, adoption, and time-to-remediate-not activity Data-informed: You use metrics and trends to guide priorities and demonstrate impact High bar for craft: You produce clear documentation, reusable patterns, and automation that scale across teams AI-first mindset: You actively look for opportunities to use automation and AI to improve security outcomes Teya is proud to be an equal opportunity employer. We are committed to creating an inclusive environment where everyone regardless of race, ethnicity, gender identity or expression, sexual orientation, age, disability, religion, or background can thrive and do their best work. We believe that a diverse team leads to better ideas, stronger outcomes, and a more supportive workplace for all. If you require any reasonable adjustments at any stage of the recruitment process whether for interviews, assessments, or other parts of the application-we encourage you to let us know. We are committed to ensuring that every candidate has a fair and accessible experience with us.
SenseOn is looking for a Security Engineer to sit at the intersection of security engineering, software development, and customer success. This is one of the broadest and most impactful technical roles in the business, you will be the person who makes SenseOn work, in the real world, for real customers. You will embed directly with customers to deploy and configure the SenseOn platform, develop custom integrations, and ensure that every customer derives measurable security value as quickly as possible. You will own the technical outcome, supporting technical sales and working on technical delivery to enable SenseOn to be effective. This is not a pre-sales or demo role. You support both new business engagements and existing customer renewals, providing the technical depth to prove and quantify the value SenseOn delivers and ensuring that as deployments grow more complex with expanded log ingestion, customers always feel in safe hands. You will report to the VP of Technology and work closely with the Security Operations, Customer Success, Sales Engineering, and Product teams. Location: UK Travel: Approx 25% to customer sites Experience: 3 to 6 years+ The Role in Detail You will own the full technical lifecycle of a customer deployment, from initial architecture review through to live production, ongoing integration development, and long-term platform health. You will build cloud integrations. You will write and tune detection rules in SIEMs. You will debug customer environments. And you will ensure that every customer you touch becomes a SenseOn advocate. Your impact does not stop at deployment. As SenseOn's log ingestion capability grows and deployments become more complex and wide ranging, you will work with the Customer Success team to build the technical business cases that win renewals and drive expansion bringing the same engineering rigour to proving value as you do to deploying it. Responsibilities Customer Deployment & Technical Success Lead end-to-end SenseOn platform deployments and complex log ingestion rollouts without customer disruption. Conduct architectural reviews to define deployment strategies and identify integration opportunities. Own the post-sale technical relationship into steady-state operations, delivering against technical success criteria tied to quantifiable security outcomes. Travel to UK and international customer sites approximately 25% of the time. Renewal Support & Customer Value Quantification Provide the technical evidence base and build business cases for renewals and expansions, translating platform telemetry and incident response data into clear customer outcomes. Proactively health-check environments, close technical gaps, and resolve visibility issues ahead of renewal conversations. Collaborate with Sales Engineering to ensure continuity from pre-sale technical validation through to post-sale deployment. Software Development & Integration Engineering Write production-quality software to build and maintain integrations across third-party security tools, SIEMs, identity platforms, and AWS, Azure, and GCP environments. Contribute reusable connectors to the SenseOn integration library and create custom automation to optimise security operations workflows. Work confidently across backend languages (Python preferred; Go, JavaScript, and Bash valued) utilising RESTful APIs, webhooks, and data pipeline patterns. Detection Engineering & SIEM Development Write, tune, and maintain high-fidelity, low-noise SIEM detection rules by translating threat intelligence and attacker behaviour. Map coverage to the MITRE ATT&CK framework to address visibility gaps, and develop new detection logic with Security Operations. Iterate on rules post-deployment to reduce false positives, and provide expert guidance to customers regarding their detection strategy and risk posture. Customer Success & Relationship Management Develop deep relationships with customer security leadership, acting as a trusted adviser across their security architecture. Proactively mitigate adoption risks, resolve deployment blockers, and conduct structured onboarding from platform fundamentals to advanced threat hunting. Monitor deployed environment health, address technical drift, and translate field experience into actionable product feedback internally. Pre-Sales & Proof of Value Support Partner with Sales Engineering on Proof of Value (POV) engagements, providing technical credibility to differentiate SenseOn. Contribute to bespoke technical demonstrations, architecture proposals, and solution designs for complex prospects transitioning from legacy platforms or traditional SIEM solutions. Product & Analytics Feedback Act as a direct conduit between the field and product teams, raising well-evidenced bugs, feature requests, and detection improvements. Participate in User Acceptance Testing (UAT) for new platform releases to provide field-informed quality assurance. Identify cross-environment patterns to highlight new detection opportunities or platform capability gaps for the analytics backlog. Essential 3-6 years of experience in a technical cybersecurity role, ideally spanning Security Operations and an engineering or customer facing function. Demonstrable software development capability, you must be able to write, review, and deploy code in a production context. Python is strongly preferred. Proven ability to write and tune detection rules in one or more SIEM platforms (e.g. Splunk, Microsoft Sentinel, Elastic, QRadar). You are comfortable translating threat scenarios into detection logic and iterating on rule quality based on operational feedback. Hands-on experience building and troubleshooting integrations with cloud platforms (AWS, Azure, or GCP), REST APIs, and common security tooling including SIEMs, EDRs, XDRs, and NDRs. Strong understanding of networking fundamentals, operating systems (Windows and Linux), and identity and access management concepts. Experience deploying or operating software in containerised environments (Docker, Kubernetes). Excellent written and verbal communication skills, with the ability to engage credibly with both technical engineers and non-technical stakeholders up to C-level. Based in the United Kingdom with the right to work in the UK. Highly Desirable Experience supporting customer renewal engagements from a technical perspective - building business cases, evidencing value, and closing coverage gaps ahead of renewal conversations. Familiarity with log ingestion at scale, including the operational and architectural challenges of onboarding diverse log sources across complex enterprise environments. Experience with CI/CD pipelines, Infrastructure-as-Code (Terraform, Ansible), and modern DevSecOps practices. Exposure to machine learning or AI-driven security analytics platforms. Relevant industry certifications such as CISSP, AWS Solutions Architect, GCIH, or equivalent. Experience supporting or replacing incumbent security platforms (e.g. Darktrace, CrowdStrike, Splunk) within enterprise customer transitions. What Success Looks Like Within your first 90 days, you will have completed at least one end-to-end customer deployment, established yourself as the technical lead for a portfolio of accounts, and shipped at least one integration adopted by a customer in production. Within 6 months, you will be leading complex multi-environment deployments independently, supporting renewal engagements with clear technical business cases, and have contributed meaningful detection rules and integrations to SenseOn's shared library. Within 12 months, you will be shaping how SenseOn approaches deployment and customer value quantification at scale, informing product roadmap decisions, mentoring more junior team members, and owning the technical success of some of SenseOn's most strategic accounts. What We Offer Competitive salary commensurate with experience Unlimited holiday allowance Hybrid working model with flexibility around customer commitments Bi-annual career progression review Personal learning and development budget MacBook and all necessary tooling provided Enhanced pension scheme Private healthcare through Vitality, with rewards and discounts Belong at SenseOn At SenseOn, we define Talent as employees who are customer obsessed and pursuing excellence. They are courageous, good people, doing good things, powering our mission. If this resonates with you, then you will always belong. Nothing else matters. We are an Equal Opportunity Employer and do not discriminate against any qualified employee or applicant. Difference is what makes us stronger.
Apr 12, 2026
Full time
SenseOn is looking for a Security Engineer to sit at the intersection of security engineering, software development, and customer success. This is one of the broadest and most impactful technical roles in the business, you will be the person who makes SenseOn work, in the real world, for real customers. You will embed directly with customers to deploy and configure the SenseOn platform, develop custom integrations, and ensure that every customer derives measurable security value as quickly as possible. You will own the technical outcome, supporting technical sales and working on technical delivery to enable SenseOn to be effective. This is not a pre-sales or demo role. You support both new business engagements and existing customer renewals, providing the technical depth to prove and quantify the value SenseOn delivers and ensuring that as deployments grow more complex with expanded log ingestion, customers always feel in safe hands. You will report to the VP of Technology and work closely with the Security Operations, Customer Success, Sales Engineering, and Product teams. Location: UK Travel: Approx 25% to customer sites Experience: 3 to 6 years+ The Role in Detail You will own the full technical lifecycle of a customer deployment, from initial architecture review through to live production, ongoing integration development, and long-term platform health. You will build cloud integrations. You will write and tune detection rules in SIEMs. You will debug customer environments. And you will ensure that every customer you touch becomes a SenseOn advocate. Your impact does not stop at deployment. As SenseOn's log ingestion capability grows and deployments become more complex and wide ranging, you will work with the Customer Success team to build the technical business cases that win renewals and drive expansion bringing the same engineering rigour to proving value as you do to deploying it. Responsibilities Customer Deployment & Technical Success Lead end-to-end SenseOn platform deployments and complex log ingestion rollouts without customer disruption. Conduct architectural reviews to define deployment strategies and identify integration opportunities. Own the post-sale technical relationship into steady-state operations, delivering against technical success criteria tied to quantifiable security outcomes. Travel to UK and international customer sites approximately 25% of the time. Renewal Support & Customer Value Quantification Provide the technical evidence base and build business cases for renewals and expansions, translating platform telemetry and incident response data into clear customer outcomes. Proactively health-check environments, close technical gaps, and resolve visibility issues ahead of renewal conversations. Collaborate with Sales Engineering to ensure continuity from pre-sale technical validation through to post-sale deployment. Software Development & Integration Engineering Write production-quality software to build and maintain integrations across third-party security tools, SIEMs, identity platforms, and AWS, Azure, and GCP environments. Contribute reusable connectors to the SenseOn integration library and create custom automation to optimise security operations workflows. Work confidently across backend languages (Python preferred; Go, JavaScript, and Bash valued) utilising RESTful APIs, webhooks, and data pipeline patterns. Detection Engineering & SIEM Development Write, tune, and maintain high-fidelity, low-noise SIEM detection rules by translating threat intelligence and attacker behaviour. Map coverage to the MITRE ATT&CK framework to address visibility gaps, and develop new detection logic with Security Operations. Iterate on rules post-deployment to reduce false positives, and provide expert guidance to customers regarding their detection strategy and risk posture. Customer Success & Relationship Management Develop deep relationships with customer security leadership, acting as a trusted adviser across their security architecture. Proactively mitigate adoption risks, resolve deployment blockers, and conduct structured onboarding from platform fundamentals to advanced threat hunting. Monitor deployed environment health, address technical drift, and translate field experience into actionable product feedback internally. Pre-Sales & Proof of Value Support Partner with Sales Engineering on Proof of Value (POV) engagements, providing technical credibility to differentiate SenseOn. Contribute to bespoke technical demonstrations, architecture proposals, and solution designs for complex prospects transitioning from legacy platforms or traditional SIEM solutions. Product & Analytics Feedback Act as a direct conduit between the field and product teams, raising well-evidenced bugs, feature requests, and detection improvements. Participate in User Acceptance Testing (UAT) for new platform releases to provide field-informed quality assurance. Identify cross-environment patterns to highlight new detection opportunities or platform capability gaps for the analytics backlog. Essential 3-6 years of experience in a technical cybersecurity role, ideally spanning Security Operations and an engineering or customer facing function. Demonstrable software development capability, you must be able to write, review, and deploy code in a production context. Python is strongly preferred. Proven ability to write and tune detection rules in one or more SIEM platforms (e.g. Splunk, Microsoft Sentinel, Elastic, QRadar). You are comfortable translating threat scenarios into detection logic and iterating on rule quality based on operational feedback. Hands-on experience building and troubleshooting integrations with cloud platforms (AWS, Azure, or GCP), REST APIs, and common security tooling including SIEMs, EDRs, XDRs, and NDRs. Strong understanding of networking fundamentals, operating systems (Windows and Linux), and identity and access management concepts. Experience deploying or operating software in containerised environments (Docker, Kubernetes). Excellent written and verbal communication skills, with the ability to engage credibly with both technical engineers and non-technical stakeholders up to C-level. Based in the United Kingdom with the right to work in the UK. Highly Desirable Experience supporting customer renewal engagements from a technical perspective - building business cases, evidencing value, and closing coverage gaps ahead of renewal conversations. Familiarity with log ingestion at scale, including the operational and architectural challenges of onboarding diverse log sources across complex enterprise environments. Experience with CI/CD pipelines, Infrastructure-as-Code (Terraform, Ansible), and modern DevSecOps practices. Exposure to machine learning or AI-driven security analytics platforms. Relevant industry certifications such as CISSP, AWS Solutions Architect, GCIH, or equivalent. Experience supporting or replacing incumbent security platforms (e.g. Darktrace, CrowdStrike, Splunk) within enterprise customer transitions. What Success Looks Like Within your first 90 days, you will have completed at least one end-to-end customer deployment, established yourself as the technical lead for a portfolio of accounts, and shipped at least one integration adopted by a customer in production. Within 6 months, you will be leading complex multi-environment deployments independently, supporting renewal engagements with clear technical business cases, and have contributed meaningful detection rules and integrations to SenseOn's shared library. Within 12 months, you will be shaping how SenseOn approaches deployment and customer value quantification at scale, informing product roadmap decisions, mentoring more junior team members, and owning the technical success of some of SenseOn's most strategic accounts. What We Offer Competitive salary commensurate with experience Unlimited holiday allowance Hybrid working model with flexibility around customer commitments Bi-annual career progression review Personal learning and development budget MacBook and all necessary tooling provided Enhanced pension scheme Private healthcare through Vitality, with rewards and discounts Belong at SenseOn At SenseOn, we define Talent as employees who are customer obsessed and pursuing excellence. They are courageous, good people, doing good things, powering our mission. If this resonates with you, then you will always belong. Nothing else matters. We are an Equal Opportunity Employer and do not discriminate against any qualified employee or applicant. Difference is what makes us stronger.
Head of Software Engineering - Peterborough Head of Software Engineering with and excellent background in engineering (ideally .NET), DevOps, (including DevSecOps ideally) and cloud is required by a leading company in Peterborough. It is technical leadership role focused on Software Engineering, DevOps and end-to-end technology estate click apply for full job details
Apr 10, 2026
Full time
Head of Software Engineering - Peterborough Head of Software Engineering with and excellent background in engineering (ideally .NET), DevOps, (including DevSecOps ideally) and cloud is required by a leading company in Peterborough. It is technical leadership role focused on Software Engineering, DevOps and end-to-end technology estate click apply for full job details
Join the Growth Story at Envitia Envitia operates at the heart of the UK's most sensitive and high-profile operations. Our approach is entirely mission-focused, enabling customers to see more, decide faster, and act with confidence across complex domains. We deliver situational awareness and information advantage across C5ISR, fusing cyber, geospatial, and kinetic data into an operational picture. This transforms fragmented data into a shared understanding of the battlespace, delivering actionable insight when it matters most. Our solutions are secure-by-design, built from the ground up to protect sensitive information and ensure resilience in contested environments. We simplify complex heterogeneous data sources into a rich picture of fused intelligence, providing a digital backbone that underpins success. We operate as small teams delivering fast value, blending deep technical expertise with agile methods to deliver measurable outcomes. Every engagement focuses on capability, clarity, and confidence for those who protect the nation. A career with Envitia enables you to work with mission driven innovation. We're thrilled to announce that Envitia has been named one of the Sunday Times Top 100 Medium-Sized Companies to Work For in 2025-a prestigious recognition that highlights our commitment to creating an outstanding workplace where innovation, collaboration, and personal growth thrive. The Role Envitia is recruiting for a Data Engineer to join our Security and Intelligence consulting team, who will be responsible for designing, building and maintaining secure, scalable data platforms and pipelines that enable advanced analytics and operational intelligence capabilities. The role focuses on engineering robust data architectures capable of ingesting, processing and distributing large-scale datasets, supporting downstream analytics, machine learning and mission applications. The successful candidate will work within multi disciplinary agile teams, collaborating with data scientists, software engineers, DevOps specialists and mission analysts to deliver production grade data solutions. Typical engagements include: Engineering large scale data ingestion and processing pipelines Designing data lakes and distributed data platforms Enabling analytics and AI/ML workloads Supporting intelligence data exploitation workflows Integrating multiple classified data sources across secure environments Job Responsibilities Design, build and maintain secure, scalable data platforms capable of processing large volumes of operational data. Develop and operate robust data lakes and distributed data processing environments within secure or regulated settings. Engineer high performance data ingestion pipelines for batch and streaming data from multiple sources, including sensor, geospatial, communications and operational systems. Design and implement ETL/ELT workflows to transform, enrich and validate data for downstream analytics and machine learning use. Build scalable, distributed data processing solutions using modern big data and parallel processing technologies. Ensure data quality, reliability and performance through monitoring, validation and operational support mechanisms. Collaborate closely with data scientists to enable analytics and AI/ML workloads, including feature pipelines and data preparation processes. Optimise data storage and processing architectures to support high performance analytical environments. Contribute to DevSecOps and cloud native delivery, including automated deployment, infrastructure provisioning and containerised environments. Support the ongoing operation, observability and resilience of production data platforms. Skills Required Experience in data engineering using modern programming languages such as Python, Java or Scala, and SQL. Hands on experience building and operating large scale data pipelines using big data and distributed processing technologies (e.g. Apache Spark, Hadoop). Experience designing and maintaining data lakes, distributed storage platforms, and data pipeline orchestration tools. Experience working with cloud native data platforms, with strong expertise in AWS and native data services. Familiarity with Infrastructure as Code and modern cloud native data architectures. Experience working in DevSecOps environments, including Docker, Kubernetes, CI/CD pipelines, and observability/monitoring tooling. Ability to work directly with stakeholders to understand data requirements and translate them into robust, scalable data engineering solutions. Comfortable working in secure, regulated or constrained environments, delivering solutions within complex operational settings. Security Clearance Requirements The successful candidate must be eligible for an enhanced Developed Vetted / eDV security clearance. Location It is anticipated the role will require up to 80% (4d/wk) onsite working at client locations - Gloucester, London, Manchester (based on project requirements). What's in it for you? At Envitia, our greatest asset is our team. We are committed to ensuring our workplace is one where every employee feels valued, supported and motivated to reach their full potential. As part of this commitment, we offer an exciting range of benefits designed to enhance both your professional and personal well being. More time for you:Enjoy 25 days of annual leave plus your birthday off, because you deserve to celebrate you. Want more flexibility? You can buy or sell up to 5 extra days to tailor time off around what matters most. Private Medical Insurance:We've got you covered with comprehensive private healthcare, including family options for added peace of mind. Security Clearance Bonus:Up to £5,000 year Career growth that keeps you ahead:We invest in your future with ongoing training and development, so you're always learning, growing and staying ahead of the curve. Wellness that works for you:Love yoga, or going to the gym? We encourage an active lifestyle and support your wellness goals with a fitness reimbursement scheme that helps cover your gym membership or fitness-related expenses. Life Assurance:Gain peace of mind with our life insurance coverage that ensures your loved ones are protected, because we care about your future as much as your present. Smarter Retirement Planning:Plan for your future with our pension options and resources to help build a secure financial foundation. Perkbox:Treat yourself! From shopping to spa days, to saving money on that new TV, our Perkbox membership gives you access to exclusive discounts on hundreds of products and services. Recognition that counts:Great work doesn't go unnoticed here. Our reward and recognition scheme celebrate your impact and let your brilliance shine. Give back and get involved:Join us in making a difference through paid volunteering days that let you support the causes that matter to you. Inclusion at Envitia At Envitia, we celebrate diversity and are committed to creating an inclusive environment for all employees. We welcome applicants from all backgrounds and walks of life. We believe that our strength lies in our differences, and we are dedicated to fostering a workplace where everyone feels valued, respected, and empowered. We encourage applications from people of all abilities, ages, genders, sexual orientations, races, ethnicities, and religions. We strive to support a culture of inclusion, accessibility, and work life balance. If you require any accommodations during the application or interview process, please let us know.
Apr 10, 2026
Full time
Join the Growth Story at Envitia Envitia operates at the heart of the UK's most sensitive and high-profile operations. Our approach is entirely mission-focused, enabling customers to see more, decide faster, and act with confidence across complex domains. We deliver situational awareness and information advantage across C5ISR, fusing cyber, geospatial, and kinetic data into an operational picture. This transforms fragmented data into a shared understanding of the battlespace, delivering actionable insight when it matters most. Our solutions are secure-by-design, built from the ground up to protect sensitive information and ensure resilience in contested environments. We simplify complex heterogeneous data sources into a rich picture of fused intelligence, providing a digital backbone that underpins success. We operate as small teams delivering fast value, blending deep technical expertise with agile methods to deliver measurable outcomes. Every engagement focuses on capability, clarity, and confidence for those who protect the nation. A career with Envitia enables you to work with mission driven innovation. We're thrilled to announce that Envitia has been named one of the Sunday Times Top 100 Medium-Sized Companies to Work For in 2025-a prestigious recognition that highlights our commitment to creating an outstanding workplace where innovation, collaboration, and personal growth thrive. The Role Envitia is recruiting for a Data Engineer to join our Security and Intelligence consulting team, who will be responsible for designing, building and maintaining secure, scalable data platforms and pipelines that enable advanced analytics and operational intelligence capabilities. The role focuses on engineering robust data architectures capable of ingesting, processing and distributing large-scale datasets, supporting downstream analytics, machine learning and mission applications. The successful candidate will work within multi disciplinary agile teams, collaborating with data scientists, software engineers, DevOps specialists and mission analysts to deliver production grade data solutions. Typical engagements include: Engineering large scale data ingestion and processing pipelines Designing data lakes and distributed data platforms Enabling analytics and AI/ML workloads Supporting intelligence data exploitation workflows Integrating multiple classified data sources across secure environments Job Responsibilities Design, build and maintain secure, scalable data platforms capable of processing large volumes of operational data. Develop and operate robust data lakes and distributed data processing environments within secure or regulated settings. Engineer high performance data ingestion pipelines for batch and streaming data from multiple sources, including sensor, geospatial, communications and operational systems. Design and implement ETL/ELT workflows to transform, enrich and validate data for downstream analytics and machine learning use. Build scalable, distributed data processing solutions using modern big data and parallel processing technologies. Ensure data quality, reliability and performance through monitoring, validation and operational support mechanisms. Collaborate closely with data scientists to enable analytics and AI/ML workloads, including feature pipelines and data preparation processes. Optimise data storage and processing architectures to support high performance analytical environments. Contribute to DevSecOps and cloud native delivery, including automated deployment, infrastructure provisioning and containerised environments. Support the ongoing operation, observability and resilience of production data platforms. Skills Required Experience in data engineering using modern programming languages such as Python, Java or Scala, and SQL. Hands on experience building and operating large scale data pipelines using big data and distributed processing technologies (e.g. Apache Spark, Hadoop). Experience designing and maintaining data lakes, distributed storage platforms, and data pipeline orchestration tools. Experience working with cloud native data platforms, with strong expertise in AWS and native data services. Familiarity with Infrastructure as Code and modern cloud native data architectures. Experience working in DevSecOps environments, including Docker, Kubernetes, CI/CD pipelines, and observability/monitoring tooling. Ability to work directly with stakeholders to understand data requirements and translate them into robust, scalable data engineering solutions. Comfortable working in secure, regulated or constrained environments, delivering solutions within complex operational settings. Security Clearance Requirements The successful candidate must be eligible for an enhanced Developed Vetted / eDV security clearance. Location It is anticipated the role will require up to 80% (4d/wk) onsite working at client locations - Gloucester, London, Manchester (based on project requirements). What's in it for you? At Envitia, our greatest asset is our team. We are committed to ensuring our workplace is one where every employee feels valued, supported and motivated to reach their full potential. As part of this commitment, we offer an exciting range of benefits designed to enhance both your professional and personal well being. More time for you:Enjoy 25 days of annual leave plus your birthday off, because you deserve to celebrate you. Want more flexibility? You can buy or sell up to 5 extra days to tailor time off around what matters most. Private Medical Insurance:We've got you covered with comprehensive private healthcare, including family options for added peace of mind. Security Clearance Bonus:Up to £5,000 year Career growth that keeps you ahead:We invest in your future with ongoing training and development, so you're always learning, growing and staying ahead of the curve. Wellness that works for you:Love yoga, or going to the gym? We encourage an active lifestyle and support your wellness goals with a fitness reimbursement scheme that helps cover your gym membership or fitness-related expenses. Life Assurance:Gain peace of mind with our life insurance coverage that ensures your loved ones are protected, because we care about your future as much as your present. Smarter Retirement Planning:Plan for your future with our pension options and resources to help build a secure financial foundation. Perkbox:Treat yourself! From shopping to spa days, to saving money on that new TV, our Perkbox membership gives you access to exclusive discounts on hundreds of products and services. Recognition that counts:Great work doesn't go unnoticed here. Our reward and recognition scheme celebrate your impact and let your brilliance shine. Give back and get involved:Join us in making a difference through paid volunteering days that let you support the causes that matter to you. Inclusion at Envitia At Envitia, we celebrate diversity and are committed to creating an inclusive environment for all employees. We welcome applicants from all backgrounds and walks of life. We believe that our strength lies in our differences, and we are dedicated to fostering a workplace where everyone feels valued, respected, and empowered. We encourage applications from people of all abilities, ages, genders, sexual orientations, races, ethnicities, and religions. We strive to support a culture of inclusion, accessibility, and work life balance. If you require any accommodations during the application or interview process, please let us know.
Join the Growth Story at Envitia Envitia operates at the heart of the UK's most sensitive and high-profile operations. Our approach is entirely mission-focused, enabling customers to see more, decide faster, and act with confidence across complex domains. We deliver situational awareness and information advantage across C5ISR, fusing cyber, geospatial, and kinetic data into an operational picture. This transforms fragmented data into a shared understanding of the battlespace, delivering actionable insight when it matters most. Our solutions are secure by design, built from the ground up to protect sensitive information and ensure resilience in contested environments. We simplify complex heterogeneous data sources into a rich picture of fused intelligence, providing a digital backbone that underpins success. We operate as small teams delivering fast value, blending deep technical expertise with agile methods to deliver measurable outcomes. Every engagement focuses on capability, clarity, and confidence for those who protect the nation. A career with Envitia enables you to work with mission driven innovation. We're thrilled to announce that Envitia has been named one of Sunday Times Top 100 Medium Sized Companies to Work For in 2025-a prestigious recognition that highlights our commitment to creating an outstanding workplace where innovation, collaboration, and personal growth thrive. The Role Envitia is recruiting for a Java Engineer to join our Security and Intelligence consulting team and will be responsible for designing, developing and maintaining secure software services and mission applications within classified government environments. The role focuses on building high-performance backend systems, microservices and APIs that enable intelligence data platforms, analytics systems and operational applications. The successful candidate will work within multi-disciplinary agile teams, collaborating with data engineers, data scientists, DevOps engineers and mission analysts to deliver secure, production grade software systems. Typical engagements include: Developing Java based microservices and backend platforms Building API driven services enabling data exploitation and analytics Supporting distributed analytics platforms and intelligence applications Integrating software components across complex secure environments Delivering cloud native and containerised mission software systems Job Responsibilities Design, develop and maintain secure Java based backend services supporting mission critical and operational systems. Build scalable microservices architectures and robust RESTful APIs to support data driven and intelligence platforms. Engineer high performance, distributed applications capable of processing large volumes of data with low latency and high reliability. Integrate Java applications with data platforms, streaming services and analytics pipelines, including AI/ML enabled systems. Apply secure coding practices and ensure solutions meet stringent performance, reliability and security requirements. Contribute to architectural design, code reviews, automated testing and continuous improvement activities. Implement logging, monitoring and observability to support the operation of production systems. Collaborate closely with multi disciplinary teams including engineers, data specialists and operational stakeholders. Skills Required Strong experience developing Java based backend applications (Java 11+) using modern frameworks such as Spring Boot / Spring Framework. Solid understanding of object oriented design, software architecture and building RESTful APIs. Experience designing and developing distributed systems and microservices architectures, including service to service communication and API integration patterns. Proven ability to build high performance, scalable backend systems for data intensive or mission critical applications. Experience working in DevSecOps environments, including Docker, Kubernetes, CI/CD pipelines, automated testing and observability tooling. Ability to work directly with stakeholders to understand requirements and translate them into robust, secure and scalable software solutions. Strong collaboration and communication skills, with the ability to explain technical concepts to both technical and non technical audiences. Comfortable working in secure or regulated environments, delivering software within complex operational constraints. Security Clearance Requirements The successful candidate must be eligible for an enhanced Developed Vetted / eDV security clearance. Location It is anticipated the role will require up to 80% (4d/wk) onsite working at client locations - Gloucester, London, Manchester (based on project requirements). What's in it for you? At Envitia, our greatest asset is our team. We are committed to ensuring our workplace is one where every employee feels valued, supported and motivated to reach their full potential. As part of this commitment, we offer an exciting range of benefits designed to enhance both your professional and personal well being. More time for you: Enjoy 25 days of annual leave plus your birthday off, because you deserve to celebrate you. Want more flexibility? You can buy or sell up to 5 extra days to tailor time off around what matters most. Private Medical Insurance: We've got you covered with comprehensive private healthcare, including family options for added peace of mind. Security Clearance Bonus: Up to £5,000 a year Career growth that keeps you ahead: We invest in your future with ongoing training and development, so you're always learning, growing and staying ahead of the curve. Wellness that works for you: Love yoga, or going to the gym? We encourage an active lifestyle and support your wellness goals with a fitness reimbursement scheme that helps cover your gym membership or fitness related expenses. Life Assurance: Gain peace of mind with our life insurance coverage that ensures your loved ones are protected, because we care about your future as much as your present. Smarter Retirement Planning: Plan for your future with our pension options and resources to help build a secure financial foundation. Perkbox: Treat yourself! From shopping to spa days, to saving money on that new TV, our Perkbox membership gives you access to exclusive discounts on hundreds of products and services. Recognition that counts: Great work doesn't go unnoticed here. Our reward and recognition scheme celebrate your impact and let your brilliance shine. Give back and get involved: Join us in making a difference through paid volunteering days that let you support the causes that matter to you. Inclusion at Envitia At Envitia, we celebrate diversity and are committed to creating an inclusive environment for all employees. We welcome applicants from all backgrounds and walks of life. We believe that our strength lies in our differences, and we are dedicated to fostering a workplace where everyone feels valued, respected, and empowered. We encourage applications from people of all abilities, ages, genders, sexual orientations, races, ethnicities, and religions. We strive to support a culture of inclusion, accessibility, and work life balance. If you require any accommodations during the application or interview process, please let us know.
Apr 10, 2026
Full time
Join the Growth Story at Envitia Envitia operates at the heart of the UK's most sensitive and high-profile operations. Our approach is entirely mission-focused, enabling customers to see more, decide faster, and act with confidence across complex domains. We deliver situational awareness and information advantage across C5ISR, fusing cyber, geospatial, and kinetic data into an operational picture. This transforms fragmented data into a shared understanding of the battlespace, delivering actionable insight when it matters most. Our solutions are secure by design, built from the ground up to protect sensitive information and ensure resilience in contested environments. We simplify complex heterogeneous data sources into a rich picture of fused intelligence, providing a digital backbone that underpins success. We operate as small teams delivering fast value, blending deep technical expertise with agile methods to deliver measurable outcomes. Every engagement focuses on capability, clarity, and confidence for those who protect the nation. A career with Envitia enables you to work with mission driven innovation. We're thrilled to announce that Envitia has been named one of Sunday Times Top 100 Medium Sized Companies to Work For in 2025-a prestigious recognition that highlights our commitment to creating an outstanding workplace where innovation, collaboration, and personal growth thrive. The Role Envitia is recruiting for a Java Engineer to join our Security and Intelligence consulting team and will be responsible for designing, developing and maintaining secure software services and mission applications within classified government environments. The role focuses on building high-performance backend systems, microservices and APIs that enable intelligence data platforms, analytics systems and operational applications. The successful candidate will work within multi-disciplinary agile teams, collaborating with data engineers, data scientists, DevOps engineers and mission analysts to deliver secure, production grade software systems. Typical engagements include: Developing Java based microservices and backend platforms Building API driven services enabling data exploitation and analytics Supporting distributed analytics platforms and intelligence applications Integrating software components across complex secure environments Delivering cloud native and containerised mission software systems Job Responsibilities Design, develop and maintain secure Java based backend services supporting mission critical and operational systems. Build scalable microservices architectures and robust RESTful APIs to support data driven and intelligence platforms. Engineer high performance, distributed applications capable of processing large volumes of data with low latency and high reliability. Integrate Java applications with data platforms, streaming services and analytics pipelines, including AI/ML enabled systems. Apply secure coding practices and ensure solutions meet stringent performance, reliability and security requirements. Contribute to architectural design, code reviews, automated testing and continuous improvement activities. Implement logging, monitoring and observability to support the operation of production systems. Collaborate closely with multi disciplinary teams including engineers, data specialists and operational stakeholders. Skills Required Strong experience developing Java based backend applications (Java 11+) using modern frameworks such as Spring Boot / Spring Framework. Solid understanding of object oriented design, software architecture and building RESTful APIs. Experience designing and developing distributed systems and microservices architectures, including service to service communication and API integration patterns. Proven ability to build high performance, scalable backend systems for data intensive or mission critical applications. Experience working in DevSecOps environments, including Docker, Kubernetes, CI/CD pipelines, automated testing and observability tooling. Ability to work directly with stakeholders to understand requirements and translate them into robust, secure and scalable software solutions. Strong collaboration and communication skills, with the ability to explain technical concepts to both technical and non technical audiences. Comfortable working in secure or regulated environments, delivering software within complex operational constraints. Security Clearance Requirements The successful candidate must be eligible for an enhanced Developed Vetted / eDV security clearance. Location It is anticipated the role will require up to 80% (4d/wk) onsite working at client locations - Gloucester, London, Manchester (based on project requirements). What's in it for you? At Envitia, our greatest asset is our team. We are committed to ensuring our workplace is one where every employee feels valued, supported and motivated to reach their full potential. As part of this commitment, we offer an exciting range of benefits designed to enhance both your professional and personal well being. More time for you: Enjoy 25 days of annual leave plus your birthday off, because you deserve to celebrate you. Want more flexibility? You can buy or sell up to 5 extra days to tailor time off around what matters most. Private Medical Insurance: We've got you covered with comprehensive private healthcare, including family options for added peace of mind. Security Clearance Bonus: Up to £5,000 a year Career growth that keeps you ahead: We invest in your future with ongoing training and development, so you're always learning, growing and staying ahead of the curve. Wellness that works for you: Love yoga, or going to the gym? We encourage an active lifestyle and support your wellness goals with a fitness reimbursement scheme that helps cover your gym membership or fitness related expenses. Life Assurance: Gain peace of mind with our life insurance coverage that ensures your loved ones are protected, because we care about your future as much as your present. Smarter Retirement Planning: Plan for your future with our pension options and resources to help build a secure financial foundation. Perkbox: Treat yourself! From shopping to spa days, to saving money on that new TV, our Perkbox membership gives you access to exclusive discounts on hundreds of products and services. Recognition that counts: Great work doesn't go unnoticed here. Our reward and recognition scheme celebrate your impact and let your brilliance shine. Give back and get involved: Join us in making a difference through paid volunteering days that let you support the causes that matter to you. Inclusion at Envitia At Envitia, we celebrate diversity and are committed to creating an inclusive environment for all employees. We welcome applicants from all backgrounds and walks of life. We believe that our strength lies in our differences, and we are dedicated to fostering a workplace where everyone feels valued, respected, and empowered. We encourage applications from people of all abilities, ages, genders, sexual orientations, races, ethnicities, and religions. We strive to support a culture of inclusion, accessibility, and work life balance. If you require any accommodations during the application or interview process, please let us know.
We are looking to hire a new role and bring someone in as our Head of Product Security, a key leadership role within our Information Security team. In this role you will shape how Our Future Health builds secure, trusted products at national scale. You'll lead the security engineering and architecture functions, ensuring they provide clear and pragmatic guidance to product, engineering, and wider technical teams. Your work centres on embedding secure by design thinking, strengthening how the organisation understands and manages risk, and helping teams see security as an enabler that supports delivery rather than slowing it down. You'll also contribute hands on technical input to complex architectural decisions where your expertise adds real value. Alongside this strategic impact, you'll manage and develop a growing team, ensuring smooth day to day operations and a culture of continuous improvement. The role needs empathetic people leadership, exceptional stakeholder management, and the ability to influence across a fast moving, agile environment. With an engineering background and solid security architecture experience, you'll bring the technical credibility and collaborative approach needed to guide teams, shape priorities, and drive the future direction of product security. At Our Future Health, our mission is to transform the prevention,detectionand treatment of conditions such as dementia, cancer, diabetes, heart disease and stroke. We're looking for people to join us on our journey. If you're looking for a new challenge where you can contribute to helping future generations live in good health for longer, then we're keen to speak with you. What you'll be doing Acting as deputy to the Director of Information Security, supporting security strategy and leadership alongside the Head of Cyber Defence. Leading the security consultancy and technical security functions, covering core services such as IAM, vulnerability management, threat modelling, and secure base image maintenance. Serving as the primary contact for security consultancy, delegating work across the team as needed. Overseeing security architecture and engineering for our cloud native (Azure) production and corporate platforms. Driving continuous improvement, prioritising enhancements and maturing operational documentation. Line managing a multidisciplinary security team, including security engineers, application security specialists, and a security architect. Coaching and mentoring team members across all security disciplines. Advising product, engineering, and data squads on embedding security into their work and processes. Communicating security risks, threats, and requirements to both technical and non technical colleagues. Promoting security standardisation and consistency across platforms. Collaborating with technical and data architects on broader architectural decisions. Supporting organisational compliance by ensuring colleagues and contractors understand and meet their security responsibilities. What you won't be doing Working in a siloed environment with no freedom to make decisions. Working in a place where you can't see the impact your expertise makes. To succeed in this role you will be able to demonstrate some of the following skills and experience: Proven ability to manage and develop high performing security teams while fostering a collaborative, people centred environment. Demonstrable experience partnering with product teams to integrate security requirements into roadmaps, balancing security with usability and overall user experience. Previous experience working with DevSecOps or similar delivery models, embedding security in a way that supports rapid, iterative development. Experience designing secure cloud native architectures at both conceptual and detailed technical levels. Familiarity with Microsoft security technologies such as Defender, Sentinel, Entra, and Purview. An understanding of modern software engineering practices including source control, testing, code review, design documentation, and effective debugging. Advanced knowledge of security risk management and threat modelling. Solid understanding of core security controls, including cloud security, IAM, network security, and vulnerability management. Knowledge of modern cloud platforms, particularly Azure. Awareness of ISO 27001 and other widely used security standards. Comfortable working with Infrastructure as Code, ideally including Terraform. Experience working in Agile environments. The ability to communicate clearly between technical and non technical teams. Comfortable operating in a fast paced, small team environment. Relevant professional certifications. Salary from £110,000 per annum. Generous Pension Scheme - We invest in your future with employer contributions of up to 12%. 30 Days Holiday + Bank Holidays - Enjoy a generous holiday allowance with the flexibility to take bank holidays when it suits you. Enhanced Parental Leave - Supporting you during life's biggest moments. Cycle to Work Scheme - Save 25-39% on a new bike and accessories through salary sacrifice. Home & Tech Savings - Get up to 8% off on IKEA and Currys products, spreading the cost over 12 months through salary sacrifice £1,000 Employee Referral Bonus - Know someone amazing? Get rewarded for bringing them on board! Wellbeing Support - Access to Mental Health First Aiders, plus 24/7 online GP services and an Employee Assistance Programme for you and your family. A Great Place to Work - We have a lovely Central London office in Holborn, and offer flexible and remote working arrangements. Join us - let's prevent disease together. At Our Future Health, we recognise the importance of having a diverse workforce and ensuring that all candidates, regardless of their background, have equitable access to our application process. We proactively encourage applicants who identify as having a disability, neurodiversity, or long-term health conditions to let us know if they require any reasonable adjustments as part of their application process. If you do require any reasonable adjustments, please email us at
Apr 08, 2026
Full time
We are looking to hire a new role and bring someone in as our Head of Product Security, a key leadership role within our Information Security team. In this role you will shape how Our Future Health builds secure, trusted products at national scale. You'll lead the security engineering and architecture functions, ensuring they provide clear and pragmatic guidance to product, engineering, and wider technical teams. Your work centres on embedding secure by design thinking, strengthening how the organisation understands and manages risk, and helping teams see security as an enabler that supports delivery rather than slowing it down. You'll also contribute hands on technical input to complex architectural decisions where your expertise adds real value. Alongside this strategic impact, you'll manage and develop a growing team, ensuring smooth day to day operations and a culture of continuous improvement. The role needs empathetic people leadership, exceptional stakeholder management, and the ability to influence across a fast moving, agile environment. With an engineering background and solid security architecture experience, you'll bring the technical credibility and collaborative approach needed to guide teams, shape priorities, and drive the future direction of product security. At Our Future Health, our mission is to transform the prevention,detectionand treatment of conditions such as dementia, cancer, diabetes, heart disease and stroke. We're looking for people to join us on our journey. If you're looking for a new challenge where you can contribute to helping future generations live in good health for longer, then we're keen to speak with you. What you'll be doing Acting as deputy to the Director of Information Security, supporting security strategy and leadership alongside the Head of Cyber Defence. Leading the security consultancy and technical security functions, covering core services such as IAM, vulnerability management, threat modelling, and secure base image maintenance. Serving as the primary contact for security consultancy, delegating work across the team as needed. Overseeing security architecture and engineering for our cloud native (Azure) production and corporate platforms. Driving continuous improvement, prioritising enhancements and maturing operational documentation. Line managing a multidisciplinary security team, including security engineers, application security specialists, and a security architect. Coaching and mentoring team members across all security disciplines. Advising product, engineering, and data squads on embedding security into their work and processes. Communicating security risks, threats, and requirements to both technical and non technical colleagues. Promoting security standardisation and consistency across platforms. Collaborating with technical and data architects on broader architectural decisions. Supporting organisational compliance by ensuring colleagues and contractors understand and meet their security responsibilities. What you won't be doing Working in a siloed environment with no freedom to make decisions. Working in a place where you can't see the impact your expertise makes. To succeed in this role you will be able to demonstrate some of the following skills and experience: Proven ability to manage and develop high performing security teams while fostering a collaborative, people centred environment. Demonstrable experience partnering with product teams to integrate security requirements into roadmaps, balancing security with usability and overall user experience. Previous experience working with DevSecOps or similar delivery models, embedding security in a way that supports rapid, iterative development. Experience designing secure cloud native architectures at both conceptual and detailed technical levels. Familiarity with Microsoft security technologies such as Defender, Sentinel, Entra, and Purview. An understanding of modern software engineering practices including source control, testing, code review, design documentation, and effective debugging. Advanced knowledge of security risk management and threat modelling. Solid understanding of core security controls, including cloud security, IAM, network security, and vulnerability management. Knowledge of modern cloud platforms, particularly Azure. Awareness of ISO 27001 and other widely used security standards. Comfortable working with Infrastructure as Code, ideally including Terraform. Experience working in Agile environments. The ability to communicate clearly between technical and non technical teams. Comfortable operating in a fast paced, small team environment. Relevant professional certifications. Salary from £110,000 per annum. Generous Pension Scheme - We invest in your future with employer contributions of up to 12%. 30 Days Holiday + Bank Holidays - Enjoy a generous holiday allowance with the flexibility to take bank holidays when it suits you. Enhanced Parental Leave - Supporting you during life's biggest moments. Cycle to Work Scheme - Save 25-39% on a new bike and accessories through salary sacrifice. Home & Tech Savings - Get up to 8% off on IKEA and Currys products, spreading the cost over 12 months through salary sacrifice £1,000 Employee Referral Bonus - Know someone amazing? Get rewarded for bringing them on board! Wellbeing Support - Access to Mental Health First Aiders, plus 24/7 online GP services and an Employee Assistance Programme for you and your family. A Great Place to Work - We have a lovely Central London office in Holborn, and offer flexible and remote working arrangements. Join us - let's prevent disease together. At Our Future Health, we recognise the importance of having a diverse workforce and ensuring that all candidates, regardless of their background, have equitable access to our application process. We proactively encourage applicants who identify as having a disability, neurodiversity, or long-term health conditions to let us know if they require any reasonable adjustments as part of their application process. If you do require any reasonable adjustments, please email us at
Chief Information Security Officer (CISO) and Head of Corporate Security and Resilience The Independent Football Regulator The Independent Football Regulator (IFR) has been established to protect and promote the sustainability of English football, for the benefit of fans and the local communities football clubs serve. The IFR will help improve financial sustainability of clubs, ensure resilience across the leagues, and safeguard the heritage of English football. It will operate a licensing regime; set corporate governance standards and monitor, protect, and promote financial resilience. It will also enforce compliance with requirements on financial regulation, club ownership and directors, fan engagement, and heritage protection. The IFR will also have powers to prohibit clubs from joining competitions that are not fair or meritocratic, or that threaten the heritage or sustainability of English football. About the role This role provides strategic leadership and operational ownership of cyber security across the IFR, a small but high profile organisation. You will be responsible for developing, embedding and maturing a robust, proportionate cyber security and broader organisational security framework that protects the organisation's people, data, systems and services. Responsibilities will include: Developing, embedding, maturing and leading the organisation's cyber security strategy, governance, resilience and assurance activity. Overseeing all aspects of cyber security operations, including incident response, threat monitoring, vulnerability management and security operations Owning the wider organisational security framework, including physical security, information governance, data protection and resilience planning. Setting clear security management expectations and embedding a strong, resilient and effective security awareness culture across a small but high profile organisation. Ensuring compliance with relevant legislation, regulatory requirements and government security standards, including Government Functional Standard GovS 007: Security. Providing authoritative advice to the CEO, COO, CDDO, ExCo and Board on emerging threats, risks and mitigations. Implementing a formal cyber exercising and incident response programme; driving security and operational resilience. Embedding secure by design principles across digital services, data platforms and operational processes. Ensuring the cyber security framework aligns with the regulator's digital and data roadmap. Establishing ambitious and effective cyber maturity credentials; leading on assurance, penetration testing, risk assessments and audit readiness. Implementing audit recommendations and ensuring timely remediation of identified risks. Overseeing identity and access management, cloud security and supplier assurance. Essential Requirements: Significant experience of operating effectively in cyber security leadership roles. Extensive knowledge of cyber risk management, governance and assurance frameworks including: NCSC guidance, ISO 27001, Cyber Essentials Plus and NIST frameworks. Strong understanding of data protection, privacy and information governance. Proven experience managing security operations, incident response and threat intelligence. Ability to oversee supplier risk and ensure robust third party assurance. Experience driving measurable security improvements. Experience leading cyber incidents, including response co-ordination and exercising. Excellent communication skills, including briefing senior leadership and boards. Eligibility for appropriate government security clearance. Desirable Skills: Experience working with or within regulators, sports bodies or government organisations. Relevant professional certifications such as CISSP, CISM, CCSP or equivalent. Understanding of AI related security risks and model assurance. Knowledge of DevSecOps and secure software development practices. Experience maturing a security function. Familiarity with physical security, operational resilience and business continuity. If successful you will join a Non Departmental Public Body and will be employed as a Public Servant. If you are an existing Civil Servant or a DCMS employee you will no longer have access to Civil Service benefits including the Civil Service pension. The terms and conditions of employment include: Pension 12% An employee contribution of 5%, with an employer contribution of 7%. Flexible Benefit 8% Employees can choose to invest 8% of their base salary into their pension, or take as cash (post tax) Reward we will have a performance based reward programme. 31.5 days annual leave Flexible and hybrid working, 40% in office attendance Occupational sick pay 9 months paid Maternity Leave + generous paternity and adoption leave. A bespoke L&D programme to help you achieve your personal CPD, including paid membership fees Cycle-to-work scheme and much more! The Interview The interview process will assess experience through competency questions and potentially a presentation. Full details of this, including the topic, length of time, and whether or not you will need to use visual aids, will be sent to you prior to your interview. Prior to the interview you will be sent the competency questions in advance. The questions will be based on the essential criteria listed on slide 7. Your interview will take place remotely via Teams. Further Information A reserve list may be held for a period of 12 months from which further appointments can be made. The IFR has a location neutral pay scale. For more information on this, please see the 'Candidate Information Pack' attached Reasonable Adjustments We are committed to supporting candidates so they can perform at their best throughout the recruitment process. This includes making reasonable adjustments to our process. To request an adjustment, please email Accessibility If you are experiencing accessibility difficulties with any of the attachments, please contact us. Contact details can be found in the 'contact point for applicants' section of the job advert. Feedback Feedback will only be provided if you attend an interview or assessment. Security Successful candidates must undergo a criminal record check and complete baseline personnel security standard (opens in new window) checks. Nationality requirements This job is broadly open to the following groups: UK nationals nationals of the Republic of Ireland nationals of Commonwealth countries who have the right to work in the UK nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS) (opens in a new window) nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS) individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020 Diversity and Inclusion The IFR is committed to attract, retain and invest in talent wherever it is found. Contact point for applicants Email:
Apr 08, 2026
Full time
Chief Information Security Officer (CISO) and Head of Corporate Security and Resilience The Independent Football Regulator The Independent Football Regulator (IFR) has been established to protect and promote the sustainability of English football, for the benefit of fans and the local communities football clubs serve. The IFR will help improve financial sustainability of clubs, ensure resilience across the leagues, and safeguard the heritage of English football. It will operate a licensing regime; set corporate governance standards and monitor, protect, and promote financial resilience. It will also enforce compliance with requirements on financial regulation, club ownership and directors, fan engagement, and heritage protection. The IFR will also have powers to prohibit clubs from joining competitions that are not fair or meritocratic, or that threaten the heritage or sustainability of English football. About the role This role provides strategic leadership and operational ownership of cyber security across the IFR, a small but high profile organisation. You will be responsible for developing, embedding and maturing a robust, proportionate cyber security and broader organisational security framework that protects the organisation's people, data, systems and services. Responsibilities will include: Developing, embedding, maturing and leading the organisation's cyber security strategy, governance, resilience and assurance activity. Overseeing all aspects of cyber security operations, including incident response, threat monitoring, vulnerability management and security operations Owning the wider organisational security framework, including physical security, information governance, data protection and resilience planning. Setting clear security management expectations and embedding a strong, resilient and effective security awareness culture across a small but high profile organisation. Ensuring compliance with relevant legislation, regulatory requirements and government security standards, including Government Functional Standard GovS 007: Security. Providing authoritative advice to the CEO, COO, CDDO, ExCo and Board on emerging threats, risks and mitigations. Implementing a formal cyber exercising and incident response programme; driving security and operational resilience. Embedding secure by design principles across digital services, data platforms and operational processes. Ensuring the cyber security framework aligns with the regulator's digital and data roadmap. Establishing ambitious and effective cyber maturity credentials; leading on assurance, penetration testing, risk assessments and audit readiness. Implementing audit recommendations and ensuring timely remediation of identified risks. Overseeing identity and access management, cloud security and supplier assurance. Essential Requirements: Significant experience of operating effectively in cyber security leadership roles. Extensive knowledge of cyber risk management, governance and assurance frameworks including: NCSC guidance, ISO 27001, Cyber Essentials Plus and NIST frameworks. Strong understanding of data protection, privacy and information governance. Proven experience managing security operations, incident response and threat intelligence. Ability to oversee supplier risk and ensure robust third party assurance. Experience driving measurable security improvements. Experience leading cyber incidents, including response co-ordination and exercising. Excellent communication skills, including briefing senior leadership and boards. Eligibility for appropriate government security clearance. Desirable Skills: Experience working with or within regulators, sports bodies or government organisations. Relevant professional certifications such as CISSP, CISM, CCSP or equivalent. Understanding of AI related security risks and model assurance. Knowledge of DevSecOps and secure software development practices. Experience maturing a security function. Familiarity with physical security, operational resilience and business continuity. If successful you will join a Non Departmental Public Body and will be employed as a Public Servant. If you are an existing Civil Servant or a DCMS employee you will no longer have access to Civil Service benefits including the Civil Service pension. The terms and conditions of employment include: Pension 12% An employee contribution of 5%, with an employer contribution of 7%. Flexible Benefit 8% Employees can choose to invest 8% of their base salary into their pension, or take as cash (post tax) Reward we will have a performance based reward programme. 31.5 days annual leave Flexible and hybrid working, 40% in office attendance Occupational sick pay 9 months paid Maternity Leave + generous paternity and adoption leave. A bespoke L&D programme to help you achieve your personal CPD, including paid membership fees Cycle-to-work scheme and much more! The Interview The interview process will assess experience through competency questions and potentially a presentation. Full details of this, including the topic, length of time, and whether or not you will need to use visual aids, will be sent to you prior to your interview. Prior to the interview you will be sent the competency questions in advance. The questions will be based on the essential criteria listed on slide 7. Your interview will take place remotely via Teams. Further Information A reserve list may be held for a period of 12 months from which further appointments can be made. The IFR has a location neutral pay scale. For more information on this, please see the 'Candidate Information Pack' attached Reasonable Adjustments We are committed to supporting candidates so they can perform at their best throughout the recruitment process. This includes making reasonable adjustments to our process. To request an adjustment, please email Accessibility If you are experiencing accessibility difficulties with any of the attachments, please contact us. Contact details can be found in the 'contact point for applicants' section of the job advert. Feedback Feedback will only be provided if you attend an interview or assessment. Security Successful candidates must undergo a criminal record check and complete baseline personnel security standard (opens in new window) checks. Nationality requirements This job is broadly open to the following groups: UK nationals nationals of the Republic of Ireland nationals of Commonwealth countries who have the right to work in the UK nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS) (opens in a new window) nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS) individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020 Diversity and Inclusion The IFR is committed to attract, retain and invest in talent wherever it is found. Contact point for applicants Email:
Head of Platform Engineering - Peterborough Head of Platform Engineering with an excellent background in engineering, .NET / C#, DevOps, (including DevSecOps) and cloud is required by a leading company in Peterborough. It is a technical leadership role focused on DevOps and end-to-end technology estate. With a team of 10+, you will be turning architectural concepts into implementation reality, so very much a delivery role, being part of the senior leadership team. Experience required Been in a lead, manager or head of role .NET / C# and Microsoft stack experience Microservices and medallion architecture knowledge DevSecOps / DevOps capabilities Security compliance critical due to data-heavy operations Cloud hybrid journey experience Data platform appreciation You shall have Cross-platform responsibility (software and data), while having an open leadership style required you must embody the company values of integrity, innovation & respect. This person will have a very strong technical gravitas to hold their own with stakeholders and senior people in the business. Duties include: Own and define engineering standards, platform strategy, DevSecOps maturity, and production resilience across the organisation. Design and implement the operating model that enables rapid experimentation while ensuring robust, secure, and reliable operational systems. Influence and guide architectural direction, organisational structure, and long-term capability development. Strengthen governance around code quality, engineering practices, and technical discipline across teams. Drive automation, CI/CD maturity, and release processes to increase deployment confidence and reduce manual effort. Improve system resilience and reduce operational fragility through structural, strategic improvements rather than reactive firefighting. Lead the evolution of cloud foundations, observability, security, and recovery capabilities to support a modern, scalable technology estate. They are looking to pay a starting salary of £75,000 - £90,000 + Hybrid working of 2 days in the Peterborough office To apply press apply now or send your CV to Circle Recruitment is acting as an Employment Agency in relation to this vacancy. Earn yourself a referral bonus if you refer somebody else who fills the role! We also offer an iPad if you refer a new client to us and we recruit for them. Follow us on Facebook - Circle Recruitment , Twitter and LinkedIn - Circle Recruitment.
Apr 01, 2026
Full time
Head of Platform Engineering - Peterborough Head of Platform Engineering with an excellent background in engineering, .NET / C#, DevOps, (including DevSecOps) and cloud is required by a leading company in Peterborough. It is a technical leadership role focused on DevOps and end-to-end technology estate. With a team of 10+, you will be turning architectural concepts into implementation reality, so very much a delivery role, being part of the senior leadership team. Experience required Been in a lead, manager or head of role .NET / C# and Microsoft stack experience Microservices and medallion architecture knowledge DevSecOps / DevOps capabilities Security compliance critical due to data-heavy operations Cloud hybrid journey experience Data platform appreciation You shall have Cross-platform responsibility (software and data), while having an open leadership style required you must embody the company values of integrity, innovation & respect. This person will have a very strong technical gravitas to hold their own with stakeholders and senior people in the business. Duties include: Own and define engineering standards, platform strategy, DevSecOps maturity, and production resilience across the organisation. Design and implement the operating model that enables rapid experimentation while ensuring robust, secure, and reliable operational systems. Influence and guide architectural direction, organisational structure, and long-term capability development. Strengthen governance around code quality, engineering practices, and technical discipline across teams. Drive automation, CI/CD maturity, and release processes to increase deployment confidence and reduce manual effort. Improve system resilience and reduce operational fragility through structural, strategic improvements rather than reactive firefighting. Lead the evolution of cloud foundations, observability, security, and recovery capabilities to support a modern, scalable technology estate. They are looking to pay a starting salary of £75,000 - £90,000 + Hybrid working of 2 days in the Peterborough office To apply press apply now or send your CV to Circle Recruitment is acting as an Employment Agency in relation to this vacancy. Earn yourself a referral bonus if you refer somebody else who fills the role! We also offer an iPad if you refer a new client to us and we recruit for them. Follow us on Facebook - Circle Recruitment , Twitter and LinkedIn - Circle Recruitment.
Head of Platform Engineering - Peterborough Head of Platform Engineering with an excellent background in engineering, .NET / C#, DevOps, (including DevSecOps) and cloud is required by a leading company in Peterborough. It is a technical leadership role focused on DevOps and end-to-end technology estate. With a team of 10+, you will be turning architectural concepts into implementation reality, so v click apply for full job details
Mar 31, 2026
Full time
Head of Platform Engineering - Peterborough Head of Platform Engineering with an excellent background in engineering, .NET / C#, DevOps, (including DevSecOps) and cloud is required by a leading company in Peterborough. It is a technical leadership role focused on DevOps and end-to-end technology estate. With a team of 10+, you will be turning architectural concepts into implementation reality, so v click apply for full job details
