Network and Security Specialist London (Moorgate) Onsite Permanent Competitive Salary VIQU have partnered with a global trading organisation looking to hire a Network and Security Specialist to take ownership of network and cyber security across a critical London-based environment. This is a hands-on, technically led role where the Network and Security Specialist will be responsible for protecting systems, ensuring high availability, and strengthening security posture while supporting day-to-day operations and future growth. Key Responsibilities: • Design, implement, and maintain secure network and security infrastructure to meet current and future business needs. • Own the full network and security lifecycle, maintaining uptime close to 99.99%. • Monitor, investigate, and respond to security incidents using SIEM tools, Sophos MDR, and threat-hunting techniques. • Configure and manage firewalls, VPNs, IDS/IPS, web and email security solutions. • Maintain high patching and vulnerability remediation standards, including CVE management. • Coordinate annual third-party penetration testing and lead remediation based on risk and CVSS scoring. • Investigate cyber incidents, perform forensic analysis, and implement rapid mitigation actions. • Maintain and upgrade network switches, routers, and security devices. • Define, maintain, and enforce security policies, disaster recovery plans, and contingency procedures. • Create and maintain technical documentation and Jira tickets. • Support infrastructure and service desk teams when required and actively upskill IT colleagues. • Manage suppliers, carriers, SLAs, and assist with IT budget tracking and spend control. Key Requirements: • Expert knowledge of Checkpoint firewalls, Cisco routers and switches, and Cisco ISE. • Strong experience with Zscaler Internet Access, Zscaler Private Access, Splunk, and enterprise SIEM tooling. • Proven background in network security, threat prevention, and incident response. • Cisco CCNA and CCNP certifications. • Experience with data centre colocation and vendor/carrier management. • Strong PowerShell and scripting capabilities. • Experience across Windows Server and Linux environments, Active Directory, Exchange (on-prem), VMware, VxRail, Rubrik, and RecoverPoint. • Excellent communication skills with a flexible, hands-on approach and strong attention to detail. Network and Security Specialist London (Moorgate) Onsite Permanent Competitive Salary Apply today to speak with VIQU in confidence or contact Belle Hegarty via the VIQU website Know someone exceptional for this position? Refer them and receive up to £1,000 if successful (terms apply). Follow us on LinkedIn IT Recruitment for more exciting opportunities.
May 29, 2026
Full time
Network and Security Specialist London (Moorgate) Onsite Permanent Competitive Salary VIQU have partnered with a global trading organisation looking to hire a Network and Security Specialist to take ownership of network and cyber security across a critical London-based environment. This is a hands-on, technically led role where the Network and Security Specialist will be responsible for protecting systems, ensuring high availability, and strengthening security posture while supporting day-to-day operations and future growth. Key Responsibilities: • Design, implement, and maintain secure network and security infrastructure to meet current and future business needs. • Own the full network and security lifecycle, maintaining uptime close to 99.99%. • Monitor, investigate, and respond to security incidents using SIEM tools, Sophos MDR, and threat-hunting techniques. • Configure and manage firewalls, VPNs, IDS/IPS, web and email security solutions. • Maintain high patching and vulnerability remediation standards, including CVE management. • Coordinate annual third-party penetration testing and lead remediation based on risk and CVSS scoring. • Investigate cyber incidents, perform forensic analysis, and implement rapid mitigation actions. • Maintain and upgrade network switches, routers, and security devices. • Define, maintain, and enforce security policies, disaster recovery plans, and contingency procedures. • Create and maintain technical documentation and Jira tickets. • Support infrastructure and service desk teams when required and actively upskill IT colleagues. • Manage suppliers, carriers, SLAs, and assist with IT budget tracking and spend control. Key Requirements: • Expert knowledge of Checkpoint firewalls, Cisco routers and switches, and Cisco ISE. • Strong experience with Zscaler Internet Access, Zscaler Private Access, Splunk, and enterprise SIEM tooling. • Proven background in network security, threat prevention, and incident response. • Cisco CCNA and CCNP certifications. • Experience with data centre colocation and vendor/carrier management. • Strong PowerShell and scripting capabilities. • Experience across Windows Server and Linux environments, Active Directory, Exchange (on-prem), VMware, VxRail, Rubrik, and RecoverPoint. • Excellent communication skills with a flexible, hands-on approach and strong attention to detail. Network and Security Specialist London (Moorgate) Onsite Permanent Competitive Salary Apply today to speak with VIQU in confidence or contact Belle Hegarty via the VIQU website Know someone exceptional for this position? Refer them and receive up to £1,000 if successful (terms apply). Follow us on LinkedIn IT Recruitment for more exciting opportunities.
Network and Security Specialist London (Moorgate) - Onsite - Permanent Competitive Salary VIQU have partnered with a global trading organisation looking to hire a Network and Security Specialist to take ownership of network and cyber security across a critical London-based environment. This is a hands-on, technically led role where the Network and Security Specialist will be responsible for protecting systems, ensuring high availability, and strengthening security posture while supporting day-to-day operations and future growth. Key Responsibilities: • Design, implement, and maintain secure network and security infrastructure to meet current and future business needs. • Own the full network and security lifecycle, maintaining uptime close to 99.99%. • Monitor, investigate, and respond to security incidents using SIEM tools, Sophos MDR, and threat-hunting techniques. • Configure and manage firewalls, VPNs, IDS/IPS, web and email security solutions. • Maintain high patching and vulnerability remediation standards, including CVE management. • Coordinate annual third-party penetration testing and lead remediation based on risk and CVSS scoring. • Investigate cyber incidents, perform forensic analysis, and implement rapid mitigation actions. • Maintain and upgrade network switches, routers, and security devices. • Define, maintain, and enforce security policies, disaster recovery plans, and contingency procedures. • Create and maintain technical documentation and Jira tickets. • Support infrastructure and service desk teams when required and actively upskill IT colleagues. • Manage suppliers, carriers, SLAs, and assist with IT budget tracking and spend control. Key Requirements: • Expert knowledge of Checkpoint firewalls, Cisco routers and switches, and Cisco ISE. • Strong experience with Zscaler Internet Access, Zscaler Private Access, Splunk, and enterprise SIEM tooling. • Proven background in network security, threat prevention, and incident response. • Cisco CCNA and CCNP certifications. • Experience with data centre colocation and vendor/carrier management. • Strong PowerShell and scripting capabilities. • Experience across Windows Server and Linux environments, Active Directory, Exchange (on-prem), VMware, VxRail, Rubrik, and RecoverPoint. • Excellent communication skills with a flexible, hands-on approach and strong attention to detail. Network and Security Specialist London (Moorgate) - Onsite - Permanent Competitive Salary Apply today to speak with VIQU in confidence or contact Belle Hegarty via the VIQU website Know someone exceptional for this position? Refer them and receive up to £1,000 if successful (terms apply). Follow us on LinkedIn IT Recruitment for more exciting opportunities.
May 22, 2026
Full time
Network and Security Specialist London (Moorgate) - Onsite - Permanent Competitive Salary VIQU have partnered with a global trading organisation looking to hire a Network and Security Specialist to take ownership of network and cyber security across a critical London-based environment. This is a hands-on, technically led role where the Network and Security Specialist will be responsible for protecting systems, ensuring high availability, and strengthening security posture while supporting day-to-day operations and future growth. Key Responsibilities: • Design, implement, and maintain secure network and security infrastructure to meet current and future business needs. • Own the full network and security lifecycle, maintaining uptime close to 99.99%. • Monitor, investigate, and respond to security incidents using SIEM tools, Sophos MDR, and threat-hunting techniques. • Configure and manage firewalls, VPNs, IDS/IPS, web and email security solutions. • Maintain high patching and vulnerability remediation standards, including CVE management. • Coordinate annual third-party penetration testing and lead remediation based on risk and CVSS scoring. • Investigate cyber incidents, perform forensic analysis, and implement rapid mitigation actions. • Maintain and upgrade network switches, routers, and security devices. • Define, maintain, and enforce security policies, disaster recovery plans, and contingency procedures. • Create and maintain technical documentation and Jira tickets. • Support infrastructure and service desk teams when required and actively upskill IT colleagues. • Manage suppliers, carriers, SLAs, and assist with IT budget tracking and spend control. Key Requirements: • Expert knowledge of Checkpoint firewalls, Cisco routers and switches, and Cisco ISE. • Strong experience with Zscaler Internet Access, Zscaler Private Access, Splunk, and enterprise SIEM tooling. • Proven background in network security, threat prevention, and incident response. • Cisco CCNA and CCNP certifications. • Experience with data centre colocation and vendor/carrier management. • Strong PowerShell and scripting capabilities. • Experience across Windows Server and Linux environments, Active Directory, Exchange (on-prem), VMware, VxRail, Rubrik, and RecoverPoint. • Excellent communication skills with a flexible, hands-on approach and strong attention to detail. Network and Security Specialist London (Moorgate) - Onsite - Permanent Competitive Salary Apply today to speak with VIQU in confidence or contact Belle Hegarty via the VIQU website Know someone exceptional for this position? Refer them and receive up to £1,000 if successful (terms apply). Follow us on LinkedIn IT Recruitment for more exciting opportunities.
Product Cyber Security Specialist - London, UK Salary up to £75,000 depending on experience, plus benefits Hybrid role with three days onsite per week SC Clearance required About the Client Our client is a UK-based technology organisation delivering complex, high-integrity systems within a regulated and safety-critical environment. Cyber security sits at the heart of their engineering capability, supporting nationally significant programmes with real-world impact. Due to continued programme growth, they are looking to add an experienced Product Cyber Security Specialist to their team. The Benefits Private healthcare and cash health plan Holiday buy and sell options Performance-related bonus Ongoing professional development and support for certifications The Product Cyber Security Specialist Role As a Product Cyber Security Specialist, you will provide cyber security expertise across the full engineering lifecycle of complex products. You will support delivery teams by managing cyber risk, maintaining assurance artefacts, and helping evolve product cyber security capability, including the use of automation and emerging technologies such as AI. The role involves close collaboration with engineering, security, and project leadership to ensure proportionate and effective cyber security outcomes. Product Cyber Security Specialist Essential Skills Strong background in cyber security or engineering, with relevant degree or equivalent experience Experience applying cyber security principles across the systems or product engineering lifecycle Knowledge of cyber risk management and vulnerability management Experience with threat modelling frameworks such as MITRE ATT and CK, DEF3ND, or EMB3D Awareness of industrial control systems or operational technology environments Working knowledge of the NIST Cyber Security Framework To Be Considered Please either apply through this advert or email me directly via
May 20, 2026
Full time
Product Cyber Security Specialist - London, UK Salary up to £75,000 depending on experience, plus benefits Hybrid role with three days onsite per week SC Clearance required About the Client Our client is a UK-based technology organisation delivering complex, high-integrity systems within a regulated and safety-critical environment. Cyber security sits at the heart of their engineering capability, supporting nationally significant programmes with real-world impact. Due to continued programme growth, they are looking to add an experienced Product Cyber Security Specialist to their team. The Benefits Private healthcare and cash health plan Holiday buy and sell options Performance-related bonus Ongoing professional development and support for certifications The Product Cyber Security Specialist Role As a Product Cyber Security Specialist, you will provide cyber security expertise across the full engineering lifecycle of complex products. You will support delivery teams by managing cyber risk, maintaining assurance artefacts, and helping evolve product cyber security capability, including the use of automation and emerging technologies such as AI. The role involves close collaboration with engineering, security, and project leadership to ensure proportionate and effective cyber security outcomes. Product Cyber Security Specialist Essential Skills Strong background in cyber security or engineering, with relevant degree or equivalent experience Experience applying cyber security principles across the systems or product engineering lifecycle Knowledge of cyber risk management and vulnerability management Experience with threat modelling frameworks such as MITRE ATT and CK, DEF3ND, or EMB3D Awareness of industrial control systems or operational technology environments Working knowledge of the NIST Cyber Security Framework To Be Considered Please either apply through this advert or email me directly via
Principle IT Security Specialist - London - Hybrid Working £80,000 - £105,000 (dependent on experience) + Equity & Benefits Help Build Europe's Hypersonic Capability This organisation is redefining what's possible in European defence technology, delivering speed, resilience, and technological independence at a pace that sets a new standard. Operating as a small, elite, and highly capable team, it focuses on solving complex, high-impact problems quickly and effectively. They are seeking an Lead IT Security Specialist to join a talent-dense environment where every individual plays a critical role in shaping both technical direction and organisational capability. This is not a predefined role, it is an opportunity for a high-calibre security professional to take ownership of core security functions, with scope to evolve the position based on their strengths and expertise. The successful candidate will play a key role in strengthening security posture through SIEM ownership, incident response, and system hardening, directly contributing to Europe's technological sovereignty. The Role The IT Security Specialist will: Design, build, and operate a centralised SIEM platform to aggregate and analyse security logs across infrastructure, networks, and applications Own security log analysis, vulnerability management, and incident investigation, including defining baselines and developing alerting rules for critical events Lead incident response efforts, using log correlation and analysis to investigate and resolve security issues quickly and effectively Define and implement system and application hardening standards, ensuring strong, consistent security configurations across environments Act as an on-call responder for security incidents, taking full ownership from detection through to resolution and post-incident improvement Collaborate with Information Security and leadership teams to ensure compliance with relevant standards and frameworks (e.g. Cyber Essentials, ISO 27001, DEF STAN, Grundschutz) Develop and maintain clear documentation covering SIEM architecture, security controls, incident response procedures, and audit requirements Candidate Profile The ideal candidate will bring: Hands-on experience deploying and operating SIEM solutions (e.g. ELK Stack, OpenSearch, Wazuh, Microsoft Defender), with proven incident investigation experience in production environments Strong expertise in Linux and Windows system hardening, with familiarity across frameworks such as CIS Benchmarks or STIGs Scripting capability for automation, log parsing, and alerting rule development Experience working within compliance-driven or regulated environments A strong security mindset, with a focus on access control, threat detection, and auditability The ability to balance robust security controls with operational efficiency High levels of autonomy and sound judgement, with the ability to manage incidents end-to-end A pragmatic, delivery-focused approach, prioritising effective security outcomes over theoretical perfection Security Clearance Due to the nature of the work, applicants must be British citizens (or dual nationals with British citizenship) and eligible for UK Security Clearance (SC), with the potential requirement for Developed Vetting (DV). What's on Offer The opportunity to work on one of Europe's most critical and high-impact defence challenges A high-autonomy environment with full ownership of key security capabilities Collaboration with leading experts across engineering, operations, and defence A fast-paced setting where ideas are implemented quickly and security improvements have immediate impact A culture built on clarity, integrity, and excellence, supporting individuals who take initiative and operate with accountability Competitive compensation and meaningful equity aligned to impact and responsibility Robert Half Ltd acts as an employment business for temporary positions and an employment agency for permanent positions. Robert Half is committed to diversity, equity and inclusion. Suitable candidates with equivalent qualifications and more or less experience can apply. Rates of pay and salary ranges are dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data:
May 19, 2026
Full time
Principle IT Security Specialist - London - Hybrid Working £80,000 - £105,000 (dependent on experience) + Equity & Benefits Help Build Europe's Hypersonic Capability This organisation is redefining what's possible in European defence technology, delivering speed, resilience, and technological independence at a pace that sets a new standard. Operating as a small, elite, and highly capable team, it focuses on solving complex, high-impact problems quickly and effectively. They are seeking an Lead IT Security Specialist to join a talent-dense environment where every individual plays a critical role in shaping both technical direction and organisational capability. This is not a predefined role, it is an opportunity for a high-calibre security professional to take ownership of core security functions, with scope to evolve the position based on their strengths and expertise. The successful candidate will play a key role in strengthening security posture through SIEM ownership, incident response, and system hardening, directly contributing to Europe's technological sovereignty. The Role The IT Security Specialist will: Design, build, and operate a centralised SIEM platform to aggregate and analyse security logs across infrastructure, networks, and applications Own security log analysis, vulnerability management, and incident investigation, including defining baselines and developing alerting rules for critical events Lead incident response efforts, using log correlation and analysis to investigate and resolve security issues quickly and effectively Define and implement system and application hardening standards, ensuring strong, consistent security configurations across environments Act as an on-call responder for security incidents, taking full ownership from detection through to resolution and post-incident improvement Collaborate with Information Security and leadership teams to ensure compliance with relevant standards and frameworks (e.g. Cyber Essentials, ISO 27001, DEF STAN, Grundschutz) Develop and maintain clear documentation covering SIEM architecture, security controls, incident response procedures, and audit requirements Candidate Profile The ideal candidate will bring: Hands-on experience deploying and operating SIEM solutions (e.g. ELK Stack, OpenSearch, Wazuh, Microsoft Defender), with proven incident investigation experience in production environments Strong expertise in Linux and Windows system hardening, with familiarity across frameworks such as CIS Benchmarks or STIGs Scripting capability for automation, log parsing, and alerting rule development Experience working within compliance-driven or regulated environments A strong security mindset, with a focus on access control, threat detection, and auditability The ability to balance robust security controls with operational efficiency High levels of autonomy and sound judgement, with the ability to manage incidents end-to-end A pragmatic, delivery-focused approach, prioritising effective security outcomes over theoretical perfection Security Clearance Due to the nature of the work, applicants must be British citizens (or dual nationals with British citizenship) and eligible for UK Security Clearance (SC), with the potential requirement for Developed Vetting (DV). What's on Offer The opportunity to work on one of Europe's most critical and high-impact defence challenges A high-autonomy environment with full ownership of key security capabilities Collaboration with leading experts across engineering, operations, and defence A fast-paced setting where ideas are implemented quickly and security improvements have immediate impact A culture built on clarity, integrity, and excellence, supporting individuals who take initiative and operate with accountability Competitive compensation and meaningful equity aligned to impact and responsibility Robert Half Ltd acts as an employment business for temporary positions and an employment agency for permanent positions. Robert Half is committed to diversity, equity and inclusion. Suitable candidates with equivalent qualifications and more or less experience can apply. Rates of pay and salary ranges are dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data:
PRINCIPAL CYBERSECURITY ENGINEER SC Cleared - UK Only - (Sponsorship is unavailable) you must hold SC Clearance.Provide expert advice on the defences against cyber threats, data breaches, and emerging risks. This includes offering guidance on the selection, design, justification, implementation, and operational management of cybersecurity strategies, technologies, and standards. Contribute to the development and refinement of controls and processes to ensure the safety, confidentiality, integrity, availability, and overall security of data stored on systems. You will be responsible for identifying gaps in existing cybersecurity policies and procedures and, in collaboration with security, network, information governance, and technical leads, developing new measures to address these gaps. KEY RESPONSIBILITIES: You will work closely with system and service owners, as well as internal and external stakeholders, to design, implement, and enforce appropriate protective and detective security controls, policies, and procedures. The role includes the administration and operational management of security tooling and SIEM platforms, with responsibility for monitoring, detecting, and responding to cyber threats, intrusions, and unauthorised or suspicious activity. This includes Microsoft Sentinel (data and source tuning, creation and maintenance of workbooks and connectors, and threat intelligence review), Microsoft Defender for Endpoint and Defender for Cloud, and Darktrace, including system and model tuning, email module management, and configuration of autonomous response actions. You will be responsible for incident response activities, including triaging security alerts, investigating incidents, coordinating escalation and remediation, and conducting root cause analysis. You must be able to communicate effectively about security incidents and cyber risks to both technical and non-technical stakeholders. The role works closely with the Security Operations Centre (SOC) partner, supporting the assessment and investigation of alerts and contributing to the development and refinement of incident response plans and playbooks. You will support vulnerability management activities, including vulnerability assessments, annual audits, and penetration testing. This includes preparing and presenting incident, threat, and compliance reporting to stakeholders at all levels, including compiling a monthly SIRO report. Continuous improvement is a core responsibility. You will conduct post-incident reviews, recommend control and process improvements, and contribute to the creation and maintenance of cybersecurity governance documentation. You will also research emerging cyber threats and mitigation strategies and provide reports or presentations to senior stakeholders as required. The role supports cybersecurity training and awareness initiatives, promoting a strong security culture and helping to upskill colleagues in cybersecurity best practices. You will also collaborate with solution architects and project teams to ensure security is embedded into system and application designs, supporting secure architecture and delivery from the outset. Compliance & Framework Alignment: Ensure security operations align with regulatory standards and frameworks such as NIST, ISO 27001, and NCSC CAF. Person SpecificationEssential: Demonstrated experience with Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools, threat intelligence platforms, and vulnerability management. Technical experience securing Microsoft Azure and Amazon Web Services cloud environments as well as on-premise/virtual Microsoft technologies. Strong analytical, communication, and problem-solving skills, including the ability to produce clear technical and non-technical reports. Ability to analyse and interpret security events/logs and perform remediation work to address security issues. Desirable: Recognised cybersecurity certifications (e.g., CompTIA Security+, CEH, GIAC, CISSP). Experience with DarkTrace Qualifications Bachelor's degree in Cybersecurity or Computer Science Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk
May 07, 2026
Full time
PRINCIPAL CYBERSECURITY ENGINEER SC Cleared - UK Only - (Sponsorship is unavailable) you must hold SC Clearance.Provide expert advice on the defences against cyber threats, data breaches, and emerging risks. This includes offering guidance on the selection, design, justification, implementation, and operational management of cybersecurity strategies, technologies, and standards. Contribute to the development and refinement of controls and processes to ensure the safety, confidentiality, integrity, availability, and overall security of data stored on systems. You will be responsible for identifying gaps in existing cybersecurity policies and procedures and, in collaboration with security, network, information governance, and technical leads, developing new measures to address these gaps. KEY RESPONSIBILITIES: You will work closely with system and service owners, as well as internal and external stakeholders, to design, implement, and enforce appropriate protective and detective security controls, policies, and procedures. The role includes the administration and operational management of security tooling and SIEM platforms, with responsibility for monitoring, detecting, and responding to cyber threats, intrusions, and unauthorised or suspicious activity. This includes Microsoft Sentinel (data and source tuning, creation and maintenance of workbooks and connectors, and threat intelligence review), Microsoft Defender for Endpoint and Defender for Cloud, and Darktrace, including system and model tuning, email module management, and configuration of autonomous response actions. You will be responsible for incident response activities, including triaging security alerts, investigating incidents, coordinating escalation and remediation, and conducting root cause analysis. You must be able to communicate effectively about security incidents and cyber risks to both technical and non-technical stakeholders. The role works closely with the Security Operations Centre (SOC) partner, supporting the assessment and investigation of alerts and contributing to the development and refinement of incident response plans and playbooks. You will support vulnerability management activities, including vulnerability assessments, annual audits, and penetration testing. This includes preparing and presenting incident, threat, and compliance reporting to stakeholders at all levels, including compiling a monthly SIRO report. Continuous improvement is a core responsibility. You will conduct post-incident reviews, recommend control and process improvements, and contribute to the creation and maintenance of cybersecurity governance documentation. You will also research emerging cyber threats and mitigation strategies and provide reports or presentations to senior stakeholders as required. The role supports cybersecurity training and awareness initiatives, promoting a strong security culture and helping to upskill colleagues in cybersecurity best practices. You will also collaborate with solution architects and project teams to ensure security is embedded into system and application designs, supporting secure architecture and delivery from the outset. Compliance & Framework Alignment: Ensure security operations align with regulatory standards and frameworks such as NIST, ISO 27001, and NCSC CAF. Person SpecificationEssential: Demonstrated experience with Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools, threat intelligence platforms, and vulnerability management. Technical experience securing Microsoft Azure and Amazon Web Services cloud environments as well as on-premise/virtual Microsoft technologies. Strong analytical, communication, and problem-solving skills, including the ability to produce clear technical and non-technical reports. Ability to analyse and interpret security events/logs and perform remediation work to address security issues. Desirable: Recognised cybersecurity certifications (e.g., CompTIA Security+, CEH, GIAC, CISSP). Experience with DarkTrace Qualifications Bachelor's degree in Cybersecurity or Computer Science Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk
Senior Cyber Security Splunk SME Full Time Permanent Fully onsite - Moorgate, London EC2Y £80-92K basic + benefits (5% pension, 25 days hols, life insurance, medical cover) Are you an experienced Splunk SME looking for a new challenge? Do you have a strong background in Splunk, IAM and SOAR with a high-level understanding of wider Splunk ecosystem, along with Incident Management, Python and Powershell skills? Here at ARM, we are recruiting for a full time permanent Splunk SME for a global IT services and consultancy client of ours. Our client: They're a leading business with a global reach that empowers local teams, and they undertake hugely exciting work that is genuinely changing the world. Their advanced portfolio of consulting, applications, business process, cloud, and infrastructure services will allow you to achieve great things by working with brilliant colleagues, and clients, on exciting projects. They're a rapidly growing, people-first technology organisation and part of a $1B global service provider delivering end-to-end IT Outsourcing (ITO) and Cyber Defence services to clients across the UK and beyond. Within their Security Practice, they provide a range of services including Managed Detection and Response (MDR), Vulnerability Management, Penetration Testing, Incident Response, and consultancy led Security Advisory services. You'll be joining a team that values learning, celebrates innovation, and supports your career journey every step of the way. The Opportunity: We are looking for a skilled Splunk Specialist to deliver end-to-end Splunk engagements, helping clients build and enhance their security monitoring capabilities. You will lead the full project lifecycle, from requirements gathering and stakeholder engagement through to data onboarding, alert development, and dashboard creation, ensuring solutions are aligned to both business and security objectives. You will bring strong hands-on experience with Splunk Enterprise Security and a proven track record in delivering cybersecurity projects. This includes designing and implementing detection use cases, tuning alerts, and developing dashboards that provide clear, actionable insights for security operations teams. Experience with SOAR and UEBA technologies is advantageous but not essential. This role suits someone who enjoys working in a client-facing environment, solving complex challenges, and contributing to the ongoing evolution of modern Security Operations Centres. What You'll Be Doing: Design, build, and continuously enhance detection capabilities within Splunk across Linux and Windows environments, including log onboarding, normalisation, and enrichment Develop and maintain high-quality detection content such as correlation searches and risk-based alerting within Splunk Enterprise Security Write and optimise complex queries to support threat detection, proactive threat hunting, and anomaly identification Map detection logic to adversary behaviours using the MITRE ATT&CK Framework, ensuring effective coverage of tactics, techniques, and procedures Work with the wider Splunk ecosystem, including tools like TrackMe, and contribute to automation and orchestration initiatives (including exposure to SOAR where applicable) Leverage scripting languages such as Python and PowerShell to automate detection logic, enrich data, and integrate with security workflows Provide mentorship and technical guidance to junior engineers, particularly on Splunk backend activities such as data ingestion, parsing, indexing, and troubleshooting Collaborate closely with SOC analysts, incident responders, and global engineering teams to improve detection and response capabilities Apply strong analytical and problem-solving skills to translate threat intelligence into actionable detection use cases and continuously improve security operations What We're Looking For: Essential: Experience working on multiple projects with broad scope, ambiguity, and a high degree of difficulty Demonstrable proficiency across a wide range of IT and cybersecurity technologies Strong knowledge of key cybersecurity domains, including Identity and Access Management and Incident Management High-level analytical ability to solve unusual and complex problems Ability to maintain up-to-date working knowledge of cybersecurity principles and best practices Experience in senior stakeholder management and providing clear, relevant management reporting, professional communication - written and verbal. Eligibility to work in the UK. Desirable: Experience in technology projects such as cyber infrastructure implementation or replacement initiatives Understanding of global program structures, launch plans, timing, and ownership Ability to coach and mentor team members through knowledge transfer and constructive feedback Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission.
May 04, 2026
Full time
Senior Cyber Security Splunk SME Full Time Permanent Fully onsite - Moorgate, London EC2Y £80-92K basic + benefits (5% pension, 25 days hols, life insurance, medical cover) Are you an experienced Splunk SME looking for a new challenge? Do you have a strong background in Splunk, IAM and SOAR with a high-level understanding of wider Splunk ecosystem, along with Incident Management, Python and Powershell skills? Here at ARM, we are recruiting for a full time permanent Splunk SME for a global IT services and consultancy client of ours. Our client: They're a leading business with a global reach that empowers local teams, and they undertake hugely exciting work that is genuinely changing the world. Their advanced portfolio of consulting, applications, business process, cloud, and infrastructure services will allow you to achieve great things by working with brilliant colleagues, and clients, on exciting projects. They're a rapidly growing, people-first technology organisation and part of a $1B global service provider delivering end-to-end IT Outsourcing (ITO) and Cyber Defence services to clients across the UK and beyond. Within their Security Practice, they provide a range of services including Managed Detection and Response (MDR), Vulnerability Management, Penetration Testing, Incident Response, and consultancy led Security Advisory services. You'll be joining a team that values learning, celebrates innovation, and supports your career journey every step of the way. The Opportunity: We are looking for a skilled Splunk Specialist to deliver end-to-end Splunk engagements, helping clients build and enhance their security monitoring capabilities. You will lead the full project lifecycle, from requirements gathering and stakeholder engagement through to data onboarding, alert development, and dashboard creation, ensuring solutions are aligned to both business and security objectives. You will bring strong hands-on experience with Splunk Enterprise Security and a proven track record in delivering cybersecurity projects. This includes designing and implementing detection use cases, tuning alerts, and developing dashboards that provide clear, actionable insights for security operations teams. Experience with SOAR and UEBA technologies is advantageous but not essential. This role suits someone who enjoys working in a client-facing environment, solving complex challenges, and contributing to the ongoing evolution of modern Security Operations Centres. What You'll Be Doing: Design, build, and continuously enhance detection capabilities within Splunk across Linux and Windows environments, including log onboarding, normalisation, and enrichment Develop and maintain high-quality detection content such as correlation searches and risk-based alerting within Splunk Enterprise Security Write and optimise complex queries to support threat detection, proactive threat hunting, and anomaly identification Map detection logic to adversary behaviours using the MITRE ATT&CK Framework, ensuring effective coverage of tactics, techniques, and procedures Work with the wider Splunk ecosystem, including tools like TrackMe, and contribute to automation and orchestration initiatives (including exposure to SOAR where applicable) Leverage scripting languages such as Python and PowerShell to automate detection logic, enrich data, and integrate with security workflows Provide mentorship and technical guidance to junior engineers, particularly on Splunk backend activities such as data ingestion, parsing, indexing, and troubleshooting Collaborate closely with SOC analysts, incident responders, and global engineering teams to improve detection and response capabilities Apply strong analytical and problem-solving skills to translate threat intelligence into actionable detection use cases and continuously improve security operations What We're Looking For: Essential: Experience working on multiple projects with broad scope, ambiguity, and a high degree of difficulty Demonstrable proficiency across a wide range of IT and cybersecurity technologies Strong knowledge of key cybersecurity domains, including Identity and Access Management and Incident Management High-level analytical ability to solve unusual and complex problems Ability to maintain up-to-date working knowledge of cybersecurity principles and best practices Experience in senior stakeholder management and providing clear, relevant management reporting, professional communication - written and verbal. Eligibility to work in the UK. Desirable: Experience in technology projects such as cyber infrastructure implementation or replacement initiatives Understanding of global program structures, launch plans, timing, and ownership Ability to coach and mentor team members through knowledge transfer and constructive feedback Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission.
Who we are GlobalData is a specialist information services business helping clients decode the future, make better decisions and reach more customers. Through our data, expert analysis and innovative solutions, we provide intelligence across the world s largest industries to companies, governments and industry professionals. Formed in 2016 through the combination of multiple specialist firms, we are now a fully integrated global platform with 3,500+ colleagues across 20+ industries, supporting over 5,000 customers worldwide. Why join GlobalData? We are at a pivotal stage of growth, supported by recent investment and ambitious plans. It s a fast-paced, entrepreneurial environment where collaboration drives success, and where curious, ambitious individuals can make a real impact as we work towards becoming the world s most trusted source of strategic industry intelligence. The role As Information Security Manager, you will lead the strategy and delivery of initiatives that strengthen GlobalData s cybersecurity posture across global operations. You ll ensure our people, systems and infrastructure remain secure, resilient and able to support continued growth. Reporting to the Chief Information Security Officer, you will lead a team of security professionals, drive key security programmes, and work closely with stakeholders across technology and business teams to improve cyber governance, data security and operational resilience. This role requires strong expertise in information security, AI and data governance, alongside experience in vendor management and third-party risk. What you ll be doing Lead and deliver the information security strategy aligned to business goals Develop and maintain security frameworks, policies and standards Oversee risk management, threat assessment and vulnerability programmes Ensure compliance with ISO 27001, ISO 42001, GDPR and other relevant frameworks Manage security operations including incident response, monitoring and investigations Partner with IT, engineering, legal and business teams to embed security best practice Lead internal/external audits, assessments and remediation plans Manage third-party and vendor security risk programmes Build, mentor and lead a high-performing security team Provide executive reporting on security risks, metrics and improvement plans Monitor emerging threats, technologies and regulations What we re looking for 8+ years experience in senior cybersecurity or information security roles Leadership experience within a complex, multinational business Experience managing global teams across multiple regions Strong knowledge of ISO 27001, NIST, CIS Controls or similar frameworks Proven experience in security operations, risk management and compliance Experience handling security incidents and crisis management Strong commercial awareness and budget management experience Excellent communication and stakeholder management skills, including senior leadership exposure Strong understanding of IT infrastructure, cloud technologies and enterprise systems Experience managing third-party vendors and technology partners Preferred Certifications CISM or similar ISO 27001 Lead Implementer / Lead Auditor ISO 42001 (desirable) Technical Skills Security architecture and cloud security (AWS) SIEM, EDR and SOC tools ISO 27001 / ISO 42001 implementation Vulnerability management and penetration testing oversight Data protection, encryption and privacy controls Third-party risk management tools and processes Leadership & Competencies Inspiring leader who develops teams and delegates effectively Strategic thinker with strong decision-making skills Able to influence senior stakeholders and collaborate cross-functionally Hands-on and comfortable operating at all levels Calm under pressure with strong prioritisation skills Able to translate technical risk into clear business impact Highly organised with strong attention to detail In addition to a rewarding career, we support our GlobalData colleagues with a range of benefits across health, finances, fitness, travel, tech and more. To find out more about the roles and benefits on offer in your region, visit (url removed) GlobalData believes strongly in the value of diversity and creating supportive, inclusive environments where our colleagues can succeed. As such, we are proud to be an Equal Opportunity Employer. GlobalData is determined to ensure that no applicant or employee receives less favourable treatment on the grounds of gender, age, disability, religion, belief, sexual orientation, marital status, race, or is disadvantaged by conditions or requirements which cannot be shown to be justifiable.
Apr 30, 2026
Full time
Who we are GlobalData is a specialist information services business helping clients decode the future, make better decisions and reach more customers. Through our data, expert analysis and innovative solutions, we provide intelligence across the world s largest industries to companies, governments and industry professionals. Formed in 2016 through the combination of multiple specialist firms, we are now a fully integrated global platform with 3,500+ colleagues across 20+ industries, supporting over 5,000 customers worldwide. Why join GlobalData? We are at a pivotal stage of growth, supported by recent investment and ambitious plans. It s a fast-paced, entrepreneurial environment where collaboration drives success, and where curious, ambitious individuals can make a real impact as we work towards becoming the world s most trusted source of strategic industry intelligence. The role As Information Security Manager, you will lead the strategy and delivery of initiatives that strengthen GlobalData s cybersecurity posture across global operations. You ll ensure our people, systems and infrastructure remain secure, resilient and able to support continued growth. Reporting to the Chief Information Security Officer, you will lead a team of security professionals, drive key security programmes, and work closely with stakeholders across technology and business teams to improve cyber governance, data security and operational resilience. This role requires strong expertise in information security, AI and data governance, alongside experience in vendor management and third-party risk. What you ll be doing Lead and deliver the information security strategy aligned to business goals Develop and maintain security frameworks, policies and standards Oversee risk management, threat assessment and vulnerability programmes Ensure compliance with ISO 27001, ISO 42001, GDPR and other relevant frameworks Manage security operations including incident response, monitoring and investigations Partner with IT, engineering, legal and business teams to embed security best practice Lead internal/external audits, assessments and remediation plans Manage third-party and vendor security risk programmes Build, mentor and lead a high-performing security team Provide executive reporting on security risks, metrics and improvement plans Monitor emerging threats, technologies and regulations What we re looking for 8+ years experience in senior cybersecurity or information security roles Leadership experience within a complex, multinational business Experience managing global teams across multiple regions Strong knowledge of ISO 27001, NIST, CIS Controls or similar frameworks Proven experience in security operations, risk management and compliance Experience handling security incidents and crisis management Strong commercial awareness and budget management experience Excellent communication and stakeholder management skills, including senior leadership exposure Strong understanding of IT infrastructure, cloud technologies and enterprise systems Experience managing third-party vendors and technology partners Preferred Certifications CISM or similar ISO 27001 Lead Implementer / Lead Auditor ISO 42001 (desirable) Technical Skills Security architecture and cloud security (AWS) SIEM, EDR and SOC tools ISO 27001 / ISO 42001 implementation Vulnerability management and penetration testing oversight Data protection, encryption and privacy controls Third-party risk management tools and processes Leadership & Competencies Inspiring leader who develops teams and delegates effectively Strategic thinker with strong decision-making skills Able to influence senior stakeholders and collaborate cross-functionally Hands-on and comfortable operating at all levels Calm under pressure with strong prioritisation skills Able to translate technical risk into clear business impact Highly organised with strong attention to detail In addition to a rewarding career, we support our GlobalData colleagues with a range of benefits across health, finances, fitness, travel, tech and more. To find out more about the roles and benefits on offer in your region, visit (url removed) GlobalData believes strongly in the value of diversity and creating supportive, inclusive environments where our colleagues can succeed. As such, we are proud to be an Equal Opportunity Employer. GlobalData is determined to ensure that no applicant or employee receives less favourable treatment on the grounds of gender, age, disability, religion, belief, sexual orientation, marital status, race, or is disadvantaged by conditions or requirements which cannot be shown to be justifiable.
