RecruitmentRevolution.com
City, London
Ready to take the next step in your penetration testing career and lead a high-performing team at a respected, fast-growing cybersecurity consultancy? This is your opportunity to join a CREST-certified organisation committed to excellence, innovation and integrity. As our new Penetration Testing Team Leader , you ll play a pivotal role in shaping cutting-edge testing services, developing talented testers, and helping protect clients across government, telecoms, finance, digital currencies and other critical sectors. With structured development, meaningful progression opportunities, and the chance to make a visible impact from day one, this is a role designed for a driven, highly skilled Team Lead who thrives on technical depth, leadership and solving complex security challenges. The Role at a Glance: Penetration Testing Team Leader Remote with travel to client sites and occasional meetings in London, UK or Channel Islands Up to £95,000 DOE Plus Benefits Benefits: 23 days holiday plus Bank Holidays and extra days based on service, 6% contributory pension and career progression opportunities. Growth: A structured career development plan and training Hours: 09:00 am to 17:30 pm Monday Friday Development Opportunity: Career progression opportunities to develop a growing team of penetration testers and break new ground in testing. Company: Specialist information and cybersecurity consultancy and audit services Company Values: We stand for honesty, integrity and fair practice and are committed to delivering value in every client engagement. Our people are creative, pragmatic and passionate about our purpose. Your Skills / Background: Existing CHECK Team Lead qualification and Team Lead experience. You will also be a tenacious problem solver and communicator with strong client-facing and leadership experience to lead engagements, mentor testers at all levels, and scope complex projects. The Penetration Testing Team Leader Opportunity: As Penetration Testing Team Leader, you will support our clients by delivering excellent penetration testing services and cloud security assessments that are ultimately articulated in high quality and valuable reports. You will deliver hands-on technical penetration testing on a variety of projects and guide and direct the team. In return, you will benefit from an inspiring environment with a team of highly experienced colleagues working across a diverse range of interesting security and assurance projects. This role also includes excellent progression opportunities as we always match enthusiasm and skill with training, opportunity and structured development plans. Key Responsibilities: • Improve and develop penetration testing methodologies, guide project scoping and execution, establish new testing services, and shape the future direction of the testing function with senior management. • Deliver high-quality penetration tests across infrastructure, applications (including APIs and mobile apps), wireless, segmentation and breakout scenarios, and cloud security assessments. • Work with client teams to research vulnerabilities and emerging attack vectors, plan assessments accordingly, and support clients during ongoing incidents. • Conduct vulnerability scans, unauthorised host discovery exercises, analyse findings, and translate results into actionable technical and business-risk recommendations. • Produce high-quality technical reports and create internal documentation, tooling, threat libraries, methodologies, and policies to ensure consistent, informed, and meaningful testing outcomes. • Provide technical presales support, contribute thought-leadership content (papers, articles, online posts, marketing material), and identify business development opportunities. • Mentor, coach, and help build the technical team, supporting their growth in knowledge, skills, and career development. About You: • A driven, battle-tested Team Leader, holding a current CHECK Team Leader qualification and proven senior-level experience • Extensive, hands-on penetration testing expertise backed by deep technical mastery • Fluent in a wide arsenal of security testing tools, using the right tech for maximum impact • Up-to-date, cutting-edge understanding of modern technologies, threats, and security trends • Well-versed in key industry bodies, frameworks, and security standards • Strong ability to translate vulnerabilities into real-world business risk, paired with standout reporting and client presentation skills • Proven track record in growing and developing technical teams, including reviews, appraisals, training plans, and long-term career progression • A credible, personable communicator who builds trust with clients, peers, and technical teams alike • Self-starter with a proactive mindset, comfortable taking initiative and driving outcomes • Genuinely passionate about penetration testing and nurturing teams across all skill levels • Eligible to work in the UK and obtain Government clearance (ILR is required as a minimum but we are unfortunately not able to offer sponsorship) About Us: We are a specialist information and cybersecurity consultancy and expert at understanding information security risks, creating appropriate security destinations and protecting clients from a range of security threats. We hold a CREST certification and offer certification services for PCI-DSS and Cyber Essentials /Essentials Plus. Our clients span telecommunications, Government infrastructure, and digital currencies - covering essential services and critical payment infrastructure. Services include: • Security consulting across the area of security governance, risk, compliance and standards alignment • Penetration testing • Security architecture for cloud and infrastructure • Detection and response • Fractional heads and virtual support • NCSC Assurance service provider for Cyber Essentials and a Certifying Body • Security auditing across varying standards such as ISO27001, NIST, PCI DSS and Cyber Essentials • Training and awareness If you re a proven Penetration Testing Team Leader with CHECK TL status, a passion for advancing security testing, and the drive to mentor and grow a talented team, we d love to hear from you. Step into a role where your expertise shapes real-world defence, your ideas influence future testing services, and your career continues to accelerate in a supportive, forward-thinking environment. Interested? Apply here for a fast-track path to our Hiring Manager Application notice We take your privacy seriously. When you apply, we shall process your details and pass your application to our client for review for this vacancy only. As you might expect you may be contacted by email, text or telephone. Your data is processed on the basis of our legitimate interests in fulfilling the recruitment process. Please refer to our Data Privacy Policy & Notice on our website for further details. If you have any pre-application questions please contact us first quoting the job title & ref. Good luck, Team RR.
Ready to take the next step in your penetration testing career and lead a high-performing team at a respected, fast-growing cybersecurity consultancy? This is your opportunity to join a CREST-certified organisation committed to excellence, innovation and integrity. As our new Penetration Testing Team Leader , you ll play a pivotal role in shaping cutting-edge testing services, developing talented testers, and helping protect clients across government, telecoms, finance, digital currencies and other critical sectors. With structured development, meaningful progression opportunities, and the chance to make a visible impact from day one, this is a role designed for a driven, highly skilled Team Lead who thrives on technical depth, leadership and solving complex security challenges. The Role at a Glance: Penetration Testing Team Leader Remote with travel to client sites and occasional meetings in London, UK or Channel Islands Up to £95,000 DOE Plus Benefits Benefits: 23 days holiday plus Bank Holidays and extra days based on service, 6% contributory pension and career progression opportunities. Growth: A structured career development plan and training Hours: 09:00 am to 17:30 pm Monday Friday Development Opportunity: Career progression opportunities to develop a growing team of penetration testers and break new ground in testing. Company: Specialist information and cybersecurity consultancy and audit services Company Values: We stand for honesty, integrity and fair practice and are committed to delivering value in every client engagement. Our people are creative, pragmatic and passionate about our purpose. Your Skills / Background: Existing CHECK Team Lead qualification and Team Lead experience. You will also be a tenacious problem solver and communicator with strong client-facing and leadership experience to lead engagements, mentor testers at all levels, and scope complex projects. The Penetration Testing Team Leader Opportunity: As Penetration Testing Team Leader, you will support our clients by delivering excellent penetration testing services and cloud security assessments that are ultimately articulated in high quality and valuable reports. You will deliver hands-on technical penetration testing on a variety of projects and guide and direct the team. In return, you will benefit from an inspiring environment with a team of highly experienced colleagues working across a diverse range of interesting security and assurance projects. This role also includes excellent progression opportunities as we always match enthusiasm and skill with training, opportunity and structured development plans. Key Responsibilities: • Improve and develop penetration testing methodologies, guide project scoping and execution, establish new testing services, and shape the future direction of the testing function with senior management. • Deliver high-quality penetration tests across infrastructure, applications (including APIs and mobile apps), wireless, segmentation and breakout scenarios, and cloud security assessments. • Work with client teams to research vulnerabilities and emerging attack vectors, plan assessments accordingly, and support clients during ongoing incidents. • Conduct vulnerability scans, unauthorised host discovery exercises, analyse findings, and translate results into actionable technical and business-risk recommendations. • Produce high-quality technical reports and create internal documentation, tooling, threat libraries, methodologies, and policies to ensure consistent, informed, and meaningful testing outcomes. • Provide technical presales support, contribute thought-leadership content (papers, articles, online posts, marketing material), and identify business development opportunities. • Mentor, coach, and help build the technical team, supporting their growth in knowledge, skills, and career development. About You: • A driven, battle-tested Team Leader, holding a current CHECK Team Leader qualification and proven senior-level experience • Extensive, hands-on penetration testing expertise backed by deep technical mastery • Fluent in a wide arsenal of security testing tools, using the right tech for maximum impact • Up-to-date, cutting-edge understanding of modern technologies, threats, and security trends • Well-versed in key industry bodies, frameworks, and security standards • Strong ability to translate vulnerabilities into real-world business risk, paired with standout reporting and client presentation skills • Proven track record in growing and developing technical teams, including reviews, appraisals, training plans, and long-term career progression • A credible, personable communicator who builds trust with clients, peers, and technical teams alike • Self-starter with a proactive mindset, comfortable taking initiative and driving outcomes • Genuinely passionate about penetration testing and nurturing teams across all skill levels • Eligible to work in the UK and obtain Government clearance (ILR is required as a minimum but we are unfortunately not able to offer sponsorship) About Us: We are a specialist information and cybersecurity consultancy and expert at understanding information security risks, creating appropriate security destinations and protecting clients from a range of security threats. We hold a CREST certification and offer certification services for PCI-DSS and Cyber Essentials /Essentials Plus. Our clients span telecommunications, Government infrastructure, and digital currencies - covering essential services and critical payment infrastructure. Services include: • Security consulting across the area of security governance, risk, compliance and standards alignment • Penetration testing • Security architecture for cloud and infrastructure • Detection and response • Fractional heads and virtual support • NCSC Assurance service provider for Cyber Essentials and a Certifying Body • Security auditing across varying standards such as ISO27001, NIST, PCI DSS and Cyber Essentials • Training and awareness If you re a proven Penetration Testing Team Leader with CHECK TL status, a passion for advancing security testing, and the drive to mentor and grow a talented team, we d love to hear from you. Step into a role where your expertise shapes real-world defence, your ideas influence future testing services, and your career continues to accelerate in a supportive, forward-thinking environment. Interested? Apply here for a fast-track path to our Hiring Manager Application notice We take your privacy seriously. When you apply, we shall process your details and pass your application to our client for review for this vacancy only. As you might expect you may be contacted by email, text or telephone. Your data is processed on the basis of our legitimate interests in fulfilling the recruitment process. Please refer to our Data Privacy Policy & Notice on our website for further details. If you have any pre-application questions please contact us first quoting the job title & ref. Good luck, Team RR.
Hays Specialist Recruitment Limited
UK ONLY - SPONSORSHIP IS NOT AVAILABLE Job Purpose:This role is responsible for overseeing and enhancing the security of our IT systems, data, and networks. You will conduct regular security audits, assessments, and tests, and identify and resolve any vulnerabilities or breaches.You will also develop and implement security policies, procedures, and standards, and ensure compliance with the relevant laws and regulations, and train and educate employees on the best practices and awareness of IT security. Operating Environment:The role operates within the IT Services Team, The IT Services Team includes specialist staff delivering core outputs that are both external-facing and internal key enablers. Framework & Boundaries: The role is responsible for improving the quality, wellbeing and efficiency of our IT Security. The role has external-facing responsibilities and is required and authorised to act as a representative for the organisation. Key accountabilities:Monitor and Inspect: Regularly monitor the network for security threats or breaches. Policy Development: Develop and implement security policies and procedures to safeguard data and systems. Vulnerability Testing: Perform regular vulnerability testing and risk assessments to identify and mitigate security risks. Incident Response: Investigate security incidents and provide post-event analysis and recommendations. Security Tools Management: Manage and maintain firewalls, intrusion detection and prevention systems, antivirus software, and other security tools. Compliance: Ensure compliance with industry regulations and standards. Training: Train technical and non-technical employees on security protocols, procedures, and best practices. Disaster Recovery: Participate in disaster recovery planning and testing to ensure business continuity in the event of a security incident. Job impact:Risk Mitigation: Implementing robust security measures to significantly reduce the risk of data breaches, cyber-attacks, and other security incidents. Proactive Threat Management: Identifying and addressing vulnerabilities before they can be exploited, thereby enhancing the overall security posture of the organisation. Ensuring that the organisation complies with relevant laws, regulations, and industry standards (e.g., GDPR, HIPAA, PCI-DSS), thereby avoiding legal penalties and enhancing trust with stakeholders. Maintaining a state of readiness for security audits and assessments, ensuring that all security controls and measures are well-documented and effective. Developing and implementing disaster recovery plans to ensure business continuity in the event of a security incident or data loss. Efficiently managing and mitigating the impact of security incidents to minimise downtime and operational disruption. Knowledge and experience:Technical Proficiency: In-depth knowledge of network security software - Meraki Cloud, Cloudflare, Mimecast, encryption technologies, and other security hardware and software tools. Current Trends: Stay current with the latest trends in cybersecurity threats and defence strategies. Problem-Solving: Strong problem-solving skills and the ability to work well under pressure. Communication: Good communication skills to effectively train employees and coordinate with other departments. Functional/technical skills: Firewall Management: Proficiency in configuring and managing firewalls to protect network boundaries. Intrusion Detection/Prevention Systems (IDS/IPS): Experience with IDS/IPS to monitor and respond to potential threats. VPNs and Remote Access: Knowledge of setting up and managing Virtual Private Networks (VPNs) and secure remote access solutions. Patch Management: Ability to manage and deploy security patches and updates to systems and applications. Endpoint Security: Experience with endpoint protection solutions, such as antivirus and anti-malware software. Proficiency in implementing and managing encryption technologies to protect data at rest and in transit. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk
UK ONLY - SPONSORSHIP IS NOT AVAILABLE Job Purpose:This role is responsible for overseeing and enhancing the security of our IT systems, data, and networks. You will conduct regular security audits, assessments, and tests, and identify and resolve any vulnerabilities or breaches.You will also develop and implement security policies, procedures, and standards, and ensure compliance with the relevant laws and regulations, and train and educate employees on the best practices and awareness of IT security. Operating Environment:The role operates within the IT Services Team, The IT Services Team includes specialist staff delivering core outputs that are both external-facing and internal key enablers. Framework & Boundaries: The role is responsible for improving the quality, wellbeing and efficiency of our IT Security. The role has external-facing responsibilities and is required and authorised to act as a representative for the organisation. Key accountabilities:Monitor and Inspect: Regularly monitor the network for security threats or breaches. Policy Development: Develop and implement security policies and procedures to safeguard data and systems. Vulnerability Testing: Perform regular vulnerability testing and risk assessments to identify and mitigate security risks. Incident Response: Investigate security incidents and provide post-event analysis and recommendations. Security Tools Management: Manage and maintain firewalls, intrusion detection and prevention systems, antivirus software, and other security tools. Compliance: Ensure compliance with industry regulations and standards. Training: Train technical and non-technical employees on security protocols, procedures, and best practices. Disaster Recovery: Participate in disaster recovery planning and testing to ensure business continuity in the event of a security incident. Job impact:Risk Mitigation: Implementing robust security measures to significantly reduce the risk of data breaches, cyber-attacks, and other security incidents. Proactive Threat Management: Identifying and addressing vulnerabilities before they can be exploited, thereby enhancing the overall security posture of the organisation. Ensuring that the organisation complies with relevant laws, regulations, and industry standards (e.g., GDPR, HIPAA, PCI-DSS), thereby avoiding legal penalties and enhancing trust with stakeholders. Maintaining a state of readiness for security audits and assessments, ensuring that all security controls and measures are well-documented and effective. Developing and implementing disaster recovery plans to ensure business continuity in the event of a security incident or data loss. Efficiently managing and mitigating the impact of security incidents to minimise downtime and operational disruption. Knowledge and experience:Technical Proficiency: In-depth knowledge of network security software - Meraki Cloud, Cloudflare, Mimecast, encryption technologies, and other security hardware and software tools. Current Trends: Stay current with the latest trends in cybersecurity threats and defence strategies. Problem-Solving: Strong problem-solving skills and the ability to work well under pressure. Communication: Good communication skills to effectively train employees and coordinate with other departments. Functional/technical skills: Firewall Management: Proficiency in configuring and managing firewalls to protect network boundaries. Intrusion Detection/Prevention Systems (IDS/IPS): Experience with IDS/IPS to monitor and respond to potential threats. VPNs and Remote Access: Knowledge of setting up and managing Virtual Private Networks (VPNs) and secure remote access solutions. Patch Management: Ability to manage and deploy security patches and updates to systems and applications. Endpoint Security: Experience with endpoint protection solutions, such as antivirus and anti-malware software. Proficiency in implementing and managing encryption technologies to protect data at rest and in transit. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk
Belcan
Belcan is recruiting for an OT Security Engineer on a Permanent basis based from our South West London office. This project is working within the Oil & Gas Industry. You'll be joining a culture that values curiosity, expertise, and ideas as well as equal opportunities, inclusion, and authenticity. Location: London / hybrid - with ad-hoc visits to Norway and Poland. Job Purpose As an OT Cyber Security Engineer you will be responsible for providing OT cyber security support and oversight for product development groups and industrial control system environments within our client's organisation. This includes defining, managing, and enforcing IACS security controls, processes and procedures. Rely on experience in both information security and automation technologies focusing on industrial controls systems. Additional responsibilities include serving as a member of the IACS Cyber security team, the information and digital services team, working closely with sites, services, technical teams and product groups to ensure that security requirements and support are provided. Job Description Provide secure design, development, and architecture requirements for Industrial Control Systems (ICS) environments and information and digital systems as they relate to ICS and automation. Provide support to write, review, and maintain documents, policies, and standards governing the cyber security requirements for the ICS environment. Provide secure architecture requirements for lab and development networks. Perform security reviews and assessments of systems, networks, and processes/procedures in ICS environments. Assist with testing, selection and implementation of security technologies in ICS environments. Provide support for projects and initiatives that enables sites to accomplish project goals in a secure manner. Provide support for management and remediation of vulnerabilities identified in ICS environments. Support on the development of cyber security technology implementation strategies for ICS environments with clear understanding of the differences between IT and OT environments. Support the execution of risk-based methodologies for cyber security assessments of ICS systems, including remote sites, onsite, third party, and on vessels. Support on the creation of technical design documentation and to write technical reports for both technical and management consumption and understanding. Follows the established metrics and key performance indicators to monitor the overall health and effectiveness of the ISC cyber security program. Stays informed about the latest cyber threats to the ICS environment including threats towards the organisation. Supports on the development of strategies and plans to mitigate emerging cyber threats. Experience required for this role: Bachelor's degree or equivalent Strong technical ICS experience : ability to review configurations of ICS, identify best practices for backup and recovery of ICS, and understand industrial protocols. Good general technical knowledge: Applications technologies, networks, protocols, databases, operating systems (Windows/Linux) Understanding of Industrial Networks Experience using ICS software including: Engineering Software Version Management Software HMI Software OPC Software Working knowledge of networking concepts, ability to review network designs, and perform security assessments of network devices (e.g. switches, routers, firewalls). Cybersecurity certifications (e.g.: CISSP) ICS Security Certifications (SANS GICSP, ISA/IEC 62443 Risk Assessment Specialist) Experience implementing security controls, hardening, and technologies in automation systems and networks. Experience implementing vulnerability and patch management in ICS environments. Working knowledge of IACS Security standards. Willingness to travel to other client sites in Europe (5%). This vacancy is being advertised by Belcan.
Belcan is recruiting for an OT Security Engineer on a Permanent basis based from our South West London office. This project is working within the Oil & Gas Industry. You'll be joining a culture that values curiosity, expertise, and ideas as well as equal opportunities, inclusion, and authenticity. Location: London / hybrid - with ad-hoc visits to Norway and Poland. Job Purpose As an OT Cyber Security Engineer you will be responsible for providing OT cyber security support and oversight for product development groups and industrial control system environments within our client's organisation. This includes defining, managing, and enforcing IACS security controls, processes and procedures. Rely on experience in both information security and automation technologies focusing on industrial controls systems. Additional responsibilities include serving as a member of the IACS Cyber security team, the information and digital services team, working closely with sites, services, technical teams and product groups to ensure that security requirements and support are provided. Job Description Provide secure design, development, and architecture requirements for Industrial Control Systems (ICS) environments and information and digital systems as they relate to ICS and automation. Provide support to write, review, and maintain documents, policies, and standards governing the cyber security requirements for the ICS environment. Provide secure architecture requirements for lab and development networks. Perform security reviews and assessments of systems, networks, and processes/procedures in ICS environments. Assist with testing, selection and implementation of security technologies in ICS environments. Provide support for projects and initiatives that enables sites to accomplish project goals in a secure manner. Provide support for management and remediation of vulnerabilities identified in ICS environments. Support on the development of cyber security technology implementation strategies for ICS environments with clear understanding of the differences between IT and OT environments. Support the execution of risk-based methodologies for cyber security assessments of ICS systems, including remote sites, onsite, third party, and on vessels. Support on the creation of technical design documentation and to write technical reports for both technical and management consumption and understanding. Follows the established metrics and key performance indicators to monitor the overall health and effectiveness of the ISC cyber security program. Stays informed about the latest cyber threats to the ICS environment including threats towards the organisation. Supports on the development of strategies and plans to mitigate emerging cyber threats. Experience required for this role: Bachelor's degree or equivalent Strong technical ICS experience : ability to review configurations of ICS, identify best practices for backup and recovery of ICS, and understand industrial protocols. Good general technical knowledge: Applications technologies, networks, protocols, databases, operating systems (Windows/Linux) Understanding of Industrial Networks Experience using ICS software including: Engineering Software Version Management Software HMI Software OPC Software Working knowledge of networking concepts, ability to review network designs, and perform security assessments of network devices (e.g. switches, routers, firewalls). Cybersecurity certifications (e.g.: CISSP) ICS Security Certifications (SANS GICSP, ISA/IEC 62443 Risk Assessment Specialist) Experience implementing security controls, hardening, and technologies in automation systems and networks. Experience implementing vulnerability and patch management in ICS environments. Working knowledge of IACS Security standards. Willingness to travel to other client sites in Europe (5%). This vacancy is being advertised by Belcan.
Hays Technology
UK ONLY - SPONSORSHIP IS NOT AVAILABLE Job Purpose: This role is responsible for overseeing and enhancing the security of our IT systems, data, and networks. You will conduct regular security audits, assessments, and tests, and identify and resolve any vulnerabilities or breaches.You will also develop and implement security policies, procedures, and standards, and ensure compliance with the relevant laws and regulations, and train and educate employees on the best practices and awareness of IT security. Operating Environment:The role operates within the IT Services Team, The IT Services Team includes specialist staff delivering core outputs that are both external-facing and internal key enablers. Framework & Boundaries: The role is responsible for improving the quality, wellbeing and efficiency of our IT Security. The role has external-facing responsibilities and is required and authorised to act as a representative for the organisation. Key accountabilities:Monitor and Inspect: Regularly monitor the network for security threats or breaches. Policy Development: Develop and implement security policies and procedures to safeguard data and systems. Vulnerability Testing: Perform regular vulnerability testing and risk assessments to identify and mitigate security risks. Incident Response: Investigate security incidents and provide post-event analysis and recommendations. Security Tools Management: Manage and maintain firewalls, intrusion detection and prevention systems, antivirus software, and other security tools. Compliance: Ensure compliance with industry regulations and standards. Training: Train technical and non-technical employees on security protocols, procedures, and best practices. Disaster Recovery: Participate in disaster recovery planning and testing to ensure business continuity in the event of a security incident. Job impact:Risk Mitigation: Implementing robust security measures to significantly reduce the risk of data breaches, cyber-attacks, and other security incidents. Proactive Threat Management: Identifying and addressing vulnerabilities before they can be exploited, thereby enhancing the overall security posture of the organisation. Ensuring that the organisation complies with relevant laws, regulations, and industry standards (e.g., GDPR, HIPAA, PCI-DSS), thereby avoiding legal penalties and enhancing trust with stakeholders. Maintaining a state of readiness for security audits and assessments, ensuring that all security controls and measures are well-documented and effective. Developing and implementing disaster recovery plans to ensure business continuity in the event of a security incident or data loss. Efficiently managing and mitigating the impact of security incidents to minimise downtime and operational disruption. Knowledge and experience:Technical Proficiency: In-depth knowledge of network security software - Meraki Cloud, Cloudflare, Mimecast, encryption technologies, and other security hardware and software tools. Current Trends: Stay current with the latest trends in cybersecurity threats and defence strategies. Problem-Solving: Strong problem-solving skills and the ability to work well under pressure. Communication: Good communication skills to effectively train employees and coordinate with other departments. Functional/technical skills: Firewall Management: Proficiency in configuring and managing firewalls to protect network boundaries. Intrusion Detection/Prevention Systems (IDS/IPS): Experience with IDS/IPS to monitor and respond to potential threats. VPNs and Remote Access: Knowledge of setting up and managing Virtual Private Networks (VPNs) and secure remote access solutions. Patch Management: Ability to manage and deploy security patches and updates to systems and applications. Endpoint Security: Experience with endpoint protection solutions, such as antivirus and anti-malware software. Proficiency in implementing and managing encryption technologies to protect data at rest and in transit. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
UK ONLY - SPONSORSHIP IS NOT AVAILABLE Job Purpose: This role is responsible for overseeing and enhancing the security of our IT systems, data, and networks. You will conduct regular security audits, assessments, and tests, and identify and resolve any vulnerabilities or breaches.You will also develop and implement security policies, procedures, and standards, and ensure compliance with the relevant laws and regulations, and train and educate employees on the best practices and awareness of IT security. Operating Environment:The role operates within the IT Services Team, The IT Services Team includes specialist staff delivering core outputs that are both external-facing and internal key enablers. Framework & Boundaries: The role is responsible for improving the quality, wellbeing and efficiency of our IT Security. The role has external-facing responsibilities and is required and authorised to act as a representative for the organisation. Key accountabilities:Monitor and Inspect: Regularly monitor the network for security threats or breaches. Policy Development: Develop and implement security policies and procedures to safeguard data and systems. Vulnerability Testing: Perform regular vulnerability testing and risk assessments to identify and mitigate security risks. Incident Response: Investigate security incidents and provide post-event analysis and recommendations. Security Tools Management: Manage and maintain firewalls, intrusion detection and prevention systems, antivirus software, and other security tools. Compliance: Ensure compliance with industry regulations and standards. Training: Train technical and non-technical employees on security protocols, procedures, and best practices. Disaster Recovery: Participate in disaster recovery planning and testing to ensure business continuity in the event of a security incident. Job impact:Risk Mitigation: Implementing robust security measures to significantly reduce the risk of data breaches, cyber-attacks, and other security incidents. Proactive Threat Management: Identifying and addressing vulnerabilities before they can be exploited, thereby enhancing the overall security posture of the organisation. Ensuring that the organisation complies with relevant laws, regulations, and industry standards (e.g., GDPR, HIPAA, PCI-DSS), thereby avoiding legal penalties and enhancing trust with stakeholders. Maintaining a state of readiness for security audits and assessments, ensuring that all security controls and measures are well-documented and effective. Developing and implementing disaster recovery plans to ensure business continuity in the event of a security incident or data loss. Efficiently managing and mitigating the impact of security incidents to minimise downtime and operational disruption. Knowledge and experience:Technical Proficiency: In-depth knowledge of network security software - Meraki Cloud, Cloudflare, Mimecast, encryption technologies, and other security hardware and software tools. Current Trends: Stay current with the latest trends in cybersecurity threats and defence strategies. Problem-Solving: Strong problem-solving skills and the ability to work well under pressure. Communication: Good communication skills to effectively train employees and coordinate with other departments. Functional/technical skills: Firewall Management: Proficiency in configuring and managing firewalls to protect network boundaries. Intrusion Detection/Prevention Systems (IDS/IPS): Experience with IDS/IPS to monitor and respond to potential threats. VPNs and Remote Access: Knowledge of setting up and managing Virtual Private Networks (VPNs) and secure remote access solutions. Patch Management: Ability to manage and deploy security patches and updates to systems and applications. Endpoint Security: Experience with endpoint protection solutions, such as antivirus and anti-malware software. Proficiency in implementing and managing encryption technologies to protect data at rest and in transit. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
