79 jobs found

Job Description Senior Information Security Analyst Our Client is a leading global company specialising in pharma products. They are looking to recruit a Senior Information Security Analyst with at least 5 to 7 years of expertise in Technology Security. The Senior Information Security Analyst is responsible for maintaining information security policies, architecture, technical standards, controls, solutions, guidelines, procedures, and other elements necessary to maintain security posture. Responsible for assessing information risk and facilitating remediation of vulnerabilities and risks across the organization. Accountable for coordinating security measures to protect our computer infrastructure and information systems, ensuring an acceptable risk posture. The Senior Information Security Analyst is highly engaged in risk management, including evaluating vendor risk, examining vendor contracts, understanding third-party risk, and data privacy issues. This individual serves as an expert on cybersecurity protection, detection, response, and recovery, coordinating penetration testing and managing cybersecurity analysts to detect, mitigate, and analyze threats. Works closely with other teams to develop controls such as firewalls, data leakage prevention, patching, encryption, vulnerability scanning, and configuration of security tools. Prior experience in an international enterprise environment is essential. Responsibilities Collaborate with IT teams to design and implement the company's cybersecurity strategy. Identify and address security gaps through ongoing monitoring and enhancements. Manage access to privileged accounts and audit activities to meet regulatory requirements. Evaluate and implement cybersecurity solutions to maintain confidentiality, integrity, and availability. Participate in proofs-of-concept for new security technologies. Develop and test security incident response plans, acting as incident response leader. Develop security, risk, and compliance reports and alerts. Review policies and procedures annually for security compliance. Develop, test, and implement disaster recovery procedures. Manage cybersecurity projects to ensure timely delivery within budget. Perform or coordinate security assessments, penetration tests, and vulnerability scans. Ensure compliance with frameworks like COBIT, NIST, ISO, PCI, GDPR, HIPAA, etc. Provide internal support for security issues within SLAs. Evaluate and implement CIS controls as needed. Contribute to cybersecurity strategic planning and budgeting. Follow change management policies. Qualifications Bachelor's degree required; advanced degree highly desirable. Minimum 5 years experience in Information Security. Proficiency in security frameworks like NIST, implementing and auditing security measures. Knowledge of Cisco networking, firewalls, VPN, DLP, IDS/IPS, SIEM, and related technologies. Experience with identity access management solutions such as SAML, OAuth. Relevant security certifications (e.g., CISSP, CISM, CEH) are highly desirable. Ability to analyze and recommend security improvements. Desired Qualifications Certifications like CISSP, NIST CSF, CCSP, CEH. Knowledge of cloud security (AWS, GCP, Azure). Experience managing Cisco ELA products, Splunk, SolarWinds, Varonis, Darktrace. Experience in HIPAA/FDA regulated environments. Competencies Motivation, initiative, administrative skills, interpersonal skills, self-management, thinking skills, customer orientation, adaptability, problem-solving, and effective communication are essential for success in this role. This UK-based role is located at the Central London offices of the client, with current remote working arrangements. The salary range is £70K - £85K. Please send your CV in Word format, along with your salary expectations and availability.

Job Title: Principal Cyber Security Consultant Contract Type: Permenent Flexibility: This role is available part-time, job-share or full time . This is because we want the best people for our roles, and we recognise that sometimes those people aren't available full-time. Location: In terms of location , we have offices in Bath, Bristol & London, and we are happy to explore flexible and hybrid working arrangements. Please note that travel to customer sites or to attend meetings will be required. About BMT BMT is dedicated to tackling the most crucial engineering challenges of our era, fostering an environment where individuals with exceptional technical expertise provide meaningful, practical solutions. Committed to creating a safer, more efficient, effective, and sustainable future, BMT values diversity, equity, and inclusion, recognisng their pivotal role in achieving our business purpose. Learn more about BMT at . At BMT, we pride ourselves on being a verified flexible workplace, providing freedom and choice. We understand not everyone has the same needs in order to make work work for them and their lives - we'd love you to discuss any requirements for flexibility with us - we can't promise to fulfil every request but we do promise to listen to what matters to you. Learn more about our flexible status at Flexa Careers Why Work for Us? Joining BMT means gaining access to a comprehensive set of employee benefits designed to empower your success. In addition to a competitive salary, our offerings encompass health, family, finance, and personal development, including: Private Medical (family coverage) Enhanced Pension 18 weeks enhanced maternity pay (after a qualifying period of 1 year) Family friendly policies Committed to an inclusive culture Wellbeing Fund - an annual fund for personal hobbies or interests Holiday Trading Professional Subscriptions About The Role We are seeking an experienced Principal Cyber Security Consultant to join our team and engage in a diverse range of client projects within the defence, national security, environmental, and research sectors. This includes the provision of strategic risk management advice and/or technical consultancy within the context of cybersecurity. You will join a team of highly skilled professionals dedicated to safeguarding technologies and systems, many of which are critical to UK defence and national security. To deliver this outcome, you must be passionate about cyber security and apply your deep understanding and experience of HMG, NCSC, and international cyber standards. The role will require excellent stakeholder management and communication skills to build the trust and support necessary for successful outcomes. You will be supported by team members in a highly collaborative environment, a structured learning and development programme, and will have opportunities for growth within an expanding team. If you're ready to make a real impact and work with a fantastic team, we'd love to hear from you. About You We'd love to hear from you if you can demonstrate expertise in at least one of the following areas : Security governance, risk and compliance (GRC), aligned with HMG cybersecurity and information assurance policies, standards, and guidance with experience in consultancy or supplier roles. Securing OT (Operational Technologies) with knowledge and understanding of challenges, particularly within military platforms and/or Critical National Infrastructure (CNI) Federation of Security Operations Centre (SOC)operations across two or more organisational environments such as enterprise, edge/deployed environments or cloud . Demonstrable knowledge of cyber detection (e.g., threat identification/intelligence, real-time monitoring, anomaly detection) and cyber response (e.g. incident response, eradication and remediation, recovery, post-incident analysis). DevSecOps. Zero Trust Architecture (ZTA) expertise for enterprise, cloud and air-gapped environments along with knowledge of operational use of Zero Trust within any of the following: , IdAM systems, application security, supply chain security, data protection, other. As a Principal Cyber Security Consultant, you will be responsible for leading technical delivery teams, shaping and carrying out complex technical work, leading technical input into bid work, engaging with clients to define the scope of work for new projects, and supporting other cyber security professionals in their career development. People applying for the BMT Principal Cyber Security Consultancy role typically hold or are operating at the least the principal level of the UK Cyber Security Council's chartership scheme. Excellent consultancy skills are essential, including verbal and written communication skills, and stakeholder engagement and management. Line management experience would be beneficial for this role. In addition, the following technical knowledge or experience will be helpful for some of our projects: Expertise in consultancy. Knowledge of secure by design. Cybersecurity industry standards (e.g. NIST, ISO 27001, ISA/IEC 62443, etc). An understanding of cloud-native infrastructure (e.g. microservices, containerisation, Kubernetes, serverless computing). An understanding and/or experience with SIEM, SOAR and EDR. Knowledge and/or understanding of data and analytics in terms of cybersecurity implications. Missing skills? Let us be the judge! BMT are passionate about people; we recognise that technology moves quickly and that no one can learn everything, which is why we seek those who can adapt and demonstrate the aptitude to learn. With enthusiasm and the right attitude, we can help you discover your potential. This role will require full UK security clearance and you should have resided in the UK for the past 5 years What's Next? If you are ready to contribute your skills and passion to a dynamic team addressing impactful challenges, we invite you to apply for this exciting opportunity with BMT. Join us in shaping a safer, more efficient, and sustainable future. A message to recruitment agencies: We receive applications exclusively via our ATS. Please note that we do not accept CVs submitted via email to the HR department or staff within our Operational teams. We will not progress CVs shared on a speculative basis by email and you accept our right to pursue such candidates with no obligation to third-party terms and conditions or liability to a fee

Bondsmith is a fast growing digital cash savings platform focused on helping customers make the most of their money by offering access to a wide range of savings products. We work with financial institutions like wealth managers, fintechs, banks, and advisors, providing them with tools to get better returns on cash, engage more effectively with clients, and simplify their operations. Our goal is to help savers get the most out of their cash. At Bondsmith, our core values are rapid and continuous improvement, delivering good customer outcomes, and taking end to end ownership. Our team is made up of experienced professionals who are passionate about delivering excellent service and finding new ways to solve challenges in financial services. Joining us means working in a fast-paced environment where you will be making an impact on the financial lives of thousands of savers. We're regulated by the Financial Conduct Authority in the UK. As a Senior Security Engineer, you will play a key role in protecting our systems, networks, and data while ensuring compliance with industry leading security standards such as ISO 27001. Your contributions will be essential in maintaining customer trust and safeguarding critical information assets. This role sits within thePlatform Engineering Teamand requires a strong technical background, hands-on experience with security tools, and a collaborative mindset to work effectively across teams. The role will involveplatform engineering activities, contributing to the design, implementation, and optimisation of scalable infrastructure. If you're motivated by solving complex problems in a dynamic, fast-paced environment, this position is for you. What you will do: Develop and implement proactive security strategies, policies, and procedures to protect our systems, networks, and data assets. Lead regular security assessments, including vulnerability scans and penetration tests, identifying risks and driving remediation efforts. Monitor infrastructure for security incidents or unauthorised activity, responding swiftly to mitigate potential threats. Investigate security breaches and incidents, and develop robust incident response plans to ensure timely and effective resolution. Collaborate with cross-functional teams to design, implement, and manage security controls and configurations across a range of platforms and systems. Oversee compliance efforts for key regulatory frameworks such as ISO 27001, ensuring adherence to all relevant standards. Stay informed on industry trends, emerging threats, and new technologies to anticipate risks and continuously strengthen our security posture. Deliver security awareness training and develop educational materials to foster a culture of security across the organisation. Support the evaluation and implementation of security tools, solutions, and vendors to enhance and maintain our security infrastructure. Contribute to the development and upkeep of disaster recovery and business continuity plans, ensuring operational resilience. Who you are: A degree in Computer Science, Information Security, or a related field; a Master's degree is a strong advantage. Proven experience as a Security Engineer or in a similar role, with deep understanding of the threat landscape, ideally in fintech environments. Hands-on expertise with security technologies, including firewalls, intrusion detection/prevention systems (IDS/IPS), SIEM, antivirus solutions, encryption mechanisms, and vulnerability assessment tools. Hands-on experience in security tools (e.g., SAST, DAST, OWASP ZAP). Relevant security certifications, such as Security+, IAT II/III level, or equivalent. Strong capability in risk assessment, vulnerability management, and data informed decision-making. Solid understanding of incident response procedures, including containment, eradication, and recovery from cybersecurity events. Advanced proficiency in AWS, with experience in multi-region and hybrid cloud architectures Strong grasp of networking protocols, including TCP/IP, and core network security principles. Proficiency in scripting and programming (i.e., Python) to support automation and integrate with security tooling. Excellent analytical and problem solving skills, with the ability to leverage data and metrics to guide decisions and measure outcomes. Clear and effective communication skills, capable of conveying complex security concepts to both technical and non-technical audiences. A proactive, self-motivated approach, with a history of taking initiative, owning projects, and delivering tangible results. Ideally You Would Be Confident, and able to take initiative in a delivery-focused environment Able to learn quickly in a dynamic fast-paced industry Enjoy working as part of a high-performance team Hard-working, innovative and taking pride in their work Passionate about creating innovative solutions for customers What makes Bondsmith unique Early-stage startup: You will join an early-stage startup with less than 50 members. This means you'll have an opportunity to make a real impact and shape the future of Bondsmith. Customer demand: Unlike other startups who are still finding their way and pivoting on products, we have strong demand from our enterprise clients for our products, we just need to keep building them. Next fintech growth story: We are doubling in headcount year on year and hiring across a range of positions Company Benefits Competitive salary Hybrid working (average of 3 days a week expected in office) Share scheme participation All the right equipment to make sure you're working at your best Fun and social office in Shoreditch Deliveroo for working late in the office Apply for this job indicates a required field First Name Last Name Preferred First Name Email Phone Resume/CV Enter manually Accepted file types: pdf, doc, docx, txt, rtf Enter manually Accepted file types: pdf, doc, docx, txt, rtf

Senior Cloud Security Engineer Department: Engineering Employment Type: Permanent - Full Time Location: London Reporting To: Sami Eltamawy Compensation: £80,000 - £90,000 / year Description London, office-based Freetrade's mission is to become the default place to invest. Investing has been too complicated and expensive for too long, keeping millions from making the most of their savings. We're changing that. We're building our team and looking for people who are excited to reshape how our customers invest and grow their wealth. If you're driven by solving complex problems and building innovative products, you'll fit right in. 2025 is a big year for us. In January, we announced a game changing deal to become part of the IG Group. We'll continue to operate as an independent business while gaining access to the resources and support of an established leader in the space. This year, we're accelerating our roadmap and taking our products to the next level. We're building new features like mutual funds, bonds, and family investment tools. We're also exploring how we can leverage AI to deliver an even better experience for our customers. We're on a mission to build a secure, scalable, and resilient cloud infrastructure-and we're looking for a Senior Cloud Security Engineer to lead the way. In this foundational role, you'll architect and build our cloud security program from the ground up, helping to shape how we protect our systems, services, and users in an ever-evolving digital landscape. You'll work closely with our DevOps and Platform teams to integrate security deeply into our development and deployment pipelines. This is your chance to define the standards, select the tools, and create the practices that will safeguard our cloud ecosystem now and into the future. If you're a security champion eager to shape the future of cloud security in a dynamic fintech environment, we'd love to hear from you. Come build, secure, and empower our growth in the cloud - one byte at a time. Key Responsibilities Lead Cloud Security Strategy: Spearhead the design and implementation of a comprehensive cloud security program in partnership with DevOps and Platform teams. Define Policies and Implement Key Controls: Develop and enforce cloud security policies, including Identity and Access Management (IAM) , Web Application Firewalls (WAFs) , and network segmentation strategies . Review System Architecture and Design: Conduct in-depth architecture and infrastructure reviews to uncover insecure design patterns and recommend secure alternatives. Audit Configurations and Code: Perform security-focused code and configuration reviews across infrastructure-as-code, CI/CD pipelines, and cloud-native applications. Deploy and Manage Security Tooling: Select, implement, and operate key tools across GCP , such as Cloud Armor , Cloud Identity , Security Command Center , and VPC Service Controls for ongoing threat detection and response. Integrate Security in SDLC: Collaborate with product and engineering teams to integrate security into every stage of the software development lifecycle. Threat Modeling and Risk Analysis: Perform structured threat modeling using frameworks such as STRIDE and PASTA to proactively mitigate security risks. Champion Developer Education: Promote secure development practices by educating engineers on cloud and application security fundamentals. Mentor and Lead: Act as a mentor to future hires, helping scale a high-impact cloud security function as the business grows. What you'll bring Experience: 7+ years in cybersecurity, with at least 3 years in hands-on cloud security roles (GCP preferred) . Track Record: Demonstrated success in building and scaling cloud security programs from scratch. Tooling: Familiarity with core cloud security components including IAM , WAFs , SIEM , CSPM , and vulnerability scanners. Technical Skills: Proficiency in at least one scripting or programming language (e.g. Python, Go, Bash). Threat Modeling: Practical knowledge of frameworks like STRIDE and PASTA. Education: Bachelor's degree in Computer Science, Information Security, or a related technical field. Collaborative Expertise: Clear and effective communication with cross-functional teams and stakeholders at all levels. Leadership: Ability to set direction, inspire others, and drive security-first thinking across the business. Initiative & Autonomy: Self-starter with the drive to identify and address security gaps proactively. Adaptability: Comfortable working in fast-paced, evolving environments with unstructured challenges. Influence: Able to drive alignment and consensus without relying on formal authority. Creative Problem Solving: Capable of designing innovative solutions to modern security challenges. Mentorship & Growth: Passionate about growing others and building a team-oriented culture of security excellence. Benefits & Logistics Freetrade is the place to accelerate your career. Our benefits package and ways of working are designed to attract and retain the most talented people who are dedicated to making an impact at Freetrade. Here's what's on offer in 2025: Office first culture - we have beautiful office spaces in central London and Budapest where four days a week you collaborate with colleagues in person, one of our core behaviours is that we're a team that works better together. Values - at Freetrade we live and breathe our values: Honesty , Focus and Grit . Expect to be asked about these in your interview! Benefits In London: Competitive salary - carefully benchmarked. Holidays - 25 days plus UK public holidays. Your birthday off, plus one extra day for every year at Freetrade. Enhanced pension - We'll match your contributions up to 5%. Group Life Insurance - Protect your loved ones with coverage at 5x your salary, ensuring financial security in any circumstance. Private Health Insurance - Which includes access to high quality medical care, mental health support, dental and vision plans, Wellness programs and preventative care initiatives are also provided to ensure the wellbeing of your entire family. Income Protection Cover - Safeguard your income with comprehensive coverage, ensuring financial stability in the event of illness or injury. Enhanced parental leave - Time off when it matters most. Flexibility for those who need it - We're office-first, but life happens. Whether you're a parent or have care responsibilities, we focus on output and trust you to manage your time. Learning & Development - We fund industry qualifications so you can grow as a financial services professional. Cycle to Work scheme - Get a high quality bike and gear through our salary sacrifice scheme, spreading the cost with tax free monthly installments. Paid Sick Leave - Receive 10 days of fully paid sick leave each calendar year. Following the completion of our acquisition by IG Group, you can expect our benefits package to further improve as we align with the broader offerings available across the group. Interview Process We keep things simple and transparent. Our process typically includes: Initial Screening - A quick chat with one of our Talent Partners. Hiring Manager interview - A deep dive into your skills and experience. Technical interview - Show us how you think and solve problems. Executive interview - A conversation with our stakeholders, where we also assess cultural fit. We are an Equal Opportunity employer committed to a diverse and representative team. Whatever your race, religion, colour, national origin, gender, sexual orientation, age, marital status, or disability - we want to hear from you. We're very open about what we're working on, and the best places to learn more are our buzzing community forum and our blog. To find out more about how we look after your personal data when you apply for a job with us, please see our Recruitment Privacy Policy here. Please note we are not accepting agency CVs.

The team you'll be working with: NTT DATA is one of the world's largest global security service providers, partnering with some of the most recognized security technology brands. We're looking for passionate, curious, and motivated individuals to join our team. What you'll be doing: Using your background in Security Architecture, you will help our clients: Security Architecture: Translate business, data protection and security requirements into practical and well-structured architectural designs, utilizing industry best practices and security frameworks (e.g., NIST, ISO 27001, CIS). Develop and maintain secure architectural patterns and standards, with a solid working knowledge of cloud security (AWS, Azure, GCP). Apply risk-based and threat-based approaches to evaluate and recommend appropriate and proportionate security technologies and solutions (e.g., SIEM, IAM, CASB, container security). Outline key security components, interfaces, and dependencies. Develop architectural diagrams and overviews. Document security design principles and provide rationale. Ensure designs align with business objectives, security policies, and industry best practices, with a focus on cloud-native security considerations. Risk and Threat Management: Conduct comprehensive risk assessments and threat modelling, providing detailed analysis and actionable recommendations. Advise clients on risk mitigation strategies and security best practices, and support the implementation of those strategies, contributing to measurable improvements. Support security incident response and investigations, contributing to thorough post-incident reviews and identifying areas for improvement. Stakeholder Engagement and Technical Leadership: Provide expert guidance to clients on secure architecture and risk management, participating in technical discussions with stakeholders. Engage with stakeholders to contribute to informed security decisions and communicate complex security concepts effectively. Deliver clear presentations and reports to technical and non-technical audiences and provide technical guidance to project teams. Collaborate with developers, IT operations, and other security team members to ensure effective security integration throughout the SDLC. Security Policy and Standards Implementation: Advise on the development and implementation of security policies, standards, and procedures, and support their enforcement, including cloud-specific policies. Conduct security compliance assessments and audits, and assist in addressing any gaps, providing recommendations for remediation. Support alignment with relevant security frameworks and regulations, identifying potential compliance issues and contributing to mitigation strategies. Technology Evaluation, Deployment, and Management: Conduct security architecture reviews and perform security assessments, including vulnerability scanning, configuration reviews, and cloud security posture assessments, identifying vulnerabilities and recommending detailed remediation strategies. Contribute to the development of security architecture roadmaps and strategic plans, and support their implementation, with a focus on continuous improvement. Evaluate and recommend appropriate security technologies and solutions and support the deployment and integration of those technologies. Provide guidance on the implementation of security controls and best practices and support the maintenance and optimization of those controls. Stay updated with emerging threats and technologies, and research and recommend new security solutions. Presales and Bid Support: Contribute to the development of proposals and statements of work, including defining the scope, approach, and deliverables. Estimate effort, costs, and timelines for security solutions, considering various factors and constraints. Present security solutions and architectures to potential clients, effectively communicating their value and benefits. Support the bid management process by providing technical input, risk assessments, and compliance considerations. What experience you'll bring: It starts with amazing people, challenging projects and a work environment that supports the creation of tangible solutions that make an impact. You will need to have a broad experience of security architecture and have evidence of experience in a number of the following fields of expertise: 7+ years' varied experience in information security, data protection, and security architecture roles, with a focus on cloud security, and compliance. Strong understanding of security governance, risk, and compliance frameworks such as ISO 27001, NIST 800-53 / CSF, NIS/NIS2, DORA, UK CNI / OT / IIOT compliance. Hands-on experience building credibility with external stakeholders through technical presentations, audits, or compliance reporting, including enterprise clients, critical system vendors, certification auditors and regulatory bodies. Proven ability to technically guide and mentor teams, as well as influence and collaborate with senior stakeholders in a similar architecture, security, or risk management role. A hands-on approach with the ability to balance project level strategic oversight with direct involvement in security tasks. Excellent communication skills, with the ability to present complex information clearly and effectively to non-technical stakeholders. Strong attention to detail and the ability to deliver high quality work. Experience in presales activities, including contributing to proposals, estimating effort, and presenting solutions. Experience in supporting bid management processes, providing technical input and risk assessments. A valid right to work in the UK. Eligible to obtain UK SC clearance. CISA, CRISC, CISM or CISSP certification a must. Who we are: We're a business with a global reach that empowers local teams, and we undertake hugely exciting work that is genuinely changing the world. Our advanced portfolio of consulting, applications, business process, cloud, and infrastructure services will allow you to achieve great things by working with brilliant colleagues, and clients, on exciting projects. Our inclusive work environment prioritises mutual respect, accountability, and continuous learning for all our people. This approach fosters collaboration, well-being, growth, and agility, leading to a more diverse, innovative, and competitive organisation. We are also proud to share that we have a range of Inclusion Networks such as: the Women's Business Network, Cultural and Ethnicity Network, LGBTQ+ & Allies Network, Neurodiversity Network and the Parent Network. For more information on Diversity, Equity and Inclusion please click here: Creating Inclusion Together at NTT DATA UK NTT DATA What we'll offer you: We offer a range of tailored benefits that support your physical, emotional, and financial wellbeing. Our Learning and Development team ensure that there are continuous growth and development opportunities for our people. We also offer the opportunity to have flexible work options. You can find more information about NTT DATA UK & Ireland here: We are an equal opportunities employer. We believe in the fair treatment of all our employees and commit to promoting equity and diversity in our employment practices. We are also a proud Disability Confident Committed Employer - we are committed to creating a diverse and inclusive workforce. We actively collaborate with individuals who have disabilities and long-term health conditions which have an effect on their ability to do normal daily activities, ensuring that barriers are eliminated when it comes to employment opportunities. In line with our commitment, we guarantee an interview to applicants who declare to us, during the application process, that they have a disability and meet the minimum requirements for the role. If you require any reasonable adjustments during the recruitment process, please let us know. Join us in building a truly diverse and empowered team. Back to search Email to a friend Apply now

Digital threats are evolving rapidly while our solutions are growing in complexity . We are strengthening our SecOps function within our Software department! Are you an accomplished software engineer passionate about cyber security? Then this might be the opportunity for you. "I can quickly see the impacts of my work on our products. I'm grateful to work side-by-side with passionate people from a range of disciplines who see security as an enabler for the future of our brand" - Åsmund Sand, Principal Security Engineer About the role We are now looking for a Senior Cloud Security Engineerwho can take ownership in the cyber security area. In the first year you can expect to focus on identity and access management challenges to scale our current CIAM infrastructure, while also implementing new workflows. You will play a key role ensuring our solutions meet the security expectations of our customers, as well as the company's security requirements. At reMarkable, you will be challenged by a diverse technical landscape. We use GCP as our primary cloud vendor, we have some footprint in AWS for CI purposes, and use Azure for certain other isolated use-cases. We are dabbling into Cloudflare to replace internal VPNs as well. Our backend is primarily written in Go and follows, for the most part, an event-driven architecture. We generally operate at a higher level of the cloud stack, while working with virtual machines and kubernetes is reserved for specific cases. In terms of Web, we have a good deal of React and Next, and a growing investment in WASM and cross-platform web technology. Additionally, over time, you'll need to maintain a broad understanding of how our hardware operates, where C and C++ reign supreme. Other tasks and responsibilities: Defining and developing our security frameworks Rotating between cross-functional platform teams to educate and validate solutions Modeling threat scenarios continuously and automating/dispatching remediation tasks Designing and running contingency plans for security events Implementing and automating software security practice within Go, C/C++ and Web We believe that you Have experience with scripting and programming in one or more languages. You have worked as a software developer in a software team, or maybe as a site reliability engineer, and somewhere down the line sparked an interest and passion for security that you would like to pursue and make the center of your career. In the world of security, the challenges are ever changing, and as such, you have a particularly flexible and solution-oriented mindset. You have knowledge of or are interested in CIAM (e.g. Auth0), threat modeling, vulnerability analysis (e.g. Google Secure Command Center), CSPM (e.g. scrut.io) and SIEM (e.g. Chronicle) systems You have a relevant Bachelor's degree (or higher) You have worked with Google cloud or AWS You have experience with evaluating and onboarding security tools You can collaborate closely with different teams within tech What you will not be doing This is not an IT security role; you will focus broadly on customer cloud and software security. You won't be monitoring office systems or managing internal corporate security. Why we enjoy working here We enjoy working with highly skilled colleagues both within the team and in reMarkable at large in a cross functional environment. Being a part of the journey to a global company working with cutting edge technology. Wednesday is Zen-day with no internal meetings to create space for you to focus, deep dive and be creative. A total of 25 vacation days during a year. You'll also have 5 extra days called "reMarkable days" you can make use of in addition to our regular vacation. Paid sick leave. Private health care and life assurance. reMarkable's newest Paper Tablet and home broadband coverage within our company policy. Pension plan. And maybe most importantly: We have fun! We have regular events and social gatherings, both in the team and company wide. Practical information We will consider applicants on a rolling basis. Language requirements: Professional English, written and spoken. Our working language is English. Location: Central London, UK or Oslo, Norway. Visa requirements: London: British citizenship or Indefinite Leave to Remain (we are currently not able to provide relocation to our London office) Oslo: Citizenship/valid work permit from the EU/EEA (relocation assistance may be provided). As part of our hiring process, we assess candidates' affiliation with high-risk countries, defined by PST (Norwegian Police Security Service), for security purposes. We also conduct background checks for candidates in the final stages. Data is handled in full compliance with privacy regulations. Should you reach the final stages of the recruitment process, you will be informed. Background checks will not be performed without your knowledge.

Job summary Join our dynamic Digital, Data and Technology (DDaT) team at NHSBSA as a Cyber Security Operations Team Lead. You'll lead a team of specialists, manage security operations, and support various projects and initiatives. Your role involves ensuring compliance with security standards, managing incidents, and collaborating with internal and external stakeholders. Key Responsibilities: Lead and manage the Cyber Security Operations team. Ensure compliance with security standards (ISO27001, NCSC CAF). Manage security incidents and vulnerabilities. Collaborate with third-party suppliers and internal teams. Provide expert advice on security technologies and processes. Requirements: Proven team leadership experience.Strong knowledge of security technologies (firewalls, IDS/IPS, SIEM).Relevant qualifications (CISSP, CISM, etc.). Apply now to make a significant impact on NHS BSA's cyber security strategy! What do we offer?o 27 days leave (increasing with length of service) plus 8 bank holidayso Flexible working (we are happy to discuss options such as compressed hours)o Hybrid working model (we are currently working largely remotely)o Career development o Active wellbeing and inclusion networkso Excellent pensiono NHS Car lease schemeo Access to a wide range of benefits and high street discounts! Main duties of the job Ensure NHSBSA systems security is managed, with appropriate access control and monitoring. Produce and maintain comprehensive security documentation and blueprints. Provide guidance on security inquiries and establish the team as the primary resource for advice. Efficiently manage the workload of personnel, ensuring timely completion of tasks and continuous improvement. Ensure continued compliance with NCSC, DHSC Cyber Assessment Framework, and HM Government Cyber security strategy. Develop, maintain, and promote security procedures and standards in line with NHSBSA requirements. Implement, monitor, and report on agreed service levels, KPIs, and standards within security operations. Oversee the lifecycle of security solution implementation, ensuring accurate translation and operation. Engage and foster relationships within the organisation and with third parties to deliver value. Assist in managing security incidents, vulnerabilities, and malfunctions, ensuring efficient resolution. Conduct forensically sound acquisitions of computer systems and media for evidence collection. Provide advice and guidance in penetration testing and improving service offerings. Carry out reviews, internal audits, and spot-checks to ensure effective operation of security measures. Provide expertise in the design and implementation of specialist security technologies and cloud systems. About us Here at the NHS Business Services Authority (NHSBSA), what we do matters. We manage the NHS Pension scheme, process prescription payments and much more. Our services are used by NHS organisations, contractors and the public: we're proud to be part of something meaningful, that touches millions of lives. We design our services around customer needs and place people at the heart of our organisation. That's why when you join us, you'll be empowered and supported to help your career grow. As one of the UK's Best Big Companies to work for, we're connected to our values: Collaborative, Adventurous, Reliable and Energetic. We care about our people, our purpose, and your progress. We strive to offer a fantastic colleague experience, where every colleague is heard, supported and respected. Wellbeing, diversity and inclusion is at the centre of this, and you can join our Lived Experience Networks who help us bring our authentic selves to work. We're committed to being a flexible employer and we try to offer a working pattern that suits you where possible, through hybrid working, flexible hours and more. Alongside a competitive salary with pay progression, we offer a people-centric benefits package, connecting you to the rewards and benefits you value most! Ready to join us in delivering business service excellence to the NHS, helping people live longer, healthier lives? Apply today and see where the NHSBSA can take you. We are people connected to care. Job description Job responsibilities In this role, you are accountable for 1. As the Security operations team lead you will support the Infrastructure Services Manager/Head of Cyber Security & infrastructure Services ensuring NHSBSA systems security is managed and appropriate access control and monitoring on all systems is maintained. 2. To work with NHSBSA staff and Third Parties to ensure that security standards, governance and processes are in place for producing and maintaining up to date, comprehensive, comprehensible documentation which will include IT service security blueprints for all systems and services. 3. Serves as a Subject Matter Expert (SME) and acknowledged point of contact to provide guidance on inquiries related to their area of responsibility, originating from both internal and external sources. Establishes the Cyber Security Operations team as the primary resource for advice on such matters and advises on standards and tools within their area of expertise. 4. Efficiently managing the workload of personnel and ensuring timely completion of assigned tasks to a superior standard. Continuously striving to improve both personal and business areas by coordinating and delivering work across various strands, including continuous improvement, project-related work, and operational tasks, while also promptly escalating issues as necessary. 5. Maintain detailed technical knowledge of IT Security products, systems, policies, and procedures used within the NHSBSA. 6. Ensure that all controls are in place to ensure continued compliance with the National Cyber Security Centre (NCSC) an the Department of Health and Social Care (DHSC) Cyber Assessment Framework (CAF)and continued adherence to HM Government Cyber security strategy and NCSC standards and best practice. 7. Supports the strategic direction of the Cyber security operation function by the development, maintenance, promotion and stewardship of Security Procedures and Standards, in accordance with the NHS BSAs requirements, IG policies and procedures, legislation and EU Directives. 8. Monitor, report, present or escalate issues as appropriate to the Head of Cyber Security & Infrastructure Services. 9. Implement, monitor and report on a number of areas including agreed service levels, KPI's and standards within security operations. 10. Tasked with offering proficient assistance and guidance throughout the entire lifecycle of a security solution implementation, encompassing both technical and non-technical aspects. This involves overseeing the migration of services across suppliers and working closely with architects to ensure that the solution and service design is accurately translated, built, delivered, and operated in accordance with security and business requirements. 11. Identify opportunities, engaging and fostering relationships and partnership working within the organisation, and with third parties, to identify and deliver value to the organisation. 12. Assist in the management of the security incident process by reviewing security incidents, vulnerabilities, and malfunctions related to the systems of NHS BSA. Take appropriate remedial actions, including addressing any performance-related targets not met by internal and external suppliers, to ensure the efficient resolution of incident. 13. Keeping abreast of technological and maintain an excellent understanding of the use of technology in delivering business objectives. 14. Research of the marketplace and constant awareness of industry trends and innovation using information to inform the Cyber security strategy of the NHSBSA and as input to design activities. 15. When required conduct forensically sound acquisitions of computer systems and associated media to accumulate evidence in the area of forensic computer science. This will require occasional periods of intense concentration to ensure any evidence collected can be used in a court of law. 16. Provide appropriate advice and guidance in penetration testing and improving the service offering. 17. Carry out reviews, internal audits and spot-checks to ensure the effective operation of (but not limited to): IDS/IPS, vulnerability and patch management, Email and Web Filtering, anti-malware, and hardening of operating systems and applications. 18. Provide expertise in the design and implementation of Specialist Security technologies and cloud technology systems such as, Azure, AWS, Oracle as well as physical device operating systems and the use of ancillary tooling for o/s management. 19. Fully engage and contribute to delivery of projects, change and continuous improvements by providing specialist information security advice. 20. Participating in procurement processes for hardware and software. Reviewing functional requirements and providing non-functional requirements to ensure the overall needs of the business are met from an ICT perspective. In addition to the above accountabilities, as post holder you are expected to1. Undertake additional duties and responsibilities in line with the purpose of your role and as agreed by your line manager.2. Demonstrate NHSBSA values and core capabilities in all aspects of your work.3. Encourage an environment where your own and colleagues safety and well-being is promoted.4 . click apply for full job details

Position Description: Trusted to see the whole picture If you're ahead of the game on cyber security, systems and operations risk we can secure your career ambitions. Our Security Architects are trusted to work closely with a wide range of clients from all sectors on exciting projects with real-world purpose and impact. Whether you're a self-starter looking to test your talents, or want the opportunity to use your experience and skills, you'll find the challenges and support you need as part of one of the UK's largest cyber consultancies. Our roles are only available if you hold or fulfil the criteria to obtain a UK Security Clearance. Your future duties and responsibilities: You'll join a collaborative team of more than 230 members delivering 360 security services to clients across every domain that CGI operates in, from government, defence, healthcare and utilities to banking and financial services. As a Security Architect your innovative solutions and support will secure business systems, protecting what is most valuable to our clients. You'll collaborate across enterprise architectures to produce end-to-end security designs, assisting on bids and proposals, as well as implementations and integrations. Liaising with stakeholders at all levels, you'll help build the full landscape security view that underpins systems resilience and client confidence. We need senior members who are design authorities, and junior members to work alongside them, developing their skills and understanding. Required qualifications to be successful in this role: We're recruiting at all levels, so you'll have between 1 to 30+ years of experience consulting on delivering and implementing secure system design - ideally as a technical security lead for senior roles. You'll understand why security is at the centre of everything we do, and have the communication skills to persuade others, justifying secure architecture design to both technical and non-technical stakeholders. We'll also look for your experience and knowledge in: Security standards and frameworks (MoD and HMG experiences helpful) Cloud-based cyber security principles and architecture points Boundary controls, network segmentation and access control Identity and Access Management (including RBAC and A/PBAC, permissions management), ZTA Cryptographic techniques and implementations IT asset management and tracking Vulnerability Management and Patching SIEM principles, products and supporting logging infrastructure Containerisation and virtual machine security Delivering secure solutions against project expectations Strong awareness of and commitment to industry best practice Driving change in a complex environment This role requires you to hold or fulfil the criteria to obtain a UK Security Clearance What you can expect from us: Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.

Implementation Engineer - EMEA Nucleus is seeking an Implementation Engineer in the EMEA region to join our Customer Success organization that supports customer onboarding and implementation projects. Implementation Engineers are instrumental in delivering Nucleus products in the post sales cycle. This technical role is responsible for deploying vulnerability management solutions to our rapidly growing customer base. The Nucleus Implementation team is staffed with security architects with software development experience who can manage customer stakeholders to drive projects to completion. If you're a curious person with a blend of technical and soft skills, we'd love to welcome you aboard. What You Will Do Work closely with the sales team to conduct smooth transitions from pre- to post-sale phase Plan and coordinate onboarding projects for new customers, meeting customer business requirements and driving user adoption Manage short term customer engagements to unblock their technical use cases Develop and maintain parsers and other scripts/tools to resolve customer's unique challenges Collaborate with the product team to prioritize and productize solutions to impactful issues Build strong relationships with customers, providing exceptional customer service and support Strive to improve process efficiency and team performance by continuously identifying areas to enhance our post-sales motion Understand how integrations work end to end to be able to clearly articulate complex problems and solutions to less technical stakeholders Design vuln management solution architecture for different asset classes and environment sizes Manage containerization and modern cloud infrastructure Required Qualifications: Cybersecurity concepts (attack vectors, kill chain) Compliance understanding (NIST, ISO, custom policies) Customer/stakeholder engagement (technical project management, consulting) Programming (we use Python, any oop is fine) Configuring & deploying software integrations High capacity to learn quickly Creative problem-solving skills Preferred Qualifications: Security tools or other VM platforms (SIEM, SOAR, IDS) Data ingest pipelines (ETL, automation) Cloud concepts (containerization, PaaS) ServiceNow (configuration, end user experience) Enterprise customer tech integration exposure Ability to work autonomously on complex tasks within a team dynamic Willingness to work in the CET time zone Why You Should Be Excited Equity in a high-growth, VC-backed startup Fabulous company culture Work on a truly unique solution that's defining a market Additional Information At Nucleus we are committed to achieving excellence in our field by combining diversity, collaboration, teamwork, and pride in our work. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or disability.

Regional Sales Engineer- Cloud (French Speaking) The Company: Varonis (Nasdaq: VRNS) is a leader in data security, fighting a different battle than conventional cybersecurity companies. Our cloud-native Data Security Platform continuously discovers and classifies critical data, removes exposures, and detects advanced threats with AI-powered automation. Thousands of organizations worldwide trust Varonis to defend their data wherever it lives - across SaaS, IaaS, and hybrid cloud environments. Customers use Varonis to automate a wide range of security outcomes, including data security posture management (DSPM), data classification, data access governance (DAG), data detection and response (DDR), data loss prevention (DLP), and insider risk management. The Role: The Cloud Regional Sales Engineer will provide integration solutions for customers and prospects seeking visibility into their cloud environment's security posture . They will develop expertise in onboarding Varonis to make it a key component of every client's cloud security program.Theideal candidate will build an intimate knowledge of cloud architecture and management (IaaS, SaaS, DSPM, CSPM, etc.) and enable the field on integration standards and best practices . The Location: We are considering candidates who are able to work by remote model for this position. The Requirements: Minimum of 2 years' experience with cloud platforms such as AWS, Azure, and Google Cloud. Experience with Okta, Salesforce, Slack, Jira, andGithub. Experience withsecurity tools and technologies, including SIEM, IDS/IPS, and endpoint protection. Proven success in contributing to a team-oriented environment. Proven ability toprovide creative solutions to problems. Thorough knowledge of AWS/Azureservices and cloud computing concepts. Proficiencyin scripting languages such as Python or PowerShell. Strong understanding of networking fundamentals, including VPC, subnets, and security groups. Familiarity with security best practices and compliance standards. Excellent problem-solving and communication skills. Preferred - AWS Certified Cloud Practitioner certification. Native level French required The Responsibilities: Integrate Varonis products into the security ecosystem. Provide technical air cover to deployment team efforts and problem resolution. Maintaincomprehensiveinternal documentation andupdateresourcesregularly. Coordinate with ProductManagement and Engineering onnewdeployment features, configuration/architecture changes,and best practices. Run internal Feedback and Roundtable calls to gather insights,build subject matterexpertise, andimprove the platform. Drive field enablement around Cloud technologies and architectural concepts. To perform this job successfully, an individual shoulddemonstratethe following competencies: Analytical: Collects and researches data; designs workflows and procedures;identifiesdata relationships and dependencies; synthesizes complex or diverse information; uses intuition and experience to complement data. Technical Skills: Honest assessment of current skills, strives for continuous improvement, actively shares knowledge to build team confidence. Sense of Urgency: Displays a matter of utmost urgency; understands the importance of making critical business decisionspromptlywith strong attention to detail; realizes that efficiency and prioritization are critical to success. Customer Service: Manages difficult or emotional customer situations; meets commitments; responds promptly to customer needs;solicitscustomer feedback to improve service. Problem Solving:Demonstratestrongproblem-solving skillsbyassistinginidentifyingcauses of complex issues and escalating them to theappropriate technicalresources when necessary. Written & Oral Communications: Edits work for spelling and grammar; presents numerical data effectively; varies writing style to meet needs; writes clearly and informatively. Demonstrates group presentation skills; listens and gets clarification; responds well to questions; speaks clearly and persuasively. Adaptability: Adapts to changes in the work environment; manages competing demands; changes approach or method to best fit the situation; able to deal with frequent change, delays, or unexpected events. Planning/Organizing: Prioritizes and plans work activities; uses time efficiently; multi-tasking; plans foradditionalresources; sets goals andobjectives; develops realistic action plans. We invite you to check out our Instagram Page to gain further insight into the Varonis culture! Varonis is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, national origin, disability, veteran status, and other legally protected characteristics

Press Tab to Move to Skip to Content Link Select how often (in days) to receive an alert: Senior Cyber Security Advisory Consultant (Defence) Publication Date: May 29, 2025 Ref. No: 530351 Location: London, GB The future is our choice At Atos, as the global leader in secure and decarbonized digital, our purpose is to help design the future of the information space. Together we bring the diversity of our people's skills and backgrounds to make the right choices with our clients, for our company and for our own future. Our UK&I Advisory Practice is at the forefront of cybersecurity transformation, helping organisations navigate the complex landscape of digital threats and opportunities. We work with leading organisations across financial services, government, critical national infrastructure, and commercial sectors, delivering tangible security improvements and enabling business transformation. The opportunity As a Senior Advisory Consultant within our growing UK&I Advisory Practice, you will be an integral part of our client delivery team, working alongside experienced advisors to support the delivery of cybersecurity strategies. This role is specifically focused on supporting clients across the UK's Defence sector, and as such, we're looking for someone with experience directly supporting the UK's MoD or indirectly supporting via a Defence Prime Contractor (e.g. BAE, Leonardo, Atkins), although there is also the potential to support non-defense accounts where appropriate. The candidate must be eligible to obtain a security clearance - SC level. Location: Remote working with flexibility for traveling to client sites as required Role and responsibilities: Promoting and influencing practice growth Support the delivery of billable customer engagements across the UK Defence Sector Working alongside experienced team members, delivering solutions and services to Defence clients. Assisting in maintaining client relationships through excellent service delivery, identifying opportunities to grow the account, and identifying opportunities where Atos products and services could provide value to the customer. Strategic Contribution Support the delivery of value through: Contributing to security assessments and strategy development Assisting with security architecture reviews and designs Supporting regulatory compliance initiatives Helping develop security transformation roadmaps Contributing to cloud security solutions Supporting innovation and research activities Customer Focus Help create client value by: Supporting the delivery of security improvements Assisting with security capability assessments Contributing to technical documentation and deliverables Helping prepare client presentations and materials Supporting workshop delivery and client meetings Conducting research and analysis Client Engagement Support Typical activities include: Leading client workshops such as security strategy sessions, Cloud security architecture reviews, Risk assessment workshops, technology evaluation sessions. Producing client materials including, Security assessment reports, technical architecture diagrams, implementation roadmaps and project status updates. Conducting security assessments by gathering and analysing security documentation, reviewing technical configurations, documenting findings and recommendations, supporting evidence collection. Conducting focused research on topics, emerging security technologies, industry regulations and compliance, security vendor capabilities, best practice frameworks Focus areas including, security vendor capabilities, industry regulations and standards, implementation approaches, best practice frameworks, emerging threats Desired skills and experience: Technical Foundation: At least 3-5 years of IT/security experience in the Defence Sector Demonstrable experience of one or more of the following areas: MoD Security GRC/Assurance Processes: Secure by Design and RMADs/Risk Assessment Cloud security architecture documentation, s ecurity controls mapping and c ompliance checking automation MoD Cyber Operations: SOC tool evaluation support, SIEM use case development, Metrics and reporting frameworks, and Technology integration assessment. Cyber Vulnerability Investigations Identity & Access: IAM architecture reviews, p rivileged access solutions, authentication technology assessment, and Zero Trust implementation planning OT Security OT Risk Assessment/Assurance and OT Vulnerability Management Key Strengths Detail-oriented with a strong focus on quality Well-organised and committed to developing customer service skills Enthusiastic about working in a team environment while developing individual capabilities 25 days of Annual leave + an option to purchase more through our Flexible Benefits Flex benefits system - exciting opportunity to choose your own benefits Pension - matching contribution up to 10% Private Medical Scheme Life Assurance Unlimited opportunities to learn in our Training platforms As a Disability Confident employer, we aim to ensure that disabled applicants who meet the minimum criteria for this position will be offered an interview. The data is only used to provide additional support at the interview. If this applies to you, please ensure you answer "Yes" to the question regarding disability included in the application form for our awareness. Here at Atos, diversity and inclusion are embedded in our DNA. Read more about our commitment to a fair work environment for all. Atos is a recognized leader in its industry across Environment, Social and Governance (ESG) criteria. Find out more on our CSR commitment.

About Darkshield Darkshield is an expert cybersecurity agency based in York, UK. We help organisations navigate an increasingly complex digital landscape by providing expert services in penetration testing, vulnerability assessment, managed security, and compliance . Our mission is to protect businesses by delivering tailored, cutting-edge cybersecurity solutions that keep them resilient and ahead of cyber threats. The Role We are looking for a Cloud Security Engineer to join our growing team. This role involves designing, implementing, and managing security solutions across AWS, Azure, and Google Cloud . The ideal candidate will have a deep understanding of cloud security architectures, automation, and compliance frameworks . Key Responsibilities Cloud Security Architecture & Implementation Design and implement cloud security architectures across AWS, Azure, or Google Cloud. Develop and enforce cloud security controls , including IAM policies, encryption, and network security. Threat Monitoring & Incident Response Monitor cloud environments for security threats, vulnerabilities, and misconfigurations . Lead incident response efforts related to cloud security breaches and misconfigurations. Implement SIEM and security monitoring tools for real-time threat detection. Cloud Security Assessments & Compliance Conduct cloud security assessments, penetration testing, and risk analysis . Ensure compliance with ISO 27001, NIST, CIS Benchmarks, GDPR , and other security standards. Collaborate with DevOps teams to integrate security into CI/CD pipelines. Security Automation & Infrastructure as Code (IaC) Automate security policies and compliance enforcement using Python, Terraform, Ansible, or CloudFormation . Develop security automation scripts for vulnerability scanning and patch management . Collaboration & Knowledge Sharing Provide guidance and best practices to internal teams on cloud security. Work closely with developers, DevOps, and compliance teams to align security requirements. Required Qualifications & Experience Technical Skills & Experience At least three years of experience in cloud security engineering or a related role. Hands-on expertise securing AWS, Azure, or Google Cloud platforms. Strong knowledge of IAM, firewalls, WAFs, encryption, and security groups . Experience with security automation using Python, Terraform, or CloudFormation . Familiarity with container security (Kubernetes, Docker) and microservices security. Certifications (Preferred, Not Required) AWS Certified Security - Specialty Azure Security Engineer Associate (AZ-500) Google Professional Cloud Security Engineer CISSP, OSCP, CEH, or relevant security certifications are a plus. Soft Skills & Work Environment Strong problem-solving skills and ability to think like an attacker . Excellent communication and collaboration skills to work with cross-functional teams . Ability to work independently and handle multiple projects in a fast-paced environment . Success Criteria (Performance Expectations) To ensure a strong match, the ideal candidate should: Implement cloud security controls across at least one major cloud provider within the first three months. Conduct at least two full cloud security assessments per quarter . Develop automated security enforcement scripts that reduce vulnerabilities by 30 percent within the first six months . Why Join Darkshield? Work on cutting-edge cybersecurity projects with top-tier clients. Career growth opportunities in a fast-growing cybersecurity agency. Flexible work environment - remote and hybrid options available. Competitive salary and bonuses based on security impact and research.

Huntingdonshire District Council (HDC) is passionate about providing high-quality services to our communities, residents and businesses. This means we must employ and retain the most talented and dedicated people. Situated within the heart of the Cambridge-Peterborough Growth Area, Huntingdonshire is a beautiful district that boasts thriving market towns and many attractive villages, each with its own identity. We are an innovative and forward-thinking local authority whose residents are at the heart of our decision-making. At HDC we want to employ staff who embody our icare values ( Inspiring, Collaborative, Accountable, Respectful, Enterprising ), all of which support our ultimate purpose of putting our customers first. Job details About the role Are you driven by a strong sense of integrity and a passion for safeguarding digital infrastructure? We are looking for a proactive and experienced Cyber/Information Security Lead to join our 3C ICT Shared Services team. In this pivotal role, you will uphold the highest standards of confidentiality, integrity, and availability across our IT systems, supporting partner councils with professionalism and care. You will collaborate closely with the Technical Architect and key stakeholders to embed a 'Secure by Design' approach, aligned with the UK Government's Cyber Security Strategy. Your leadership will reflect our commitment to excellence, supporting a culture of accountability and respect while delivering robust, forward-thinking security measures. Key responsibilities Develop, implement, and review IT security policies and controls Monitor IT systems for threats and vulnerabilities, producing detailed reports Lead forensic investigations and liaise with relevant bodies in the event of breaches Represent 3C ICT at public sector cyber security forums such as WARP and CyberUK Deliver training and raise awareness of cyber security best practices Support disaster recovery planning and ensure systems are patched and compliant What we're looking for Proven experience in a cyber security role with knowledge of ISO 27001, Cyber Essentials Plus, and risk mitigation Relevant qualifications such as CISSP, CISM, Security+, or equivalent Strong technical understanding of network and application security, anti-virus/EDR, SIEM solutions, and vulnerability testing tools Excellent communication skills with the ability to explain complex technical issues to non-technical audiences A collaborative, analytical and proactive approach to problem-solving Experience with ITIL-based change control, CMDB, and Microsoft technologies Familiarity with PowerShell scripting and mobile device management Knowledge of the Data Protection Act and information governance principles. This role is subject to a satisfactory DBS check. An offer of employment is conditional upon having the right to work in the UK. Huntingdonshire District Council does not hold a Sponsorship Licence and is unable to provide a Certificate of Sponsorship (CoS) or take over sponsorship for any role. To apply for this position, please complete the application form . The closing date is 8am on 14 July 2025 and interviews will be held the week commencing 21 July 2025. However, this is a rolling campaign and we'll be reviewing applications on an ongoing basis and will close the advert early should we receive suitable applications, so please don't delay in applying! For many of our roles (where it is possible) we accommodate a hybrid model of working. We know our people are what make Huntingdonshire District Council great and recognise how important a healthy work-life balance is. Our hybrid work model enables employees to work remotely whilst allowing for in-office collaboration opportunities across the district. Candidates should therefore be within commutable distance of our offices in Huntingdon, Cambridgeshire or able to attend meetings as required if further afield. Please note that the official closing date is as above, and will be the correct date. Some third-party websites may have different dates. Please refer to the HDC website for the official closing date to ensure you do not miss out on applying. Working for the council As an employer who values diversity of thought, we seek to employ candidates from a range of backgrounds in order to make our organisation more innovative. We are seeking candidates who are looking for their next career opportunity and are supportive employers, enabling our staff to work in an environment that produces high standards of work in an employee-led environment. Equality, diversity and inclusion are at the heart of our recruitment and along with our values we are committed to creating an inclusive working environment, where diversity is valued and there is equality of opportunity. We therefore welcome applications from all sections of the community and we offer a range of benefits, including flexitime, to encourage a work-life balance.