Our Future Health Limited
We are looking to hire a new role and bring someone in as our Head of Product Security, a key leadership role within our Information Security team. In this role you will shape how Our Future Health builds secure, trusted products at national scale. You'll lead the security engineering and architecture functions, ensuring they provide clear and pragmatic guidance to product, engineering, and wider technical teams. Your work centres on embedding secure by design thinking, strengthening how the organisation understands and manages risk, and helping teams see security as an enabler that supports delivery rather than slowing it down. You'll also contribute hands on technical input to complex architectural decisions where your expertise adds real value. Alongside this strategic impact, you'll manage and develop a growing team, ensuring smooth day to day operations and a culture of continuous improvement. The role needs empathetic people leadership, exceptional stakeholder management, and the ability to influence across a fast moving, agile environment. With an engineering background and solid security architecture experience, you'll bring the technical credibility and collaborative approach needed to guide teams, shape priorities, and drive the future direction of product security. At Our Future Health, our mission is to transform the prevention,detectionand treatment of conditions such as dementia, cancer, diabetes, heart disease and stroke. We're looking for people to join us on our journey. If you're looking for a new challenge where you can contribute to helping future generations live in good health for longer, then we're keen to speak with you. What you'll be doing Acting as deputy to the Director of Information Security, supporting security strategy and leadership alongside the Head of Cyber Defence. Leading the security consultancy and technical security functions, covering core services such as IAM, vulnerability management, threat modelling, and secure base image maintenance. Serving as the primary contact for security consultancy, delegating work across the team as needed. Overseeing security architecture and engineering for our cloud native (Azure) production and corporate platforms. Driving continuous improvement, prioritising enhancements and maturing operational documentation. Line managing a multidisciplinary security team, including security engineers, application security specialists, and a security architect. Coaching and mentoring team members across all security disciplines. Advising product, engineering, and data squads on embedding security into their work and processes. Communicating security risks, threats, and requirements to both technical and non technical colleagues. Promoting security standardisation and consistency across platforms. Collaborating with technical and data architects on broader architectural decisions. Supporting organisational compliance by ensuring colleagues and contractors understand and meet their security responsibilities. What you won't be doing Working in a siloed environment with no freedom to make decisions. Working in a place where you can't see the impact your expertise makes. To succeed in this role you will be able to demonstrate some of the following skills and experience: Proven ability to manage and develop high performing security teams while fostering a collaborative, people centred environment. Demonstrable experience partnering with product teams to integrate security requirements into roadmaps, balancing security with usability and overall user experience. Previous experience working with DevSecOps or similar delivery models, embedding security in a way that supports rapid, iterative development. Experience designing secure cloud native architectures at both conceptual and detailed technical levels. Familiarity with Microsoft security technologies such as Defender, Sentinel, Entra, and Purview. An understanding of modern software engineering practices including source control, testing, code review, design documentation, and effective debugging. Advanced knowledge of security risk management and threat modelling. Solid understanding of core security controls, including cloud security, IAM, network security, and vulnerability management. Knowledge of modern cloud platforms, particularly Azure. Awareness of ISO 27001 and other widely used security standards. Comfortable working with Infrastructure as Code, ideally including Terraform. Experience working in Agile environments. The ability to communicate clearly between technical and non technical teams. Comfortable operating in a fast paced, small team environment. Relevant professional certifications. Salary from £110,000 per annum. Generous Pension Scheme - We invest in your future with employer contributions of up to 12%. 30 Days Holiday + Bank Holidays - Enjoy a generous holiday allowance with the flexibility to take bank holidays when it suits you. Enhanced Parental Leave - Supporting you during life's biggest moments. Cycle to Work Scheme - Save 25-39% on a new bike and accessories through salary sacrifice. Home & Tech Savings - Get up to 8% off on IKEA and Currys products, spreading the cost over 12 months through salary sacrifice £1,000 Employee Referral Bonus - Know someone amazing? Get rewarded for bringing them on board! Wellbeing Support - Access to Mental Health First Aiders, plus 24/7 online GP services and an Employee Assistance Programme for you and your family. A Great Place to Work - We have a lovely Central London office in Holborn, and offer flexible and remote working arrangements. Join us - let's prevent disease together. At Our Future Health, we recognise the importance of having a diverse workforce and ensuring that all candidates, regardless of their background, have equitable access to our application process. We proactively encourage applicants who identify as having a disability, neurodiversity, or long-term health conditions to let us know if they require any reasonable adjustments as part of their application process. If you do require any reasonable adjustments, please email us at
We are looking to hire a new role and bring someone in as our Head of Product Security, a key leadership role within our Information Security team. In this role you will shape how Our Future Health builds secure, trusted products at national scale. You'll lead the security engineering and architecture functions, ensuring they provide clear and pragmatic guidance to product, engineering, and wider technical teams. Your work centres on embedding secure by design thinking, strengthening how the organisation understands and manages risk, and helping teams see security as an enabler that supports delivery rather than slowing it down. You'll also contribute hands on technical input to complex architectural decisions where your expertise adds real value. Alongside this strategic impact, you'll manage and develop a growing team, ensuring smooth day to day operations and a culture of continuous improvement. The role needs empathetic people leadership, exceptional stakeholder management, and the ability to influence across a fast moving, agile environment. With an engineering background and solid security architecture experience, you'll bring the technical credibility and collaborative approach needed to guide teams, shape priorities, and drive the future direction of product security. At Our Future Health, our mission is to transform the prevention,detectionand treatment of conditions such as dementia, cancer, diabetes, heart disease and stroke. We're looking for people to join us on our journey. If you're looking for a new challenge where you can contribute to helping future generations live in good health for longer, then we're keen to speak with you. What you'll be doing Acting as deputy to the Director of Information Security, supporting security strategy and leadership alongside the Head of Cyber Defence. Leading the security consultancy and technical security functions, covering core services such as IAM, vulnerability management, threat modelling, and secure base image maintenance. Serving as the primary contact for security consultancy, delegating work across the team as needed. Overseeing security architecture and engineering for our cloud native (Azure) production and corporate platforms. Driving continuous improvement, prioritising enhancements and maturing operational documentation. Line managing a multidisciplinary security team, including security engineers, application security specialists, and a security architect. Coaching and mentoring team members across all security disciplines. Advising product, engineering, and data squads on embedding security into their work and processes. Communicating security risks, threats, and requirements to both technical and non technical colleagues. Promoting security standardisation and consistency across platforms. Collaborating with technical and data architects on broader architectural decisions. Supporting organisational compliance by ensuring colleagues and contractors understand and meet their security responsibilities. What you won't be doing Working in a siloed environment with no freedom to make decisions. Working in a place where you can't see the impact your expertise makes. To succeed in this role you will be able to demonstrate some of the following skills and experience: Proven ability to manage and develop high performing security teams while fostering a collaborative, people centred environment. Demonstrable experience partnering with product teams to integrate security requirements into roadmaps, balancing security with usability and overall user experience. Previous experience working with DevSecOps or similar delivery models, embedding security in a way that supports rapid, iterative development. Experience designing secure cloud native architectures at both conceptual and detailed technical levels. Familiarity with Microsoft security technologies such as Defender, Sentinel, Entra, and Purview. An understanding of modern software engineering practices including source control, testing, code review, design documentation, and effective debugging. Advanced knowledge of security risk management and threat modelling. Solid understanding of core security controls, including cloud security, IAM, network security, and vulnerability management. Knowledge of modern cloud platforms, particularly Azure. Awareness of ISO 27001 and other widely used security standards. Comfortable working with Infrastructure as Code, ideally including Terraform. Experience working in Agile environments. The ability to communicate clearly between technical and non technical teams. Comfortable operating in a fast paced, small team environment. Relevant professional certifications. Salary from £110,000 per annum. Generous Pension Scheme - We invest in your future with employer contributions of up to 12%. 30 Days Holiday + Bank Holidays - Enjoy a generous holiday allowance with the flexibility to take bank holidays when it suits you. Enhanced Parental Leave - Supporting you during life's biggest moments. Cycle to Work Scheme - Save 25-39% on a new bike and accessories through salary sacrifice. Home & Tech Savings - Get up to 8% off on IKEA and Currys products, spreading the cost over 12 months through salary sacrifice £1,000 Employee Referral Bonus - Know someone amazing? Get rewarded for bringing them on board! Wellbeing Support - Access to Mental Health First Aiders, plus 24/7 online GP services and an Employee Assistance Programme for you and your family. A Great Place to Work - We have a lovely Central London office in Holborn, and offer flexible and remote working arrangements. Join us - let's prevent disease together. At Our Future Health, we recognise the importance of having a diverse workforce and ensuring that all candidates, regardless of their background, have equitable access to our application process. We proactively encourage applicants who identify as having a disability, neurodiversity, or long-term health conditions to let us know if they require any reasonable adjustments as part of their application process. If you do require any reasonable adjustments, please email us at
Belcan
Belcan is recruiting for an OT Security Engineer on a Permanent basis based from our South West London office. This project is working within the Oil & Gas Industry. You'll be joining a culture that values curiosity, expertise, and ideas as well as equal opportunities, inclusion, and authenticity. Location: London / hybrid - with ad-hoc visits to Norway and Poland. Job Purpose As an OT Cyber Security Engineer you will be responsible for providing OT cyber security support and oversight for product development groups and industrial control system environments within our client's organisation. This includes defining, managing, and enforcing IACS security controls, processes and procedures. Rely on experience in both information security and automation technologies focusing on industrial controls systems. Additional responsibilities include serving as a member of the IACS Cyber security team, the information and digital services team, working closely with sites, services, technical teams and product groups to ensure that security requirements and support are provided. Job Description Provide secure design, development, and architecture requirements for Industrial Control Systems (ICS) environments and information and digital systems as they relate to ICS and automation. Provide support to write, review, and maintain documents, policies, and standards governing the cyber security requirements for the ICS environment. Provide secure architecture requirements for lab and development networks. Perform security reviews and assessments of systems, networks, and processes/procedures in ICS environments. Assist with testing, selection and implementation of security technologies in ICS environments. Provide support for projects and initiatives that enables sites to accomplish project goals in a secure manner. Provide support for management and remediation of vulnerabilities identified in ICS environments. Support on the development of cyber security technology implementation strategies for ICS environments with clear understanding of the differences between IT and OT environments. Support the execution of risk-based methodologies for cyber security assessments of ICS systems, including remote sites, onsite, third party, and on vessels. Support on the creation of technical design documentation and to write technical reports for both technical and management consumption and understanding. Follows the established metrics and key performance indicators to monitor the overall health and effectiveness of the ISC cyber security program. Stays informed about the latest cyber threats to the ICS environment including threats towards the organisation. Supports on the development of strategies and plans to mitigate emerging cyber threats. Experience required for this role: Bachelor's degree or equivalent Strong technical ICS experience : ability to review configurations of ICS, identify best practices for backup and recovery of ICS, and understand industrial protocols. Good general technical knowledge: Applications technologies, networks, protocols, databases, operating systems (Windows/Linux) Understanding of Industrial Networks Experience using ICS software including: Engineering Software Version Management Software HMI Software OPC Software Working knowledge of networking concepts, ability to review network designs, and perform security assessments of network devices (e.g. switches, routers, firewalls). Cybersecurity certifications (e.g.: CISSP) ICS Security Certifications (SANS GICSP, ISA/IEC 62443 Risk Assessment Specialist) Experience implementing security controls, hardening, and technologies in automation systems and networks. Experience implementing vulnerability and patch management in ICS environments. Working knowledge of IACS Security standards. Willingness to travel to other client sites in Europe (5%). This vacancy is being advertised by Belcan.
Belcan is recruiting for an OT Security Engineer on a Permanent basis based from our South West London office. This project is working within the Oil & Gas Industry. You'll be joining a culture that values curiosity, expertise, and ideas as well as equal opportunities, inclusion, and authenticity. Location: London / hybrid - with ad-hoc visits to Norway and Poland. Job Purpose As an OT Cyber Security Engineer you will be responsible for providing OT cyber security support and oversight for product development groups and industrial control system environments within our client's organisation. This includes defining, managing, and enforcing IACS security controls, processes and procedures. Rely on experience in both information security and automation technologies focusing on industrial controls systems. Additional responsibilities include serving as a member of the IACS Cyber security team, the information and digital services team, working closely with sites, services, technical teams and product groups to ensure that security requirements and support are provided. Job Description Provide secure design, development, and architecture requirements for Industrial Control Systems (ICS) environments and information and digital systems as they relate to ICS and automation. Provide support to write, review, and maintain documents, policies, and standards governing the cyber security requirements for the ICS environment. Provide secure architecture requirements for lab and development networks. Perform security reviews and assessments of systems, networks, and processes/procedures in ICS environments. Assist with testing, selection and implementation of security technologies in ICS environments. Provide support for projects and initiatives that enables sites to accomplish project goals in a secure manner. Provide support for management and remediation of vulnerabilities identified in ICS environments. Support on the development of cyber security technology implementation strategies for ICS environments with clear understanding of the differences between IT and OT environments. Support the execution of risk-based methodologies for cyber security assessments of ICS systems, including remote sites, onsite, third party, and on vessels. Support on the creation of technical design documentation and to write technical reports for both technical and management consumption and understanding. Follows the established metrics and key performance indicators to monitor the overall health and effectiveness of the ISC cyber security program. Stays informed about the latest cyber threats to the ICS environment including threats towards the organisation. Supports on the development of strategies and plans to mitigate emerging cyber threats. Experience required for this role: Bachelor's degree or equivalent Strong technical ICS experience : ability to review configurations of ICS, identify best practices for backup and recovery of ICS, and understand industrial protocols. Good general technical knowledge: Applications technologies, networks, protocols, databases, operating systems (Windows/Linux) Understanding of Industrial Networks Experience using ICS software including: Engineering Software Version Management Software HMI Software OPC Software Working knowledge of networking concepts, ability to review network designs, and perform security assessments of network devices (e.g. switches, routers, firewalls). Cybersecurity certifications (e.g.: CISSP) ICS Security Certifications (SANS GICSP, ISA/IEC 62443 Risk Assessment Specialist) Experience implementing security controls, hardening, and technologies in automation systems and networks. Experience implementing vulnerability and patch management in ICS environments. Working knowledge of IACS Security standards. Willingness to travel to other client sites in Europe (5%). This vacancy is being advertised by Belcan.
