Who We Are Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact. To succeed, organizations must blend digital and human capabilities. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures-and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do Security Continuous Monitoring Oversight Establish and lead BCG's first enterprise-wide Cybersecurity Continuous Monitoring (CSCM) program, ensuring continuous visibility into system, endpoint, network, and cloud activity. Define and implement governance models, including ownership of monitoring metrics (e.g., MTTD, MTTR, false positive rate, coverage completeness). Stand up monitoring processes and integrate telemetry sources across SIEM, EDR, identity, network, and cloud platforms. Ensure monitoring outputs are actionable, enriching detection and response activities and informing risk and compliance stakeholders. Technical Architecture & Integration Design and implement a continuous monitoring reference architecture, leveraging SIEM, SOAR, UEBA, and threat intelligence. Establish enterprise logging standards covering log coverage, retention, encryption, access, and integrity requirements. Drive automation of monitoring workflows and correlation logic to reduce dwell time and improve detection accuracy. Collaborate with threat intelligence teams to ensure real-time enrichment of event data and alignment with MITRE ATT&CK adversary tactics. Program & Capability Development Build the CCM capability from the ground up, defining the operating model, reporting cadence, and engagement with SOC, risk, and compliance. Develop and track KPIs, ensuring CCM effectiveness is measurable and communicated to senior stakeholders. Prioritize creation of top 5-10 operational dashboards and reports that provide critical enterprise visibility. Mature the function from initial operational capability (M1) toward advanced maturity, embedding continuous improvement cycles. STRATEGIC LEADERSHIP Serve as the founding leader for the CCM function, creating the strategy, roadmap, and tactical build plan. Partner with enterprise stakeholders across IT, Risk, and Security to align monitoring with business risk tolerance and resilience objectives. Influence senior leaders by translating technical telemetry insights into business-relevant intelligence. Build, inspire, and retain a high-performing team of analysts and engineers over time, leveraging both full-time staff and contractors. Advise senior leadership (via SecOPS) on monitoring-driven insights, risks, and mitigation recommendations. What You'll Bring Bachelor's degree (or equivalent). Master's preferred. 10+ years in cybersecurity operations, with at least 5 years in security monitoring, SOC leadership, or equivalent detection & response functions. Proven track record of building or maturing monitoring capabilities (SIEM, SOAR, telemetry pipelines, UEBA, threat intel integration). Knowledge of log ingestion, normalization, correlation, and enrichment processes. Familiarity with leading monitoring technologies: Splunk, DataDog, Microsoft Defender, CrowdStrike Falcon, Azure/AWS/GCP telemetry, threat intelligence platforms. Expertise in metrics-driven monitoring: defining, tracking, and reporting MTTD, MTTR, false positive rates, and coverage completeness. Familiarity with frameworks like NIST CSF, MITRE ATT&CK, and ISO 27001, with experience applying these to monitoring. Experience in threat hunting, anomaly detection, and behavioral analytics. Strong leadership skills: able to recruit, mentor, and develop a high-performing team in a newly established function. Executive presence: able to present complex monitoring data and risks to senior leadership in clear, concise business terms. Additional info COMPETENCIES: Director, Cybersecurity Continuous Monitoring Leads a critical security function with measurable business impact. Establishes foundational capabilities, manages delivery, and develops a growing team to support BCG's enterprise security posture. Technical & Functional Expertise Develops and executes the continuous monitoring strategy, aligned to enterprise security goals and SecOPS direction. Demonstrates deep technical expertise in telemetry ingestion, SIEM/SOAR integration, log management, and threat intelligence enrichment. Serves as a recognized expert in monitoring and detection, providing guidance to peers and influencing related security domains. Codifies monitoring practices and standards into repeatable processes and playbooks, reducing reliance on ad hoc approaches. Evaluates and pilots emerging monitoring technologies; ensures adoption of digital tools to scale efficiency and coverage. Problem Solving & Insight Frames monitoring and detection challenges in business-relevant terms (risk, resilience, compliance). Uses data-driven methods (metrics such as MTTD, MTTR, false positives) to identify control gaps and inform improvements. Translates complex monitoring outputs into actionable insights for stakeholders across IT, Risk, and Security. Innovates in detection methodologies, leveraging behavioral analytics, anomaly detection, and adversary simulations. Acts as a problem-solver during incidents, ensuring monitoring outputs guide rapid containment and response. Effectiveness & Value Creation Leads the build-out of the CCM function from the ground up, establishing governance, processes, and reporting. Structures, plans, and executes monitoring programs and initiatives, balancing near-term needs with long-term maturity goals. Delivers measurable outcomes (visibility, faster detection, reduced dwell time) that directly enhance business resilience. Proactively manages resources, balancing full-time staff and contractors to deliver capability within deadlines. Prioritizes actions with the highest impact on reducing enterprise cyber risk. Role Model Operates with integrity, safeguarding BCG and client data through responsible monitoring practices. Promotes a culture of transparency, accountability, and data-driven decision-making in the team. Demonstrates perseverance and adaptability in building a new function with high visibility and expectations. Creates an inclusive working environment that values diverse technical and analytical perspectives. Leads by example, modeling sustainable workload practices even under incident-driven pressure. Communication, Presence & Influence Develops and delivers clear dashboards, reports, and executive communications on monitoring outputs. Shapes perspectives by translating technical monitoring metrics into risk- and business-relevant insights. Communicates effectively across technical and non-technical audiences, ensuring alignment with IT and business leaders. Leads conversations in operational reviews, incident post-mortems, and governance forums. Encourages open dialogue within the team, and fosters credibility with cross-functional partners. Teaming & Collaboration Builds strong partnerships with SOC, Offensive Security, IT Operations, and Security Architecture teams. Develops productive relationships across regions and business units to expand telemetry coverage. Works collaboratively with compliance, risk, and audit to align monitoring with enterprise governance. Anticipates and manages conflicts in data ownership, tool coverage, and priorities, resolving them constructively. Promotes knowledge-sharing across security teams, reducing silos and strengthening collective defense. People Development & Leadership Defines the vision and purpose of the CCM function, instilling clarity and purpose for the team. Coaches and mentors analysts, engineers, and contractors to expand monitoring expertise. Provides stretch opportunities for team members to develop technical and leadership skills. Balances empowerment and oversight - ensuring autonomy in monitoring activities while maintaining governance discipline. Leads quality team meetings, defines clear objectives, and ensures alignment to SecOPS priorities. Provides frequent developmental feedback, fostering a culture of continuous learning and improvement. Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws click apply for full job details
Mar 01, 2026
Full time
Who We Are Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact. To succeed, organizations must blend digital and human capabilities. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures-and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do Security Continuous Monitoring Oversight Establish and lead BCG's first enterprise-wide Cybersecurity Continuous Monitoring (CSCM) program, ensuring continuous visibility into system, endpoint, network, and cloud activity. Define and implement governance models, including ownership of monitoring metrics (e.g., MTTD, MTTR, false positive rate, coverage completeness). Stand up monitoring processes and integrate telemetry sources across SIEM, EDR, identity, network, and cloud platforms. Ensure monitoring outputs are actionable, enriching detection and response activities and informing risk and compliance stakeholders. Technical Architecture & Integration Design and implement a continuous monitoring reference architecture, leveraging SIEM, SOAR, UEBA, and threat intelligence. Establish enterprise logging standards covering log coverage, retention, encryption, access, and integrity requirements. Drive automation of monitoring workflows and correlation logic to reduce dwell time and improve detection accuracy. Collaborate with threat intelligence teams to ensure real-time enrichment of event data and alignment with MITRE ATT&CK adversary tactics. Program & Capability Development Build the CCM capability from the ground up, defining the operating model, reporting cadence, and engagement with SOC, risk, and compliance. Develop and track KPIs, ensuring CCM effectiveness is measurable and communicated to senior stakeholders. Prioritize creation of top 5-10 operational dashboards and reports that provide critical enterprise visibility. Mature the function from initial operational capability (M1) toward advanced maturity, embedding continuous improvement cycles. STRATEGIC LEADERSHIP Serve as the founding leader for the CCM function, creating the strategy, roadmap, and tactical build plan. Partner with enterprise stakeholders across IT, Risk, and Security to align monitoring with business risk tolerance and resilience objectives. Influence senior leaders by translating technical telemetry insights into business-relevant intelligence. Build, inspire, and retain a high-performing team of analysts and engineers over time, leveraging both full-time staff and contractors. Advise senior leadership (via SecOPS) on monitoring-driven insights, risks, and mitigation recommendations. What You'll Bring Bachelor's degree (or equivalent). Master's preferred. 10+ years in cybersecurity operations, with at least 5 years in security monitoring, SOC leadership, or equivalent detection & response functions. Proven track record of building or maturing monitoring capabilities (SIEM, SOAR, telemetry pipelines, UEBA, threat intel integration). Knowledge of log ingestion, normalization, correlation, and enrichment processes. Familiarity with leading monitoring technologies: Splunk, DataDog, Microsoft Defender, CrowdStrike Falcon, Azure/AWS/GCP telemetry, threat intelligence platforms. Expertise in metrics-driven monitoring: defining, tracking, and reporting MTTD, MTTR, false positive rates, and coverage completeness. Familiarity with frameworks like NIST CSF, MITRE ATT&CK, and ISO 27001, with experience applying these to monitoring. Experience in threat hunting, anomaly detection, and behavioral analytics. Strong leadership skills: able to recruit, mentor, and develop a high-performing team in a newly established function. Executive presence: able to present complex monitoring data and risks to senior leadership in clear, concise business terms. Additional info COMPETENCIES: Director, Cybersecurity Continuous Monitoring Leads a critical security function with measurable business impact. Establishes foundational capabilities, manages delivery, and develops a growing team to support BCG's enterprise security posture. Technical & Functional Expertise Develops and executes the continuous monitoring strategy, aligned to enterprise security goals and SecOPS direction. Demonstrates deep technical expertise in telemetry ingestion, SIEM/SOAR integration, log management, and threat intelligence enrichment. Serves as a recognized expert in monitoring and detection, providing guidance to peers and influencing related security domains. Codifies monitoring practices and standards into repeatable processes and playbooks, reducing reliance on ad hoc approaches. Evaluates and pilots emerging monitoring technologies; ensures adoption of digital tools to scale efficiency and coverage. Problem Solving & Insight Frames monitoring and detection challenges in business-relevant terms (risk, resilience, compliance). Uses data-driven methods (metrics such as MTTD, MTTR, false positives) to identify control gaps and inform improvements. Translates complex monitoring outputs into actionable insights for stakeholders across IT, Risk, and Security. Innovates in detection methodologies, leveraging behavioral analytics, anomaly detection, and adversary simulations. Acts as a problem-solver during incidents, ensuring monitoring outputs guide rapid containment and response. Effectiveness & Value Creation Leads the build-out of the CCM function from the ground up, establishing governance, processes, and reporting. Structures, plans, and executes monitoring programs and initiatives, balancing near-term needs with long-term maturity goals. Delivers measurable outcomes (visibility, faster detection, reduced dwell time) that directly enhance business resilience. Proactively manages resources, balancing full-time staff and contractors to deliver capability within deadlines. Prioritizes actions with the highest impact on reducing enterprise cyber risk. Role Model Operates with integrity, safeguarding BCG and client data through responsible monitoring practices. Promotes a culture of transparency, accountability, and data-driven decision-making in the team. Demonstrates perseverance and adaptability in building a new function with high visibility and expectations. Creates an inclusive working environment that values diverse technical and analytical perspectives. Leads by example, modeling sustainable workload practices even under incident-driven pressure. Communication, Presence & Influence Develops and delivers clear dashboards, reports, and executive communications on monitoring outputs. Shapes perspectives by translating technical monitoring metrics into risk- and business-relevant insights. Communicates effectively across technical and non-technical audiences, ensuring alignment with IT and business leaders. Leads conversations in operational reviews, incident post-mortems, and governance forums. Encourages open dialogue within the team, and fosters credibility with cross-functional partners. Teaming & Collaboration Builds strong partnerships with SOC, Offensive Security, IT Operations, and Security Architecture teams. Develops productive relationships across regions and business units to expand telemetry coverage. Works collaboratively with compliance, risk, and audit to align monitoring with enterprise governance. Anticipates and manages conflicts in data ownership, tool coverage, and priorities, resolving them constructively. Promotes knowledge-sharing across security teams, reducing silos and strengthening collective defense. People Development & Leadership Defines the vision and purpose of the CCM function, instilling clarity and purpose for the team. Coaches and mentors analysts, engineers, and contractors to expand monitoring expertise. Provides stretch opportunities for team members to develop technical and leadership skills. Balances empowerment and oversight - ensuring autonomy in monitoring activities while maintaining governance discipline. Leads quality team meetings, defines clear objectives, and ensures alignment to SecOPS priorities. Provides frequent developmental feedback, fostering a culture of continuous learning and improvement. Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws click apply for full job details
Head of Information Security & IT Risk £90,000 + benefits + performance bonus Flexible Location Hybrid working with frequent travel to Banbury required You've spent years building your credibility in information security. You've configured the tools, handled the incidents, built the controls and managed the risk register. And then you stepped into leadership. Owning the function, guiding the strategy and taking accountability. Now you're ready for the next version of that. Not just running security, shaping it. The role You've been there and done it before led the function, owned and taken accountability for it. The team is in place, the foundations are there. But the strategy and roadmap? That's yours to shape. You will own the function. What you'll be doing You'll conduct a full security and risk analysis. Understanding what's working, what isn't, where we're exposed, where we're strong and then build and implement the strategy to elevate us. You'll: Lead and develop the Information Security & IT Risk team Define and deliver the information security and IT risk strategy Own the IT risk register and action plans Oversee security operations and assurance activities Lead incident response and maturity improvement Embed governance aligned to appropriate frameworks and regulatory requirements that works in the real world Update and influence executive stakeholders Modernise the function alongside exciting digital transformation initiatives We're embracing new technologies and AI, investing in digital platforms, therefore security needs to be an enabler, not a blocker. That's where you come in. What you'll bring You're not just experienced, you're credible. You've spent 10-15 years in information security and IT risk, ideally in regulated environments leading teams, owning budgets and presenting to executive stakeholders. But importantly, you understand how things work. You've been hands on in your past and know what good looks like technically. When someone talks about zero trust architecture, penetration testing, SIEM tuning, operational resilience or vulnerability remediation, you don't just nod, you understand. Now, you lead through that experience. You've led change before and built or reshaped a function. You know how to assess maturity, prioritise risk and execute improvements. And you're ready to do it again, somewhere investing in the future. The good stuff Performance bonus (up to 30%) and car allowance (£7192.50) Private healthcare for you and your family Company pension scheme Flexible benefits (gym membership, tech, health assessments and more) Access to an online wellbeing centre Discounts with a wide range of retailers 30 days' holiday plus bank holidays, increasing with service, with buy/sell options Electric Vehicle / Plug in Hybrid Vehicle scheme About Bibby Financial Services We're a global organisation operating in nine countries, supporting over 9,000 SMEs worldwide. Following the completion of a £1bn securitisation deal, we're increasing our lending to UK businesses at a time when support really matters and this role plays a vital part in making that happen. If you've led before and you're ready to shape something with real backing, real ambition and real investment in technology apply before 2nd April 2026. Early applications are encouraged, as the role may close sooner. Everyone will receive a response. Bibby Financial Services is committed to creating an inclusive workplace. If you require any adjustments during the recruitment process, please let us know.
Mar 01, 2026
Full time
Head of Information Security & IT Risk £90,000 + benefits + performance bonus Flexible Location Hybrid working with frequent travel to Banbury required You've spent years building your credibility in information security. You've configured the tools, handled the incidents, built the controls and managed the risk register. And then you stepped into leadership. Owning the function, guiding the strategy and taking accountability. Now you're ready for the next version of that. Not just running security, shaping it. The role You've been there and done it before led the function, owned and taken accountability for it. The team is in place, the foundations are there. But the strategy and roadmap? That's yours to shape. You will own the function. What you'll be doing You'll conduct a full security and risk analysis. Understanding what's working, what isn't, where we're exposed, where we're strong and then build and implement the strategy to elevate us. You'll: Lead and develop the Information Security & IT Risk team Define and deliver the information security and IT risk strategy Own the IT risk register and action plans Oversee security operations and assurance activities Lead incident response and maturity improvement Embed governance aligned to appropriate frameworks and regulatory requirements that works in the real world Update and influence executive stakeholders Modernise the function alongside exciting digital transformation initiatives We're embracing new technologies and AI, investing in digital platforms, therefore security needs to be an enabler, not a blocker. That's where you come in. What you'll bring You're not just experienced, you're credible. You've spent 10-15 years in information security and IT risk, ideally in regulated environments leading teams, owning budgets and presenting to executive stakeholders. But importantly, you understand how things work. You've been hands on in your past and know what good looks like technically. When someone talks about zero trust architecture, penetration testing, SIEM tuning, operational resilience or vulnerability remediation, you don't just nod, you understand. Now, you lead through that experience. You've led change before and built or reshaped a function. You know how to assess maturity, prioritise risk and execute improvements. And you're ready to do it again, somewhere investing in the future. The good stuff Performance bonus (up to 30%) and car allowance (£7192.50) Private healthcare for you and your family Company pension scheme Flexible benefits (gym membership, tech, health assessments and more) Access to an online wellbeing centre Discounts with a wide range of retailers 30 days' holiday plus bank holidays, increasing with service, with buy/sell options Electric Vehicle / Plug in Hybrid Vehicle scheme About Bibby Financial Services We're a global organisation operating in nine countries, supporting over 9,000 SMEs worldwide. Following the completion of a £1bn securitisation deal, we're increasing our lending to UK businesses at a time when support really matters and this role plays a vital part in making that happen. If you've led before and you're ready to shape something with real backing, real ambition and real investment in technology apply before 2nd April 2026. Early applications are encouraged, as the role may close sooner. Everyone will receive a response. Bibby Financial Services is committed to creating an inclusive workplace. If you require any adjustments during the recruitment process, please let us know.
# About the Opportunity Job Type: PermanentApplication Deadline: 31 May 2026 Department FIL - Cyber Defence Operations Reports To Senior Technical Consultant - CDO Level 5We share a commitment to making things better for clients and each other. We continually explore new technology and different ways of working to put our clients first. So bring your boldest ideas to our Cyber Defense Operations team and feel like you're making progress. About your team Technology function across FIL is responsible for all global aspects of Technology, Digital, Cybersecurity, and Innovation. Fidelity is a value-driven, customer-obsessed organization and in Technology we are fortunate to play a direct role in helping our clients with one of the most important aspects of their lives - their financial well-being. Within the Technology function is our Global Cyber & Information Security (GCIS) that operates enterprise security services and controls. These are designed to mitigate Cyber and Information Security risks ensuring that Fidelity's business operates securely. The Technical Cybersecurity teams monitor both the internal and external threat environment, responding to security alerts and events in close to real time, as well as providing security assurance and access management services across the enterprise technology and business environment. Our global innovative Cyber Defence Operations team sits within GCIS and provides proactive, cutting-edge solutions to protect clients' digital assets and infrastructure against evolving cyber threats. The Detection Engineering & Automation team within our Global Cybersecurity Operations focuses on the development of automated detection capabilities to reduce manual effort of the Global Cybersecurity Operations team freeing up time to focus on real cyber threats. They ensure that security controls are performing effectively and efficiently and that they are feeding into automation technologies allowing the organisation to make intelligent correlated decisions. About your role The Detection, Automation and Engineering Manager plays a pivotal role in supporting the Global Cybersecurity Operations team by ensuring security tooling implemented in the organisation are working as intended. The ideal candidate will be responsible for driving excellence and innovation across the team and have extensive knowledge and experience in technologies including, but are not limited to, SIEM Administration (logging, use-case development, resource utilisation and optimisation), SOAR, DDoS, IPS, Email security, Network Anomaly Detection. The ideal candidate has experience of not only using a wide range of technologies to respond to security events, but also supporting ongoing maintenance of the tools. About you Key Responsibilities The Detection, Automation and Engineering Manager will be responsible to: Lead and manage a global high performing Detection, Automation and Engineering service. Lead and oversee the development of new security detection use-cases and associated workflows within automation to address emerging threats and vulnerabilities; ensuring robust QA, QC and Change Management is followed and maintained. Lead and own team delivery reporting, detailing key metrics, incidents, and trends for stakeholders, enabling informed decision-making following set formats. Drive engineering maturity by designing and implementing CI/CD pipelines to standardise, automate, and improve the quality, velocity, and reliability of detection and automation releases. Own and govern delivery prioritisation, ensuring sprint planning and team output align to the function roadmap, business priorities, and risk based value delivery. Contribute to and influence roadmap development by identifying engineering opportunities, tooling enhancements, and future-state capabilities that strengthen the function's strategic direction. Lead and oversee the maintenance and management of security solutions / services like Sentinel, Defender, ServiceNow, Proofpoint, etc. Regularly assess the effectiveness of security tools through metrics and key performance indicators, driving continuous improvement initiatives within the team. Identify and implement enhancement opportunities with existing tooling to capitalise investments and returns. Guide, upskill and mentor a high performing team, fostering a collaborative and innovative environment to maximize productivity and skill development. Collaborate with cross-functional teams and Security Architects to ensure alignment of security tooling initiatives with broader organizational goals and compliance requirements. Lead the implementation of robust security tooling solutions, ensuring seamless integration with existing systems and infrastructure. Establish and maintain proactive monitoring mechanisms to promptly detect and respond to incidents, utilizing the latest tooling capabilities. Provide expert support to security operations teams by troubleshooting tooling issues, conducting root cause analyses, and implementing corrective measures. Execute and oversee security tooling projects, including resource management, timelines, and deliverables, demonstrating adept project management skills. Experience and Skills Required At least 4 years of experience working in a Detection Engineering function, preferably in Financial Services, focusing on Automation and Security Engineering maturity, with experience of managing and maintaining security tools within a global environment. Programming experience (PowerShell, Bash, Python, JavaScript) to automate tasks using scripting on both Windows and Linux systems. Hands-on experience with APIs, demonstrating the ability to integrate security tools seamlessly, automate workflows, and enhance overall security posture through effective API utilization. Experience developing and fine-tuning Detection use-cases using advanced KQL and possess Innovative Mindset to challenge current processes. Experience developing and utilising automation to enhance responses to security alerts. Experience integrating and maintaining a SIEM solution and associated log stream integrations. Experience with Cloud environments and infrastructure integration with a SIEM solution. Demonstrable proficiency utilising built in security functions within Azure and AWS. Apply leadership and management skills in guiding and mentoring a security automation and engineering team to achieve collective success. Proven experience of being organised and methodical manner applying critical thinking to tasks and problems. Employ excellent communication skills, both written and verbal, to articulate security concepts, present findings, and engage with diverse stakeholders, including technical and non-technical audiences. Demonstrate adaptability to evolving security landscapes, staying updated on industry trends, and proactively integrating new technologies and methodologies into security tooling strategies. Feel rewarded For starters, we'll offer you a comprehensive benefits package. We'll value your wellbeing and support your development. And we'll be as flexible as we can about where and when you work - finding a balance that works for all of us. It's all part of our commitment to making you feel motivated by the work you do and happy to be part of our team. For more about our work, our approach to dynamic working and how you could build your future here, visit For more about our work, our approach to dynamic working and how you could build your future here, visit As an international financial services organisation, we are in-scope of international regulations in the way that we carry out our work. This position is involved in work that is regulated by the FCA and/or the PRA and their Individual
Feb 28, 2026
Full time
# About the Opportunity Job Type: PermanentApplication Deadline: 31 May 2026 Department FIL - Cyber Defence Operations Reports To Senior Technical Consultant - CDO Level 5We share a commitment to making things better for clients and each other. We continually explore new technology and different ways of working to put our clients first. So bring your boldest ideas to our Cyber Defense Operations team and feel like you're making progress. About your team Technology function across FIL is responsible for all global aspects of Technology, Digital, Cybersecurity, and Innovation. Fidelity is a value-driven, customer-obsessed organization and in Technology we are fortunate to play a direct role in helping our clients with one of the most important aspects of their lives - their financial well-being. Within the Technology function is our Global Cyber & Information Security (GCIS) that operates enterprise security services and controls. These are designed to mitigate Cyber and Information Security risks ensuring that Fidelity's business operates securely. The Technical Cybersecurity teams monitor both the internal and external threat environment, responding to security alerts and events in close to real time, as well as providing security assurance and access management services across the enterprise technology and business environment. Our global innovative Cyber Defence Operations team sits within GCIS and provides proactive, cutting-edge solutions to protect clients' digital assets and infrastructure against evolving cyber threats. The Detection Engineering & Automation team within our Global Cybersecurity Operations focuses on the development of automated detection capabilities to reduce manual effort of the Global Cybersecurity Operations team freeing up time to focus on real cyber threats. They ensure that security controls are performing effectively and efficiently and that they are feeding into automation technologies allowing the organisation to make intelligent correlated decisions. About your role The Detection, Automation and Engineering Manager plays a pivotal role in supporting the Global Cybersecurity Operations team by ensuring security tooling implemented in the organisation are working as intended. The ideal candidate will be responsible for driving excellence and innovation across the team and have extensive knowledge and experience in technologies including, but are not limited to, SIEM Administration (logging, use-case development, resource utilisation and optimisation), SOAR, DDoS, IPS, Email security, Network Anomaly Detection. The ideal candidate has experience of not only using a wide range of technologies to respond to security events, but also supporting ongoing maintenance of the tools. About you Key Responsibilities The Detection, Automation and Engineering Manager will be responsible to: Lead and manage a global high performing Detection, Automation and Engineering service. Lead and oversee the development of new security detection use-cases and associated workflows within automation to address emerging threats and vulnerabilities; ensuring robust QA, QC and Change Management is followed and maintained. Lead and own team delivery reporting, detailing key metrics, incidents, and trends for stakeholders, enabling informed decision-making following set formats. Drive engineering maturity by designing and implementing CI/CD pipelines to standardise, automate, and improve the quality, velocity, and reliability of detection and automation releases. Own and govern delivery prioritisation, ensuring sprint planning and team output align to the function roadmap, business priorities, and risk based value delivery. Contribute to and influence roadmap development by identifying engineering opportunities, tooling enhancements, and future-state capabilities that strengthen the function's strategic direction. Lead and oversee the maintenance and management of security solutions / services like Sentinel, Defender, ServiceNow, Proofpoint, etc. Regularly assess the effectiveness of security tools through metrics and key performance indicators, driving continuous improvement initiatives within the team. Identify and implement enhancement opportunities with existing tooling to capitalise investments and returns. Guide, upskill and mentor a high performing team, fostering a collaborative and innovative environment to maximize productivity and skill development. Collaborate with cross-functional teams and Security Architects to ensure alignment of security tooling initiatives with broader organizational goals and compliance requirements. Lead the implementation of robust security tooling solutions, ensuring seamless integration with existing systems and infrastructure. Establish and maintain proactive monitoring mechanisms to promptly detect and respond to incidents, utilizing the latest tooling capabilities. Provide expert support to security operations teams by troubleshooting tooling issues, conducting root cause analyses, and implementing corrective measures. Execute and oversee security tooling projects, including resource management, timelines, and deliverables, demonstrating adept project management skills. Experience and Skills Required At least 4 years of experience working in a Detection Engineering function, preferably in Financial Services, focusing on Automation and Security Engineering maturity, with experience of managing and maintaining security tools within a global environment. Programming experience (PowerShell, Bash, Python, JavaScript) to automate tasks using scripting on both Windows and Linux systems. Hands-on experience with APIs, demonstrating the ability to integrate security tools seamlessly, automate workflows, and enhance overall security posture through effective API utilization. Experience developing and fine-tuning Detection use-cases using advanced KQL and possess Innovative Mindset to challenge current processes. Experience developing and utilising automation to enhance responses to security alerts. Experience integrating and maintaining a SIEM solution and associated log stream integrations. Experience with Cloud environments and infrastructure integration with a SIEM solution. Demonstrable proficiency utilising built in security functions within Azure and AWS. Apply leadership and management skills in guiding and mentoring a security automation and engineering team to achieve collective success. Proven experience of being organised and methodical manner applying critical thinking to tasks and problems. Employ excellent communication skills, both written and verbal, to articulate security concepts, present findings, and engage with diverse stakeholders, including technical and non-technical audiences. Demonstrate adaptability to evolving security landscapes, staying updated on industry trends, and proactively integrating new technologies and methodologies into security tooling strategies. Feel rewarded For starters, we'll offer you a comprehensive benefits package. We'll value your wellbeing and support your development. And we'll be as flexible as we can about where and when you work - finding a balance that works for all of us. It's all part of our commitment to making you feel motivated by the work you do and happy to be part of our team. For more about our work, our approach to dynamic working and how you could build your future here, visit For more about our work, our approach to dynamic working and how you could build your future here, visit As an international financial services organisation, we are in-scope of international regulations in the way that we carry out our work. This position is involved in work that is regulated by the FCA and/or the PRA and their Individual
Role Title: Network Product Owner Start Date: ASAP End Date: 18th December 2026 Rate: 630 Location: Manchester 3 days on site JD - Network Security Technical Product Owner - the clients Global Network Services, you should possess the following skillsets: Network Security Product Strategy and Vision: Ability to define, document, and communicate a clear network security product vision aligned with Zero Trust principles, organizational governance frameworks, and regulatory compliance requirements. Deep understanding of security policy lifecycle management, identity and access management integration, micro-segmentation strategies, and continuous verification principles. Skilled in managing network security product backlog prioritized based on risk assessment, business value, and threat landscape, with deep collaboration with security operations, infrastructure, and compliance teams. Strong understanding of API-level integration between security platforms and orchestration systems. Previous Hands-on expertise in one or more of the following areas: design and build of secure, fault-tolerant enterprise-class distributed network security systems with business-facing APIs/Web UIs, ensuring successful adoption and rotation at scale across domains including Zero Trust Network Access (ZTNA) for Remote Access and Proxy services, Network Access Control (NAC), Next 1 Generation Firewalls (NGFW), Intrusion Detection/Prevention Systems (IDS/IPS), and Security Information & Event Management (SIEM) integration, spanning physical, virtual, and cloud environments. Strong understanding of network security technology fundamentals including Zero Trust Architecture (ZTA) principles, Software 1 Defined Perimeter (SDP), identity-aware proxy architectures, 802.1X authentication, certificate-based authentication, policy-based access control, stateful/stateless firewall technologies, threat intelligence integration, and network segmentation strategies. Expertise in security policy modelling, documentation of end-to-end security workflow specifications (e.g., threat models, security control frameworks, policy decision flows), security architecture diagrams, and governance framework documentation aligned with industry standards (NIST, ISO 27001, CIS Controls). Desired Knowledge - Knowledge of DevSecOps tooling, GitOps for security-as-code, CI/CD pipelines for security policy deployment, Infrastructure-as 1 Code (IaC) security scanning, security automation frameworks, and version control for security configurations. Working knowledge of cloud-native security services: Cloud Access Security Brokers (CASB), cloud firewall services, identity federation, secure access service edge (SASE), zero trust network access platforms, security posture management, and cloud IAM integration. Compliance and Regulatory Controls - Strong knowledge of security frameworks and standards (NIST Cybersecurity Framework, ISO 27001/27002, PCI-DSS, SOC 2) and experience designing and implementing solutions using commercial and open-source security tools for lifecycle management of enterprise security infrastructure. Understanding of ITIL for security incident and problem management, risk management frameworks, and security governance processes. Proficiency in Agile Methodologies - Jira/Confluence, Scrum/Kanban, security backlog and workflow management, and security 1 specific SRE reporting metrics (Mean Time to Detect - MTTD, Mean Time to Respond - MTTR, Mean Time to Remediate, deployment frequency, security control effectiveness, Security Level Objectives - SLO).
Feb 28, 2026
Contractor
Role Title: Network Product Owner Start Date: ASAP End Date: 18th December 2026 Rate: 630 Location: Manchester 3 days on site JD - Network Security Technical Product Owner - the clients Global Network Services, you should possess the following skillsets: Network Security Product Strategy and Vision: Ability to define, document, and communicate a clear network security product vision aligned with Zero Trust principles, organizational governance frameworks, and regulatory compliance requirements. Deep understanding of security policy lifecycle management, identity and access management integration, micro-segmentation strategies, and continuous verification principles. Skilled in managing network security product backlog prioritized based on risk assessment, business value, and threat landscape, with deep collaboration with security operations, infrastructure, and compliance teams. Strong understanding of API-level integration between security platforms and orchestration systems. Previous Hands-on expertise in one or more of the following areas: design and build of secure, fault-tolerant enterprise-class distributed network security systems with business-facing APIs/Web UIs, ensuring successful adoption and rotation at scale across domains including Zero Trust Network Access (ZTNA) for Remote Access and Proxy services, Network Access Control (NAC), Next 1 Generation Firewalls (NGFW), Intrusion Detection/Prevention Systems (IDS/IPS), and Security Information & Event Management (SIEM) integration, spanning physical, virtual, and cloud environments. Strong understanding of network security technology fundamentals including Zero Trust Architecture (ZTA) principles, Software 1 Defined Perimeter (SDP), identity-aware proxy architectures, 802.1X authentication, certificate-based authentication, policy-based access control, stateful/stateless firewall technologies, threat intelligence integration, and network segmentation strategies. Expertise in security policy modelling, documentation of end-to-end security workflow specifications (e.g., threat models, security control frameworks, policy decision flows), security architecture diagrams, and governance framework documentation aligned with industry standards (NIST, ISO 27001, CIS Controls). Desired Knowledge - Knowledge of DevSecOps tooling, GitOps for security-as-code, CI/CD pipelines for security policy deployment, Infrastructure-as 1 Code (IaC) security scanning, security automation frameworks, and version control for security configurations. Working knowledge of cloud-native security services: Cloud Access Security Brokers (CASB), cloud firewall services, identity federation, secure access service edge (SASE), zero trust network access platforms, security posture management, and cloud IAM integration. Compliance and Regulatory Controls - Strong knowledge of security frameworks and standards (NIST Cybersecurity Framework, ISO 27001/27002, PCI-DSS, SOC 2) and experience designing and implementing solutions using commercial and open-source security tools for lifecycle management of enterprise security infrastructure. Understanding of ITIL for security incident and problem management, risk management frameworks, and security governance processes. Proficiency in Agile Methodologies - Jira/Confluence, Scrum/Kanban, security backlog and workflow management, and security 1 specific SRE reporting metrics (Mean Time to Detect - MTTD, Mean Time to Respond - MTTR, Mean Time to Remediate, deployment frequency, security control effectiveness, Security Level Objectives - SLO).
CBSbutler Holdings Limited trading as CBSbutler
City, Manchester
Principal Cloud Platform Engineer - Contract Location: Hybrid (60% office / 40% remote) Rate: 580 - 618 per day - Inside IR35 Engagement: PAYE via Umbrella Company only Role Overview We are seeking an experienced Principal Cloud Platform Engineer to help shape the future of our cloud security and automation capabilities. You will play a key role in expanding our cloud product roadmap, automating remediation and escalation processes, and strengthening our security posture across enterprise platforms. Working closely with engineering, security, and DevOps teams, you will apply modern cloud-native and CI/CD practices to solve real-world business challenges across multiple technology domains. Key Responsibilities Drive cloud infrastructure enhancements aligned to strategic and budgetary objectives. Collaborate with engineering teams on the design, build, and delivery of scalable cloud services. Enable stakeholders to adopt modern cloud-native architectures and best practices. Ensure cloud platforms adhere to security, compliance, and software lifecycle standards. Automate operational workflows, incident remediation, and escalation processes. Essential Skills & Experience Proven experience in cloud engineering with professional certifications (AWS, Azure, or GCP preferred). Ability to translate High-Level Designs (HLD) and Low-Level Designs (LLD) into implementable solutions. Strong scripting skills in PowerShell, Bash, and Python or Java . Deep experience with CI/CD pipelines and Agile/Scrum methodologies. Knowledge of SIEM, cloud security controls, and cloud security tooling . Experience with incident, problem, and change management processes. Hands-on experience with Wiz (Wiz Cloud, Wiz Defend) . Strong containerisation expertise ( Docker, Kubernetes ). Experience with Windows and Red Hat Linux environments. Automation experience using Chef or similar configuration management tools . GCP-Focused Experience (Highly Desirable) Infrastructure automation using Deployment Manager or Terraform . IAM roles, Service Accounts, and Organization Policies. CI/CD tooling including Cloud Build, Artifact Registry, and Cloud Deploy . GCP Networking (VPC, firewall rules, load balancing). Observability and security tooling (Cloud Logging, Monitoring, Security Command Center). Experience with GKE and container orchestration . Desirable Qualifications Experience within financial services or other regulated environments. Bachelor's degree (or higher) in a relevant technical discipline. CISSP or equivalent security certification.
Feb 27, 2026
Contractor
Principal Cloud Platform Engineer - Contract Location: Hybrid (60% office / 40% remote) Rate: 580 - 618 per day - Inside IR35 Engagement: PAYE via Umbrella Company only Role Overview We are seeking an experienced Principal Cloud Platform Engineer to help shape the future of our cloud security and automation capabilities. You will play a key role in expanding our cloud product roadmap, automating remediation and escalation processes, and strengthening our security posture across enterprise platforms. Working closely with engineering, security, and DevOps teams, you will apply modern cloud-native and CI/CD practices to solve real-world business challenges across multiple technology domains. Key Responsibilities Drive cloud infrastructure enhancements aligned to strategic and budgetary objectives. Collaborate with engineering teams on the design, build, and delivery of scalable cloud services. Enable stakeholders to adopt modern cloud-native architectures and best practices. Ensure cloud platforms adhere to security, compliance, and software lifecycle standards. Automate operational workflows, incident remediation, and escalation processes. Essential Skills & Experience Proven experience in cloud engineering with professional certifications (AWS, Azure, or GCP preferred). Ability to translate High-Level Designs (HLD) and Low-Level Designs (LLD) into implementable solutions. Strong scripting skills in PowerShell, Bash, and Python or Java . Deep experience with CI/CD pipelines and Agile/Scrum methodologies. Knowledge of SIEM, cloud security controls, and cloud security tooling . Experience with incident, problem, and change management processes. Hands-on experience with Wiz (Wiz Cloud, Wiz Defend) . Strong containerisation expertise ( Docker, Kubernetes ). Experience with Windows and Red Hat Linux environments. Automation experience using Chef or similar configuration management tools . GCP-Focused Experience (Highly Desirable) Infrastructure automation using Deployment Manager or Terraform . IAM roles, Service Accounts, and Organization Policies. CI/CD tooling including Cloud Build, Artifact Registry, and Cloud Deploy . GCP Networking (VPC, firewall rules, load balancing). Observability and security tooling (Cloud Logging, Monitoring, Security Command Center). Experience with GKE and container orchestration . Desirable Qualifications Experience within financial services or other regulated environments. Bachelor's degree (or higher) in a relevant technical discipline. CISSP or equivalent security certification.
CBSbutler Holdings Limited trading as CBSbutler
Knutsford, Cheshire
Role: Senior Akamai Security Engineer Location: Hybrid - 60% onsite / 40% remote - Knutsford, Cheshire Contract Length: Until 30/11/2026 Rate: 550 to 600 per day Inside IR35 Role Overview We're looking for a Senior Akamai Security Engineer to lead the design, implementation, and optimisation of Akamai security solutions across large-scale digital platforms. This role sits at the sharp end of web security - protecting high-traffic environments from modern threats while improving performance and resilience. Expect real engineering challenges, complex environments, and zero room for checkbox security. Key Responsibilities Architect, configure, and optimise Akamai security solutions including Kona Site Defender, WAF, Bot Manager, and CDN Lead end-to-end implementation of Akamai security policies and custom rules Perform threat analysis, log monitoring, and security incident response for web traffic Implement and manage rate limiting, bot mitigation, DDoS protection, and zero-trust controls Partner with engineering and application teams to embed secure Akamai configurations into delivery pipelines Manage Akamai properties, edge redirects, certificates, and traffic routing rules Tune WAF policies to minimise false positives while maximising threat coverage Provide technical leadership, documentation, and best-practice guidance Required Skills & Experience Extensive hands-on experience with the Akamai platform: Kona Site Defender, WAF, Bot Manager, EdgeWorkers, CDN Strong understanding of web security fundamentals: OWASP Top 10, DDoS, bot protection, API security Deep knowledge of HTTP/S, TCP/IP, DNS, TLS, caching strategies, and CDN optimisation Experience supporting large-scale, high-traffic production environments Scripting and automation skills (Python, Shell, Akamai APIs) Strong troubleshooting, analytical, and performance-tuning capability Nice to Have Akamai certifications (ACE, Akamai Security Architect) Cloud platform experience (Azure, AWS, GCP) Familiarity with DevSecOps practices, CI/CD, and Infrastructure as Code Experience with SIEM platforms and security analytics
Feb 27, 2026
Contractor
Role: Senior Akamai Security Engineer Location: Hybrid - 60% onsite / 40% remote - Knutsford, Cheshire Contract Length: Until 30/11/2026 Rate: 550 to 600 per day Inside IR35 Role Overview We're looking for a Senior Akamai Security Engineer to lead the design, implementation, and optimisation of Akamai security solutions across large-scale digital platforms. This role sits at the sharp end of web security - protecting high-traffic environments from modern threats while improving performance and resilience. Expect real engineering challenges, complex environments, and zero room for checkbox security. Key Responsibilities Architect, configure, and optimise Akamai security solutions including Kona Site Defender, WAF, Bot Manager, and CDN Lead end-to-end implementation of Akamai security policies and custom rules Perform threat analysis, log monitoring, and security incident response for web traffic Implement and manage rate limiting, bot mitigation, DDoS protection, and zero-trust controls Partner with engineering and application teams to embed secure Akamai configurations into delivery pipelines Manage Akamai properties, edge redirects, certificates, and traffic routing rules Tune WAF policies to minimise false positives while maximising threat coverage Provide technical leadership, documentation, and best-practice guidance Required Skills & Experience Extensive hands-on experience with the Akamai platform: Kona Site Defender, WAF, Bot Manager, EdgeWorkers, CDN Strong understanding of web security fundamentals: OWASP Top 10, DDoS, bot protection, API security Deep knowledge of HTTP/S, TCP/IP, DNS, TLS, caching strategies, and CDN optimisation Experience supporting large-scale, high-traffic production environments Scripting and automation skills (Python, Shell, Akamai APIs) Strong troubleshooting, analytical, and performance-tuning capability Nice to Have Akamai certifications (ACE, Akamai Security Architect) Cloud platform experience (Azure, AWS, GCP) Familiarity with DevSecOps practices, CI/CD, and Infrastructure as Code Experience with SIEM platforms and security analytics
CBSbutler Holdings Limited trading as CBSbutler
City, Manchester
Role: Network Security Technical Product Owner Location: Hybrid (60% office / 40% remote) - South Manchester Contract Duration: Until 18 December 2026 Rate: 550 - 597 per day - Inside IR35 Role Overview We are seeking an experienced Network Security Technical Product Owner to define and drive the strategy, delivery, and lifecycle of enterprise network security products. This role requires a blend of technical expertise, product ownership, and stakeholder management to deliver secure, scalable, and compliant network security capabilities aligned with Zero Trust principles and regulatory requirements. You will work closely with security operations, infrastructure, architecture, and compliance teams to prioritise delivery based on risk, business value, and evolving threat landscapes. Key Responsibilities Product Strategy & Vision Define and communicate a clear network security product vision aligned with Zero Trust architecture, governance frameworks, and regulatory requirements. Own and prioritise the security product backlog, balancing risk, business value, and operational needs. Collaborate with engineering, security operations, and compliance teams to ensure successful product delivery and adoption. Drive API and orchestration integrations between security platforms and enterprise tooling. Technical Leadership & Delivery Provide hands-on expertise in designing and delivering enterprise-scale network security solutions, including: Zero Trust Network Access (ZTNA) Network Access Control (NAC) Next-Generation Firewalls (NGFW) IDS/IPS platforms SIEM integrations Support deployments across physical, virtual, and cloud environments. Document security architectures, threat models, control frameworks, and policy workflows aligned to industry standards. Required Technical Expertise Strong understanding of network security fundamentals and Zero Trust architectures. Experience with identity-aware proxies, Software-Defined Perimeter (SDP), 802.1X, certificate-based authentication, and policy-driven access control. Knowledge of segmentation strategies, firewall technologies, threat intelligence integration, and security policy modelling. Familiarity with governance frameworks and standards such as NIST, ISO 27001, and CIS Controls . Desirable Skills & Experience DevSecOps & Cloud Security Experience with security-as-code, GitOps, CI/CD security pipelines, and Infrastructure-as-Code security scanning. Working knowledge of cloud security platforms (CASB, SASE, ZTNA platforms, cloud firewalls, IAM integration, security posture management). Compliance & Risk Knowledge of security and compliance frameworks such as NIST CSF, ISO 27001/27002, PCI-DSS, SOC 2 . Understanding of ITIL, risk management frameworks, and enterprise security governance processes. Agile Delivery Experience working in Agile environments (Scrum/Kanban) using Jira/Confluence. Familiarity with security SRE metrics such as MTTD, MTTR, deployment frequency, and Security Level Objectives (SLOs). Candidate Profile You are a technically strong product owner with hands-on network security experience, capable of translating complex security requirements into deliverable product roadmaps. You are comfortable working across engineering, architecture, and risk functions in large enterprise environments and can influence stakeholders at all levels.
Feb 27, 2026
Contractor
Role: Network Security Technical Product Owner Location: Hybrid (60% office / 40% remote) - South Manchester Contract Duration: Until 18 December 2026 Rate: 550 - 597 per day - Inside IR35 Role Overview We are seeking an experienced Network Security Technical Product Owner to define and drive the strategy, delivery, and lifecycle of enterprise network security products. This role requires a blend of technical expertise, product ownership, and stakeholder management to deliver secure, scalable, and compliant network security capabilities aligned with Zero Trust principles and regulatory requirements. You will work closely with security operations, infrastructure, architecture, and compliance teams to prioritise delivery based on risk, business value, and evolving threat landscapes. Key Responsibilities Product Strategy & Vision Define and communicate a clear network security product vision aligned with Zero Trust architecture, governance frameworks, and regulatory requirements. Own and prioritise the security product backlog, balancing risk, business value, and operational needs. Collaborate with engineering, security operations, and compliance teams to ensure successful product delivery and adoption. Drive API and orchestration integrations between security platforms and enterprise tooling. Technical Leadership & Delivery Provide hands-on expertise in designing and delivering enterprise-scale network security solutions, including: Zero Trust Network Access (ZTNA) Network Access Control (NAC) Next-Generation Firewalls (NGFW) IDS/IPS platforms SIEM integrations Support deployments across physical, virtual, and cloud environments. Document security architectures, threat models, control frameworks, and policy workflows aligned to industry standards. Required Technical Expertise Strong understanding of network security fundamentals and Zero Trust architectures. Experience with identity-aware proxies, Software-Defined Perimeter (SDP), 802.1X, certificate-based authentication, and policy-driven access control. Knowledge of segmentation strategies, firewall technologies, threat intelligence integration, and security policy modelling. Familiarity with governance frameworks and standards such as NIST, ISO 27001, and CIS Controls . Desirable Skills & Experience DevSecOps & Cloud Security Experience with security-as-code, GitOps, CI/CD security pipelines, and Infrastructure-as-Code security scanning. Working knowledge of cloud security platforms (CASB, SASE, ZTNA platforms, cloud firewalls, IAM integration, security posture management). Compliance & Risk Knowledge of security and compliance frameworks such as NIST CSF, ISO 27001/27002, PCI-DSS, SOC 2 . Understanding of ITIL, risk management frameworks, and enterprise security governance processes. Agile Delivery Experience working in Agile environments (Scrum/Kanban) using Jira/Confluence. Familiarity with security SRE metrics such as MTTD, MTTR, deployment frequency, and Security Level Objectives (SLOs). Candidate Profile You are a technically strong product owner with hands-on network security experience, capable of translating complex security requirements into deliverable product roadmaps. You are comfortable working across engineering, architecture, and risk functions in large enterprise environments and can influence stakeholders at all levels.
CBSbutler Holdings Limited trading as CBSbutler
Bracknell, Berkshire
Security Application Design Engineer Onsite in Bracknell Eligible for DV clearance 50-55K per annum + benefits package Join a high-impact engineering team delivering a secure Gateway solution for a major UK defence customer . This is a hands-on Security Application Architect role where you'll design, implement and troubleshoot mission-critical infrastructure in a live, security-sensitive environment. Working alongside senior architects and engineering leads, you'll play a key role in maintaining availability, supporting operational teams, and driving technical change across complex systems. What You'll Be Doing Identify and implement infrastructure and application changes to support Gateway functionality and availability Produce detailed technical designs for change alongside the customer and Programme Manager Work daily with the Solution Owner and Engineering Lead to deliver engineering outcomes Provide technical support to SOC and 3rd Line teams, troubleshooting complex incidents Configure and support Gateway appliances and associated software Maintain high availability, resilience and security posture Your Technical Background You'll bring strong hands-on experience across: Infrastructure VMware / vSphere RHEL & Windows Server Trellix SIEM platforms Linux & Scripting Shell scripting REGEX Firewall configuration Microsoft Stack Active Directory DNS RDS Applications & Protocols LDAP Email, Chat & File standards Web & Chat protocols XML & JSON schema LDIF TLS server/client certificates File type digital formats Gateways Deployment, configuration and support of Gateway appliances and their software What We're Looking For A self-starter comfortable working independently and collaboratively Strong troubleshooting mindset Clear written and verbal communication skills Comfortable interacting with stakeholders at all levels Willing and able to travel weekly within the South / Southwest at short notice If you are interested in discussing this Application Security Design Engineer role further, please reply back with a copy of your updated CV.
Feb 27, 2026
Full time
Security Application Design Engineer Onsite in Bracknell Eligible for DV clearance 50-55K per annum + benefits package Join a high-impact engineering team delivering a secure Gateway solution for a major UK defence customer . This is a hands-on Security Application Architect role where you'll design, implement and troubleshoot mission-critical infrastructure in a live, security-sensitive environment. Working alongside senior architects and engineering leads, you'll play a key role in maintaining availability, supporting operational teams, and driving technical change across complex systems. What You'll Be Doing Identify and implement infrastructure and application changes to support Gateway functionality and availability Produce detailed technical designs for change alongside the customer and Programme Manager Work daily with the Solution Owner and Engineering Lead to deliver engineering outcomes Provide technical support to SOC and 3rd Line teams, troubleshooting complex incidents Configure and support Gateway appliances and associated software Maintain high availability, resilience and security posture Your Technical Background You'll bring strong hands-on experience across: Infrastructure VMware / vSphere RHEL & Windows Server Trellix SIEM platforms Linux & Scripting Shell scripting REGEX Firewall configuration Microsoft Stack Active Directory DNS RDS Applications & Protocols LDAP Email, Chat & File standards Web & Chat protocols XML & JSON schema LDIF TLS server/client certificates File type digital formats Gateways Deployment, configuration and support of Gateway appliances and their software What We're Looking For A self-starter comfortable working independently and collaboratively Strong troubleshooting mindset Clear written and verbal communication skills Comfortable interacting with stakeholders at all levels Willing and able to travel weekly within the South / Southwest at short notice If you are interested in discussing this Application Security Design Engineer role further, please reply back with a copy of your updated CV.
CBSbutler Holdings Limited trading as CBSbutler
Bracknell, Berkshire
Application Design Engineer Onsite in Bracknell Eligible for DV clearance 50-55K per annum + benefits package Step into architecture while staying hands-on. We're seeking an Application Design Engineer to support delivery of a secure Gateway solution for a major UK defence customer . This is an opportunity for a strong infrastructure/design engineer to broaden into architecture while working on mission-critical systems in a high-security environment. You'll help implement change, maintain availability, and support operational teams within a live, complex infrastructure landscape. What You'll Be Doing Identify and implement technical changes to support Gateway capability and maintain availability Produce designs for change in collaboration with the customer and Programme Manager Work daily with the Solution Owner and Engineering Lead on technical delivery tasks Support SOC and 3rd Line teams in troubleshooting incidents and resolving complex issues Assist with configuration and ongoing support of Gateway appliances and associated platforms Your Technical Background You'll bring solid hands-on experience across infrastructure and gateway environments, including: Infrastructure VMware / vSphere RHEL & Windows Server Trellix SIEM platforms Microsoft Stack Active Directory DNS RDS Networking Citrix NetScaler Wireshark Storage NetApp SAN NAS Backup technologies Security & Gateway Gateway appliances and software PKI management applications Web applications and protocols What We're Looking For A proactive self-starter who can work independently and within a team Strong troubleshooting and analytical skills Clear communication skills across technical and non-technical audiences A desire to move from engineering into architectural responsibilities Willingness to travel weekly within the South / Southwest at short notice If you are interested in discussing this Application Design Engineer role further, please reply back with a copy of your updated CV.
Feb 27, 2026
Full time
Application Design Engineer Onsite in Bracknell Eligible for DV clearance 50-55K per annum + benefits package Step into architecture while staying hands-on. We're seeking an Application Design Engineer to support delivery of a secure Gateway solution for a major UK defence customer . This is an opportunity for a strong infrastructure/design engineer to broaden into architecture while working on mission-critical systems in a high-security environment. You'll help implement change, maintain availability, and support operational teams within a live, complex infrastructure landscape. What You'll Be Doing Identify and implement technical changes to support Gateway capability and maintain availability Produce designs for change in collaboration with the customer and Programme Manager Work daily with the Solution Owner and Engineering Lead on technical delivery tasks Support SOC and 3rd Line teams in troubleshooting incidents and resolving complex issues Assist with configuration and ongoing support of Gateway appliances and associated platforms Your Technical Background You'll bring solid hands-on experience across infrastructure and gateway environments, including: Infrastructure VMware / vSphere RHEL & Windows Server Trellix SIEM platforms Microsoft Stack Active Directory DNS RDS Networking Citrix NetScaler Wireshark Storage NetApp SAN NAS Backup technologies Security & Gateway Gateway appliances and software PKI management applications Web applications and protocols What We're Looking For A proactive self-starter who can work independently and within a team Strong troubleshooting and analytical skills Clear communication skills across technical and non-technical audiences A desire to move from engineering into architectural responsibilities Willingness to travel weekly within the South / Southwest at short notice If you are interested in discussing this Application Design Engineer role further, please reply back with a copy of your updated CV.
CBSbutler Holdings Limited trading as CBSbutler
Bracknell, Berkshire
Application Architect Onsite in Bracknell Eligible for DV clearance 65-70K per annum + benefits package We are recruiting an Application Architect to support the ongoing evolution of a Gateway solution for a strategic UK defence customer . Working alongside senior solution leaders, you'll contribute to secure design, controlled change, and operational resilience within a mission-critical environment. This is a development opportunity for an aspiring architect looking to build design authority and architectural experience in a high-assurance setting. The Role You will: Contribute to infrastructure and Gateway design changes to maintain availability and performance Produce structured design documentation alongside the customer and Programme Manager Support architectural governance and ensure alignment to solution intent Provide technical oversight during incident troubleshooting with SOC and 3rd Line teams Assist in maintaining secure, resilient and scalable infrastructure components Your technical experience; You should have a design and development background with exposure to secure or Gateway-based environments, including: Core Infrastructure VMware / vSphere RHEL & Windows Server Trellix SIEM Microsoft Services Active Directory DNS RDS Networking Citrix NetScaler Wireshark Storage & Data NetApp SAN NAS Backup solutions Security & Web Gateway appliances and associated software PKI management applications Web applications and protocols Key Attributes Self-motivated and comfortable operating with guidance from senior architects Able to produce clear, structured design documentation Strong interpersonal skills with the ability to work across engineering and operational teams Willing to travel weekly within the South / Southwest region If you are interested in discussing this Application Architect role further, please reply back with a copy of your updated CV.
Feb 27, 2026
Full time
Application Architect Onsite in Bracknell Eligible for DV clearance 65-70K per annum + benefits package We are recruiting an Application Architect to support the ongoing evolution of a Gateway solution for a strategic UK defence customer . Working alongside senior solution leaders, you'll contribute to secure design, controlled change, and operational resilience within a mission-critical environment. This is a development opportunity for an aspiring architect looking to build design authority and architectural experience in a high-assurance setting. The Role You will: Contribute to infrastructure and Gateway design changes to maintain availability and performance Produce structured design documentation alongside the customer and Programme Manager Support architectural governance and ensure alignment to solution intent Provide technical oversight during incident troubleshooting with SOC and 3rd Line teams Assist in maintaining secure, resilient and scalable infrastructure components Your technical experience; You should have a design and development background with exposure to secure or Gateway-based environments, including: Core Infrastructure VMware / vSphere RHEL & Windows Server Trellix SIEM Microsoft Services Active Directory DNS RDS Networking Citrix NetScaler Wireshark Storage & Data NetApp SAN NAS Backup solutions Security & Web Gateway appliances and associated software PKI management applications Web applications and protocols Key Attributes Self-motivated and comfortable operating with guidance from senior architects Able to produce clear, structured design documentation Strong interpersonal skills with the ability to work across engineering and operational teams Willing to travel weekly within the South / Southwest region If you are interested in discussing this Application Architect role further, please reply back with a copy of your updated CV.
CBSbutler Holdings Limited trading as CBSbutler
Bracknell, Berkshire
Application Security Architect Onsite in Bracknell Eligible for DV clearance 65-70k per annum + benefits package We are seeking an experienced Security Application Architect to support the delivery and ongoing evolution of a secure Gateway capability for a strategic UK defence customer . This role combines architectural ownership, secure design governance, and operational assurance within a high-security, mission-critical environment. You'll shape technical direction, drive change, and ensure resilient, compliant solution delivery across engineering and support teams. What you'll be doing; Own and design technical changes required to maintain and enhance Gateway capability Produce high-quality design documentation in collaboration with the customer and Programme Manager Support solution governance and architectural integrity Ensure ongoing availability, resilience and security compliance Provide architectural guidance during troubleshooting and incident resolution Act as a key technical interface between engineering delivery and operational support teams Your technical background; You will ideally be an experienced grade architect with a strong design and development background and proven experience with Gateway technologies. Your technical knowledge should include: Infrastructure & Platforms VMware / vSphere RHEL and Windows Server Trellix SIEM platforms Identity & Directory Services Active Directory DNS LDAP LDIF Gateway & Security Technologies Gateway appliances and associated software Email, Chat and File standards Web and Chat protocols XML & JSON schema TLS server/client certificates Digital file format handling Linux & Networking Shell scripting REGEX Firewall technologies What we're looking for; Self-motivated and comfortable working autonomously Strong stakeholder engagement skills Able to translate customer requirements into robust, secure designs Confident communicator at technical and leadership levels Willing to travel weekly within the South / Southwest region at short notice If you are interested in discussing this Application Security Architect role further, please reply back with a copy of your updated CV.
Feb 27, 2026
Full time
Application Security Architect Onsite in Bracknell Eligible for DV clearance 65-70k per annum + benefits package We are seeking an experienced Security Application Architect to support the delivery and ongoing evolution of a secure Gateway capability for a strategic UK defence customer . This role combines architectural ownership, secure design governance, and operational assurance within a high-security, mission-critical environment. You'll shape technical direction, drive change, and ensure resilient, compliant solution delivery across engineering and support teams. What you'll be doing; Own and design technical changes required to maintain and enhance Gateway capability Produce high-quality design documentation in collaboration with the customer and Programme Manager Support solution governance and architectural integrity Ensure ongoing availability, resilience and security compliance Provide architectural guidance during troubleshooting and incident resolution Act as a key technical interface between engineering delivery and operational support teams Your technical background; You will ideally be an experienced grade architect with a strong design and development background and proven experience with Gateway technologies. Your technical knowledge should include: Infrastructure & Platforms VMware / vSphere RHEL and Windows Server Trellix SIEM platforms Identity & Directory Services Active Directory DNS LDAP LDIF Gateway & Security Technologies Gateway appliances and associated software Email, Chat and File standards Web and Chat protocols XML & JSON schema TLS server/client certificates Digital file format handling Linux & Networking Shell scripting REGEX Firewall technologies What we're looking for; Self-motivated and comfortable working autonomously Strong stakeholder engagement skills Able to translate customer requirements into robust, secure designs Confident communicator at technical and leadership levels Willing to travel weekly within the South / Southwest region at short notice If you are interested in discussing this Application Security Architect role further, please reply back with a copy of your updated CV.
Principal Solution Consultant Department: Microsoft Employment Type: Permanent Location: Remote, UK Description As the Principal Solution Consultant, you will work alongside Industry Leads, Business Development and Account Managers, Solution Managers, Solution Leads and Practice Leads (PL) and own the detailing of the multi domain solutions for our clients. You must have a solid understanding of the challenges and opportunities that our clients are facing within themselves and within their industry, and how these can be addressed using emerging technologies and cloud services across the following domains: Modern Workplace: AI & Automation: Copilot and Power Platform Business Change and Adoption Contact and Collaboration: Voice and Contact Centre Employee Experience: Endpoint, M365 and Viva Cloud Native Platforms: Azure, AWS and Private Cloud Security Practice: M365, Fortinet, SOC, SIEM, etc. Software Engineering: AppDev and Data & AI This should be combined with experience and high level understanding of large scale cloud solutions architecture, novel commercial and delivery models, helping clients transforming into an AI powered, cloud first business, developing new services using digital, becoming more agile and resilient. We are looking for candidates who have a broad set of technology, delivery, and commercial skills, who can demonstrate an ability to shape our client's transformation agenda, innovation roadmaps and new operating models. Key Responsibilities Client facing: Build a meaningful understanding of each industry's prevalent business and technology challenges and opportunities. Continually engage our client's C suite and heads of services to discover their business requirements (i.e. opportunities, threats and challenges) and use this information to assist in the identification of potential sales, solutions and capabilities pull through from Nasstar. Align their business goals and imperatives with well formed technology roadmaps powered by Microsoft and AWS cloud technologies and services. Provide client advisory services and thought leadership to your industry accounts broadly. Growth forecasting and planning: Uncover transformation opportunities across cloud, AI and other emergent technologies. Build sales opportunity pipelines in line with Nasstar's annual growth targets. Increase our share of wallet with key clients in your aligned industries. Solutioning of large and complex deals: Develop and describe compelling value propositions in response to the client's requirements, informing win strategies and calling out Nasstar unique selling points (USPs) and proof points using our Polaris Framework and ICC capabilities. Shape the end to end solutions with the right business value for the client, at the right price point, with the right commercial construct, and appropriate risk profile. Shape the end to end solution with the right technologies and delivery methods, to drive the transformation required by our clients. Deliver concise and impactful presentations on the value propositions and technical topics in front of a senior audience, including C Levels. Direct the Solution Managers and Leads on scoping the technical solutions, estimates and delivery approaches that best fit the ways of working which is specific to each client. Direct the Solution Architects on scoping the managed services solutions, estimates and delivery approaches that best fit the ways of working which is specific to each client. Where required, lead the proposal and statements of work development and guide this through the relevant reviews, approval, and contracting workflows, seeking buy in from PLs and PMO from concept to deal closure. Lead peer reviews with Nasstar and client stakeholders to gain solution and delivery approach approval and sign off, ensuring the solution is commercially sound. Portfolio and industry PoV development: Develop and describe compelling industry points of view and inform Nasstar's portfolio on the potential of industry solutions. Develop and describe value propositions in response to the industry requirements, informing win strategies and calling out Nasstar unique selling points (USPs) and proof points using our Polaris Framework and ICC capabilities. Growth and personal development: Stay educated on new and emerging transformation approaches and methodologies. Be a lead contributor to Nasstar's Communities of Practice for the purpose of developing and sharing relevant transformation / delivery approaches, processes and standards. Understand the strategic direction set by Nasstar leadership, as it relates to team goals. Skills, Knowledge and Expertise Minimum of 10 years of delivering transformational programmes/projects, including scope that includes managed services and outsourcing. Microsoft specific Data & AI skills / background, i.e. Fabric & Foundry. Extensive experience in project delivery methodologies (agile, waterfall) and client account delivery management. Minimum of 10 years lead large scale solutions using the Microsoft or AWS cloud technologies and services and other technology services. Certifications (desirable, ideally Architectural qualifications such as Togaf or similar, ITIL, Cloud technologies at a fundamental level e.g. AZ900, DP900). Benefits What you can expect from us: At Nasstar, we know the importance of looking after our employees - after all, it's the team that underpins our business! In addition to a competitive salary, supportive teams, and a real opportunity to progress in your career with a forward thinking organisation, our benefits package includes: 25 days' holiday (excluding bank holidays) + Your Birthday Off Flexible working - it's important to maintain a work/life balance, as such, we will consider any written request for flexible working Virtual working - we practice what we preach and empower our people to work remotely Top tech - Leading services and solutions aren't just for our clients; we supply best of breed software and hardware for all our staff too 4x annual salary life assurance Health cash plan Retail discounts and other perks from major brands
Feb 27, 2026
Full time
Principal Solution Consultant Department: Microsoft Employment Type: Permanent Location: Remote, UK Description As the Principal Solution Consultant, you will work alongside Industry Leads, Business Development and Account Managers, Solution Managers, Solution Leads and Practice Leads (PL) and own the detailing of the multi domain solutions for our clients. You must have a solid understanding of the challenges and opportunities that our clients are facing within themselves and within their industry, and how these can be addressed using emerging technologies and cloud services across the following domains: Modern Workplace: AI & Automation: Copilot and Power Platform Business Change and Adoption Contact and Collaboration: Voice and Contact Centre Employee Experience: Endpoint, M365 and Viva Cloud Native Platforms: Azure, AWS and Private Cloud Security Practice: M365, Fortinet, SOC, SIEM, etc. Software Engineering: AppDev and Data & AI This should be combined with experience and high level understanding of large scale cloud solutions architecture, novel commercial and delivery models, helping clients transforming into an AI powered, cloud first business, developing new services using digital, becoming more agile and resilient. We are looking for candidates who have a broad set of technology, delivery, and commercial skills, who can demonstrate an ability to shape our client's transformation agenda, innovation roadmaps and new operating models. Key Responsibilities Client facing: Build a meaningful understanding of each industry's prevalent business and technology challenges and opportunities. Continually engage our client's C suite and heads of services to discover their business requirements (i.e. opportunities, threats and challenges) and use this information to assist in the identification of potential sales, solutions and capabilities pull through from Nasstar. Align their business goals and imperatives with well formed technology roadmaps powered by Microsoft and AWS cloud technologies and services. Provide client advisory services and thought leadership to your industry accounts broadly. Growth forecasting and planning: Uncover transformation opportunities across cloud, AI and other emergent technologies. Build sales opportunity pipelines in line with Nasstar's annual growth targets. Increase our share of wallet with key clients in your aligned industries. Solutioning of large and complex deals: Develop and describe compelling value propositions in response to the client's requirements, informing win strategies and calling out Nasstar unique selling points (USPs) and proof points using our Polaris Framework and ICC capabilities. Shape the end to end solutions with the right business value for the client, at the right price point, with the right commercial construct, and appropriate risk profile. Shape the end to end solution with the right technologies and delivery methods, to drive the transformation required by our clients. Deliver concise and impactful presentations on the value propositions and technical topics in front of a senior audience, including C Levels. Direct the Solution Managers and Leads on scoping the technical solutions, estimates and delivery approaches that best fit the ways of working which is specific to each client. Direct the Solution Architects on scoping the managed services solutions, estimates and delivery approaches that best fit the ways of working which is specific to each client. Where required, lead the proposal and statements of work development and guide this through the relevant reviews, approval, and contracting workflows, seeking buy in from PLs and PMO from concept to deal closure. Lead peer reviews with Nasstar and client stakeholders to gain solution and delivery approach approval and sign off, ensuring the solution is commercially sound. Portfolio and industry PoV development: Develop and describe compelling industry points of view and inform Nasstar's portfolio on the potential of industry solutions. Develop and describe value propositions in response to the industry requirements, informing win strategies and calling out Nasstar unique selling points (USPs) and proof points using our Polaris Framework and ICC capabilities. Growth and personal development: Stay educated on new and emerging transformation approaches and methodologies. Be a lead contributor to Nasstar's Communities of Practice for the purpose of developing and sharing relevant transformation / delivery approaches, processes and standards. Understand the strategic direction set by Nasstar leadership, as it relates to team goals. Skills, Knowledge and Expertise Minimum of 10 years of delivering transformational programmes/projects, including scope that includes managed services and outsourcing. Microsoft specific Data & AI skills / background, i.e. Fabric & Foundry. Extensive experience in project delivery methodologies (agile, waterfall) and client account delivery management. Minimum of 10 years lead large scale solutions using the Microsoft or AWS cloud technologies and services and other technology services. Certifications (desirable, ideally Architectural qualifications such as Togaf or similar, ITIL, Cloud technologies at a fundamental level e.g. AZ900, DP900). Benefits What you can expect from us: At Nasstar, we know the importance of looking after our employees - after all, it's the team that underpins our business! In addition to a competitive salary, supportive teams, and a real opportunity to progress in your career with a forward thinking organisation, our benefits package includes: 25 days' holiday (excluding bank holidays) + Your Birthday Off Flexible working - it's important to maintain a work/life balance, as such, we will consider any written request for flexible working Virtual working - we practice what we preach and empower our people to work remotely Top tech - Leading services and solutions aren't just for our clients; we supply best of breed software and hardware for all our staff too 4x annual salary life assurance Health cash plan Retail discounts and other perks from major brands
Lead Systems Engineer Rochester Paying up to 65,000 (DOE) Please note - due to the nature of the work, you will need to hold or be eligible to obtain a high level of UK Security clearance - please only apply if suitable Key Responsibilities: Providing guidance to less experienced engineers, supporting team members well being and career development Collaborating to uncover technical solutions and sharing recommendations Contributing to strategic project aspects and facilitating the implementation of initiatives Understanding scope, size and time phasing of packages of work, how these contribute to project success Understanding the team size and skill set required, giving regular status and recommendations on resourcing requirements to the project and functional engineering manager Understanding and enabling dependencies or facilities required across the team Supporting the business by creating new estimates for bids and maintaining the schedule and budget for ongoing projects Required Skillset: Experience in the systems engineering domain and product lifecycle Familiarity with system engineering tools such as DOORS, Siemens Polarion, Enterprise Architect, CAMEO, MATLAB and/or Simulink Experience leading a team and making decisions from either a technical or managerial aspect A degree or equivalent qualification in a relevant Scientific/Engineering subject (e.g. Systems Engineering, Electronic Engineering, Aerospace, Physics or Mathematics Experience leading and managing a system engineering team in relevant product markets Experience in integration, test, and/or verification of real-time and/or safety-related systems An understanding of information assurance, cybersecurity and environmental impact aspects relating to real-time embedded engineering products Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission.
Feb 27, 2026
Full time
Lead Systems Engineer Rochester Paying up to 65,000 (DOE) Please note - due to the nature of the work, you will need to hold or be eligible to obtain a high level of UK Security clearance - please only apply if suitable Key Responsibilities: Providing guidance to less experienced engineers, supporting team members well being and career development Collaborating to uncover technical solutions and sharing recommendations Contributing to strategic project aspects and facilitating the implementation of initiatives Understanding scope, size and time phasing of packages of work, how these contribute to project success Understanding the team size and skill set required, giving regular status and recommendations on resourcing requirements to the project and functional engineering manager Understanding and enabling dependencies or facilities required across the team Supporting the business by creating new estimates for bids and maintaining the schedule and budget for ongoing projects Required Skillset: Experience in the systems engineering domain and product lifecycle Familiarity with system engineering tools such as DOORS, Siemens Polarion, Enterprise Architect, CAMEO, MATLAB and/or Simulink Experience leading a team and making decisions from either a technical or managerial aspect A degree or equivalent qualification in a relevant Scientific/Engineering subject (e.g. Systems Engineering, Electronic Engineering, Aerospace, Physics or Mathematics Experience leading and managing a system engineering team in relevant product markets Experience in integration, test, and/or verification of real-time and/or safety-related systems An understanding of information assurance, cybersecurity and environmental impact aspects relating to real-time embedded engineering products Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission.
Cyber Security Engineer Up to 58,000 plus excellent pension and holiday entitlement Hybrid - 2 days on site - Manchester About the Role I'm working with a Manchester-based public sector organisation who are seeking a cyber security engineer to work alongside security architects and project teams on exciting projects, implementations and designs. This role comes with excellent training and progression opportunities, and is therefore a great opportunity for someone looking to take their security engineering skillset into the projects, design and architecture space. The ideal candidate will have an understanding of architecture and secure by design principles, and will have experience implementing security controls and integrating security engineering best practices and into agile and DevOps processes. Key Responsibilities Working alongside security architects and project teams to assess designs, uncover potential risks, and integrate security best practice Taking responsibility for deploying security controls across projects and operational environments Configuring assets across a multi-cloud environment Converting architectural designs into practical actions and processes Integrating security into agile and DevSecOps processes Ensuring projects and designs are secure by design, and being actively involved in creating and implementing the controls to ensure this is the case Monitor emerging trends and technologies, evaluating their potential for future adoption within the security strategy. Apply foundational security principles to new technologies and unconventional scenarios while enabling organisational objectives. What We're Looking For SIEM/SOAR: Proficiency in SIEM concepts, data source integration, and creating SOAR runbooks. Security Stack : Hands-on with EDR, XDR, WAF, and email security solutions. Preferred Vendors: Experience with Crowdstrike, Palo Alto, and the Microsoft Defender suite is highly beneficial. Emerging Tech: Awareness of AI security risks and familiarity with DevSecOps practices. Infrastructure & System Security: Proficient in identifying and mitigating vulnerabilities within system hardware, software, and infrastructure components. Identity & Access Management (IAM): Practical expertise in PIM, PAM, RBAC, concepts and their real-world application. Network & Data Security: Proficiency in firewalls, encryption (data at rest and in transit), and how to defend against malware across enterprise services. Security Architecture & Design: Ability to translate high-level architectural designs into practical, low-level technical solutions while ensuring they are "secure by design". Cloud & Endpoint Security: Developing expertise in cloud technologies and securing diverse platforms including Windows, Linux, and macOS. M365: Experience in improving Secure Score and recommending securing products like SharePoint Online. Assurance: Experience in assuring deployments met security design. Package Up to 58,000 per annum 29 days annual leave excluding bank holidays 21% pension Career development opportunities and access to accredited qualifications Additional benefits available What to do now If you're interested in this opportunity, click apply and send an up-to-date copy of your CV. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
Feb 27, 2026
Full time
Cyber Security Engineer Up to 58,000 plus excellent pension and holiday entitlement Hybrid - 2 days on site - Manchester About the Role I'm working with a Manchester-based public sector organisation who are seeking a cyber security engineer to work alongside security architects and project teams on exciting projects, implementations and designs. This role comes with excellent training and progression opportunities, and is therefore a great opportunity for someone looking to take their security engineering skillset into the projects, design and architecture space. The ideal candidate will have an understanding of architecture and secure by design principles, and will have experience implementing security controls and integrating security engineering best practices and into agile and DevOps processes. Key Responsibilities Working alongside security architects and project teams to assess designs, uncover potential risks, and integrate security best practice Taking responsibility for deploying security controls across projects and operational environments Configuring assets across a multi-cloud environment Converting architectural designs into practical actions and processes Integrating security into agile and DevSecOps processes Ensuring projects and designs are secure by design, and being actively involved in creating and implementing the controls to ensure this is the case Monitor emerging trends and technologies, evaluating their potential for future adoption within the security strategy. Apply foundational security principles to new technologies and unconventional scenarios while enabling organisational objectives. What We're Looking For SIEM/SOAR: Proficiency in SIEM concepts, data source integration, and creating SOAR runbooks. Security Stack : Hands-on with EDR, XDR, WAF, and email security solutions. Preferred Vendors: Experience with Crowdstrike, Palo Alto, and the Microsoft Defender suite is highly beneficial. Emerging Tech: Awareness of AI security risks and familiarity with DevSecOps practices. Infrastructure & System Security: Proficient in identifying and mitigating vulnerabilities within system hardware, software, and infrastructure components. Identity & Access Management (IAM): Practical expertise in PIM, PAM, RBAC, concepts and their real-world application. Network & Data Security: Proficiency in firewalls, encryption (data at rest and in transit), and how to defend against malware across enterprise services. Security Architecture & Design: Ability to translate high-level architectural designs into practical, low-level technical solutions while ensuring they are "secure by design". Cloud & Endpoint Security: Developing expertise in cloud technologies and securing diverse platforms including Windows, Linux, and macOS. M365: Experience in improving Secure Score and recommending securing products like SharePoint Online. Assurance: Experience in assuring deployments met security design. Package Up to 58,000 per annum 29 days annual leave excluding bank holidays 21% pension Career development opportunities and access to accredited qualifications Additional benefits available What to do now If you're interested in this opportunity, click apply and send an up-to-date copy of your CV. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
Principal Solution Consultant Department: Microsoft Employment Type: Permanent Location: Remote, UK Description As the Principal Solution Consultant, you will work alongside Industry Leads, Business Development and Account Managers, Solution Managers, Solution Leads and Practice Leads (PL) and own the detailing of the multi domain solutions for our clients. You must have a solid understanding of the challenges and opportunities that our clients are facing within themselves and within their industry, and how these can be addressed using emerging technologies and cloud services across the following domains: Modern Workplace: AI & Automation: Copilot and Power Platform Business Change and Adoption Contact and Collaboration: Voice and Contact Centre Employee Experience: Endpoint, M365 and Viva Cloud Native Platforms: Azure, AWS and Private Cloud Security Practice: M365, Fortinet, SOC, SIEM, etc. Software Engineering: AppDev and Data & AI This should be combined with experience and high level understanding of large scale cloud solutions architecture, novel commercial and delivery models, helping clients transforming into an AI powered, cloud first business, developing new services using digital, becoming more agile and resilient. We are looking for candidates who have a broad set of technology, delivery, and commercial skills, who can demonstrate an ability to shape our client's transformation agenda, innovation roadmaps and new operating models. Key Responsibilities Client facing: Build a meaningful understanding of each industry's prevalent business and technology challenges and opportunities. Continually engage our client's C suite and heads of services to discover their business requirements (i.e. opportunities, threats and challenges) and use this information to assist in the identification of potential sales, solutions and capabilities pull through from Nasstar. Align their business goals and imperatives with well formed technology roadmaps powered by Microsoft and AWS cloud technologies and services. Provide client advisory services and thought leadership to your industry accounts broadly. Growth forecasting and planning: Uncover transformation opportunities across cloud, AI and other emergent technologies. Build sales opportunity pipelines in line with Nasstar's annual growth targets. Increase our share of wallet with key clients in your aligned industries. Solutioning of large and complex deals: Develop and describe compelling value propositions in response to the client's requirements, informing win strategies and calling out Nasstar unique selling points (USPs) and proof points using our Polaris Framework and ICC capabilities. Shape the end to end solutions with the right business value for the client, at the right price point, with the right commercial construct, and appropriate risk profile. Shape the end to end solution with the right technologies and delivery methods, to drive the transformation required by our clients. Deliver concise and impactful presentations on the value propositions and technical topics in front of a senior audience, including C Levels. Direct the Solution Managers and Leads on scoping the technical solutions, estimates and delivery approaches that best fit the ways of working which is specific to each client. Direct the Solution Architects on scoping the managed services solutions, estimates and delivery approaches that best fit the ways of working which is specific to each client. Where required, lead the proposal and statements of work development and guide this through the relevant reviews, approval, and contracting workflows, seeking buy in from PLs and PMO from concept to deal closure. Lead peer reviews with Nasstar and client stakeholders to gain solution and delivery approach approval and sign off, ensuring the solution is commercially sound. Portfolio and industry PoV development: Develop and describe compelling industry points of view and inform Nasstar's portfolio on the potential of industry solutions. Develop and describe value propositions in response to the industry requirements, informing win strategies and calling out Nasstar unique selling points (USPs) and proof points using our Polaris Framework and ICC capabilities. Growth and personal development: Stay educated on new and emerging transformation approaches and methodologies. Be a lead contributor to Nasstar's Communities of Practice for the purpose of developing and sharing relevant transformation / delivery approaches, processes and standards. Understand the strategic direction set by Nasstar leadership, as it relates to team goals. Skills, Knowledge and Expertise Minimum of 10 years of delivering transformational programmes/projects, including scope that includes managed services and outsourcing. Microsoft specific Data & AI skills / background, i.e. Fabric & Foundry. Extensive experience in project delivery methodologies (agile, waterfall) and client account delivery management. Minimum of 10 years lead large scale solutions using the Microsoft or AWS cloud technologies and services and other technology services. Certifications (desirable, ideally Architectural qualifications such as Togaf or similar, ITIL, Cloud technologies at a fundamental level e.g. AZ900, DP900). Benefits What you can expect from us: At Nasstar, we know the importance of looking after our employees - after all, it's the team that underpins our business! In addition to a competitive salary, supportive teams, and a real opportunity to progress in your career with a forward thinking organisation, our benefits package includes: 25 days' holiday (excluding bank holidays) + Your Birthday Off Flexible working - it's important to maintain a work/life balance, as such, we will consider any written request for flexible working Virtual working - we practice what we preach and empower our people to work remotely Top tech - Leading services and solutions aren't just for our clients; we supply best of breed software and hardware for all our staff too 4x annual salary life assurance Health cash plan Retail discounts and other perks from major brands
Feb 27, 2026
Full time
Principal Solution Consultant Department: Microsoft Employment Type: Permanent Location: Remote, UK Description As the Principal Solution Consultant, you will work alongside Industry Leads, Business Development and Account Managers, Solution Managers, Solution Leads and Practice Leads (PL) and own the detailing of the multi domain solutions for our clients. You must have a solid understanding of the challenges and opportunities that our clients are facing within themselves and within their industry, and how these can be addressed using emerging technologies and cloud services across the following domains: Modern Workplace: AI & Automation: Copilot and Power Platform Business Change and Adoption Contact and Collaboration: Voice and Contact Centre Employee Experience: Endpoint, M365 and Viva Cloud Native Platforms: Azure, AWS and Private Cloud Security Practice: M365, Fortinet, SOC, SIEM, etc. Software Engineering: AppDev and Data & AI This should be combined with experience and high level understanding of large scale cloud solutions architecture, novel commercial and delivery models, helping clients transforming into an AI powered, cloud first business, developing new services using digital, becoming more agile and resilient. We are looking for candidates who have a broad set of technology, delivery, and commercial skills, who can demonstrate an ability to shape our client's transformation agenda, innovation roadmaps and new operating models. Key Responsibilities Client facing: Build a meaningful understanding of each industry's prevalent business and technology challenges and opportunities. Continually engage our client's C suite and heads of services to discover their business requirements (i.e. opportunities, threats and challenges) and use this information to assist in the identification of potential sales, solutions and capabilities pull through from Nasstar. Align their business goals and imperatives with well formed technology roadmaps powered by Microsoft and AWS cloud technologies and services. Provide client advisory services and thought leadership to your industry accounts broadly. Growth forecasting and planning: Uncover transformation opportunities across cloud, AI and other emergent technologies. Build sales opportunity pipelines in line with Nasstar's annual growth targets. Increase our share of wallet with key clients in your aligned industries. Solutioning of large and complex deals: Develop and describe compelling value propositions in response to the client's requirements, informing win strategies and calling out Nasstar unique selling points (USPs) and proof points using our Polaris Framework and ICC capabilities. Shape the end to end solutions with the right business value for the client, at the right price point, with the right commercial construct, and appropriate risk profile. Shape the end to end solution with the right technologies and delivery methods, to drive the transformation required by our clients. Deliver concise and impactful presentations on the value propositions and technical topics in front of a senior audience, including C Levels. Direct the Solution Managers and Leads on scoping the technical solutions, estimates and delivery approaches that best fit the ways of working which is specific to each client. Direct the Solution Architects on scoping the managed services solutions, estimates and delivery approaches that best fit the ways of working which is specific to each client. Where required, lead the proposal and statements of work development and guide this through the relevant reviews, approval, and contracting workflows, seeking buy in from PLs and PMO from concept to deal closure. Lead peer reviews with Nasstar and client stakeholders to gain solution and delivery approach approval and sign off, ensuring the solution is commercially sound. Portfolio and industry PoV development: Develop and describe compelling industry points of view and inform Nasstar's portfolio on the potential of industry solutions. Develop and describe value propositions in response to the industry requirements, informing win strategies and calling out Nasstar unique selling points (USPs) and proof points using our Polaris Framework and ICC capabilities. Growth and personal development: Stay educated on new and emerging transformation approaches and methodologies. Be a lead contributor to Nasstar's Communities of Practice for the purpose of developing and sharing relevant transformation / delivery approaches, processes and standards. Understand the strategic direction set by Nasstar leadership, as it relates to team goals. Skills, Knowledge and Expertise Minimum of 10 years of delivering transformational programmes/projects, including scope that includes managed services and outsourcing. Microsoft specific Data & AI skills / background, i.e. Fabric & Foundry. Extensive experience in project delivery methodologies (agile, waterfall) and client account delivery management. Minimum of 10 years lead large scale solutions using the Microsoft or AWS cloud technologies and services and other technology services. Certifications (desirable, ideally Architectural qualifications such as Togaf or similar, ITIL, Cloud technologies at a fundamental level e.g. AZ900, DP900). Benefits What you can expect from us: At Nasstar, we know the importance of looking after our employees - after all, it's the team that underpins our business! In addition to a competitive salary, supportive teams, and a real opportunity to progress in your career with a forward thinking organisation, our benefits package includes: 25 days' holiday (excluding bank holidays) + Your Birthday Off Flexible working - it's important to maintain a work/life balance, as such, we will consider any written request for flexible working Virtual working - we practice what we preach and empower our people to work remotely Top tech - Leading services and solutions aren't just for our clients; we supply best of breed software and hardware for all our staff too 4x annual salary life assurance Health cash plan Retail discounts and other perks from major brands
Simpson Associates transforms raw data into actionable insights that drive positive change. Our Microsoft data expertise, our specialist sector knowledge, plus our innovative and trusted advice and guidance are just some of the reasons clients choose to work with us. Our mission is to help purpose-led organisations from within the public and private sectors to harness data as a lever for change and enable them to realise business value more quickly. We provide the full range of services to support organisations on their data transformation journey. From advisory support and data strategy, to developing Data & AI solutions, right through to providing a range of managed services. We are a Microsoft Solutions Partner, holding Specialisations in AI Platform on Microsoft Azure, Analytics on Microsoft Azure, Data Warehouse Migration to Microsoft Azure and Migrate Enterprise Applications to Microsoft Azure, as well as holding Solutions Partner designations in Data & AI (Azure); Digital & App Innovation (Azure); Infrastructure (Azure) and Security. But it's not just about the badges. We are proud to be recognised as the winner of the 2024 Microsoft Community Response Partner of the Year award, reflecting our dedication to using technology for positive change. We are also a Databricks partner, and an IBM Gold Partner, specialising in Cognos Analytics and Planning Analytics. With offices in York and Sheffield, and a team based throughout the UK - we champion creativity, innovation and collaboration in the workplace. The Role A Cloud Platform Security Consultant to partner with our clients in designing, implementing, and maintaining security controls across their Azure cloud platforms. Key Responsibilities Security Monitoring & Threat Detection Design and maintain security monitoring solutions using Microsoft Sentinel and other SIEM tools Develop and optimise KQL queries for threat hunting, detection rules, and analytics Investigate security incidents and coordinate response activities Map threats and detections to the MITRE ATT&CK framework Perform continuous threat intelligence analysis and proactive threat hunting Cloud Security Architecture Implement and maintain security controls across Azure landing zones and workloads Secure AI and machine learning workloads, including Azure OpenAI, Azure ML, and Cognitive Services Design and enforce network security policies using Azure Firewall, NSGs, and Private Link Implement identity and access management controls using Entra ID and conditional access Ensure compliance with relevant cyber security legislation (GDPR, NIS Directive, UK Cyber Essentials, etc.) Develop security automation workflows using Azure Logic Apps, Functions, and Sentinel playbooks Implement security controls as code (policy as code, infrastructure as code) Build automated security testing and validation pipelines Create custom connectors and integrations for security tooling Governance & Compliance Maintain security policies and standards aligned to industry frameworks Conduct security assessments and gap analyses Support audit and compliance activities for public sector clients Produce security documentation, reports, and technical guidance Skills and Attributes Required Strong hands-on experience with Microsoft Sentinel including workbook creation, analytics rules, and automation Advanced Search Query Language proficiency, ideally KQL, for log analysis and threat hunting Deep knowledge of Azure security services (Defender for Cloud, Key Vault, Managed Identity, etc.) Experience with SIEM tools and security information management Understanding of the MITRE ATT&CK framework and its practical application Strong analytical skills with ability to investigate complex security incidents Proven ability to develop automation solutions for security operations Knowledge of cyber security legislation and regulatory requirements (UK public sector experience advantageous) Experience with Azure DevOps, Infrastructure as Code (Terraform/Bicep) Experience securing AI workloads and understanding AI-specific threat vectors Experience in stakeholder management Experience in Project Management - Prince 2 or Agile Methodologies Advantageous Qualifications and Skills Degree in Computer Science, Cyber Security, or related field (or equivalent experience) Industry certifications such as CISSP, CEH, GIAC, or Microsoft security certifications Microsoft security certifications (SC-200, SC-300, AZ-500) Knowledge of data platform security (Databricks, Synapse, Fabric) Experience with Microsoft Purview for data security, including Sensitive Information Types, DLP policies, and DSPM Familiarity with penetration testing and vulnerability management tools Experience working with NHS, police, or local government clients Understanding of FinOps and cloud cost optimisation Simpson Associates reserves the right to close the recruitment process at any time.
Feb 27, 2026
Full time
Simpson Associates transforms raw data into actionable insights that drive positive change. Our Microsoft data expertise, our specialist sector knowledge, plus our innovative and trusted advice and guidance are just some of the reasons clients choose to work with us. Our mission is to help purpose-led organisations from within the public and private sectors to harness data as a lever for change and enable them to realise business value more quickly. We provide the full range of services to support organisations on their data transformation journey. From advisory support and data strategy, to developing Data & AI solutions, right through to providing a range of managed services. We are a Microsoft Solutions Partner, holding Specialisations in AI Platform on Microsoft Azure, Analytics on Microsoft Azure, Data Warehouse Migration to Microsoft Azure and Migrate Enterprise Applications to Microsoft Azure, as well as holding Solutions Partner designations in Data & AI (Azure); Digital & App Innovation (Azure); Infrastructure (Azure) and Security. But it's not just about the badges. We are proud to be recognised as the winner of the 2024 Microsoft Community Response Partner of the Year award, reflecting our dedication to using technology for positive change. We are also a Databricks partner, and an IBM Gold Partner, specialising in Cognos Analytics and Planning Analytics. With offices in York and Sheffield, and a team based throughout the UK - we champion creativity, innovation and collaboration in the workplace. The Role A Cloud Platform Security Consultant to partner with our clients in designing, implementing, and maintaining security controls across their Azure cloud platforms. Key Responsibilities Security Monitoring & Threat Detection Design and maintain security monitoring solutions using Microsoft Sentinel and other SIEM tools Develop and optimise KQL queries for threat hunting, detection rules, and analytics Investigate security incidents and coordinate response activities Map threats and detections to the MITRE ATT&CK framework Perform continuous threat intelligence analysis and proactive threat hunting Cloud Security Architecture Implement and maintain security controls across Azure landing zones and workloads Secure AI and machine learning workloads, including Azure OpenAI, Azure ML, and Cognitive Services Design and enforce network security policies using Azure Firewall, NSGs, and Private Link Implement identity and access management controls using Entra ID and conditional access Ensure compliance with relevant cyber security legislation (GDPR, NIS Directive, UK Cyber Essentials, etc.) Develop security automation workflows using Azure Logic Apps, Functions, and Sentinel playbooks Implement security controls as code (policy as code, infrastructure as code) Build automated security testing and validation pipelines Create custom connectors and integrations for security tooling Governance & Compliance Maintain security policies and standards aligned to industry frameworks Conduct security assessments and gap analyses Support audit and compliance activities for public sector clients Produce security documentation, reports, and technical guidance Skills and Attributes Required Strong hands-on experience with Microsoft Sentinel including workbook creation, analytics rules, and automation Advanced Search Query Language proficiency, ideally KQL, for log analysis and threat hunting Deep knowledge of Azure security services (Defender for Cloud, Key Vault, Managed Identity, etc.) Experience with SIEM tools and security information management Understanding of the MITRE ATT&CK framework and its practical application Strong analytical skills with ability to investigate complex security incidents Proven ability to develop automation solutions for security operations Knowledge of cyber security legislation and regulatory requirements (UK public sector experience advantageous) Experience with Azure DevOps, Infrastructure as Code (Terraform/Bicep) Experience securing AI workloads and understanding AI-specific threat vectors Experience in stakeholder management Experience in Project Management - Prince 2 or Agile Methodologies Advantageous Qualifications and Skills Degree in Computer Science, Cyber Security, or related field (or equivalent experience) Industry certifications such as CISSP, CEH, GIAC, or Microsoft security certifications Microsoft security certifications (SC-200, SC-300, AZ-500) Knowledge of data platform security (Databricks, Synapse, Fabric) Experience with Microsoft Purview for data security, including Sensitive Information Types, DLP policies, and DSPM Familiarity with penetration testing and vulnerability management tools Experience working with NHS, police, or local government clients Understanding of FinOps and cloud cost optimisation Simpson Associates reserves the right to close the recruitment process at any time.
Senior Akamai Security Engineer Location: Knutsford (Hybrid, 3 Days per Week Onsite) Start Date: ASAP Duration: 30/11/2026 Rate: £630p/d max via Umbrella Role Description We are seeking a Senior Akamai Security Engineer to lead the design, deployment, and optimization of Akamai security solutions across our digital platforms. This role ensures robust protection against web threats, enhances performance, and enforces security best practices across global environments. Key Responsibilities Architect, configure, and optimize Akamai security products (Kona Site Defender, Bot Manager, WAF, CDN). Lead end-to-end implementation of Akamai security policies and custom rulesets. Conduct threat analysis, log monitoring, and security incident response related to web traffic. Implement and maintain rate limiting, bot mitigation, DDoS protection, and zero trust controls. Collaborate with engineering and application teams to embed secure Akamai configurations into deployments. Manage Akamai property configurations, edge redirects, certificates, and traffic routing rules. Perform tuning of WAF rules to reduce false positives and improve threat coverage. Provide technical leadership, documentation, and guidance on Akamai best practices. Required Skills & Experience Extensive hands on experience with Akamai platform (KSD, WAF, Bot Manager, EdgeWorkers, CDN). Strong understanding of web security concepts: OWASP Top 10, DDoS, bot threats, API protection. Proficiency in HTTP/S, TCP/IP, DNS, TLS, CDN optimisation, and caching strategies. Experience managing large scale, high traffic web applications. Scripting or automation experience (Python, Shell, Akamai APIs). Strong analytical, troubleshooting, and performance tuning skills. Nice to Have Akamai certifications (ACE, Akamai Security Architect). Experience with cloud platforms (Azure, AWS, GCP). Familiarity with DevSecOps, CI/CD, and Infrastructure as Code. Knowledge of SIEM tools and security analytics.
Feb 27, 2026
Full time
Senior Akamai Security Engineer Location: Knutsford (Hybrid, 3 Days per Week Onsite) Start Date: ASAP Duration: 30/11/2026 Rate: £630p/d max via Umbrella Role Description We are seeking a Senior Akamai Security Engineer to lead the design, deployment, and optimization of Akamai security solutions across our digital platforms. This role ensures robust protection against web threats, enhances performance, and enforces security best practices across global environments. Key Responsibilities Architect, configure, and optimize Akamai security products (Kona Site Defender, Bot Manager, WAF, CDN). Lead end-to-end implementation of Akamai security policies and custom rulesets. Conduct threat analysis, log monitoring, and security incident response related to web traffic. Implement and maintain rate limiting, bot mitigation, DDoS protection, and zero trust controls. Collaborate with engineering and application teams to embed secure Akamai configurations into deployments. Manage Akamai property configurations, edge redirects, certificates, and traffic routing rules. Perform tuning of WAF rules to reduce false positives and improve threat coverage. Provide technical leadership, documentation, and guidance on Akamai best practices. Required Skills & Experience Extensive hands on experience with Akamai platform (KSD, WAF, Bot Manager, EdgeWorkers, CDN). Strong understanding of web security concepts: OWASP Top 10, DDoS, bot threats, API protection. Proficiency in HTTP/S, TCP/IP, DNS, TLS, CDN optimisation, and caching strategies. Experience managing large scale, high traffic web applications. Scripting or automation experience (Python, Shell, Akamai APIs). Strong analytical, troubleshooting, and performance tuning skills. Nice to Have Akamai certifications (ACE, Akamai Security Architect). Experience with cloud platforms (Azure, AWS, GCP). Familiarity with DevSecOps, CI/CD, and Infrastructure as Code. Knowledge of SIEM tools and security analytics.
Location: London Other locations: Anywhere in Country Date: 9 Feb 2026 Requisition ID: Security Architect - Senior Consultant About EY At EY, we are committed to building a better working world. Our Cybersecurity Consulting Practice is rapidly expanding, and we are investing in our capabilities to meet the increasing demand for cybersecurity solutions. Join us and be part of a global team of over 13,000 professionals dedicated to delivering cutting edge security transformation programs and services. The Opportunity As a Senior Consultant in Cybersecurity, you will contribute to the delivery of high quality security architecture and engineering outcomes for our clients. You will work as part of delivery teams, supporting the design and documentation of secure solutions and providing technical input across a range of cybersecurity engagements. Location London, Manchester or Scotland Key Responsibilities Support the design of enterprise and IT/OT converged security architectures, including secure network segmentation and access models. Help to produce HLD and LLD artefacts, dataflows and threat models for enterprise and IT/OT converged environments. Contribute to cloud security architecture designs, including secure landing zones, identity integration, connectivity patterns and secrets management. Analyse systems and networks and propose segmentation, secure access methodology and reference designs that engineering teams can implement. Enhance governance and compliance by aligning solutions and controls to various frameworks and standards such as NIST800, ISO27001 and NIS2. Support client workshops, design reviews and technical discussions. Contribute to internal knowledge sharing, reusable assets and capability development within the Cyber Engineering team. Skills and Attributes for Success Ability to work and thrive in a fast paced, result driven environment. Communication skills, both oral and written, tailored to diverse audiences. A proactive learner with a strong interest in developing deeper security architecture expertise. Strong team player who values collaboration and encourages open communication among team members. To Qualify for the Role, You Must Have Demonstrable experience in cybersecurity or security architecture, ideally in a consulting or enterprise environment. Practical experience producing security design documentation and architecture artefacts. Solid understanding of: Network and cloud fundamentals Identity and access management concepts Working knowledge of any cybersecurity framework or standard such as NIST or ISO 27001. Experience using architecture and design tools. Willingness to travel for client delivery (domestic and international as required). Ability to obtain and maintain UK Government security clearances. Ideally You'll Also Have Experience supporting security transformation or modernisation programs. Familiarity with: SIEM / SOAR technologies MITRE ATT&CK. Awareness of modern access management such as PAM and ZTNA. Exposure to Microsoft security technologies such as: Microsoft Sentinel Certifications such as Microsoft AZ104, AZ500, CCNA, Network Plus or equivalent. Please note: The successful candidate must undergo and pass checks in line with SC (Security Check) clearance standards after joining EY. These checks may include, but are not limited to, verification of identity, right to work in the UK, employment history, proof of address, and unspent criminal convictions. Candidates must be a UK national or have been a resident in the UK for a minimum of five years and ensure that they have not spent more than six months outside the UK. Join Us At EY, you'll have the chance to build a meaningful and fulfilling career, supported by an inclusive culture and cutting edge technology. Together, we can create a better working world for all. What we look for We're interested in people with integrity who can collaborate with people from a diverse range of backgrounds and crucially a growth mindset. What we offer We offer a competitive remuneration package where you'll be rewarded for your individual and team performance. Our comprehensive Total Rewards package includes support for flexible working and career development, and with FlexEY you can select benefits that suit your needs, covering holidays, health and well being, insurance, savings and a wide range of discounts, offers and promotions. Plus, we offer: Continuous learning: You'll develop the mindset and skills to navigate whatever comes next. Success as defined by you: We'll provide the tools and flexibility, so you can make a meaningful impact, your way. Transformative leadership: We'll give you the insights, coaching and confidence to be the leader the world needs. Diverse and inclusive culture: You'll be embraced for who you are and empowered to use your voice to help others find theirs. Apply Now
Feb 27, 2026
Full time
Location: London Other locations: Anywhere in Country Date: 9 Feb 2026 Requisition ID: Security Architect - Senior Consultant About EY At EY, we are committed to building a better working world. Our Cybersecurity Consulting Practice is rapidly expanding, and we are investing in our capabilities to meet the increasing demand for cybersecurity solutions. Join us and be part of a global team of over 13,000 professionals dedicated to delivering cutting edge security transformation programs and services. The Opportunity As a Senior Consultant in Cybersecurity, you will contribute to the delivery of high quality security architecture and engineering outcomes for our clients. You will work as part of delivery teams, supporting the design and documentation of secure solutions and providing technical input across a range of cybersecurity engagements. Location London, Manchester or Scotland Key Responsibilities Support the design of enterprise and IT/OT converged security architectures, including secure network segmentation and access models. Help to produce HLD and LLD artefacts, dataflows and threat models for enterprise and IT/OT converged environments. Contribute to cloud security architecture designs, including secure landing zones, identity integration, connectivity patterns and secrets management. Analyse systems and networks and propose segmentation, secure access methodology and reference designs that engineering teams can implement. Enhance governance and compliance by aligning solutions and controls to various frameworks and standards such as NIST800, ISO27001 and NIS2. Support client workshops, design reviews and technical discussions. Contribute to internal knowledge sharing, reusable assets and capability development within the Cyber Engineering team. Skills and Attributes for Success Ability to work and thrive in a fast paced, result driven environment. Communication skills, both oral and written, tailored to diverse audiences. A proactive learner with a strong interest in developing deeper security architecture expertise. Strong team player who values collaboration and encourages open communication among team members. To Qualify for the Role, You Must Have Demonstrable experience in cybersecurity or security architecture, ideally in a consulting or enterprise environment. Practical experience producing security design documentation and architecture artefacts. Solid understanding of: Network and cloud fundamentals Identity and access management concepts Working knowledge of any cybersecurity framework or standard such as NIST or ISO 27001. Experience using architecture and design tools. Willingness to travel for client delivery (domestic and international as required). Ability to obtain and maintain UK Government security clearances. Ideally You'll Also Have Experience supporting security transformation or modernisation programs. Familiarity with: SIEM / SOAR technologies MITRE ATT&CK. Awareness of modern access management such as PAM and ZTNA. Exposure to Microsoft security technologies such as: Microsoft Sentinel Certifications such as Microsoft AZ104, AZ500, CCNA, Network Plus or equivalent. Please note: The successful candidate must undergo and pass checks in line with SC (Security Check) clearance standards after joining EY. These checks may include, but are not limited to, verification of identity, right to work in the UK, employment history, proof of address, and unspent criminal convictions. Candidates must be a UK national or have been a resident in the UK for a minimum of five years and ensure that they have not spent more than six months outside the UK. Join Us At EY, you'll have the chance to build a meaningful and fulfilling career, supported by an inclusive culture and cutting edge technology. Together, we can create a better working world for all. What we look for We're interested in people with integrity who can collaborate with people from a diverse range of backgrounds and crucially a growth mindset. What we offer We offer a competitive remuneration package where you'll be rewarded for your individual and team performance. Our comprehensive Total Rewards package includes support for flexible working and career development, and with FlexEY you can select benefits that suit your needs, covering holidays, health and well being, insurance, savings and a wide range of discounts, offers and promotions. Plus, we offer: Continuous learning: You'll develop the mindset and skills to navigate whatever comes next. Success as defined by you: We'll provide the tools and flexibility, so you can make a meaningful impact, your way. Transformative leadership: We'll give you the insights, coaching and confidence to be the leader the world needs. Diverse and inclusive culture: You'll be embraced for who you are and empowered to use your voice to help others find theirs. Apply Now
Job Description Job Title: Network, Data and Zero Trust Consultant Location: London Salary: Competitive Salary & Package (Dependent on Experience) Level: Accenture will be hiring at Consultant level Note: Due to the nature of client work you will need to go through a Security Clearance process as part of this role, which requires 5+ years UK address history at the point of application. In our team you will learn: The fundamentals of designing, supporting, and maintaining enterprise-scale Zero Trust security architectures. You will be given the opportunity to work hands on with leading Zero Trust platforms and develop foundational knowledge of modern identity centric, cloud first security models. As part of a collaborative team, you will assist in shaping secure solutions, contribute to strategic roadmaps, and support secure transformation across networks, applications, endpoints, and data. You will also gain exposure to enterprise data protection strategies, including data classification, encryption, and secure data flows, as well as network modernisation techniques such as segmentation, secure connectivity, and monitoring. Zero Trust Consultant Responsibilities: Architecture & Design Support Assisting with the design and implementation of Zero Trust architectures for enterprise environments, supporting senior team members in covering users, devices, applications, data, and networks. Supporting secure access patterns using cloud based security and zero trust platforms under guidance. Contributing to enterprise wide security blueprints and reference architectures aligned with Zero Trust principles, including data protection and network segmentation. Learning to design scalable identity centric security controls using SSO, MFA, device posture, and least privilege access models, with mentorship. Collaborate with networking teams to support WAN and remote access modernisation using cloud security and SASE frameworks, and to ensure secure data flows across enterprise networks. Implementation & Hands On Experience Assisting with policy creation and fine tuning (e.g., URL filtering, DLP, CASB, FWaaS), as well as data loss prevention and encryption controls. Supporting app segmentation and connector deployment and contributing to network segmentation projects. Assisting with Zero Trust Client configuration and rollout, including secure network and data access. Integrate Zero Trust solutions with identity providers (Entra AD, Okta), SIEM/SOAR systems, endpoint platforms, and data repositories. Assisting infrastructure teams in migrating legacy VPN, proxy, and firewall solutions to cloud native Zero Trust models, and supporting secure network and data migration activities. Participating in proof of concept evaluations and technical validation sessions as a supporting team member, including data and network security solutions. Professional Development & Team Collaboration Supporting the team's Zero Trust initiatives and roadmap, contributing ideas around data protection and network modernisation. Ensure security best practices are followed across projects and tasks, including network and data security controls. Assisting with threat modelling, gap assessments, and risk evaluations for both data and network assets. Promoting the adoption of modern security frameworks and secure by design principles within the team, including those related to data and network security. Operations & Continuous Improvement Assisting in troubleshooting Zero Trust deployment issues, performance concerns, identity related access failures, network connectivity issues, and data protection incidents. Monitoring and helping to tune telemetry, logs, and analytics to maintain operational performance across networks and data platforms. Actively participating in team training and knowledge sharing sessions to develop your skills in data and network security. Key Skills and Qualifications Technical Foundations Up to 2 years' experience in IT, cybersecurity, networking, data protection, or related technical roles (including placements or internships). Familiarity with concepts such as Zero Trust, cloud platforms, identity and access management, data classification, encryption, or network segmentation is an advantage. Basic understanding of networking, endpoint security, cloud technologies, or data protection strategies is desirable. Eagerness to learn new technologies and security practices, including those related to network and data security. Soft Skills Excellent communication and teamwork skills. Ability to ask questions and seek guidance from senior colleagues in areas of data and network security. Adaptability and willingness to take on new challenges. A collaborative approach, showing respect for all team members and supporting inclusion and diversity. Set yourself apart Entry level certifications such as CompTIA Security+, Microsoft Certified: Security, Compliance, and Identity Fundamentals, Cisco Certified Network Associate (CCNA), or equivalent. Relevant technical training in cybersecurity, cloud, networking, or data protection. Any exposure to SASE/SSE, network security, or data centric platforms is a bonus. A demonstrable enthusiasm for security, technology, data protection, networking, and continuous learning. What's in it for you At Accenture, in addition to a competitive basic salary, you will also have an extensive benefits package which includes 25 days' vacation per year, private medical insurance and 3 extra days leave per year for charitable work of your choice! Additional Information Flexibility and mobility are required to deliver this role as there may be requirements to spend time onsite with our clients and partners to enable delivery of the first class services we are known for. Closing Date for Applications: 31/03/2026 Accenture reserves the right to close the role prior to this date should a suitable applicant be found. EU Equal Employment Opportunity Statement All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law. Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process. Accenture is committed to providing veteran employment opportunities to our service men and women. Please read Accenture's Recruiting and Hiring Statement for more information on how we process your data during the Recruiting and Hiring process. About Accenture We work with one shared purpose: to deliver on the promise of technology and human ingenuity. Every day, more than 775,000 of us help our stakeholders continuously reinvent. Together, we drive positive change and deliver value to our clients, partners, shareholders, communities, and each other. We believe that delivering value requires innovation, and innovation thrives in an inclusive and diverse environment. We actively foster a workplace free from bias, where everyone feels a sense of belonging and is respected and empowered to do their best work. At Accenture, we see well being holistically, supporting our people's physical, mental, and financial health. We also provide opportunities to keep skills relevant through certifications, learning, and diverse work experiences. We're proud to be consistently recognized as one of the World's Best Workplaces . Join Accenture to work at the heart of change. Visit us at .
Feb 27, 2026
Full time
Job Description Job Title: Network, Data and Zero Trust Consultant Location: London Salary: Competitive Salary & Package (Dependent on Experience) Level: Accenture will be hiring at Consultant level Note: Due to the nature of client work you will need to go through a Security Clearance process as part of this role, which requires 5+ years UK address history at the point of application. In our team you will learn: The fundamentals of designing, supporting, and maintaining enterprise-scale Zero Trust security architectures. You will be given the opportunity to work hands on with leading Zero Trust platforms and develop foundational knowledge of modern identity centric, cloud first security models. As part of a collaborative team, you will assist in shaping secure solutions, contribute to strategic roadmaps, and support secure transformation across networks, applications, endpoints, and data. You will also gain exposure to enterprise data protection strategies, including data classification, encryption, and secure data flows, as well as network modernisation techniques such as segmentation, secure connectivity, and monitoring. Zero Trust Consultant Responsibilities: Architecture & Design Support Assisting with the design and implementation of Zero Trust architectures for enterprise environments, supporting senior team members in covering users, devices, applications, data, and networks. Supporting secure access patterns using cloud based security and zero trust platforms under guidance. Contributing to enterprise wide security blueprints and reference architectures aligned with Zero Trust principles, including data protection and network segmentation. Learning to design scalable identity centric security controls using SSO, MFA, device posture, and least privilege access models, with mentorship. Collaborate with networking teams to support WAN and remote access modernisation using cloud security and SASE frameworks, and to ensure secure data flows across enterprise networks. Implementation & Hands On Experience Assisting with policy creation and fine tuning (e.g., URL filtering, DLP, CASB, FWaaS), as well as data loss prevention and encryption controls. Supporting app segmentation and connector deployment and contributing to network segmentation projects. Assisting with Zero Trust Client configuration and rollout, including secure network and data access. Integrate Zero Trust solutions with identity providers (Entra AD, Okta), SIEM/SOAR systems, endpoint platforms, and data repositories. Assisting infrastructure teams in migrating legacy VPN, proxy, and firewall solutions to cloud native Zero Trust models, and supporting secure network and data migration activities. Participating in proof of concept evaluations and technical validation sessions as a supporting team member, including data and network security solutions. Professional Development & Team Collaboration Supporting the team's Zero Trust initiatives and roadmap, contributing ideas around data protection and network modernisation. Ensure security best practices are followed across projects and tasks, including network and data security controls. Assisting with threat modelling, gap assessments, and risk evaluations for both data and network assets. Promoting the adoption of modern security frameworks and secure by design principles within the team, including those related to data and network security. Operations & Continuous Improvement Assisting in troubleshooting Zero Trust deployment issues, performance concerns, identity related access failures, network connectivity issues, and data protection incidents. Monitoring and helping to tune telemetry, logs, and analytics to maintain operational performance across networks and data platforms. Actively participating in team training and knowledge sharing sessions to develop your skills in data and network security. Key Skills and Qualifications Technical Foundations Up to 2 years' experience in IT, cybersecurity, networking, data protection, or related technical roles (including placements or internships). Familiarity with concepts such as Zero Trust, cloud platforms, identity and access management, data classification, encryption, or network segmentation is an advantage. Basic understanding of networking, endpoint security, cloud technologies, or data protection strategies is desirable. Eagerness to learn new technologies and security practices, including those related to network and data security. Soft Skills Excellent communication and teamwork skills. Ability to ask questions and seek guidance from senior colleagues in areas of data and network security. Adaptability and willingness to take on new challenges. A collaborative approach, showing respect for all team members and supporting inclusion and diversity. Set yourself apart Entry level certifications such as CompTIA Security+, Microsoft Certified: Security, Compliance, and Identity Fundamentals, Cisco Certified Network Associate (CCNA), or equivalent. Relevant technical training in cybersecurity, cloud, networking, or data protection. Any exposure to SASE/SSE, network security, or data centric platforms is a bonus. A demonstrable enthusiasm for security, technology, data protection, networking, and continuous learning. What's in it for you At Accenture, in addition to a competitive basic salary, you will also have an extensive benefits package which includes 25 days' vacation per year, private medical insurance and 3 extra days leave per year for charitable work of your choice! Additional Information Flexibility and mobility are required to deliver this role as there may be requirements to spend time onsite with our clients and partners to enable delivery of the first class services we are known for. Closing Date for Applications: 31/03/2026 Accenture reserves the right to close the role prior to this date should a suitable applicant be found. EU Equal Employment Opportunity Statement All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law. Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process. Accenture is committed to providing veteran employment opportunities to our service men and women. Please read Accenture's Recruiting and Hiring Statement for more information on how we process your data during the Recruiting and Hiring process. About Accenture We work with one shared purpose: to deliver on the promise of technology and human ingenuity. Every day, more than 775,000 of us help our stakeholders continuously reinvent. Together, we drive positive change and deliver value to our clients, partners, shareholders, communities, and each other. We believe that delivering value requires innovation, and innovation thrives in an inclusive and diverse environment. We actively foster a workplace free from bias, where everyone feels a sense of belonging and is respected and empowered to do their best work. At Accenture, we see well being holistically, supporting our people's physical, mental, and financial health. We also provide opportunities to keep skills relevant through certifications, learning, and diverse work experiences. We're proud to be consistently recognized as one of the World's Best Workplaces . Join Accenture to work at the heart of change. Visit us at .
At EY, we're all in to shape your future with confidence. We'll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world. Security Architect Senior Consultant About EY At EY, we are committed to building a better working world. Our Cybersecurity Consulting Practice is rapidly expanding, and we are investing in our capabilities to meet the increasing demand for cybersecurity solutions. Join us and be part of a global team of over 13,000 professionals dedicated to delivering cutting edge security transformation programs and services. The Opportunity As a Senior Consultant in Cybersecurity, you will contribute to the delivery of high quality security architecture and engineering outcomes for our clients. You will work as part of delivery teams, supporting the design and documentation of secure solutions and providing technical input across a range of cybersecurity engagements. Location - London, Manchester or Scotland Key Responsibilities Support the design of enterprise and IT/OT converged security architectures, including secure network segmentation and access models. Help to produce HLD and LLD artefacts, dataflows and threat models for enterprise and IT/OT converged environments. Contribute to cloud security architecture designs, including secure landing zones, identity integration, connectivity patterns and secrets management. Analyse systems and networks and propose segmentation, secure access methodology and reference designs that engineering teams can implement. Enhance governance and compliance by aligning solutions and controls to various frameworks and standards such as NIST 800, ISO 27001 and NIS2. Support client workshops, design reviews and technical discussions. Contribute to internal knowledge sharing, reusable assets and capability development within the Cyber Engineering team. Skills and Attributes for Success Ability to work and thrive in fast paced, result driven environments. Communication skills, both oral and written, tailored to diverse audiences. A proactive learner with a strong interest in developing deeper security architecture expertise. Strong team player who values collaboration and encourages open communication among team members. To Qualify for the Role, You Must Have Demonstrable experience in cybersecurity or security architecture, ideally in a consulting or enterprise environment. Practical experience producing security design documentation and architecture artefacts. Solid understanding of: Network and cloud fundamentals Identity and access management concepts Secure system design principles Working knowledge of any cybersecurity framework or standard such as NIST or ISO 27001. Experience using architecture and design tools. Willingness to travel for client delivery (domestic and international as required). Ideally, You'll Also Have Experience supporting security transformation or modernization programs. Familiarity with: SOC / MDR operating models SIEM / SOAR technologies MITRE ATT&CK. Awareness of modern access management such as PAM and ZTNA. Exposure to Microsoft security technologies such as: Microsoft Sentinel Microsoft Entra ID Microsoft Defender for Cloud. Certifications such as Microsoft AZ104, AZ500, CCNA, Network Plus or equivalent. Ability to obtain and maintain UK Government security clearances. Please note: The successful candidate must undergo and pass checks in line with SC (Security Check) clearance standards after joining EY. These checks may include, but are not limited to, verification of identity, right to work in the UK, employment history, proof of address and unspent criminal convictions. Candidates must be a UK national or have been a resident in the UK for a minimum of five years and ensure that they have not spent more than six months outside the UK. Join Us: At EY, you'll have the chance to build a meaningful and fulfilling career, supported by an inclusive culture and cutting edge technology. Together, we can create a better working world for all. What we look for We're interested in people with integrity who can collaborate with people from a diverse range of backgrounds and crucially a growth mindset. What we offer Continuous learning: You'll develop the mindset and skills to navigate whatever comes next. Success as defined by you: We'll provide the tools and flexibility, so you can make a meaningful impact, your way. Transformative leadership: We'll give you the insights, coaching and confidence to be the leader the world needs. Diverse and inclusive culture: You'll be embraced for who you are and empowered to use your voice to help others find theirs. If you can demonstrate that you meet the criteria above, please contact us as soon as possible. Apply Now TCCyberUKI2026 Cyber2026 EY Building a better working world EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets. Enabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for the most pressing issues of today and tomorrow. EY teams work across a full spectrum of services in assurance, consulting, tax, strategy and transactions. Fueled by sector insights, a globally connected, multi disciplinary network and diverse ecosystem partners, EY teams can provide services in more than 150 countries and territories.
Feb 26, 2026
Full time
At EY, we're all in to shape your future with confidence. We'll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world. Security Architect Senior Consultant About EY At EY, we are committed to building a better working world. Our Cybersecurity Consulting Practice is rapidly expanding, and we are investing in our capabilities to meet the increasing demand for cybersecurity solutions. Join us and be part of a global team of over 13,000 professionals dedicated to delivering cutting edge security transformation programs and services. The Opportunity As a Senior Consultant in Cybersecurity, you will contribute to the delivery of high quality security architecture and engineering outcomes for our clients. You will work as part of delivery teams, supporting the design and documentation of secure solutions and providing technical input across a range of cybersecurity engagements. Location - London, Manchester or Scotland Key Responsibilities Support the design of enterprise and IT/OT converged security architectures, including secure network segmentation and access models. Help to produce HLD and LLD artefacts, dataflows and threat models for enterprise and IT/OT converged environments. Contribute to cloud security architecture designs, including secure landing zones, identity integration, connectivity patterns and secrets management. Analyse systems and networks and propose segmentation, secure access methodology and reference designs that engineering teams can implement. Enhance governance and compliance by aligning solutions and controls to various frameworks and standards such as NIST 800, ISO 27001 and NIS2. Support client workshops, design reviews and technical discussions. Contribute to internal knowledge sharing, reusable assets and capability development within the Cyber Engineering team. Skills and Attributes for Success Ability to work and thrive in fast paced, result driven environments. Communication skills, both oral and written, tailored to diverse audiences. A proactive learner with a strong interest in developing deeper security architecture expertise. Strong team player who values collaboration and encourages open communication among team members. To Qualify for the Role, You Must Have Demonstrable experience in cybersecurity or security architecture, ideally in a consulting or enterprise environment. Practical experience producing security design documentation and architecture artefacts. Solid understanding of: Network and cloud fundamentals Identity and access management concepts Secure system design principles Working knowledge of any cybersecurity framework or standard such as NIST or ISO 27001. Experience using architecture and design tools. Willingness to travel for client delivery (domestic and international as required). Ideally, You'll Also Have Experience supporting security transformation or modernization programs. Familiarity with: SOC / MDR operating models SIEM / SOAR technologies MITRE ATT&CK. Awareness of modern access management such as PAM and ZTNA. Exposure to Microsoft security technologies such as: Microsoft Sentinel Microsoft Entra ID Microsoft Defender for Cloud. Certifications such as Microsoft AZ104, AZ500, CCNA, Network Plus or equivalent. Ability to obtain and maintain UK Government security clearances. Please note: The successful candidate must undergo and pass checks in line with SC (Security Check) clearance standards after joining EY. These checks may include, but are not limited to, verification of identity, right to work in the UK, employment history, proof of address and unspent criminal convictions. Candidates must be a UK national or have been a resident in the UK for a minimum of five years and ensure that they have not spent more than six months outside the UK. Join Us: At EY, you'll have the chance to build a meaningful and fulfilling career, supported by an inclusive culture and cutting edge technology. Together, we can create a better working world for all. What we look for We're interested in people with integrity who can collaborate with people from a diverse range of backgrounds and crucially a growth mindset. What we offer Continuous learning: You'll develop the mindset and skills to navigate whatever comes next. Success as defined by you: We'll provide the tools and flexibility, so you can make a meaningful impact, your way. Transformative leadership: We'll give you the insights, coaching and confidence to be the leader the world needs. Diverse and inclusive culture: You'll be embraced for who you are and empowered to use your voice to help others find theirs. If you can demonstrate that you meet the criteria above, please contact us as soon as possible. Apply Now TCCyberUKI2026 Cyber2026 EY Building a better working world EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets. Enabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for the most pressing issues of today and tomorrow. EY teams work across a full spectrum of services in assurance, consulting, tax, strategy and transactions. Fueled by sector insights, a globally connected, multi disciplinary network and diverse ecosystem partners, EY teams can provide services in more than 150 countries and territories.
