The Financial Times is one of the world's leading news organisations, globally recognised for its authority, integrity and accuracy, with a mission to deliver quality information and services worldwide. At the FT, curiosity thrives and ambitious thinking is rewarded. Together, we help audiences stay better informed and deepen their understanding of the world around them. Our Product & Tech teams drive us forward in an ever-evolving digital landscape, delivering cutting-edge products to over one million digital subscribers daily. Our growth relies on a diverse, dedicated and dynamic group of product, tech, delivery and data specialists. With a supportive culture, entrepreneurial spirit and opportunities at every turn, there are no limits to where your FT career can take you. Build a newsworthy career at the FT. Our commitment to diversity, equity and inclusion We believe in the power of unique perspectives and want all voices in our organisation to be heard, respected and valued. A supportive workplace is one where employees feel they can be themselves and operate to their full potential. We are committed to removing barriers for everyone, with a focus on addressing those faced by underrepresented groups. As Director of Cyber Security, you will be at the forefront of safeguarding the Financial Times' digital landscape, leading critical functions in Cyber Consultancy & Engineering and Cyber Governance . Reporting directly to the Vice President of Cyber Security, you will help drive the strategic vision and operational excellence needed to fortify the FT's cyber defences. This role is pivotal in enabling the organisation to innovate fearlessly and operate with confidence, ensuring resilience against an ever-evolving threat landscape. Your leadership will shape a secure future for the FT, empowering the business to thrive securely in the digital age. Key Responsibilities Secure Development: Collaborate with engineering and IT teams to embed security into systems and applications. Technical Expertise: Provide guidance on secure architecture, secrets management, and best practices. Threat Management: Lead all aspects of penetration testing, bug bounty programs, and vulnerability reporting to mitigate risks and align with regulations. Vendor Relationships: Manage partnerships with security vendors, ensuring value and support. Cyber Governance Compliance and Risk: Ensure adherence to standards like Cyber Essentials, ISO 27001, and GDPR. Manage third-party risks, audits, and a comprehensive risk register. Policy and Governance: Develop and maintain policies, procedures, and a robust governance framework to address evolving threats. Strategic Oversight: Support incident response and provide advice to enhance the organisation's cyber readiness. Leadership and Strategy Culture and Awareness: Foster a security-conscious culture through training and advocacy. Performance Tracking: Define important metrics to measure and communicate the success of security initiatives. Team Development: Lead, mentor, and retain a high-performing team of professionals. Strategic Alignment: Partner with the VP of Cyber Security to align strategies with business objectives and drive impactful change. Required Skills and Experience Proven leadership experience in a senior cyber security role, ideally within a complex, global organisation. Deep expertise in one or more of the following areas: security consultancy, security engineering, vulnerability management or governance. Deep knowledge of modern DevSecOps practices. Experience in leading vulnerability management programs, including expertise in utilising tools and processes for vulnerability scanning, conducting penetration testing, and delivering actionable reporting to support an effective and comprehensive vulnerability management strategy. Excellent communication and stakeholder management skills, with the ability to convey complex technical issues to non-technical audiences. Hands-on experience collaborating with engineering and development teams to integrate security into CI/CD pipelines. Experience in applying and conforming to relevant regulations and standards such as Cyber Essentials, GDPR, ISO 27001, NIST Cybersecurity Framework. Strong analytical and problem-solving skills, with a determined and proactive approach. Knowledge of emerging security trends and threats relevant to the publishing and media industry. Preferred Qualifications Degree in related subject or equivalent experience Professional certifications such as CISSP, CISM, or GIAC are highly desirable. Cloud security certifications such as AWS Certified Security Specialist What's in it for you? Our benefits Our benefits vary by location, but we are committed to providing best-in-class perks across all our offices. These include generous annual leave, medical cover, inclusive parental leave packages, subsidised gym memberships and opportunities to give back to the community. Full details of our benefits are available here. We've embraced a hybrid working model which is 50% of time in the office. We will support specific flexibility requests for all roles where feasible. Accessibility We are a disability confident employer and Valuable 500 signatory. Please let us know if you require any reasonable adjustments/personalisation as part of the application process or to enable you to attend an interview. If you would like to discuss your requirements or have any questions, email and a member of our team will be happy to help.
Feb 14, 2025
Full time
The Financial Times is one of the world's leading news organisations, globally recognised for its authority, integrity and accuracy, with a mission to deliver quality information and services worldwide. At the FT, curiosity thrives and ambitious thinking is rewarded. Together, we help audiences stay better informed and deepen their understanding of the world around them. Our Product & Tech teams drive us forward in an ever-evolving digital landscape, delivering cutting-edge products to over one million digital subscribers daily. Our growth relies on a diverse, dedicated and dynamic group of product, tech, delivery and data specialists. With a supportive culture, entrepreneurial spirit and opportunities at every turn, there are no limits to where your FT career can take you. Build a newsworthy career at the FT. Our commitment to diversity, equity and inclusion We believe in the power of unique perspectives and want all voices in our organisation to be heard, respected and valued. A supportive workplace is one where employees feel they can be themselves and operate to their full potential. We are committed to removing barriers for everyone, with a focus on addressing those faced by underrepresented groups. As Director of Cyber Security, you will be at the forefront of safeguarding the Financial Times' digital landscape, leading critical functions in Cyber Consultancy & Engineering and Cyber Governance . Reporting directly to the Vice President of Cyber Security, you will help drive the strategic vision and operational excellence needed to fortify the FT's cyber defences. This role is pivotal in enabling the organisation to innovate fearlessly and operate with confidence, ensuring resilience against an ever-evolving threat landscape. Your leadership will shape a secure future for the FT, empowering the business to thrive securely in the digital age. Key Responsibilities Secure Development: Collaborate with engineering and IT teams to embed security into systems and applications. Technical Expertise: Provide guidance on secure architecture, secrets management, and best practices. Threat Management: Lead all aspects of penetration testing, bug bounty programs, and vulnerability reporting to mitigate risks and align with regulations. Vendor Relationships: Manage partnerships with security vendors, ensuring value and support. Cyber Governance Compliance and Risk: Ensure adherence to standards like Cyber Essentials, ISO 27001, and GDPR. Manage third-party risks, audits, and a comprehensive risk register. Policy and Governance: Develop and maintain policies, procedures, and a robust governance framework to address evolving threats. Strategic Oversight: Support incident response and provide advice to enhance the organisation's cyber readiness. Leadership and Strategy Culture and Awareness: Foster a security-conscious culture through training and advocacy. Performance Tracking: Define important metrics to measure and communicate the success of security initiatives. Team Development: Lead, mentor, and retain a high-performing team of professionals. Strategic Alignment: Partner with the VP of Cyber Security to align strategies with business objectives and drive impactful change. Required Skills and Experience Proven leadership experience in a senior cyber security role, ideally within a complex, global organisation. Deep expertise in one or more of the following areas: security consultancy, security engineering, vulnerability management or governance. Deep knowledge of modern DevSecOps practices. Experience in leading vulnerability management programs, including expertise in utilising tools and processes for vulnerability scanning, conducting penetration testing, and delivering actionable reporting to support an effective and comprehensive vulnerability management strategy. Excellent communication and stakeholder management skills, with the ability to convey complex technical issues to non-technical audiences. Hands-on experience collaborating with engineering and development teams to integrate security into CI/CD pipelines. Experience in applying and conforming to relevant regulations and standards such as Cyber Essentials, GDPR, ISO 27001, NIST Cybersecurity Framework. Strong analytical and problem-solving skills, with a determined and proactive approach. Knowledge of emerging security trends and threats relevant to the publishing and media industry. Preferred Qualifications Degree in related subject or equivalent experience Professional certifications such as CISSP, CISM, or GIAC are highly desirable. Cloud security certifications such as AWS Certified Security Specialist What's in it for you? Our benefits Our benefits vary by location, but we are committed to providing best-in-class perks across all our offices. These include generous annual leave, medical cover, inclusive parental leave packages, subsidised gym memberships and opportunities to give back to the community. Full details of our benefits are available here. We've embraced a hybrid working model which is 50% of time in the office. We will support specific flexibility requests for all roles where feasible. Accessibility We are a disability confident employer and Valuable 500 signatory. Please let us know if you require any reasonable adjustments/personalisation as part of the application process or to enable you to attend an interview. If you would like to discuss your requirements or have any questions, email and a member of our team will be happy to help.
BACB is a UK bank that offers trade finance and investment expertise to clients in specialist markets, especially Africa and the Middle East. We have been helping businesses with trade finance and complementary products for over half a century, focusing on trade flows to and from Africa and the Middle East as well as real estate in the UK. Our in-depth knowledge of the countries and practices where our clients operate ensures that we put them first. Additional Info Hybrid Working: 3 days onsite, 2 from home Location: City of London Contract Type: Fixed Term Contract Job Summary Reporting to the Head of Operational Risk and working closely with the Head of Information Security, the role will support in managing the Bank's Second line of Defence (2LOD) for cyber security, assuring compliance with the Bank's Information Security Policies and Standards and overseeing the effective implementation of security controls through engagement with the Bank's cyber security operations team (1LOD). Key Work Outputs and Accountabilities Supporting the management of the Bank's Cyber Security function maintaining compliance with our NIST based cyber security framework. Responsible to Head of Operational Risk for Information Security RCSA framework, in particular regulatory compliance, and tolerated risk exposure. Act as Cyber Security expert within the Second Line of Defence (2LOD), providing advice and guidance to 1LOD on best practice cyber security and to business driven change activity. Working with the Bank's Enterprise Architect to ensure solutions are delivered in accordance with BACB's IT Security policies and Standards Ensure the Bank can effectively respond and recover from Cyber Security Incidents. Working with the Head of Information Security on ways to defend the Bank from current cyber threat landscape, identifying emergent threats and recommending innovative controls and mitigations. Work together with the 1LOD and provide evidence that IT Security operations are within risk tolerances (e.g., Evergreen IT, Patching, Vulnerability scanning and Pen Testing) (supported by a 2nd member of the 2LOD team) Oversee compliance with the Bank's cyber security standards and policies liaising with CIO (1LOD) where responsibility spans Lines of Defence. Maintain security performance metrics/ KPIs, recommending improvements where appropriate. Effective use of specialist tools and logging to review the Bank's cyber status and perform requested "deep dives" as necessary as well as define automated alerting mechanisms, ensuring that these alerts can be assessed and investigates independently by 1LOD and 2LOD. Engaging with the CIO and the Head of Information Security to ensure that sufficient/ effective cyber defences are implemented, giving the Bank value for money for any procured Cyber Security solutions, including Cyber Risk Insurance. Responsibility for the effective bank-wide cyber security training and awareness. Required Qualifications and Experience Educated to degree level (or equivalent), possessing at least one security accreditation (e.g., CISM or CISSP) Good working knowledge of cyber security standards (i.e. NIST, ISO 27001, Cyber Essentials, GDPR). Previous experience in the practical use and management of products such as Defender, Darktrace and Mimecast IT security management knowledge, skills, and experience. Familiarity of firewall rulesets and the requirements for effective cyber defence. Familiar with the Microsoft stack from Desktop products to server products to Azure Working in Financial Services or another regulated market, such as aviation or energy. Managing the delivery of an organization-wide information security related strategy Knowledgeable in common Data Leakage reasons and effective prevention. Working with on premise, public and/or hybrid cloud environments Conducting security-based investigations, the management of such inquiries and liaison with external BACB engaged investigation parties.
Feb 10, 2025
Full time
BACB is a UK bank that offers trade finance and investment expertise to clients in specialist markets, especially Africa and the Middle East. We have been helping businesses with trade finance and complementary products for over half a century, focusing on trade flows to and from Africa and the Middle East as well as real estate in the UK. Our in-depth knowledge of the countries and practices where our clients operate ensures that we put them first. Additional Info Hybrid Working: 3 days onsite, 2 from home Location: City of London Contract Type: Fixed Term Contract Job Summary Reporting to the Head of Operational Risk and working closely with the Head of Information Security, the role will support in managing the Bank's Second line of Defence (2LOD) for cyber security, assuring compliance with the Bank's Information Security Policies and Standards and overseeing the effective implementation of security controls through engagement with the Bank's cyber security operations team (1LOD). Key Work Outputs and Accountabilities Supporting the management of the Bank's Cyber Security function maintaining compliance with our NIST based cyber security framework. Responsible to Head of Operational Risk for Information Security RCSA framework, in particular regulatory compliance, and tolerated risk exposure. Act as Cyber Security expert within the Second Line of Defence (2LOD), providing advice and guidance to 1LOD on best practice cyber security and to business driven change activity. Working with the Bank's Enterprise Architect to ensure solutions are delivered in accordance with BACB's IT Security policies and Standards Ensure the Bank can effectively respond and recover from Cyber Security Incidents. Working with the Head of Information Security on ways to defend the Bank from current cyber threat landscape, identifying emergent threats and recommending innovative controls and mitigations. Work together with the 1LOD and provide evidence that IT Security operations are within risk tolerances (e.g., Evergreen IT, Patching, Vulnerability scanning and Pen Testing) (supported by a 2nd member of the 2LOD team) Oversee compliance with the Bank's cyber security standards and policies liaising with CIO (1LOD) where responsibility spans Lines of Defence. Maintain security performance metrics/ KPIs, recommending improvements where appropriate. Effective use of specialist tools and logging to review the Bank's cyber status and perform requested "deep dives" as necessary as well as define automated alerting mechanisms, ensuring that these alerts can be assessed and investigates independently by 1LOD and 2LOD. Engaging with the CIO and the Head of Information Security to ensure that sufficient/ effective cyber defences are implemented, giving the Bank value for money for any procured Cyber Security solutions, including Cyber Risk Insurance. Responsibility for the effective bank-wide cyber security training and awareness. Required Qualifications and Experience Educated to degree level (or equivalent), possessing at least one security accreditation (e.g., CISM or CISSP) Good working knowledge of cyber security standards (i.e. NIST, ISO 27001, Cyber Essentials, GDPR). Previous experience in the practical use and management of products such as Defender, Darktrace and Mimecast IT security management knowledge, skills, and experience. Familiarity of firewall rulesets and the requirements for effective cyber defence. Familiar with the Microsoft stack from Desktop products to server products to Azure Working in Financial Services or another regulated market, such as aviation or energy. Managing the delivery of an organization-wide information security related strategy Knowledgeable in common Data Leakage reasons and effective prevention. Working with on premise, public and/or hybrid cloud environments Conducting security-based investigations, the management of such inquiries and liaison with external BACB engaged investigation parties.
Role Title: Endpoint SME Duration: 6 Months Location: Remote 100% Umbrella only 570 per day ACTIVE SC CLEARANCE Would you like to join a global leader in consulting, technology services and digital transformation? Our client is at the forefront of innovation to address the entire breadth of opportunities in the evolving world of cloud, digital and platforms. Role purpose / summary Endpoint Protection Tools Specialist with experience in the deployment, secure configuration and operation across a range of tools such as Trend Micro, McAfee, Micro Soft Defender, Symantec and Crowdstrike. Installation: Download the Trend Micro installer from the official website or your Trend Micro account. Install the management console on a dedicated server or virtual machine. Deploy Trend Micro agents to endpoints, servers, and other devices within the defined scope. Configuration: Configure security policies and settings within the management console, tailoring them to your organization's security requirements. Set up automated updates and schedules for regular security scans and software updates. Integrate with other security tools and systems, if applicable. Deployment and Agent Installation: Roll out the Trend Micro agents to all targeted devices using deployment methods such as remote installation, group policies, or manual installation. Verify that all agents are correctly installed and communicating with the management console. Monitoring and Management: Monitor the security status and alerts through the management console. Perform regular vulnerability assessments, threat detection, and incident response as necessary. Continuously review and adjust security policies to address emerging threats and changes in your IT environment. Provide training and support to SOC staff to ensure effective use of Trend Micro tools. All profiles will be reviewed against the required skills and experience. Due to the high number of applications we will only be able to respond to successful applicants in the first instance. We thank you for your interest and the time taken to apply!
Feb 06, 2025
Contractor
Role Title: Endpoint SME Duration: 6 Months Location: Remote 100% Umbrella only 570 per day ACTIVE SC CLEARANCE Would you like to join a global leader in consulting, technology services and digital transformation? Our client is at the forefront of innovation to address the entire breadth of opportunities in the evolving world of cloud, digital and platforms. Role purpose / summary Endpoint Protection Tools Specialist with experience in the deployment, secure configuration and operation across a range of tools such as Trend Micro, McAfee, Micro Soft Defender, Symantec and Crowdstrike. Installation: Download the Trend Micro installer from the official website or your Trend Micro account. Install the management console on a dedicated server or virtual machine. Deploy Trend Micro agents to endpoints, servers, and other devices within the defined scope. Configuration: Configure security policies and settings within the management console, tailoring them to your organization's security requirements. Set up automated updates and schedules for regular security scans and software updates. Integrate with other security tools and systems, if applicable. Deployment and Agent Installation: Roll out the Trend Micro agents to all targeted devices using deployment methods such as remote installation, group policies, or manual installation. Verify that all agents are correctly installed and communicating with the management console. Monitoring and Management: Monitor the security status and alerts through the management console. Perform regular vulnerability assessments, threat detection, and incident response as necessary. Continuously review and adjust security policies to address emerging threats and changes in your IT environment. Provide training and support to SOC staff to ensure effective use of Trend Micro tools. All profiles will be reviewed against the required skills and experience. Due to the high number of applications we will only be able to respond to successful applicants in the first instance. We thank you for your interest and the time taken to apply!
University College London Hospitals NHS Foundation Trust We are looking for a passionate individual to work as an Information Security Manager within our Digital Healthcare Technology division to work on our Information Security Management System. This role will provide important technical and management functions within our information security team contributing towards meeting information security standards and reducing information risks. You will be working on aspects of our Information Security Management System, with a focus on maintaining and improving information security standards, threat and vulnerability management and policy control. This involves managing teams and advising a range of stakeholders at all levels in the organisation. Main duties of the job Be a senior member of our team, including service management, line management and financial management as required. Provide specialist advice as a subject matter expert to all stakeholders. Engage with, and in some cases lead on relevant projects, influencing design, identifying risks and setting security expectations. Manage multiple information systems and security tools, conduct or coordinate defensive testing, analyse results and identify risks. Manage threat and vulnerability management procedures. Manage and support information security incidents. Collect and analyse highly complex security logs, present findings and manage remediation activities. Research and evaluate emerging information security and cyber security threats. Develop and maintain an agreed set of security baselines and models that can be re-used with minimal review. Support, and in some cases, lead the development of policy conformance and policy related risks. About us University College London Hospitals NHS Foundation Trust (UCLH) is one of the most complex NHS trusts in the UK, serving a large and diverse population. We provide academically led acute and specialist services, to people from the local area, from throughout the United Kingdom and overseas. Our vision is to deliver top-quality patient care, excellent education, and world-class research. We provide first-class acute and specialist services across eight sites: University College Hospital (incorporating the Elizabeth Garrett Anderson Wing) National Hospital for Neurology and Neurosurgery Royal National Throat, Nose and Ear Hospital Eastman Dental Hospital Royal London Hospital for Integrated Medicine University College Hospital Macmillan Cancer Centre The Hospital for Tropical Diseases University College Hospitals at Westmoreland Street We are dedicated to the diagnosis and treatment of many complex illnesses. UCLH specialises in women's health and the treatment of cancer, infection, neurological, gastrointestinal and oral disease. It has world class support services including critical care, imaging, nuclear medicine and pathology. We are committed to sustainability and have pledged to become a carbon net zero health service, embedding sustainable practice throughout UCLH. We have set an ambitious target of net zero for our direct emissions by 2031 and indirect emissions by 2040. Job responsibilities For the full Person Specification and more information regarding the main responsibilities of this role, please refer to the attached Job Description. Person Specification Knowledge and Qualifications Masters degree level qualification relevant for the role or demonstrable equivalent level of experience. Specialist cybersecurity related qualification or demonstrable equivalent level of experience. Experience Previous experience of supporting strategic plans and policies. Previous experience of project and change management skills and/or techniques. Experience of working in a large and complex multi-tiered environment. Previous experience of working in digital in the NHS or a healthcare setting. Skills and Abilities In depth knowledge of digital best practice and procedures. Good understanding of information security. Good understanding of information governance. Broad working knowledge of current practices and issues in the cybersecurity field. Advanced digital skills. Proven ability for attention to detail. Able to use own judgement and problem solve on highly complex issues. Able to plan, prioritise and manage conflicting and complex agendas and priorities for yourself and others, in order to meet challenging deadlines. Able to effectively evaluate multiple options to aid decision making. Able to analyse very complex issues where information is conflicting and drawn from multiple sources. Able to act as a change agent. Able to foster excellent working relationships at all levels. Communication Excellent communication skills in order to convey highly complex and highly sensitive digital / cyber issues to a non-digital / cyber audience. Able to hold coaching conversations with team members, guiding and supporting as necessary. Able to build relationships with ease, gaining trust and maintaining confidentiality. Personal and People Development Previous experience of line or team management. A flexible and a 'can-do' approach to work. Demonstrates care and compassion in all aspects of work. Able to motivate others and role model. Commitment to CPD of self and others. Linking in to NHS E to stay informed, looking at tools that could be the best for the organisation, keeping up to date with current threats e.g. listening to podcasts etc. Responsibilities towards promoting Equality Diversity and Inclusion Demonstratable understanding of Equality, Diversity, and Inclusion and/or Knowledge of the NHS obligations under the Equality Act 2010 and the Public Sector Equality Duties. Disclosure and Barring Service Check This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions. University College London Hospitals NHS Foundation Trust £61,927 to £68,676 a year Per Annum Inclusive of HCAS
Jan 31, 2025
Full time
University College London Hospitals NHS Foundation Trust We are looking for a passionate individual to work as an Information Security Manager within our Digital Healthcare Technology division to work on our Information Security Management System. This role will provide important technical and management functions within our information security team contributing towards meeting information security standards and reducing information risks. You will be working on aspects of our Information Security Management System, with a focus on maintaining and improving information security standards, threat and vulnerability management and policy control. This involves managing teams and advising a range of stakeholders at all levels in the organisation. Main duties of the job Be a senior member of our team, including service management, line management and financial management as required. Provide specialist advice as a subject matter expert to all stakeholders. Engage with, and in some cases lead on relevant projects, influencing design, identifying risks and setting security expectations. Manage multiple information systems and security tools, conduct or coordinate defensive testing, analyse results and identify risks. Manage threat and vulnerability management procedures. Manage and support information security incidents. Collect and analyse highly complex security logs, present findings and manage remediation activities. Research and evaluate emerging information security and cyber security threats. Develop and maintain an agreed set of security baselines and models that can be re-used with minimal review. Support, and in some cases, lead the development of policy conformance and policy related risks. About us University College London Hospitals NHS Foundation Trust (UCLH) is one of the most complex NHS trusts in the UK, serving a large and diverse population. We provide academically led acute and specialist services, to people from the local area, from throughout the United Kingdom and overseas. Our vision is to deliver top-quality patient care, excellent education, and world-class research. We provide first-class acute and specialist services across eight sites: University College Hospital (incorporating the Elizabeth Garrett Anderson Wing) National Hospital for Neurology and Neurosurgery Royal National Throat, Nose and Ear Hospital Eastman Dental Hospital Royal London Hospital for Integrated Medicine University College Hospital Macmillan Cancer Centre The Hospital for Tropical Diseases University College Hospitals at Westmoreland Street We are dedicated to the diagnosis and treatment of many complex illnesses. UCLH specialises in women's health and the treatment of cancer, infection, neurological, gastrointestinal and oral disease. It has world class support services including critical care, imaging, nuclear medicine and pathology. We are committed to sustainability and have pledged to become a carbon net zero health service, embedding sustainable practice throughout UCLH. We have set an ambitious target of net zero for our direct emissions by 2031 and indirect emissions by 2040. Job responsibilities For the full Person Specification and more information regarding the main responsibilities of this role, please refer to the attached Job Description. Person Specification Knowledge and Qualifications Masters degree level qualification relevant for the role or demonstrable equivalent level of experience. Specialist cybersecurity related qualification or demonstrable equivalent level of experience. Experience Previous experience of supporting strategic plans and policies. Previous experience of project and change management skills and/or techniques. Experience of working in a large and complex multi-tiered environment. Previous experience of working in digital in the NHS or a healthcare setting. Skills and Abilities In depth knowledge of digital best practice and procedures. Good understanding of information security. Good understanding of information governance. Broad working knowledge of current practices and issues in the cybersecurity field. Advanced digital skills. Proven ability for attention to detail. Able to use own judgement and problem solve on highly complex issues. Able to plan, prioritise and manage conflicting and complex agendas and priorities for yourself and others, in order to meet challenging deadlines. Able to effectively evaluate multiple options to aid decision making. Able to analyse very complex issues where information is conflicting and drawn from multiple sources. Able to act as a change agent. Able to foster excellent working relationships at all levels. Communication Excellent communication skills in order to convey highly complex and highly sensitive digital / cyber issues to a non-digital / cyber audience. Able to hold coaching conversations with team members, guiding and supporting as necessary. Able to build relationships with ease, gaining trust and maintaining confidentiality. Personal and People Development Previous experience of line or team management. A flexible and a 'can-do' approach to work. Demonstrates care and compassion in all aspects of work. Able to motivate others and role model. Commitment to CPD of self and others. Linking in to NHS E to stay informed, looking at tools that could be the best for the organisation, keeping up to date with current threats e.g. listening to podcasts etc. Responsibilities towards promoting Equality Diversity and Inclusion Demonstratable understanding of Equality, Diversity, and Inclusion and/or Knowledge of the NHS obligations under the Equality Act 2010 and the Public Sector Equality Duties. Disclosure and Barring Service Check This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions. University College London Hospitals NHS Foundation Trust £61,927 to £68,676 a year Per Annum Inclusive of HCAS
This job posting isn't available in all website languages Senior Physical Security Engineer / Consultant Today the risks to people, assets and organisations are rapidly evolving. We help clients navigate the toughest questions in the spheres of safety risk, security risk and business risk. Whether due to geopolitical risk, climate change, life extension of ageing infrastructure or the increased connectivity of our built environment, we help clients develop appropriate and proportionate solutions to their risks. Our Resilience Security and Risk team includes leading experts in security intelligence, blast and protective design, physical and electronic security design, cyber-security, personnel and operational security. The Opportunity We work closely with other disciplines in Arup to find solutions that meet our client's objectives and are sustainable in their implementation. To enable us to do this we are looking for an enthusiastic and capable Senior Security Consultant/System Engineer to join our world leading security consultancy. Such a specialist should have a strong foundation in security consulting and security system design/implementation. The role of Senior Security Consultant/System Engineer within the Resilience Security and Risk team demands a combination of technical and commercial excellence. As a Senior Security Consultant/System Engineer, the primary focus will be the day-to-day design and management of projects across our portfolio of work, ensuring delivery is to a consistently high standard and is meeting client and stakeholder expectations. At Arup, you belong to an extraordinary collective - in which we encourage individuality to thrive. Our strength comes from how we respect, share and connect our diverse experiences, perspectives and ideas. You will have the opportunity do socially useful work that has meaning - to Arup, to your career, to our members and to the clients and communities we serve. Is this role right for you? The suitable candidate will have proven skills in delivering security projects within the built environment, a significant part of which must include demonstrable experience of working in a multi-disciplinary engineering consultancy environment. You will possess a relevant qualification in security or built environment discipline. Alternatively, we will also consider significant industry experience within security or risk management. Ideally you will hold or be working towards professional membership of an established UK security related institutions such as Security Institute; Register of Security Engineers and Specialists (RSES); ASIS. We are looking for the following skills and knowledge: Design and delivery of integrated solutions using the latest technology applicable to security design (e.g Video surveillance, access control and intruder detection systems). Integration to other third-party site-based systems (i.e. Fire, BMS, etc.) Knowledge and the implementation of physical barrier systems including; Pedestrian turnstiles/electronical operated gate systems; Perimeter fences, vehicle gates and barriers; Hostile vehicle mitigation systems (active and static). Appreciation of current initiatives within the industry such as SABRE, Secured by Design, etc. Physical design of facilities and controlled areas to mitigate against forced entry using manual/powered tools. Contribute, develop and/or interpret threat, vulnerability and risk assessments. Conversant in designing in the BIM and Revit environments and be able to provide guidance to the junior consultants/engineers on delivery and the security considerations. Capable of undertake technical security reviews, audits, design surveys, installation inspections and approvals, and other similar tasks of our clients If this role is not quite what you are looking for but you are interested in other opportunities for a future with purpose, please sign up to our Talent Community : where you will be kept up to date with roles suitable for you to shape a better world. What we offer you At Arup, we care about each member's success, so we can grow together. Guided by our values, we provide an attractive total reward package that recognises the contribution of each of our members to our shared success. As well as competitive, fair and equitable pay, we offer a career in which all of our members can belong, grow and thrive - through benefits that support health and wellbeing, a wide range of learning opportunities and many possibilities to have an impact through the work they do. We are owned in trust on behalf of our members, giving us the freedom, with personal responsibility, to set our own direction and choose work that aligns with our purpose and adds to Arup's legacy. Our members collaborate on ambitious projects to deliver remarkable outcomes for our clients and communities. Profit Share is a key part of our reward, enabling members to share in the results of our collective efforts. We also provide Private medical insurance, Life assurance, Accident insurance and Income protection cover. In addition, you'll have access to flexible benefits to help you look after all aspects of your wellbeing and give you the freedom and flexibility to find the best solutions for you, your family, and your individual needs. Different people, shared values Arup is an equal opportunity employer that actively promotes and nurtures a diverse and inclusive workforce. We welcome applications from individuals of all backgrounds, regardless of age (within legal limits), gender identity or expression, marital status, disability, neurotype or mental health, race or ethnicity, faith or belief, sexual orientation, socioeconomic background, and whether you're pregnant or on family leave. We are an open environment that embraces diverse experiences, perspectives, and ideas - this drives our excellence. Guided by our values and alignment with the UN Sustainable Development Goals, we create and contribute to equitable spaces and systems, while cultivating a sense of belonging for all. Our internal employee networks support our inclusive culture: from race, ethnicity and cross-cultural working to gender equity and LGBTQ+ and disability inclusion - we aim to create a space for you to express yourself and make a positive difference. Discover more about life at Arup at . We are committed to making our recruitment process and workplaces accessible to all candidates. Please contact Kylie O'Hanlon at to let us know if you need any assistance or reasonable adjustments throughout your application or interview process, and/or to perform the essential functions of the role. We will do everything we can to support you. Stay safe online - Arup will never ask for your bank details as part of our recruitment process. Closing Date: 24-02-25
Jan 26, 2025
Full time
This job posting isn't available in all website languages Senior Physical Security Engineer / Consultant Today the risks to people, assets and organisations are rapidly evolving. We help clients navigate the toughest questions in the spheres of safety risk, security risk and business risk. Whether due to geopolitical risk, climate change, life extension of ageing infrastructure or the increased connectivity of our built environment, we help clients develop appropriate and proportionate solutions to their risks. Our Resilience Security and Risk team includes leading experts in security intelligence, blast and protective design, physical and electronic security design, cyber-security, personnel and operational security. The Opportunity We work closely with other disciplines in Arup to find solutions that meet our client's objectives and are sustainable in their implementation. To enable us to do this we are looking for an enthusiastic and capable Senior Security Consultant/System Engineer to join our world leading security consultancy. Such a specialist should have a strong foundation in security consulting and security system design/implementation. The role of Senior Security Consultant/System Engineer within the Resilience Security and Risk team demands a combination of technical and commercial excellence. As a Senior Security Consultant/System Engineer, the primary focus will be the day-to-day design and management of projects across our portfolio of work, ensuring delivery is to a consistently high standard and is meeting client and stakeholder expectations. At Arup, you belong to an extraordinary collective - in which we encourage individuality to thrive. Our strength comes from how we respect, share and connect our diverse experiences, perspectives and ideas. You will have the opportunity do socially useful work that has meaning - to Arup, to your career, to our members and to the clients and communities we serve. Is this role right for you? The suitable candidate will have proven skills in delivering security projects within the built environment, a significant part of which must include demonstrable experience of working in a multi-disciplinary engineering consultancy environment. You will possess a relevant qualification in security or built environment discipline. Alternatively, we will also consider significant industry experience within security or risk management. Ideally you will hold or be working towards professional membership of an established UK security related institutions such as Security Institute; Register of Security Engineers and Specialists (RSES); ASIS. We are looking for the following skills and knowledge: Design and delivery of integrated solutions using the latest technology applicable to security design (e.g Video surveillance, access control and intruder detection systems). Integration to other third-party site-based systems (i.e. Fire, BMS, etc.) Knowledge and the implementation of physical barrier systems including; Pedestrian turnstiles/electronical operated gate systems; Perimeter fences, vehicle gates and barriers; Hostile vehicle mitigation systems (active and static). Appreciation of current initiatives within the industry such as SABRE, Secured by Design, etc. Physical design of facilities and controlled areas to mitigate against forced entry using manual/powered tools. Contribute, develop and/or interpret threat, vulnerability and risk assessments. Conversant in designing in the BIM and Revit environments and be able to provide guidance to the junior consultants/engineers on delivery and the security considerations. Capable of undertake technical security reviews, audits, design surveys, installation inspections and approvals, and other similar tasks of our clients If this role is not quite what you are looking for but you are interested in other opportunities for a future with purpose, please sign up to our Talent Community : where you will be kept up to date with roles suitable for you to shape a better world. What we offer you At Arup, we care about each member's success, so we can grow together. Guided by our values, we provide an attractive total reward package that recognises the contribution of each of our members to our shared success. As well as competitive, fair and equitable pay, we offer a career in which all of our members can belong, grow and thrive - through benefits that support health and wellbeing, a wide range of learning opportunities and many possibilities to have an impact through the work they do. We are owned in trust on behalf of our members, giving us the freedom, with personal responsibility, to set our own direction and choose work that aligns with our purpose and adds to Arup's legacy. Our members collaborate on ambitious projects to deliver remarkable outcomes for our clients and communities. Profit Share is a key part of our reward, enabling members to share in the results of our collective efforts. We also provide Private medical insurance, Life assurance, Accident insurance and Income protection cover. In addition, you'll have access to flexible benefits to help you look after all aspects of your wellbeing and give you the freedom and flexibility to find the best solutions for you, your family, and your individual needs. Different people, shared values Arup is an equal opportunity employer that actively promotes and nurtures a diverse and inclusive workforce. We welcome applications from individuals of all backgrounds, regardless of age (within legal limits), gender identity or expression, marital status, disability, neurotype or mental health, race or ethnicity, faith or belief, sexual orientation, socioeconomic background, and whether you're pregnant or on family leave. We are an open environment that embraces diverse experiences, perspectives, and ideas - this drives our excellence. Guided by our values and alignment with the UN Sustainable Development Goals, we create and contribute to equitable spaces and systems, while cultivating a sense of belonging for all. Our internal employee networks support our inclusive culture: from race, ethnicity and cross-cultural working to gender equity and LGBTQ+ and disability inclusion - we aim to create a space for you to express yourself and make a positive difference. Discover more about life at Arup at . We are committed to making our recruitment process and workplaces accessible to all candidates. Please contact Kylie O'Hanlon at to let us know if you need any assistance or reasonable adjustments throughout your application or interview process, and/or to perform the essential functions of the role. We will do everything we can to support you. Stay safe online - Arup will never ask for your bank details as part of our recruitment process. Closing Date: 24-02-25
Threat Management and Vulnerability Specialist - Windows/Unix - £75k A Threat Management and Vulnerability Engineer is required a Global Financial Client based within the Infra and Cloud team in London. This role works alongside the Support teams and IT Security to ensure the Security and Config of the Windows and VMware systems are secure. You will be looking at the vulnerability of the operating systems and highlight any threats - you will need to understand what these threats are, how you find them and how you fix them. This may have you reporting the threat to another team, in some cases you will be expected to fix the threat themselves. Any experience with Qualys is highly desired as its used by the Security Team and you will need to understand the reporting. Any exposure with Cloud deployment would be beneficial Occasionally this person will be expected to work weekends and when they do they will be offered time in lieu. 20% Office based - 1 day a week. Key Skills & Experience: - Threat Management, Vulnerability & Config compliance across a large scale windows estate - Supporting a Microsoft & VMWare environment - Unix/Linux System Support - Plan, scope, and coordinate Penetration Testing including debriefing key stakeholders. - Assist Incident Response team with the investigation and resolution of Security Incidents when required. This is a fantastic opportunity to join a progressive Company that offers successful candidates a career path and growth. In return you will receive a starting base salary up to £85k plus benefits Threat Management and Vulnerability Specialist - Windows/Unix - £75k Kite Human Capital - Hire Better We are unashamedly focused on working with only the best people, who care about customer value and maintain a fantastic working reputation. If you are someone that is committed to working hard to achieve great results, views challenge as an exciting opportunity and wants to work in some of the best possible assignments then please get in touch, we'd love to help you find your next position. We pride ourselves on rock solid integrity and honesty, and place client value at the centre of every decision we make. 2018 - Winner Best Client Service' 2017 - Winner Agency of The Year' 2017 - Winner Banking & Financial Services Agency' t2016 - Winner Banking & Financial Services Agency'
Sep 20, 2022
Full time
Threat Management and Vulnerability Specialist - Windows/Unix - £75k A Threat Management and Vulnerability Engineer is required a Global Financial Client based within the Infra and Cloud team in London. This role works alongside the Support teams and IT Security to ensure the Security and Config of the Windows and VMware systems are secure. You will be looking at the vulnerability of the operating systems and highlight any threats - you will need to understand what these threats are, how you find them and how you fix them. This may have you reporting the threat to another team, in some cases you will be expected to fix the threat themselves. Any experience with Qualys is highly desired as its used by the Security Team and you will need to understand the reporting. Any exposure with Cloud deployment would be beneficial Occasionally this person will be expected to work weekends and when they do they will be offered time in lieu. 20% Office based - 1 day a week. Key Skills & Experience: - Threat Management, Vulnerability & Config compliance across a large scale windows estate - Supporting a Microsoft & VMWare environment - Unix/Linux System Support - Plan, scope, and coordinate Penetration Testing including debriefing key stakeholders. - Assist Incident Response team with the investigation and resolution of Security Incidents when required. This is a fantastic opportunity to join a progressive Company that offers successful candidates a career path and growth. In return you will receive a starting base salary up to £85k plus benefits Threat Management and Vulnerability Specialist - Windows/Unix - £75k Kite Human Capital - Hire Better We are unashamedly focused on working with only the best people, who care about customer value and maintain a fantastic working reputation. If you are someone that is committed to working hard to achieve great results, views challenge as an exciting opportunity and wants to work in some of the best possible assignments then please get in touch, we'd love to help you find your next position. We pride ourselves on rock solid integrity and honesty, and place client value at the centre of every decision we make. 2018 - Winner Best Client Service' 2017 - Winner Agency of The Year' 2017 - Winner Banking & Financial Services Agency' t2016 - Winner Banking & Financial Services Agency'