Trabajos cyber security en Reino Unido

We believe in better. And we make it happen. Better content. Better products. And better careers. Working in Tech, Product or Data at Sky is about building the next and the new. From broadband to broadcast, streaming to mobile, SkyQ to Sky Glass, we never stand still. We optimise and innovate. We turn big ideas into the products, content and services millions of people love. And we do it all right here at Sky. As a key member of the Enterprise Technology Identity and Access Management team, you will help set the direction of Sky's Identity and Access Management (IAM) roadmap and strategy as we expand the platform (One Identity) to different business areas within Sky Group. You will be an authentication and access management specialist who will be comfortable developing, implementing, and maintaining secure and efficient IAM systems for our internal stakeholders. What You'll Do • Design, develop, and implement IAM solutions using One Identity Manager, including custom scripts and connectors for identity sources like Active Directory, LDAP, and HR systems., • Collaborate with internal teams to ensure IAM solutions meet business needs, security standards, and regulatory compliance, while maintaining change control throughout the development lifecycle., • Conduct regular audits and assessments of the IAM stack to identify and resolve security gaps, and provide evidence to auditors as required., • Stay current with emerging technologies and security frameworks (e.g., NIST, NCSC), proactively recommending upgrades and improvements to senior stakeholders., • Provide technical guidance and mentoring to team members, supporting best practices in authentication, access control, and identity lifecycle management., • Develop and deliver technical documentation and training materials to support platform adoption across Sky Group.What You'll Bring, • Extensive hands-on experience with One Identity Manager and other Identity Governance tools, with strong knowledge of IAM protocols (LDAP, SAML, OAuth, OpenID Connect)., • Proficiency in cross-platform scripting (e.g., T-SQL, PowerShell, Bash) and integration with on-premise/cloud directory services (Azure AD, GSuite, LDAP)., • Deep understanding of legacy and modern authentication protocols, access controls, and identity lifecycle management., • Strong security awareness and familiarity with standards such as ISO27001, NIST, and CIS, with experience conducting audits and implementing controls., • Solid grasp of Web APIs including SOAP, REST, and GraphQL, and their role in IAM integrations., • Excellent communication, organisational, and stakeholder management skills, with the ability to work autonomously on complex projects.Team overview Cyber Security Our products, platforms and technologies are constantly evolving that's why keeping Sky safe from cyber-attacks is one of our top priorities. Our Cyber Security team helps the business grow while protecting our customers, colleagues and partners from increasingly sophisticated cyber threats. Our team includes Cyber Fusion Centre, Security Services, Risk and Compliance, Programme Delivery and Business Security, and we work across the UK, Italy and Germany. Join us and you'll get involved in tackling challenges and future threats in an ever-changing cyber landscape. The rewards There's one thing people can't stop talking about when it comes to #LifeAtSky: the perks. Here's a taster: • Sky Q, for the TV you love all in one place, • The magic of Sky Glass at an exclusive rate, • A generous pension package, • Private healthcare, • Discounted mobile and broadband, • A wide range of Sky VIP rewards and experiencesInclusion & how you'll work We are a Disability Confident Employer, and welcome and encourage applications from all candidates. We will look to ensure a fair and consistent experience for all, and will make reasonable adjustments to support you where appropriate. Please flag any adjustments you need to your recruiter as early as you can. We've embraced hybrid working and split our time between unique office spaces and the convenience of working from home. You'll find out more about what hybrid working looks like for your role later on in the recruitment process. Your office space Osterley, London Our Osterley Campus is a 10-minute walk from Syon Lane train station. Or you can hop on one of our free shuttle buses that run to and from Osterley, Gunnersbury, Ealing Broadway and South Ealing tube stations. There are also plenty of bike shelters and showers. On campus, you'll find 13 subsidised restaurants, cafes, and a Waitrose. You can keep in shape at our subsidised gym, catch the latest shows and movies at our cinema, get your car washed, and even get pampered at our beauty salon. or Brick Lane, London Brick Lane is in the heart of the East End of London. It's part of a vibrant and diverse community; close to street food, cafes and shops. The closest tube station is Aldgate East and Liverpool Street is about a 10 minute walk. We'd love to hear from you Inventive, forward-thinking minds come together to work in Tech, Product and Data at Sky. It's a place where you can explore what if, how far, and what next. But better doesn't stop at what we do, it's how we do it, too. We embrace each other's differences. We support our community and contribute to a sustainable future for our business and the planet. If you believe in better, we'll back you all the way. Just so you know: if your application is successful, we'll ask you to complete a criminal record check. And depending on the role you have applied for and the nature of any convictions you may have, we might have to withdraw the offer.

We believe in better. And we make it happen. Better content. Better products. And better careers. Working in Tech, Product or Data at Sky is about building the next and the new. From broadband to broadcast, streaming to mobile, SkyQ to Sky Glass, we never stand still. We optimise and innovate. We turn big ideas into the products, content and services millions of people love. And we do it all right here at Sky. What you'll do • Develop and implement PAM policies, procedures, and guidelines to ensure compliance with regulatory requirements and industry best practices., • Monitor PAM activities and alerts to detect potential security breaches or policy violations and take appropriate actions., • Conduct regular audits and assessments of the PAM system to identify and address any security gaps or vulnerabilities., • Work with auditors to and supply evidence as required., • Work with teams across different territories and areas of Sky, building relationships and improving Sky's privileged security baseline., • Be familiar designing and implementing closed loop credential management workflows., • Stay ahead of the security curve and make best practice recommendations to senior management (NIST, NCSC etc.), • Be able to work autonomously on complex projects, gathering key information and making appropriate recommendations., • Design, implement, and manage the PAM system to ensure the confidentiality, integrity, and availability of sensitive data and systems., • Mentoring and support for other members of the Team.What you'll bring, • Be CyberArk certified to at least Defender level., • Strong recent experience with administrating and configuration of:, • CyberArk, • Azure AD, • Solid understanding of Identity Governance and Administration platforms (preferably One Identity), • Expertise in cross platform scripting (Powershell, bash etc.)., • Be a subject matter expert on both legacy and modern authentication protocols., • Have excellent security awareness including standards e.g., IS027001, NIST and CIS., • Have a good understanding of Web APIs including SOAP, REST and GraphQL architectures., • Have experience with threat modelling methodologies e.g., STRIDE., • Have a good understanding of Access Controls and Identity Lifecycle management., • Have excellent communication and organisational skills.Team overview Cyber Security Our products, platforms and technologies are constantly evolving that's why keeping Sky safe from cyber-attacks is one of our top priorities. Our Cyber Security team helps the business grow while protecting our customers, colleagues and partners from increasingly sophisticated cyber threats. Our team includes Cyber Fusion Centre, Security Services, Risk and Compliance, Programme Delivery and Business Security, and we work across the UK, Italy and Germany. Join us and you'll get involved in tackling challenges and future threats in an ever-changing cyber landscape. The rewards There's one thing people can't stop talking about when it comes to #LifeAtSky: the perks. Here's a taster: • Sky Q, for the TV you love all in one place, • The magic of Sky Glass at an exclusive rate, • A generous pension package, • Private healthcare, • Discounted mobile and broadband, • A wide range of Sky VIP rewards and experiencesInclusion & how you'll work We are a Disability Confident Employer, and welcome and encourage applications from all candidates. We will look to ensure a fair and consistent experience for all, and will make reasonable adjustments to support you where appropriate. Please flag any adjustments you need to your recruiter as early as you can. We've embraced hybrid working and split our time between unique office spaces and the convenience of working from home. You'll find out more about what hybrid working looks like for your role later on in the recruitment process. Your office space Osterley Our Osterley Campus is a 10-minute walk from Syon Lane train station. Or you can hop on one of our free shuttle buses that run to and from Osterley, Gunnersbury, Ealing Broadway and South Ealing tube stations. There are also plenty of bike shelters and showers. On campus, you'll find 13 subsidised restaurants, cafes, and a Waitrose. You can keep in shape at our subsidised gym, catch the latest shows and movies at our cinema, get your car washed, and even get pampered at our beauty salon. Livingston Macintosh Road Our lively campus is a free shuttle bus away from Livingston South train station and the town centre. Plus, there's onsite parking available for cars, motorbikes and bicycles. You'll be well fed at our subsidised canteen, and you can keep in shape at our onsite gym - or play a game of pool or table tennis. Brick Lane Brick Lane is in the heart of the East End of London. It's part of a vibrant and diverse community; close to street food, cafes and shops. The closest tube station is Aldgate East and Liverpool Street is about a 10 minute walk. We'd love to hear from you Inventive, forward-thinking minds come together to work in Tech, Product and Data at Sky. It's a place where you can explore what if, how far, and what next. But better doesn't stop at what we do, it's how we do it, too. We embrace each other's differences. We support our community and contribute to a sustainable future for our business and the planet. If you believe in better, we'll back you all the way. • Just so you know: if your application is successful, we'll ask you to complete a criminal record check. And depending on the role you have applied for and the nature of any convictions you may have, we might have to withdraw the offer.

Optum is a global organisation that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by diversity and inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health equity on a global scale. Join us to start Caring. Connecting. Growing together. A Security Logging Engineer partners with ESRO Cyber Defense Teams to build, customize and distribute Security Log Solutions for on-prem and in the cloud systems. Work alongside the top Google SecOps engineers in the company to ensure our pipelines feeding SecOps are as efficient, reliable and cost effective as possible. ESRO Security Logging Team and ESRO Cyber-Defense teams both utilize the same workload software which produces a seamless workflow, a quicker time-to-deliver, and partnerships that offer focused value. We work with platform owners across the enterprise to provide support and education around the security events their platforms produce. We deliver world-class event pipelines tailored for each owner's platform. Careers with Optum offer flexible work arrangements and individuals who live and work in the Republic of Ireland will have the opportunity to split their monthly work hours between our London office and telecommuting from a home-based office in a hybrid work model. Primary Responsibilities: • Design & develop log solutions technologies with a key focus on Google SecOps, BindPlane, Beats, LogStash and Kafka, • Build, design and develop new Log Collection systems for on-prem and cloud environments, AWS, Azure & GCP, • Build and support pipeline monitoring and alerting tools like GCP Monitoring and ECE Monitoring as needed, • Respond and troubleshoot platform alerts and high priority incidents and on-call alert pages, • Facilitation of Change Requests (pipeline deployments, upgrades, breakfixes etc...) Required Qualifications: • Bachelor's in Computer Science or similar. or equivalent experience, • Proven experience working within log collection setup and development, • Proven experience with RHEL Linux Server OS, • Experience working with Google SecOps basic search queries, • Experience with BindPlane, LogStash, Kafka, and GitHub Operations, • Proven ability to work on high and low-level designing, • Experience with Cloud Solution designs and setup for AWS, GCP and Azure, • Excellent understanding of Amazon Kinesis Data Streams, • Advanced Experience with RHEL Linux OS Commands, • Proven good communications skills, • Proven good problem-solving attitude All telecommuters will be required to adhere to the UnitedHealth Group’s Telecommuter Policy. At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone–of every race, gender, sexuality, age, location and income–deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalised groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes — an enterprise priority reflected in our mission. Diversity creates a healthier atmosphere: UnitedHealth Group is an Equal Employment Opportunity employer and all qualified applicants will receive consideration for employment without regard to disability, gender reassignment, marriage and civil partnership, pregnancy and maternity, race, religion or belief, sex, sexual orientation, or any other characteristic protected by law. UnitedHealth Group is a drug-free workplace. © 2025 UnitedHealth Group. All rights reserved. #RPO #BBMEMEA

Keywords: IT Technician, IT Helpdesk, IT Security, IT Field Engineer, Cyber Security, IT Support, 1st Line Support, 2nd Line Support, IT Training Course, Cyber Training Course, Cyber Security Course, First Line Support, Second Line Support, IT Security Engineer, IT Engineer, CompTIA A+, CompTIA Netw

Senior SecOps Engineer Location – London (4 days per week in London) Salary - £80-90k + Bonus + Benefits Currently working with a global InsureTech firm who are looking to hire a Senior SecOps Engineer to compliment their established yet growing internal Cyber Defence capability. This is a wide ranging role where you’ll be responsible for both Engineering and Analysis; monitoring and responding to incidents whilst also developing new detection rules and enhancing their monitoring infrastructure and tooling. This is a cloud-native SOC capability, based in Azure with a big emphasis on the Microsoft E5 suite of security monitoring and detection tooling. Experience configuring, fine-tuning and managing this tooling will be essential, as well as the ability to enhance and automate where possible using KQL. This is an incredible opportunity for an experienced SecOps specialist with experience of both SecOps Analysis and Engineering to join an established yet growing firm at a crucial point as they completely build out their Information and Cyber Security capability. Key Responsibilities: • Act as a lead and technical escalation point on the most complex incidents and investigations., • Develop and engineer new detection rules, automating monotonous tasks where possible., • Proactively research emerging and potential threat actors as a way of developing rules to safeguard against potential future threats., • Mentor and train junior team members through complex incident response investigations. Key Requirements: • Significant experience working in a SOC environment (5 years minimum), dealing with and responding to escalated and most high profile incidents., • Comprehensive knowledge and experience utilising/fine-tuning the Microsoft E5 Security stack – Defender, Sentinel, KQL, etc., • Experience working in hybrid-cloud SOC environments – Azure preferably., • Ability to articulate specific projects that you have built, developed or led on, specific to SecOps Engineering and Automation. If you’re an experienced SecOps Specialist, looking to shape how one of the most innovative HealthTech firms build out their cyber defence capability and leave a lasting impact on one of the most reputable organisations whilst working alongside a team of genuine Cyber Security SMEs, click the to apply or get in touch directly –

Job Title: Senior Cyber Security Consultant – Energy Sector Location: You’ll work where the client needs you. Which could be London, Guildford, or a muddy substation off the M20. There's a hybrid model in theory, but in practice… well, it’s the energy sector. Boots on ground still matters. Salary: Happy to talk up to around the £70,000 mark. You’ll want this job if: • You’re good at cyber security consulting and tired of death-by-framework with no real-world impact., • You know NCSC CAF, NIST and IEC 62443 aren’t Pokémon, and you’ve actually used them in anger., • You’re sick of working on things that don’t matter and fancy contributing to something with actual national importance – like keeping the lights on. Literally. Here’s the thing: The UK’s energy infrastructure is under constant threat. From hostile actors, ageing systems, dodgy third-party vendors, and the odd overzealous intern with admin rights. It needs people who know what they’re doing. Not “PowerPoint Ninjas” or “Security Evangelists”. Real people. Who understand complex systems, layered risk, and how to balance regulatory frameworks with operational realities. That’s where you come in. You’ll be parachuted into high-profile, high-stakes environments where your decisions will directly influence how well the UK's energy sector withstands cyber threats. You’ll be the one making sense of spaghetti systems, aligning them with NCSC-assured practices, and communicating risks without sounding like a Dalek. Some stuff you’ll actually be doing: • Advising energy companies, regulators, and infrastructure providers on how not to get breached – or fined., • Writing documentation that doesn’t send readers into a coma., • Working within and around frameworks like NCSC CAF, NIST and IEC 62443, and sometimes whatever the client’s CISO found on page 4 of Google., • Translating technical risk into business risk, and business risk into boardroom decisions. What you’ll need to bring: • 5+ years working with complex ICT systems - ideally in or around Critical National Infrastructure and Operational Technology., • A decent understanding of enterprise ICT and cloud environments., • Strong opinions, loosely held, and the ability to back them up without being a jerk., • Experience dealing with risk frameworks – and the good sense to know when to bend them (but not break them)., • Bonus points if you've worked in the energy, utilities, or wider CNI sectors before. If you’ve seen the inside of a substation, that counts too. Some fine print (but worth reading): • You’ll need to be eligible for UK Security Clearance. No exceptions., • You’ll be part of a genuinely smart team at a consultancy that’s NCSC-assured., • Travel will be a thing. Sometimes all week. Sometimes not. Just don’t expect to hide behind a webcam forever. What’s in it for you? Apart from a good salary and solid benefits, you’ll get: • Career progression without selling your soul to management jargon., • Funded training (not just the checkbox kind)., • Projects that matter. Like helping keep the UK’s energy infrastructure secure, resilient, and future-proof. Interested? You could spend your time applying for one of those “Cyber Security Rockstar Ninja Jedi” roles elsewhere. Or, you could do something that actually means something. Hit apply. Or just message us and say: “I don’t suck at cyber security and I want to work on energy stuff.” We’ll know what to do.

Information Security Officer 📍 London (Hybrid) | 💼 Permanent, Full-time Salary - £60,000 - £70,000 p/a + Benefits About the Role A leading digital bank is seeking a talented and ambitious Information Security Officer to join its growing Cybersecurity Department. This is a key role acting as the bridge between the bank’s London operations and the Group’s Cyber and Information Security team. You will play a pivotal part in ensuring that cybersecurity controls are effectively implemented, risks are well-managed, and the bank’s information assets remain secure. The ideal candidate will combine strong technical understanding with strategic insight — ensuring the integrity, confidentiality, and availability of critical information while supporting the business in achieving its goals securely. Key Responsibilities • Ensure compliance with Group Cyber and Information Security requirements., • Act as the first point of contact for all cybersecurity-related requests in the London office., • Perform compliance reviews and oversee remediation of cybersecurity weaknesses., • Coordinate security testing, incident management, and reporting of key cybersecurity metrics (KPIs/KCIs)., • Review and assess cybersecurity-related requests and infrastructure changes (e.g., access management, system interconnections, change control)., • Support post-incident analysis and help implement preventative measures., • Partner with IT and cybersecurity teams to maintain secure network, systems, and application configurations., • Oversee the delivery of security awareness training to staff., • Participate in internal and external audits related to information security., • Promote a strong culture of cybersecurity awareness across the organization., • Ensure compliance with relevant standards and frameworks (e.g., ISO 27001, NIST)., • Stay informed on emerging threats, technologies, and regulatory changes. What You will need to have: • Proven experience in information security, cybersecurity governance, or risk management., • Experience of working within a banking institution., • Strong analytical and problem-solving skills with keen attention to detail., • Excellent communication skills, both written and verbal, with the ability to engage stakeholders at all levels., • A proactive, results-driven mindset with strong planning and time-management skills., • Ability to work independently as well as collaboratively within a team., • Familiarity with financial services or regulated environments is advantageous. What we can offer you? • Opportunity to play a key role in shaping cybersecurity practices at a forward-thinking digital bank., • Collaborative, international environment with exposure to group-level cybersecurity initiatives., • Competitive salary and benefits package., • Hybrid working model promoting flexibility and work-life balance., • Performance bonuses, • Pension contribution, • Private Medical Insurance, • Health cash back plan (dentist, opticians, therapies etc), • Life Assurance: 4 x salary, • Season Ticket Loan, • Working abroad policy Ready to take the next step in your cybersecurity career? Apply now and become a key player in strengthening the security posture of a growing digital bank.

The Specialist Platform Security Engineer will play a pivotal role in ensuring the integrity and security of our platforms. You will lead the charge in implementing robust security measures, collaborating closely with cross-functional teams to fortify our defences against cyber threats. Responsibilities • Strategic guidance for secure adoption and use of SaaS & PaaS platforms and services in the Microsoft, Google & Atlassian ecosystem, MongoDB Atlas, and other first-party platforms developed in house. The services include databases, API gateways, code repositories, integration services and others, • Technical consulting to identify misconfigurations and reduce platform risk , helping raise organizational awareness of risks and best practices by participating in workshops, documentation efforts, and knowledge sharing, • Support for secure design and integration of tools across business programs , providing access & configuration reviews for the various platforms; contributing to the implementation of platform security standards, policies, and baselines under guidance from senior team members; building a culture of security by promoting automation, repeatable patterns, and consistent practices across teams, • Assistance in identifying and remediating platform-specific vulnerabilities, • Automation of security checks, configuration reviews, and access hygiene , including assistance in security integration into CI/CD pipelines, contributing to automated checks (e.g., GitHub Actions) that identify misconfigurations, vulnerabilities, and policy violations, • Collaboration with platform teams and vendors to help evaluate and integrate security tools, ensuring smooth adoption across new and existing services. ESSENTIAL • Solid understanding of Identity and Access security, including but not limited to least privilege, zero trust, authentication, authorisation, SSO, JWT, RBAC/ABAC/PBAC, • Solid understanding of security principles and architecture, particularly for databases and APIs, • Understanding of Platform & Configuration Security, and Platform Monitoring, Response and Governance, • Scripting (Python, Bash) for task automation, • Terraform, • Understanding of security threats like DDoS, brute force, exfiltration, spoofing, and other relevant threats, • 3 years of hands-on experience in platform or infrastructure security, with a strong interest in building skills in this area., • Exposure to or interest in integrating security into CI/CD pipelines and platform workflows (experience with GitHub Actions or similar tools is a plus)., • Strong analytical and problem-solving skills, with a curiosity to learn and grow in complex technology environments., • Good communication and teamwork skills, with the ability to collaborate with platform, DevOps, and security teams., • Enthusiasm for working in a fast-paced, dynamic environment, with support and mentorship from senior team members. Unfortunately for this role we are unable to offer any form sponsorship.

Job Title: Network Security Engineer Location: Seattle, WA Job Description: We are looking for a skilled Network Security Engineer with expertise in Cisco technologies to join our team in Seattle, WA. As a Network Security Engineer, you will be responsible for designing, implementing, and maintaining secure network infrastructures to protect our organization's data and systems from cyber threats. Key Responsibilities: • Design, implement, and maintain network security measures to protect organization's data and systems, • Monitor network traffic for potential security breaches and respond appropriately to incidents, • Conduct regular security audits and vulnerability assessments to identify and address security risks, • Collaborate with cross-functional teams to implement security policies and procedures, • Provide technical support and guidance to IT staff on network security best practices, • Stay up-to-date on latest security trends and technologies to continuously improve network security measures Qualifications: • Bachelor's degree in Computer Science, Engineering, or related field, • 3+ years of experience in network security engineering, • Strong expertise in Cisco networking technologies, including Cisco ASA, Firepower, and ISE, • Experience with network security protocols and tools, such as VLANs, IPSec, and SSL VPN, • Certifications such as CCNA Security, CCNP Security, or CISSP are a plus, • Excellent communication and problem-solving skills, • Ability to work effectively in a fast-paced, collaborative environment, • Strong attention to detail and ability to prioritize tasks effectively Would love to discuss further!

Cyber Security Project Manager - 12 Month FTC- £79,950pa - London / Hybrid We are currently recruiting for a Cyber Security Project Manager to join our client, a leading housing organisation, on a fixed-term contract basis until December 2026. As Cyber Security Project Manager, you will lead the delivery of the Cyber Essentials Security Programme, obtaining compliance and certification with Cyber Essentials Plus. Previous experience delivering Cyber Essentials is essential. Any wider experience of cloud and SaaS security best practices is highly desirable. The role is offered on a hybrid basis with an expectation of 2 days per week based on-site in the London office. Candidates must be within a commutable distance of the London office. Cyber Security Project Manager - 12 Month FTC - £79,950pa - London / Hybrid

Senior Technology & Change Risk Manager - 2LOD - Banking Excellent opportunity opens for an experienced Technology & Change Risk Manager to join a leading International Bank’s London office in a crucial role. Risk is the independent risk control function within the Bank and acts as the second line of defence (2LOD) providing independent oversight and control across the Bank’s principle risks i.e. credit, financial and operational risk. The Technology and Change Risk Team has responsibility for risk oversight of Bank’s IT Risk, Data Risk, Information Security, Change Management, Operational Resilience and Intra-Group Risk within the Bank. Reporting to Head of Tech & Change Risk, the role will require to work closely with the Operational Risk Team and Enterprise Risk team to ensure the overarching Operational Risk Management Framework (ORMF) and Risk Management Framework (RMF) is effective at managing Technology and Change Risks. Risk Advisory and Guidance • Act as a ‘critical friend’ and ‘trusted advisor’ to the Business and Technology leadership teams by providing advice/guidance on topical matters to ensure risk considerations are incorporated into business decision making and key design decision early in the process., • Dive deep into a business or technical topics and interpret complex multiple disciplinary topics and distil Business-IT risks/challenges/ issues into tangible actions and help shape practical solutions with the business to address them., • Support Senior Management Functions (SMFs), their direct reports and Compliance team in shaping the regulatory engagements related to Material Change, Material Suppliers and Operational Resilience topics and providing robust challenge on the response and commitment to ensure that they are practical, proportionate and reasonable., • Proactively monitor and interpret evolving UK and EU Financial Services Regulations and industry best practices an help 1LOD in interpretation of existing/ new regulations and requirements and its implications. Independent Risk Oversight • Reporting to Head of Tech & Change Risk, the role will require to work closely with the Operational Risk Team and Enterprise Risk team to ensure the overarching Operational Risk Management Framework (ORMF) and Risk Management Framework (RMF) is effective and consistent at managing Technology and Change Risks., • Develop annual plan and Own end to end delivery and presentation of various types of reviews - thematic, deep dives, risk opinions, controls testing, quality assurance activities. Annual Regulatory Returns: • Payment Scheme Attestations: Participate and or lead the review /challenge of annual 1LOD outcomes of Payment Scheme Attestations like CHAPS, LINK, SCA-RTS and Cyber Resilience Questionnaire (COUEST), as per capacity in the team., • Operational Resilience and Operational Continuity in Resolution (OCIR): Review/challenge the outcomes of annual self assessments and regulatory returns and provide robust challenge of responses and commitments made to regulators on the action plans. Change Oversight and Change Assurance (covering IT and Business Change): • Lead 2LOD Change Assurance & Oversight of major technology and business change programme typically involving replacing legacy platforms/systems with modern technologies and involving process changes and third party suppliers., • Ownership of development and presentation of high quality, independent 2nd Line risk reports and MI on Technology and Change and presenting to Portfolio and Project level Steering Arrangements, Bank's Material Change Committee, Management and Board Risk Committee, where required., • Lead in design, implementation and overseeing embedding of change related frameworks and use of effective risk management practices to deliver improvements to 1st line change risk management About You: • Prior experience of working in highly regulated environments and understanding of PRA, FCA, ICO and BoE priorities as well relevant EU regulations., • Solid experience in technology, operational, or change risk management within financial services or a regulated environment., • Strong understanding of technology and change risk concepts, including cyber risk, resilience, and governance frameworks., • Knowledge, understanding and application of risk and control environments in Shared Responsibility Model setup with Public Cloud Providers (IaaS, PaaS and SaaS), • Professional qualifications (e.g., CISA, CRISC, CISSP, PRINCE2, or equivalent) desirable but not essential. Interested? Please Apply! Risk Tech Risk Technology Risk IT Risk Change Risk Transformation Risk Operational Risk 2LOD Second Line of Defence Bank Banking Challenger Bank Financial Services PRA FCA ICO BOE ORMF RMF RCSA Regulatory

Information Security Manager £70,000 - £75,000 PA Central London A well-established construction engineering business is seeking an experienced Information Security Manager to join them on a permanent basis. You’ll be joining at a critical time as the organisation expands its technical capability, with ambitious growth plans and multiple acquisitions planned over the coming years. The Information Security Manager will play a pivotal role in both the technical cyber security environment and the wider information security and data governance framework for the business. This includes ownership of the entire data lifecycle, from ingestion to delivery, ensuring accuracy, security, compliance and enabling confident, data-driven decision-making. This role is responsible for ensuring robust cyber security controls, with a strong emphasis on ISO 27001 readiness and accreditation. You will liaise with assessors and internal teams, drive ISO-related strategies and ensure certification plans stay on track. In addition, you will develop and implement the company’s data governance strategy, ensure GDPR compliance and define policies and procedures for data quality, access and usage. Responsibilities: • Oversee the development and maintenance of the Information Security Management System (ISMS), • Own and maintain all security-related and data governance policies, implementing Security by Design, • Oversee the full data lifecycle, ensuring integrity, quality and compliance from source to end client, • Ensure compliance with GDPR, NIS2 and other data protection regulations, • Define and enforce scalable and secure data and analytics architecture, • Collaborate across IT, Operations, Marketing and Compliance to integrate and secure data sources, • Conduct risk assessments, threat modelling and recommend actionable improvements, • Work with data custodians to ensure information assets are stored correctly and in compliance with standards, • Process Data Subject Access Requests (DSARs) and supplier assurance questionnaires (SAQs/PQQs), • Manage relationships with third-party suppliers for audits, forensic analysis, penetration testing and compliance checks, • Deliver data security and cyber awareness training across the business Requirements: • Experience with ISO 27001 (implementation, maintenance and accreditation) is essential, • Strong technical background in cyber security, data governance and related technologies, • Proven track record in designing and implementing governance frameworks and policies, • Experience with GDPR compliance, data protection and regulatory standards, • Knowledge of Microsoft Purview, VARONIS (or similar tools), advanced Excel, Power BI and master data management, • Familiarity with security assessment frameworks (threat modelling, controls assessment, risk assessment), • Relevant qualifications such as CISSP, CISM, CDMP, CDGP, or CIPP/E are highly advantageous Based in Central London, with 4 days per week onsite initially, dropping to 3 once probation is passed.

As people increasingly move across channels and platforms, Kantar Media’s data and audience measurement, targeting, analytics and advertising intelligence services unlock insights to inform powerful decision-making. Working with panel and first-party data in over 80 countries, we have the world’s fastest growing cross-media measurement footprint, underpinned by versatility, scale, technology and expertise, to drive long-term business growth for our clients and partners. Job Title: Director of Software Development – TGI Location: London, Grays Inn Road Work pattern: Full time/Permanent/Hybrid working Role Description: Kantar Media is a global leader in media research, helping the world’s most influential brands, media owners, and agencies make data-driven decisions. Our expertise in audience measurement, consumer insights (TGI), targeting, and advertising intelligence powers smarter strategies across the media landscape. To support our mission, we are seeking a visionary and experienced Software Development Director to lead the TGI Technology unit — the powerhouse behind the technology that fuels our global consumer profiling solutions. This is a high-impact leadership role at the intersection of data, software innovation, and business transformation. You’ll lead a diverse, talented team of engineers, managers, and QA professionals to deliver best-in-class solutions that support the evolution of Kantar Media’s TGI platform. With a focus on innovation, scalability, and quality, you’ll be instrumental in defining the future of how global consumer data is harnessed to drive better media decisions. We’re looking for future leaders — someone ready to take the next step in their career and shape both the technology and the team behind a globally respected platform. Key Responsibilities: Strategic Leadership • Define and deliver a software development strategy that supports TGI’s business goals and long-term product vision., • Inspire, lead, and grow a high-performing global team of software engineers, testers, and technical managers., • Oversee the delivery of complex, high-value software solutions — on time, within scope, and budget., • Ensure software meets rigorous quality standards and supports ongoing ISO9001 accreditation., • Act as the key technology partner to senior stakeholders in Product, Operations, Architecture, and Cyber Security., • Manage the technology budget, ensuring optimal resource allocation., • Lead vendor/supplier relationships to ensure high-quality development partnerships. Required: • 10+ years of experience in software development, including at least 5 years in a senior leadership role., • Strong hands-on knowledge of software engineering practices and cloud platforms (Azure preferred; GCP a plus)., • Proven track record of delivering scalable, data-driven platforms in complex environments., • Deep understanding of agile methodologies, modern DevOps practices, and global delivery models (onshore/offshore)., • Excellent leadership, communication, and stakeholder management skills., • Experience with AI/ML technologies is a significant advantage., • Strong business acumen with the ability to align tech initiatives to broader strategic goals. Our offer At Kantar we have an integrated way of rewarding our people based around a simple, clear and consistent set of principles. Our approach helps to ensure we are market competitive and to support a pay for performance culture, where your reward and career progression opportunities are linked to what you deliver. We go beyond the obvious, using intelligence, passion, and creativity to inspire new thinking and shape the world we live in. Apply for a career that’s out of the ordinary and join us. We want to create an equality of opportunity in a fair and supportive working environment where people feel included, accepted, and are allowed to flourish in a space where their mental health and wellbeing is taken into consideration. We want to create a more diverse community to expand our talent pool, be locally representative, drive diversity of thinking and better commercial outcomes. At Kantar, the diversity of our employees provides a richer environment for our employees and broader depth and breadth of thinking for our clients. Kantar is committed to inclusion and diversity; therefore, we welcome applications from all sections of society and do not discriminate based on age, race, religion, gender, pregnancy, sexual orientation, gender identity, disability, marital status, or any other legally protected characteristics. Privacy and Legal Statement PRIVACY DISCLOSURE: Please note that by applying to this opportunity you consent to the personal data you provide to us to be processed and retained by Kantar Media. Your details will be kept on our Internal ATS (Applicant Tracking System) for as long as is necessary for the purposes of recruitment, which may include your details being shared with the hiring manager(s) and for consideration for potential future opportunities by Kantar and its affiliate Kantar group companies. For full details of our privacy policy please visit ___ PRIVACY DISCLOSURE: Please note that by applying to this opportunity you consent to the personal data you provide to us to be processed and retained by Kantar Media. Your details will be kept on our Internal ATS (Applicant Tracking System) for as long as is necessary for the purposes of recruitment, which may include your details being shared with the hiring manager(s) and for consideration for potential future opportunities by Kantar and its affiliate Kantar group companies. For full details of our privacy policy please visit

Lead Cyber Security Engineer We're partnered with a global law firm who are looking to build a next-generation Security Operations (SecOps) function. They are looking for a Lead Cyber Security Engineer to drive innovation, strengthen resilience, and champion a zero-trust approach across their global network. What You’ll Do • Build the SecOps team from the ground up and manage/mentor the team., • Lead the implementation, optimisation, and management of cutting-edge security tools like CrowdStrike, Palo Alto, and Mimecast., • Take ownership of our cyber defence posture from incident response and vulnerability management to WAFs, DDoS protection, and encryption., • Mentor junior engineers, elevate best practices, and help us on our journey to ISO 27001 certification. What You Bring • Deep hands-on expertise across EDR, SIEM, NAC, MFA, PAM, and cloud security environments., • Proven experience with security frameworks such as ISO 27001, NIST, CIS, and PCI-DSS., • Certifications like CISSP, CPSA, or Palo Alto Certified Security Operations Professional., • A collaborative mindset, a passion for innovation, and the confidence to take the lead in a high-trust environment. Please get in touch if you are keen!

Cyber Security GRC Manager – London Fully remote working available!!!!! Salary up to £60,000 This is a fully remote position, with occasional meetings in London and possible travel to India twice yearly. Cyber Security Manager (GRC) position available for a client based in London. The role involves shaping and implementing a governance, risk, and compliance (GRC) strategy. Responsibilities include establishing structure, collaborating with technical and business teams, and supporting security and compliance initiatives within the organization. The position requires development and maintenance of security policies aligned with ISO 27001, GDPR, HIPAA, and OWASP, as well as leading risk assessments and managing the risk register. Key skills and responsibilities, • Comprehensive knowledge of ISO 27001, NIST CSF, GDPR, HIPAA, SOC 2, and OWASP frameworks., • Senior Security Analyst / Senior Security Engineer background, • Proven experience collaborating with software development teams and implementing technical controls., • Skilled in articulating technical risks in terms of business impact., • Professional certifications such as CISM, CISSP, CRISC, ISO 27001 Lead Auditor, and hands-on experience with GRC tools (e.g., Vanta, Drata) are highly desirable., • Responsible for developing and maintaining security policies in alignment with ISO 27001, GDPR, HIPAA, and OWASP standards., • Lead risk assessments and oversee the management of the organization’s risk register., • Support efforts to prepare for audits and maintain certification readiness., • Collaborate with engineering and operations teams to integrate security into development and delivery processes., • Respond to client security questionnaires and support due diligence activities. Interested? Please submit your updated CV to Emma Siwicki at Crimson for immediate consideration. Not interested? Do you know someone who might be a perfect fit for this role? Refer a friend and earn £250 worth of vouchers! Crimson is acting as an employment agency regarding this vacancy

Data Analyst – Risk & Resilience Hybrid | London We’re partnering with a global technology group to strengthen their data-driven decision-making within the Risk & Resilience function. The business is moving from manual reporting to automated, insight-led analytics — and this role is central to that transformation. You’ll design and deliver Power BI dashboards, automate reporting, and uncover trends across audit, risk, and cyber domains. Your work will help leadership teams understand control performance, identify gaps, and track progress across global operations. Key Responsibilities • Automate and improve data analysis processes using Excel and Power BI., • Build and maintain dashboards that visualise key risk, audit, and compliance metrics., • Translate large, complex datasets into actionable insights for senior stakeholders., • Produce quarterly reports on group-wide risk and audit trends., • Support continuous improvement of cyber and operational risk reporting frameworks., • Collaborate with audit and technology teams to enhance data quality and consistency. Requirements • Advanced skills in Excel and Power BI (automation, dashboard design, data modelling)., • Strong analytical and problem-solving mindset., • Understanding of cybersecurity and risk management concepts (e.g., Active Directory, control frameworks, GRC)., • Comfortable working with complex, multi-source data environments., • Excellent communication and stakeholder engagement skills., • Degree in a quantitative or technical discipline. Desirable • Experience in audit, risk, or analytics functions., • Familiarity with GDPR, ISO 27001, or similar frameworks., • Interest in data science, predictive analytics, or automation tools. This is a permanent opportunity to make a real impact in a global business investing heavily in its risk and data capabilities. If you’re passionate about analytics, automation, and helping organisations make smarter security decisions — this is your chance to do it. Apply now and be part of a forward-thinking team driving change through data.

Cyber Security Engineer CyberSec Engineer / IT Security Specialist – Disaster Recovery, Resilience Testing, CyberSec Improvements, Vulnerability Scanning / Management, Infrastructure, Nutanix, Commvault, VMware, Azure, PowerShell, Python; Law Firm, Permanent, London/ Hybrid (3/2). £80k - £95k (On Experience) +Bonus +Benefits Global Low Firm seeks experienced Cyber Security Engineer / IT Security Specialist to join the IT Infrastructure Engineering Team and play a key role in the strengthening of the IT security position and critically ensuring that Disaster Recovery, failover, and operational resilience capabilities are effective and continually improved through ongoing testing and (re)engineering. This is a hands-on, process-driven role where you will ensure that disaster recovery (DR), failover, and operational resilience capabilities are robust, tested, reviewed, and continuously improved. You’ll play a critical part in safeguarding business continuity and strengthening our cyber security posture, working closely with infrastructure, security, and business continuity teams. As such the CyberSec Engineer / IT Security Specialist will: • Lead the planning, orchestration, and execution of DR and resilience testing, • Perform targeted regular and ad-hoc scans to identify potential breaches of the firms data and security policies ensuring RTOs/RPOs are validated., • Drive remediation activities to closure, maintaining clear evidence and documentation for client, regulatory, and audit standards., • Partner with Infrastructure teams to identify and remediate vulnerabilities across hardware and software., • Act as the primary technical liaison with the Business Continuity Planning (BCP) team, supporting BIAs and resilience obligations., • Lead incident response investigations, mitigation, and ongoing security improvements., • Support Cyber Essentials Plus accreditation and contribute to maintaining a strong external security rating., • Produce clear reporting, dashboards, and technical documentation, ensuring runbooks and procedures are accurate and practical. You will be an experienced Cyber Security Engineer who has worked in a hands-on capacity across a range of technologies with a significant focus on infrastructure, cloud and enterprise software environments. You will have broad InfoSec / CyberSec awareness combined with significant hands-on security engineering and resilience experience: • Hands-on experience in disaster recovery, failover testing, and IT operational resilience., • Solid knowledge of business continuity and security frameworks (ISO27001, ISO22301, NIST etc)., • Proficiency with infrastructure tooling and at least one scripting language (PowerShell or Python preferred)., • Experience with Nutanix, VMware, Commvault, and hybrid cloud platforms Azure (preferred), AWS or GCP., • Understanding of vulnerability management, monitoring, and orchestration tools., • Relevant certifications such as Microsoft SC-200, Certified Ethical Hacker (CEH), CBCP/CBCI or equivalent. We are open to receiving applications from across a broad range of industries including Legal Services, Professional Services, Financial Services or Consultancy inc Deloitte, PwC, KMPG, Accenture, EY, McKinsey & Company etc. This is a high-impact role where you will directly influence the security, resilience, and continuity of a leading professional services environment. You will have exposure to senior stakeholders, and the opportunity to shape how the firm safeguards and future-proofs the IT infrastructure. You will possess exceptional communication skills and have the commercial acumen to be able to influence at the most senior level of this global organisation.

C++ Software Engineer / Developer (C++ Mac Extensions API) WFH / London to £80k Are you a C++ Software Engineer with experience of developing and integrating Apple Mac Extensions and APIs? You could be progressing your career at a rapidly expanding scale-up software house that is developing a highly complex network cyber security platform; the platform monitors network protocols in real-time, parses the commands and data structures to extract key metadata which is then analysed by in-house algorithms and allows customers to detect hackers, malware, data leakage and other malicious activity. As a C++ Software Engineer you will focus on enabling the core product, written in C / C++ for Windows and Linux to run on Apple Mac software, using the latest Extensions, tools and API integrations. Location / WFH: You can work from home most of the time, meeting up with colleagues in the London office once or twice a month. About you: • You have strong C++ development skills, • You have experience of integrating software with Apple Mac Extensions and APIs, • You have a good knowledge of Network Security and EDR / EDTR, • You have VPN client or security experience, • You're collaborative with great communication skills, • You have experience of producing technical documentation, • You're degree educated in Computer Science or similar technical discipline What's in it for you: As a C++ Software Engineer / Developer (Mac Extensions EDR C++) you will earn a competitive package: • Salary to £80k, • Remote working (x1-2 days a month in London), • Continuous training and career development including paid for certifications Apply now to find out more about this C++ Software Engineer / Developer (C++ Mac Extensions API) opportunity. At Client Server we believe in a diverse workplace that allows people to play to their strengths and continually learn. We're an equal opportunities employer whose people come from all walks of life and will never discriminate based on race, colour, religion, sex, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. The clients we work with share our values.

Senior 3rd Line IT Engineer Location: London Bridge Company: Managed Service Provider (MSP) This role will be office-based for the first 3–6 months, with the option to move to a hybrid working arrangement thereafter. Our client is a well-established MSP based in London Bridge. They are a close-knit team of 30 IT professionals delivering end-to-end technology services and support to a diverse range of clients, with a strong focus on reliability, security, and customer care. The Opportunity We are seeking an experienced Senior 3rd Line Engineer to join our growing technical team. This pivotal role involves: • Acting as the go-to escalation point for complex issues, • Managing core client infrastructure and cloud environments, • Ensuring centralized security and monitoring platforms run smoothly You will work closely with our Service Desk and Project teams, maintaining high service standards, documenting solutions, and mentoring junior engineers through effective Standard Operating Procedures (SOPs). Senior 3rd Line IT Engineer - Key Responsibilities • Act as the primary escalation point for complex 2nd/3rd line incidents and service requests across infrastructure, networking, Azure, Microsoft 365, and cybersecurity., • Manage and maintain client systems and centralized services, including Mimecast, Avanan, SentinelOne, MDR/XDR, Fortinet, DR/BC, Huntress, Autotask, and Datto RMM., • Provide and present clients with centralized services reports and cybersecurity reviews., • Collaborate with the Project team on deployments, migrations, automations, and upgrades across on-premises and cloud environments., • Develop and document Standard Operating Procedures (SOPs) to assist the Service Desk with first-response troubleshooting., • Contribute to continual service improvement by reviewing recurring incidents and identifying training or process opportunities., • Mentor and provide technical guidance to Service Desk engineers., • Ensure that all systems and processes align with best practices in cybersecurity, resilience, and performance. Key Skills & Experience • Proven experience in a 3rd Line / Senior Engineer role within an MSP environment, • Strong knowledge of Microsoft technologies, including Azure, 365, SharePoint, and Intune, • Excellent understanding of networking, firewalls, VPNs, and Windows Server environments, • Experience with RMM tools, security platforms, and endpoint management, • Familiarity with tools and platforms such as Mimecast, Avanan, SentinelOne, MDR/XDR, Fortinet, Huntress, Datto, and Autotask, • Strong troubleshooting, analytical, and communication skills, • Ability to work independently and collaboratively across teams, • Experience with Cyber Essentials, Cyber Essentials Plus, and other frameworks such as NIST, ISO27001, • Commitment to producing clear documentation and knowledge sharing Desirable Certifications • Microsoft Certified: Azure Administrator / Solutions Expert, • CompTIA Security+, CISSP, or similar cybersecurity qualification, • ITIL Foundation, • Vendor-specific certifications (Fortinet, SentinelOne, Datto, etc.) Why Join the Company • Join a technically strong, supportive, and collaborative team in central London, • Work across diverse clients, technologies, and industries, • Play a key role in strategic projects and continuous improvement initiatives, • Access ongoing training, certifications, and professional development opportunities, • Be part of a company that values reliability, security, and delivering excellent customer service

Cyber Security & Centralised Services Manager Location: London Bridge Company: Managed Service Provider (MSP) This role will be office-based for the first 3–6 months, with the option to move to a hybrid working arrangement thereafter. Our client is a well-established MSP based in London Bridge. They are a close-knit team of 30 IT professionals delivering end-to-end technology services and support to a diverse range of clients, with a strong emphasis on cybersecurity, resilience and regulatory compliance. The Opportunity: We are seeking an experienced Cyber Security & Centralised Services Managerwith a strong cybersecurity focus to join our growing technical team. In this pivotal role, you will: • Act as the primary escalation point for complex IT and cybersecurity incidents., • Manage and secure core client infrastructure and cloud environments., • Ensure centralised security, monitoring, and incident response platforms operate effectively. You will collaborate closely with our Service Desk, Projects and Account Management teams to maintain high standards of service, document solutions and mentor junior engineers in line with cybersecurity best practices and frameworks such as ISO27001, NIST, and Cyber Essentials Plus. Key Responsibilities – Cyber Security & Centralised Services Manager: • Serve as the primary escalation point for complex IT and cybersecurity incidents, including malware infections, ransomware attacks, phishing attempts, and unauthorised access events., • Monitor, analyse, and respond to alerts from client security platforms (MDR/XDR, SentinelOne, Huntress, Fortinet, Mimecast, Avanan, Defender) to ensure rapid threat mitigation., • Conduct vulnerability assessments, risk analyses and security audits across client environments, providing actionable recommendations and remediation guidance., • Implement and maintain security hardening across infrastructure, cloud services, endpoints, and networks, in alignment with best practices and frameworks such as ISO27001, NIST, and Cyber Essentials Plus., • Lead and coordinate incident response efforts, including root cause analysis, threat containment and post-incident reporting for clients., • Collaborate with the Project and Service Desk teams to embed security into deployments, migrations, upgrades, and automation workflows, ensuring systems remain secure by design., • Maintain and improve Standard Operating Procedures (SOPs) for security operations, ensuring knowledge is shared across the team for rapid incident handling., • Provide mentorship and cybersecurity guidance to junior engineers and Service Desk staff, fostering a culture of security awareness and proactive threat management., • Perform ongoing threat intelligence monitoring and security trend analysis to anticipate risks and protect client environments., • Support clients in security reporting, compliance reviews, and continuous improvement initiatives, helping them meet regulatory and industry security standards. Cyber Security & Centralised Services Manager – Key Skills & Experience: • Proven experience in a 3rd Line / Senior Engineer role within an MSP or security-focused IT environment, supporting multiple clients and environments., • Strong knowledge of Microsoft technologies (Azure, Microsoft 365, SharePoint, Intune/Entra) with a focus on security configuration, hardening and monitoring., • In-depth understanding of networking, firewalls, VPNs, Windows Server, Active Directory and hybrid cloud security architectures., • Hands-on experience with endpoint protection, EDR/MDR/XDR platforms, email security, RMM tools, and centralised monitoring systems., • Familiarity with security frameworks and compliance standards, including Cyber Essentials, Cyber Essentials Plus, ISO27001, NIST, and GDPR requirements., • Skilled in vulnerability management, threat detection, incident response, and remediation planning, including experience with ransomware and phishing mitigation., • Ability to analyse complex technical and security issues, identify root causes and implement long-term mitigations., • Strong communication skills with the ability to present technical and security findings to non-technical stakeholders and clients., • Experience creating and maintaining security-focused documentation, SOPs, runbooks and knowledge-sharing resources., • Proactive mindset in threat hunting, risk assessments and continuous improvement of client security posture., • Mentorship and leadership experience, providing cybersecurity guidance to junior engineers and Service Desk teams. Cyber Security & Centralised Services Manager - Desirable Certifications: • Microsoft Certified: Azure Administrator / Solutions Expert, • CompTIA Security+, CISSP, CISM or equivalent cybersecurity qualification, • ITIL Foundation, • Vendor-specific certifications (Fortinet, SentinelOne, Datto, Mimecast, Huntress, etc.) Why Join the Company: • Be part of a technically strong, supportive and collaborative security-conscious team in central London., • Work across diverse clients, technologies and industries while strengthening cyber defense skills., • Play a key role in strategic security projects, incident response and continuous improvement initiatives., • Access ongoing training, certifications and professional development in cybersecurity., • Join a company that holds the core values of Honesty, Accountability, Commitment, Innovation, Expertise and Collaboration

ROLE OVERVIEW // We are seeking a Head of Data to develop and lead our firm’s data strategy and to drive the strategic use of data across the business. Reporting to the Chief Information Officer (CIO), this role will be instrumental in leveraging data insights to support key business objectives, enhance decision-making, and improve operational efficiencies. The Head of Data will ensure that data-driven initiatives align with our long-term business strategy. The successful candidate will play a pivotal role in establishing a culture of data-driven decision-making, ensuring high-quality management information, and working closely with our Head of Innovation to develop a roadmap for AI, innovation and automation. This is an excellent opportunity for an experienced data leader to shape and mature both how we capture data, its quality and how we use it. KEY RESPONSIBILITIES // The key responsibilities of this role are set out below and there may be others which are not listed. You may be required on occasion to work outside our normal working hours of 9:30am to 5:30pm. Data Strategy & Architecture • Develop and execute a comprehensive data strategy (in collaboration with senior stakeholders) that aligns with the firm’s business goals (and its Data Principles), ensuring data - both structured and unstructured - is leveraged to drive commercial and operational value., • Define the firm’s target data architecture, identifying master data sources and ensuring consistency of data definitions and taxonomy across business domains., • Collaborate with the Head of Strategy and Architecture and the Head of Innovation, as well as key stakeholders across the firm to design and implement a modernised, cloud-based data landscape that supports analytics and AI-readiness. Data Platforms & Products • Oversee the firm’s data platform modernisation journey, ensuring scalable infrastructure and a single source for reporting and decision-making., • Work with colleagues across the firm and with the Head of Business Systems to optimise the firm’s data platforms and ensure their seamless transition into ongoing support structures., • Contribute to the development of strategic data products (e.g. client insights dashboards, matter analytics, KPI tools) in partnership with business teams, ensuring user adoption and alignment with governance standards., • Contribute to the firm’s AI roadmap in collaboration with the Head of Innovation and senior stakeholders, including identifying priority use cases, infrastructure needs, and measurable outcomes. Data Governance & Risk Management • Lead the firm’s Data Governance function, establishing and chairing governance forums, defining roles (e.g. Data Owners, Stewards), and setting policies aligned with the firm’s Data Principles., • Collaborate with the Chief Information Security Officer (CISO) to conduct data risk assessments and ensure robust frameworks for data classification, access controls, encryption, and compliance with ISO 27001/Cyber Essentials Plus and client contractual agreements., • Work with the CISO and the Legal Risk and Compliance team who are the firm’s authority on data compliance, including GDPR, SRA confidentiality standards, and records retention requirements, • Implement data lifecycle management policies including data retention, archival, and secure disposal, to ensure compliance and reduce operational risk. Oversee enterprise-wide data quality initiatives, defining data quality KPIs, supporting data cleansing and enrichment programmes, and ensuring effective Master Data Management (MDM). Collaboration & Stakeholder Engagement • Work closely with senior leadership to identify and develop data-driven opportunities across the firm that align with strategic priorities, championing the value of data and its role in driving business transformation., • Influence and guide current staff across departments who have responsibility for data input and those that manage data flows, improving accuracy and consistency at source., • Co-ordinate a lean internal data governance function and leverage existing teams across the business., • Act as a key liaison between technical and business teams, ensuring alignment between data capabilities and business needs., • Facilitate cross-functional data forums to ensure business engagement and alignment throughout data initiatives., • Drive change management and data literacy fostering a firm-wide understanding of the value and use of data., • Define and enforce data and reporting standards, ensuring consistency and clarity across all data outputs. Engagement & Vendor Management • Represent the firm’s data function in engagements with external vendors, consultants, and peer networks, • Lead the negotiation and oversight of third-party data technology providers in collaboration with our Procurement team, ensuring solutions align with strategic, operational and financial objectives. CANDIDATE PROFILE // Candidates for this position must have: Experience & Qualifications • Extensive experience in data strategy development and execution, preferably within a legal, professional services, or corporate environment., • Excellent understanding of data governance frameworks, regulatory compliance, and risk mitigation., • Proven knowledge of AI and automation initiatives with measurable business outcomes., • Experience with SQL, data orchestration tools, and Power BI. Familiarity with cloud platforms such as Azure is desirable., • Demonstrated ability to influence senior stakeholders and communicate complex data concepts to non-technical audiences., • Strong commercial acumen and ability to align data initiatives with business goals., • Experience managing or influencing cross-functional teams and vendors to deliver change. Skills & Competencies • Exceptional leadership and stakeholder management skills, with the ability to drive change and foster a data-driven culture., • Strong problem-solving and analytical capabilities, with a focus on strategic thinking., • Ability to balance technical expertise with business insight, ensuring data initiatives drive tangible value., • Excellent communication and presentation skills, capable of engaging both technical and non-technical audiences., • Proven delivery focus, with the ability to implement structured governance, define metrics, and track outcomes., • Resilience and adaptability, with the ability to navigate a traditional environment and respond effectively to change., • High level of professional integrity and confidentiality, with a strong commitment to ethical data practices. We welcome applications irrespective of race, colour, ethnic or national origin, disability, sex, gender identity, sexual orientation, age, religion, belief or marital status.

Sales Engineer – Networks, SD-WAN & Cyber Security London | Hybrid 3 days/week | Competitive + Benefits £45/60k (DOE) + bonus We’re partnering with a rapidly growing, award-winning UK MSP to hire a Sales Engineer to support presales and solution consulting across Networks, SD-WAN, SASE, and Cyber Security. This is a hands-on, client-facing role bridging technical solutions with commercial opportunities. What You’ll Be Doing: • Collaborate with Sales and Solution Consultants from opportunity qualification to solution delivery., • Architect and propose innovative, validated network and security designs., • Deliver product demonstrations and presentations to internal and external stakeholders., • Maintain accurate technical documentation and act as a point of contact for delivery and support teams., • Identify process improvements and contribute to team knowledge. What We’re Looking For: • Experience in Managed IT, networking, or telecoms., • Solid technical knowledge across at least two areas: Networking, SD-WAN, SASE, Cyber Security., • Understanding of TCP/IP, L2/L3 switching, OSPF/BGP, firewalls, VPNs, and wireless networking principles., • Excellent communication and problem-solving skills., • Agile, organised, and capable of managing multiple projects simultaneously. Nice-to-Haves: • Presentation skills and commercial awareness., • Technical certifications relevant to networking or security., • Familiarity with Private/Public Cloud environments. This is an exciting opportunity to grow your technical and presales expertise in a high-performing, client-focused environment.

Head of Security Operations • Hybrid 3x per week in the office Our client a global insurance business are looking for a Head of Security to join them on a permanent basis. You will help to establish and lead local security operations capability across European offices, providing strategic technical leadership in incident response, cyber threat visibility, and security resilience. This role will bridge the gap between our centralized corporate security services and regional business needs. Key Responsibilities Incident Response & Security Operations • Lead and mature security incident response capabilities across the organisation, • Oversee incident investigations, alert triage, and threat hunting activities, • Develop and execute tabletop exercises and incident response playbooks, • Provide expert technical guidance during security incidents and recovery efforts, • Partner with third-party security service providers and managed services, • Enhance detection and monitoring capabilities aligned to NIS2/NIST frameworks, • Drive continuous improvement of security tools, processes, and procedures, • Ensure appropriate balance between local autonomy and corporate alignment, • Contribute to broader security strategy and roadmap development Essential Requirements Technical Expertise • Demonstrable expertise in security incident investigation, detection, response, and recovery (NIST/NIS2 frameworks), • Strong foundation in security operations, but with strategic vision beyond SOC alert handling, • Experience with security telemetry, SIEM platforms, and threat detection technologies, • Proven track record maturing incident response and tabletop exercise programs, • Experience working alongside third-party security service providers and corporate security teams If you have the desired skills and experience and would like to find out more please apply to this advert by following the link below and attaching a copy of your most recent CV. If successful we will be in touch to discuss the role in more detail.

At BW: Workplace Experts, we deliver high-performing workplaces across Central London with a relentless focus on our Sauce values: Big Ambitions, Grounded Confidence, Integrity and 0% Ego. With over 300 people, we’re proud to be a trusted partner to leading clients, working together to create inspiring, sustainable, and inclusive spaces. Technology is central to how we work. From digital collaboration through Procore, to data-driven decision-making in Microsoft Fabric, to on-site innovation with tools like OpenSpace, Qflow, HammerTech, and Plucky (our robotic assistant), we are shaping the future of fit-out through smarter, safer and more sustainable delivery. As part of our Data & Intelligence Strategy, our Technology team is expanding to ensure we continue to set the pace in our industry. Purpose Own the day-to-day running of BW’s IT service desk and field support function, ensuring every employee receives rapid, expert help with the hardware, software, networks, and security controls they rely on. Key Responsibilities Service Desk & Incident Control • Operate a friendly and professional helpdesk: monitor tickets, calls and walk-ups., • Triage, troubleshoot, resolve or assign cases promptly., • Proactively follow up on tickets and CSAT surveys., • Analyse service trends against SLA targets., • Build, patch and support Windows laptops, macOS devices, iOS/iPadOS mobiles and tablets via Intune/Autopilot/Kandji., • Enforce MFA, conditional access, vulnerability patching and CIS-aligned baselines., • Run phishing simulations, incident playbooks and device-compliance audits., • Collaborate with the IT Manager on threat monitoring, investigations and ISO 27001 compliance., • Plan and execute application upgrades, Intune policy changes and security updates with minimal user disruption., • Provide on-site support to project locations across Central London., • Maintain a living knowledge base, SOPs and runbooks in FreshService., • Lead, develop and inspire junior members of the team through technical walkthroughs, mentoring and shadowing., • Balance multiple open cases against business impact., • Use ticket analytics to identify automation opportunities, drive shift-left initiatives, and improve service delivery., • Act as a champion for smarter ways of working, leveraging data, AI and automation to deliver better outcomes for BW and our clients. Skills & Experience • Technical expertise across Microsoft 365, Azure Active Directory, Intune, Autopilot, and Windows/macOS environments., • Strong knowledge of networking (LAN/WAN, switching, firewalls, VPN) and troubleshooting connectivity issues., • Familiarity with cloud storage and collaboration platforms such as Egnyte, SharePoint, and Microsoft Teams., • Understanding of SQL databases (Azure SQL, Supabase) and their integration into reporting tools such as Power BI., • Experience supporting mobile device management (iOS/iPadOS, rugged devices)., • Hands-on understanding of cybersecurity frameworks (ISO 27001:2022, ISO 22301, Cyber Essentials Plus, CIS controls)., • Proven ability to manage service desks, incidents, and SLAs using ITIL best practices., • Strong communication and coaching skills — able to support colleagues at all levels and contribute to BW’s culture of Big Ambitions, Grounded Confidence, Integrity, and 0% Ego., • A proactive approach to automation, AI adoption and process improvement in support of BW’s wider Data & Intelligence Strategy.

Senior Software Engineer | Rust/ C++ | TypeScript | Web SDK | WebAssembly/ WASM | Remote | £90,000 + 10% bonus & shares I am currently working with a brilliant company specialised in creating technology products within the cyber security space, they have been incredibly successful and have relationships with global tech companies such as Meta utilising their product. Currently they are looking for a Senior Engineer to join their highly specialised team focused on creating technology to support their customers use of their products, comprised of all senior level developers and above this team tackles the toughest tech challenges in the business. Key Skills • Strong understanding of either JavaScript or TypeScript, • Good experience with C++ and/or Rust, • Experience with WebAssembly (WASM), • Knowledge of Cyber Security when creating web applications, • Good knowledge of cloud platforms, IaC containers and container orchestration, • Experience with CI/CD pipelines, Restful API's and databases also beneficial If you think you could be a good fit please don't hesitate to get in touch.

Senior IT Security Consultant • Job Location: Mostly Remote, UK (There will be occasional expectation to visit London clients & attend essential meetings in London / South England locations. Up to a couple of times a month), • Salary Range: £75,000 to £84,000 (based on candidate experience), • Bonus & Package: Strong bonus structure & Excellent employee benefits, • Employment Type: Permanent Are you a cloud security expert ready to make your mark in a leading organisation? Join one of the most exciting organisations in the IT Sector as part of their newly developing & rapidly expanding Cyber Security division. This highly respected organisation is renowned as one of the top places to work in the IT sector, and is well known for its best-in-class work culture and job satisfaction. They promote a culture of upskilling and training internal talent; supporting professional growth and providing limitless opportunity to gain promotion within the company. Role Overview: As Senior Security Consultant you will join the company as a respected figure within the organisation. Your Security designs and recommendations will have strong influence in this new department. Bringing your ideas & innovations to the table will be highly encouraged and supported, making this an amazing opportunity to make your mark in a major organisation, and take a leap in your career development. What You'll Do: • Provide outstanding Security consultation on strategy and innovation throughout major greenfield projects both internally and externally, • Play a key role in delivering large scale Security Projects, • Produce innovative design and architecture on large, exciting projects, • Interact with clients, supporting consultancy on their Security posture, and assess potential sales opportunity etc., • Championing a constantly evolving security function within the company, bringing your ideas to the table and improving security processes., • Supporting Principal Consultants and other Senior members of the security department and areas of the organisation., • Architecture, designing and documenting secure architectures aligned with modern frameworks (NCSC, CIS, and ISO 27001), • Contribute to the development of advisory service offerings, templates, and best practices., • Collaborate with team members and other departments to improve overall security posture., • Stay informed on emerging threats and security best practices. Required Skills & Qualifications: • 5+ years’ experience in Security with strong experience Consulting & Architectural design, • Professional background in IT Services / IT Consultancy / MSP, • Strong experience of contributing to development & architecture on major projects., • Strong technical knowledge of Azure and AWS security services, controls, and architectures., • Deep understanding of IAM, networking, encryption, monitoring, and incident response in cloud environments., • Familiarity with cloud-native security tooling (Purview, MS Defender, AWS Security Hub, GuardDuty, etc.)., • Strong understanding of Identity functions & Related tools, EntraID / Purview / CrowdStrike etc., • Solid knowledge of Zero Trust / Data Classification / hybrid connectivity – and producing related architecture., • Knowledge of common frameworks and standards (NIST, CIS Benchmarks, ISO 27001, CSA CCM). Services offered by Computappoint Limited are those of an Employment Business and/or Employment Agency in relation to this vacancy

Senior Applications Analyst - Permanent - London/Hybrid - £65,000 per annum A fantastic opportunity has arisen for a Senior Applications Analyst to join our London based law firm on a permanent basis. Key Responsibilities • Take technical ownership of the firm’s Aderant Expert practice management system, including maintenance, upgrades, and integrations., • Build, maintain, and optimise SQL queries, databases, and reports to ensure high data accuracy and performance., • Develop and manage Power BI dashboards and reporting solutions for business stakeholders., • Collaborate with teams to improve workflows and streamline data processes., • Provide advanced technical support and act as an escalation point for application-related issues., • Support system integrations between Aderant, Microsoft 365, and other legal applications., • Contribute to the delivery of projects including system upgrades, automation initiatives, and data improvements. Essential Skills & Experience • Strong hands-on experience with Aderant Expert (administration, configuration, integrations, and workflow optimisation)., • Excellent SQL skills, including database management, scripting, and report writing., • Proven experience building and maintaining Power BI dashboards and data flows., • Solid understanding of data integrity, security, and performance optimisation., • Excellent problem-solving skills and the ability to work independently or collaboratively., • Clear communicator with the ability to translate technical solutions for non-technical users. Desirable Skills • Experience with Visual Files or other case management systems., • Exposure to Microsoft 365, SharePoint Online, and Power Platform (Power Apps, Power Automate)., • Knowledge of Microsoft Azure or other cloud environments., • Experience with C#, PowerShell, or other scripting/programming languages., • Understanding of ISO27001 and Cyber Essentials Plus., • Interest or experience in AI, automation, or data analytics innovation. Senior Applications Analyst - Permanent - London/Hybrid - £65,000 per annum

Senior Cyber Auditor London | Remote-first Are you an experienced Cyber Essentials Plus and IASME Governance Auditor looking for your next challenge? Join a forward-thinking cyber security organisation helping UK businesses strengthen their defences and achieve key certifications. As a Senior Cyber Auditor, you’ll lead client audits, provide clear and practical security guidance, and play a key role in ensuring high-quality, timely assessments. You’ll also have the opportunity to expand your professional credentials — with support to pursue ISO 27001 and other advanced certifications. What You’ll Do • Conduct Cyber Essentials and Cyber Essentials Plus audits for a diverse SME client base., • Guide customers through every stage of the certification process., • Provide straightforward, expert advice on cyber security and compliance., • Collaborate with internal teams to deliver a great client experience and identify new opportunities. What We’re Looking For • IASME-qualified Cyber Essentials Plus Assessor and IASME Governance Assessor., • Strong communicator — able to explain complex security concepts clearly., • Detail-driven, professional, and solutions-focused., • Proactive about professional growth and ongoing certification., • Collaborative mindset with integrity and a positive attitude. What’s on Offer • Remote-first working with flexibility and fully expensed in-person sessions., • 25 days’ holiday + public holidays + your birthday off., • Extra day of leave for each year of service (up to 5)., • Private healthcare after probation., • Employee equity participation., • £2,000 learning & development grant + £500 personal growth allowance., • Access to mental health and wellbeing support., • Regular team socials and meetups., • Modern London office for collaboration., • MacBook and full home office setup, plus £250 annual home office allowance.

IT Technical Project Lead London (Hybrid) FirstBank UK is a globally recognised, successful bank who provide world-class services to various institutions and individuals. Offering a comprehensive range of retail and corporate financial services/products, this thriving business boasts over 10 million active customers in over 700 business locations. Due to business requirements, we are now looking to acquire the services of an experienced IT Technical Project Lead. • This is a hybrid role with 3 days in the office & 2 days from home This role oversees planning, executing, and implementing tech solutions within scope, budget, and according to timeline. This role connects technical teams with business stakeholders, ensuring quality, consistency, and alignment with IT and business strategies. Key Responsibilities: This role plays a pivotal role in ensuring the successful delivery of IT solutions by overseeing technical execution, managing cross-functional teams, and aligning technical outcomes with business goals. Below are the responsibilities grouped into relevant focus areas: Delivery Management • Oversee end-to-end delivery of technology solutions, from requirements gathering to deployment., • Define and manage delivery plans, timelines, and milestones in collaboration with project managers., • Provide technical direction and oversight to development team., • Ensure adherence to solution architecture, coding standards, and best practices., • Collaborate with Solution Architects to validate the feasibility and scalability of technical designs., • Coordinate work across cross-functional teams including developers, QA, business analysts, UI/UX designers, project managers, solution architect, process engineers, etc.,, • Act as the primary technical point of contact for business stakeholders and product owners., • Collaborating with Cyber Security team in vulnerability and code scan, ensure code quality checks, solutions are high-quality, secure, and scalable., • Promote agile and DevOps practices for faster, iterative delivery., • Coordinate knowledge transfer to operations/support teams., • Transition delivery for post-deployment support, solution performance monitoring, and post-launch issues resolution. Key Skills/Experience: Platform-Specific • Microsoft Power Platform (PowerApps, Power Automate, Dataverse): Understanding of custom app development, connectors, and governance., • Enterprise Tools: Experience with tools such as SharePoint, Dataverse, Dynamics 365, Azure DevOps. API Enterprise Service Bus and Integration Delivery & Project Management Experience • End-to-End Solution Delivery: Proven experience managing full project lifecycles from initiation to deployment., • Agile/Lean Delivery: Experience delivering in Agile environments, leading sprints, backlog grooming, and iterative releases., • Resource Planning: Managing cross-functional teams, assigning responsibilities, and optimizing team capacity., • Risk and Issue Management: Proactively identifying, managing, and mitigating issues and dependencies., • Budget & Cost Management: Experience managing delivery budgets and vendor contracts (if applicable). Leadership and Team Management • Team Leadership: Experience leading multi-disciplinary technical teams (developers, analysts, QA, DevOps, etc.,)., • Mentoring and Coaching: Providing guidance and support to junior team members or technical leads. Stakeholder & Communication Skills • Stakeholder Engagement: Ability to interact with and influence senior stakeholders, including C-level executives., • Business Acumen: Understands how technology impacts business outcomes and customer experience. Governance, Compliance & Quality • Testing & QA: Knowledge of testing strategies including unit, integration, UAT, and performance testing., • Audit and Documentation: Experience maintaining documentation, change logs, and audit trails. Technical Skills: • Software Development Lifecycle (SDLC): Understanding of waterfall, agile (Scrum), and hybrid methodologies., • Application Architecture: Knowledge of designing scalable, secure, and modular application architectures., • Integration & APIs: Experience with RESTful APIs, microservices, and system integration patterns., • Cloud Platforms: Experience with cloud services (e.g., Microsoft Azure, AWS, Google Cloud) including PaaS and SaaS offerings., • DevOps Practices: CI/CD pipelines, infrastructure as code, automated testing, and monitoring tools. In return we offer a fantastic benefits package including: • Up to 10% employer pension contribution, • Life Assurance Cover, • Income protection, • Private Medical Insurance plan (upon successful completion of probation period), • Contribution to glasses/contacts and eye testing, • Gym subsidy (up to £50 per month), • Cycle to work scheme, • Employee Assistance Program, • Interest Free season ticket loan for travel, • Birthday Leave, • 25 days annual leave, rising to 28 after 3 years and 30 after 8 years’ service, • Give As You Earn (GAYE) First Bank is an equal opportunities employer and positively encourages applications from suitably qualified and eligible candidates regardless of sex, race, disability, age, sexual orientation, gender reassignment, religion or belief, marital status, or pregnancy and maternity. The Curve Group is First Bank UK’s outsource partner for Recruitment and a "Data Processor". The Curve Group will hold the information you submit but First Bank UK will have access to it. You can find their privacy policy here: ___The Curve Group is First Bank UK’s outsource partner for Recruitment and a "Data Processor". The Curve Group will hold the information you submit but First Bank UK will have access to it. You can find their privacy policy here:

CYBER SECURITY ENGINEER About Us As part of the Embignell Group, Stonebridge International Insurance Ltd and Union Income Benefit Ltd operate as an insurer and a leading insurance brokerage respectively. Working in partnership with some of the largest Trade Unions, we have set up policies for over 2.5 million members. Our policies are designed to provide simple, easy-to-understand protection that ensures peace of mind and reliable support when it's needed most. Since 1999, we've paid out over £45 million in claims. Our UK-based operation is regulated by the Financial Conduct Authority, and our dedication to staff Training & Development has seen us recognised with Investors in People status since 2002. The Role As Cybersecurity Engineer, you'll strengthen the organisation's cyber resilience by developing, deploying, and monitoring security controls across on-premise, cloud, and hybrid systems. You will identify vulnerabilities, respond to incidents, and proactively harden systems to ensure the confidentiality, integrity, and availability of business and customer data in line with regulatory and industry standards. Key Responsibilities Security Architecture & Engineering • Design, implement, and maintain layered ("defence-in-depth") security architectures across network, host, application, and data layers, • Integrate security controls within hybrid cloud environments (AWS, Azure, Microsoft 365) and on-premise systems, • Deploy, configure, and tune platforms including SASE, Sentinel One, AWS Security Hub/GuardDuty, Azure Security Center, Azure Sentinel, and Microsoft 365 Defender, • Embed security in Infrastructure as Code templates (Terraform, ARM, Ansible) for repeatable, compliant deployments, • Implement, optimise, and monitor AWS and Azure native security controls such as IAM, GuardDuty, Key Vault, and Security Hub, • Manage endpoint protection and EDR/XDR tooling, ensuring consistent configuration and real-time threat visibility, • Oversee firewall, VPN, and intrusion prevention configurations to maintain secure network boundaries, • Automate vulnerability scanning and penetration testing using tools (Qualys, Nessus, OpenVAS) and custom scripts, • Coordinate third-party penetration tests and track remediation actions, • Conduct ongoing threat modelling, patch management, and risk assessments, • Perform regular configuration reviews, compliance checks, and security health audits across all systems, • Lead detection, triage, and investigation of security incidents using SIEM tools such as Azure Sentinel, Splunk, or ELK Stack, • Correlate and analyse logs from network, endpoint, and cloud sources to identify potential compromises, • Work with DevOps and IT teams to contain, eradicate, and recover from security incidents, • Produce post-incident reports and lessons learned to improve future response readiness, • Contribute to business continuity and disaster recovery planning What We Offer • 25 Days Annual Leave + Bank Holidays, • Ongoing Training & Development opportunities, • Excellent work/life balance £60,000 - £75,000 Who We're Looking For • Experience in implementing and managing security controls across cloud and on-premise environments, • Strong knowledge of network security, endpoint protection, and cloud security principles, • Hands-on experience with security tools such as SIEM, EDR/XDR, and vulnerability scanners, • Understanding of regulatory frameworks including GDPR, ISO 27001, and FCA requirements, • Experience with scripting and automation (Python, PowerShell, or similar), • Ability to analyze security incidents and recommend appropriate mitigations, • Professional certifications such as CISSP, CEH, Security+, or equivalent are desirable, • Excellent communication skills and ability to explain security concepts to technical and non-technical audiences Location Based in the UK with 2 days to be spent in London Office. Apply on Company Website: Recruitment Process • CV screening, • Initial 10-15 minute Teams interview for successful applicants, • In-depth Teams interview with hiring manager for shortlisted candidates, • Final stage face-to-face interview with hiring manager and another team member

The Platform & Engineering team at Royal Canin is responsible for managing our data capabilities. This includes the creation, operation, and optimisation of the data platform, assets, and pipelines. This is a growing team, supporting an advanced analytics agenda at Royal Canin that is rapidly transforming it into a business powered by data. To accelerate achieving this objective, we are looking for enthusiastic data engineers to join our team. The role is responsible for creating and managing trusted Supply data assets. You will be seen as the primary engineering contact for this area, with an expectation to provide expert advice and technical leadership for product squads utilising data assets under your oversight, composed of product leaders, data scientists, data domain experts and front-end developers. What are we looking for? • Experience in an Applied Data Engineering role or equivalent, ideally within the CPG, Consumer Products, Retail, Telecom or Financial Services industries., • Applied knowledge of supply chain and associated data, e.g. procurement, manufacturing, logistics, • Good experience in working with data (Python/PySpark/Databricks) in a cloud-based data systems environment (ideally Azure)., • Experience in developing using agile software development methodologies, principles such as DevOps, CI/CD, and unit testing., • Comfortable working both by themselves and in a team setting. Strong planning and prioritisation skills., • Good understanding of Data Protection and Privacy principles and practices, including GDPR., • Great at developing new relationships, driving positive change, and matching analytics opportunities to data acquisition strategy., • Quick learner, with flexibility and willingness to adapt to new software and techniques., • Ability to communicate with business and technical stakeholders. What will be your key responsibilities? Data Engineering • Engineer and orchestrate data flows & pipelines using high-quality, easily deployable, repeatable and extensible codebases that ingest and integrate supply chain data from many disparate data sources in a cloud environment using a progressive tech stack., • Responsible for ensuring the quality, freshness and usability of supply chain data in trusted zone(s)., • Create readable, manageable code with proper testing and CI/CD, managing data transformation and troubleshooting data processing issues as required., • Follow RC Data Engineering best practices and contribute to their reinforcement, as well as shared assets such as Data Libraries., • Build simple data models to support efficient and accurate analytical insight creation. Reduce data preparation efforts for solution users to expedite their processes and reduce errors. Perform data pipeline migrations if necessary., • Implement alerting and monitoring capabilities to ensure high platform reliability in compliance with Mars Cyber Security Standards and Privacy Policies, • Ensure that product architecture and security are designed and implemented in accordance with RC & Mars standards, in collaboration with architects. Technical Leadership • Provide a technical viewpoint for product squads using data in your oversight, ensuring proposed solutions are viable and utilise existing tools and processes., • Break complex/functional requirements down into simple/technically manageable elements with an understanding of the efforts required and any risks associated with development., • Partner with the Product Manager and Data Domain Lead to onboard any new development resources, ensuring they adopt coding standards set by the organisation. Work with the Data Engineering community to evolve standards over time., • Coordinate and review work done by other Data Engineers in a squad to increase the quality of deliveries. Engineering Innovation & Enhancement • Oversee the evolution of platform technologies to improve quality/cost, or seek automation solutions to decrease overall effort. Manage any proposed enhancement through implementation, as well as sharing it with the Data Engineering community., • Work with the squad Product Manager and Scrum Master to increase engineering ways of working, leading to higher quality/faster delivery. Data Management and Governance • Practice Data Lifecycle Management through Global Metadata and Access Control Management., • Ensure all data models and assets have Data Quality Management standards implemented. Design all new data models in collaboration with Data Domain Leads and Architects., • Partner with functions and divisions to ensure the RC data capabilities roadmap, operating model and governance principles are best serving the organisation's data strategy., • Collaborate with Mars Petcare Data Engineering teams to generate synergies by sharing assets / best practices and mutualising ways of working aligned with ecosystem strategy What can you expect from Mars? • Work with diverse and talented Associates, all guided by the Five Principles., • Join a purpose-driven company, where we’re striving to build the world we want tomorrow, today., • Best-in-class learning and development support from day one, including access to our in-house Mars University., • An industry-competitive salary and benefits package, including a company bonus. #TBDDT

As a Cyber Security Engineer, you will play a crucial role in safeguarding our clients’ digital assets and infrastructure from cyber threats. You will be a key technical resource, responsible for designing and maintaining secure solutions and delivery systems, ensuring services are configured securely according to industry standards. Skills • Proven experience in cyber security engineering or related roles, with a strong understanding of network security principles, protocols and technologies., • Experience with security tools such as firewalls, intrusion detection / prevention systems, SIEM solutions (i.e. Splunk, Exabeam, Sentinel, Chronicle) and endpoint security platforms to the level of administration and deployment., • Exposure to SOAR tools, observability tools and data stream processing tools, • Hands-on experience with vulnerability assessment tools, penetration testing methodologies and forensic analysis techniques., • Experience in writing content / polices for monitoring in line with MITRE ATT&CK framework, • Familiarity with regulatory requirements such as GDPR, HIPAA, PCI DSS, and industry standards like NIST Cybersecurity Framework.

Lead Information Security AnalystWe’re partnering with a leading digital business that takes cyber risk seriously. Their InfoSec team is award-winning, collaborative, and one of the most gender-diverse in the industry. They’re looking for a Lead Information Security Analyst to strengthen their security governance, risk, and compliance functions — ensuring customer data and company systems remain secure while leading a small, capable team of analysts. What you’ll be doing: • Leading and supporting all aspects of security governance activities – from policy and exception management to risk and vendor assessments, • Managing compliance and audit activities (ISO 27001, NIST, PCI DSS, NYDFS, etc.) and working closely with tech, legal, and audit teams, • Overseeing major projects to ensure security is baked in from inception to implementation, • Coaching and developing a team of Information Security Analysts, fostering a proactive and high-performing culture, • Acting as a hands-on leader who can balance strategy, delivery, and stakeholder engagement What you’ll bring: • Strong background in GRC (Governance, Risk, and Compliance) within cybersecurity, • Practical experience with frameworks such as ISO 27001, NIST, and PCI DSS, • Proven ability to design, implement, and maintain security policies and procedures, • Confident in managing audits, vendor assessments, and compliance remediation, • Leadership skills that balance mentorship, accountability, and collaboration, • Someone who thrives in both independent and global team environments This is an opportunity to shape the security posture of a well-respected digital brand while leading a high-impact team.

⚠️ This role is based in the UK and we unfortunately are not able to provide visa sponsorship. ⚠️ ⚠️ Also, this is an experienced hire role. Please do not apply if you are seeking your first role in cyber security - look out for our Graduate SOC Analyst roles instead ⚠️ What we’re offering (saves you scrolling straight to the bottom): • Salary: £40,000–46,000 depending on experience, • Shares: We operate an EMI scheme and you will earn over time a slice of the CyPro pie., • Holiday: 25 days paid holiday plus bank holidays (increases by 1 day per year worked up to 30 days), • Flexible Working: We love getting the team together in the office, so we typically spend three days per week together in our lovely London office (39 floors up in Canary Wharf 👀). The rest of the time, you can work wherever you’re most productive., • Working Hours: 4 days on, 4 days off, rotating day/night shifts, • Training: Budget for one certification/course per year, • Socials: We meet regularly to have a drink, throw some axes, • Start Date: ASAP About CyPro: • We are an innovative cyber security start-up united in a shared mission: to redefine cyber security for small and medium-sized businesses (SMBs)., • Our Founders – Jonny & Rob – spent most of their early careers delivering cyber security for large enterprises and central government. They saw a clear need for a new approach to cyber security as SMBs became increasingly targeted by cyber criminals. By 2022, SMBs accounted for 75% of attacks, largely due to being easy targets., • Together, CyPro is already setting new standards, defining innovative solutions and equipping its clients with the cyber security they need to prevent attacks, secure bigger clients and scale to new heights., • We are growing quickly, and the next few years promise more of the same. Joining CyPro means becoming an integral part of our mission and joining a team of industry experts embarking on this journey. The Role: • This isn’t your typical SOC Analyst role where you’re pigeonholed into one narrow specialism. At CyPro, you’ll have the opportunity to get involved in a wide range of areas including monitoring, incident response, threat intelligence, detection engineering, automation and internal security operations., • You’ll play a key role in our Security Operations Centre, delivering 365-day monitoring, detection and response to our growing customer base. You’ll contribute to building out our capabilities, improving tooling and processes, and shaping how we operate as the function matures., • As the team grows further, you’ll have the flexibility to focus more deeply on the areas that interest you most – whether that’s advanced detection engineering, threat intelligence, incident response leadership or platform automation. If you’re ambitious and want to help shape something rather than simply follow a process, this is the right environment for you. Core Responsibilities:Security Monitoring & Incident Response • Monitor security alerts generated by Microsoft Sentinel, Microsoft Defender, Datadog and Elastic., • Assess severity and impact of alerts, triage and investigate incidents independently., • Execute containment and remediation actions using defined runbooks and playbooks., • Correlate data across platforms to identify anomalies, malicious patterns and attacker behaviour., • Produce detailed incident reports, RCA and after-action reviews for internal and client use., • Develop and implement new detection rules in Microsoft Sentinel aligned to the MITRE ATT&CK framework., • Draft and optimise KQL queries for detection and threat hunting., • Analyse threat intelligence feeds to identify relevant threats and vulnerabilities., • Review and tag IOCs and TTPs observed in client environments., • Prepare weekly and monthly SOC reports highlighting activity, incidents and trends., • Join governance calls with senior analysts or managers to present SOC insights., • Support the management of CyPro’s internal security environment., • Administer and monitor identity management solutions., • Manage and maintain our MDM platform to ensure secure and compliant device management., • Design and develop Logic Apps to automate incident response workflows., • Contribute to evolving internal runbooks and knowledge base articles., • Work toward and maintain relevant certifications (e.g. SC-200, AZ-500)., • Stay up to date with current threat trends, attacker TTPs and defensive strategies., • Actively participate in ongoing training and capability development. Who we're looking for: • Self-Starters – we’re not a large FTSE organisation with a procedure for everything. You’ll need to operate in an environment with few guardrails and help build things as we grow., • Ambitious & Driven – whether your goal is to lead a team, specialise technically or move into leadership in future, we’ll support your development., • Always Improving – we’re a growing business and want our people to grow with us. What we think you need to be successful: Education & Experience • University educated with a degree in computer science, information security or equivalent, • At least one year of experience in a SOC environment monitoring and responding to incidents, • Microsoft Sentinel and Defender hands-on expertise, • SC-200 certification or willingness to achieve it, • Strong KQL skills for threat hunting and incident forensics, • Experience with SIEM, IDS/IPS and threat intelligence platforms, • Familiarity with incident response frameworks and security best practice, • Problem-Solving: Identify, troubleshoot and resolve complex security issues., • Attention to Detail: Ensure accurate detection, analysis and documentation., • Analytical Thinking: Comfortable interpreting complex security data., • Communication: Clear and confident communicator, able to translate technical issues for non-technical audiences., • Calm Under Pressure: Maintain composure during incidents and escalate appropriately., • Accountable & Humble: Take ownership and learn from experience., • Curious: Dive into data sets and problems to uncover patterns and root causes. Our Two-stage Hiring Process: • Intro Discussion (20 minutes, Remote): An initial chat to learn more about you and the role., • Assessment Centre (2 hours, London): A mini project on-site (no prep required), some quick tests, followed by a final interview with the founders and our SOC Manager.

Interim Head of Data & BI (Inside IR35 – via Umbrella or PAYE) Location: Ealing / London (Hybrid/remote – limited travel to the office) Day Rate: £Highly Competitive Contract type: Interim / Contract (35 hours per week, Monday to Friday) DBS Level - Basic Shape the future of data and insight at A2Dominion Are you passionate about harnessing the power of data to drive organisational change? Do you have the leadership and vision to build a robust data culture, ensuring governance, quality, and actionable insights across the business? If so, this is an exciting opportunity to make a real impact. We’re looking for an Interim Head of Data & BI to lead on the delivery of A2Dominion’s Data & BI Strategy. You’ll oversee governance, data quality, and analytics, building an operating model that enables the business to make better decisions through insight and innovation. You help us deliver our data Quality Action Plan in collaboration with the wider business to drive continual data quality improvements. As the senior lead for data, you’ll manage a talented in-house team and external partners, ensuring our platforms, reporting and analytics capability are robust, secure, and future-focused. Key Responsibilities: • Data Strategy & Culture – Develop and implement a sustainable Data & BI Strategy, aligned with IT and business priorities, and embed a data-driven culture across the organisation., • Data Governance & Quality – Establish standards, principles and processes for data stewardship, ensuring compliance, classification, and quality monitoring are embedded., • Analytics & Insight – Design, build and manage data platforms and reporting solutions, including dashboards, KPIs and wider regulatory returns; self-service tools for senior leaders and operational teams., • Security & Compliance – Working closely with the Cyber Security team, ensure data security, regulatory compliance and access controls are rigorously maintained., • Leadership & Collaboration – Lead and inspire the Data & BI team, manage third-party partners, and work closely with senior stakeholders to drive continuous improvement. More about you: • Proven track record of leading complex data functions, including strategy, governance, quality, and analytics., • Experience in a similar role within the Public Sector is essential, with housing sector experience highly desirable., • Strong technical expertise with MS Azure Data Warehousing (Data Lake, Data Factory, Synapse, Databricks), SQL, Power BI, and other visualisation tools., • Experience delivering large, cross-functional data projects in a corporate setting., • Excellent communicator, able to translate technical detail into clear business insight., • Strong leadership skills, with the ability to build high-performing teams and influence at senior levels., • Knowledge of regulatory compliance, data privacy best practice, and BI lifecycle processes., • Degree-level education or equivalent experience. Relevant professional qualifications (e.g. ITIL, CIOB, or data certifications) are desirable. About us At A2Dominion, we’re more than a housing provider. We’re a not-for-profit organisation with a clear social purpose: to create homes and communities people love to live in. With over 38,000 homes across London and the South East, we reinvest our profits into building more affordable homes and delivering services that make a real difference. We’re a G15 housing association with a strong social purpose Inclusion at A2Dominion We’re proud to be a Disability Confident Employer and welcome applications from people of all backgrounds. Our recruitment process is inclusive and accessible, and we guarantee an interview to disabled applicants who meet the minimum criteria. Reasonable adjustments are available throughout the process - just contact our Resourcing Team at We know some people may hesitate to apply unless they meet every requirement. If that’s you, we’d still encourage you to apply - or get in touch with us to talk it through. At A2Dominion, we value diversity, embrace flexibility, and are a family-friendly employer. Everyone belongs here. Join us and help make a lasting difference in the lives of our customers. This vacancy is being managed by Danny Banks - . The role closes on 7th November 2025, we reserve the right to close this role upon appointment of the right candidate. This role is being managed directly by A2Dominion. We are not accepting agency support at this stage.

Cyber Strategy & Transformation – Senior Consultant to Manager Salary: £60,000 – £95,000 | Location: Remote-First | Sponsorship: Not available We are seeking experienced professionals at Senior Consultant to Manager level to join a growing Cyber Strategy & Transformation team. This is a remote-first role, offering the flexibility to work from home while leading high-impact cyber strategy, risk management, and transformation initiatives. Responsibilities: • Develop and implement cyber strategies aligned to business objectives., • Drive transformation programmes to enhance cyber maturity and resilience., • Design governance and operational frameworks to assess risk, ensure regulatory compliance, and support business growth., • Collaborate with multi-disciplinary teams, communicating complex cyber challenges to a range of stakeholders. Requirements: • Experience in cyber strategy, cyber risk, cyber maturity, security architecture, cyber transformation, or regulatory compliance., • Knowledge of standards and regulations such as NIST CSF, ISO27001, GDPR, NIS2, or NCSC CAF., • Strong problem-solving skills, attention to detail, and excellent communication with both technical and business stakeholders., • Relevant certifications (CISSP, CISM, CISA, M.Inst.ISP) or MSc in Cyber Security are advantageous., • Experience with project delivery, team management, and agile or waterfall methodologies. Why Join: • Remote-first working with flexibility and autonomy., • Collaborate with a skilled, high-performing team., • Engage in challenging, high-impact projects that shape cyber strategy and transformation., • Opportunities for professional growth and development across multiple levels of seniority. We are looking for proactive, adaptable individuals who view cyber security as a business enabler and are eager to make an impact.

Manual Penetration Tester Fully Remote We're proud to be working with a renowned MSP in support of their search for an experienced Manual Penetration Tester. Key Responsibilities • Carry out hands-on penetration testing across applications, infrastructure, and networks, with a particular focus on web apps and security products, • Deliver highly technical and effective security engagements through hands on systematic and innovative testing, • Lead teams on client engagements as well as working alone, • Deliver detailed and actionable penetration test reports efficiently, • Explain complex security issues in a clear, business-focused way to different audiences, from technical development teams to senior non-technical management teams. Required experience • Proven history in the delivery of manual penetration testing (Application and Infrastructure), • A solid understanding of TCP/IP and networking concepts, • Extensive knowledge in the testing of Web-based applications, • Knowledge or experience of security build reviews for all common operating systems, • Comfortable with programming in one or more languages, • Deep knowledge of databases, including security considerations and database hardening techniques, • Solid technical understanding of web applications, including web server design and implementation Must be eligible for SC clearance and be willing to travel as required to client sites with the UK. Please apply for an initial chat, more information on the role and a full job description. Please note, visa sponsorship is not available for this position and the above requirements are essential. I’d love to speak with everyone, but due to the high volume of applications we’re receiving, I can’t guarantee everyone a response.

Colt is the New Standard in high bandwidth network and voice services for enterprises and wholesale customers in Europe, Asia and North America’s largest business hubs. With a global reach but a deep local presence, Colt is big enough to deliver and small enough to care. Why we need this role? As the Lead - SOC Incident Manager, your role will encompass communicating cybersecurity incidents to key partners across the enterprise as well as being the main interface between the Colt business units and the cybersecurity groups. You will be the subject matter expert responsible for coordinating cyber security incidents across the enterprise. What you will do: You will play a key role within the SOC to manage incidents: • Lead and coordinate response efforts to cyber security incidents caused by internal and external threats to reduce the impact of these incidents to Colt and its customers., • Act as the bridge between the SOC incident responders, IT support teams and business groups to ensure a consistently execution of incident triage and remediation., • Build and manage cyber incident tabletop exercises to ensure Colt is prepared to deal with cybersecurity incidents., • Perform post incident analysis, identifying lessons learned throughout Fidelity with applicable teams for tactical and strategic remediation. What We're Looking For? • Bachelor’s degree (or foreign education equivalent) in Computer Science, Engineering, Information Technology, Information Systems, Mathematics, Physics, Business Administration, or a closely related field, • Solid understanding of common threats, penetration/intrusion techniques and attack vectors., • Lead under pressure and act as the command and control in managing critical cyber incidents. Experienced in handling cyber security incidents as well as other business or IT recovery incidents., • An ability to explain sophisticated topics to a varied audience of people who work in both IT and non-IT roles., • Proficient with commonly used incident response tools, logging, and SIEM technologies., • In-depth knowledge of and experience in security concepts such as cyber-attacks and techniques, risk management, incident management, threat management, etc. What We Offer You Looking to make a mark? At Colt, you’ll make a difference. Because around here, we empower people. We don’t tell you what to do. Instead, we employ people we trust, who come together across the globe to create intelligent solutions. Our global teams are full of ambitious, driven people, all working together towards one shared purpose: to put the power of the digital universe in the hands of our customers wherever, whenever and however they want. We give our people the opportunity to inspire and lead teams, and work on projects that connect people, cities, businesses, and ideas. We want you to help us change the world, for the better. Diversity and inclusion • Signed the UN Women Empowerment Principles which guide our Gender Action Plan, • Trained 60 (and growing) Colties to be Mental Health First Aiders Our benefits support you through all parts of life, for both physical and mental health. • Flexible working hours and the option to work from home., • Extensive induction program with experienced mentors and buddies., • Opportunities for further development and educational opportunities., • Global Family Leave Policy., • Employee Assistance Program., • When you join Colt you become part of our global network. We are proud of our colleagues and the stories and experience they bring – take a look at ‘Our People’ site including our Empowered Women in Tech.

Are you looking for your next CISO position where you can make an immediate impact from day one? This is a small bank, not a Tier 1, meaning that you'll get plenty of autonomy and responsibility immediately. You'll be working with a small security team, where you first task will be to assess the situation, see what needs to be done and then get to work. Yes, it's a CISO position, but you'll also need to be hands on. The scope of this role will be pretty broad. From policies and compliance, to managing vendors and of course, working closely with the board to deliver on cyber security goals. But let's focus on your first few months. There's a small team already in place. You'll be able to come in and get a lay of the land, understanding the skills of the team and understanding what policies and protocols are currently being used. Once you've made this assessment, you'll of course want to put in place the future roadmap for the team. You'll be backed to do what you feel is right. You'll need to be a seasoned leader in cyber security with a strong history and track record of making an impact in a regulated environment. You'll need a strong understanding of risk and compliance (DORA, etc) This is a small bank, with a number of interesting cyber initiatives in place - that you'll oversee and decide on changes. This is London based, 4 days in office, with ambitions to grow quickly in the next few years. Do you want a blank canvas and autonomy to make a difference? Get in touch. No up-to-date CV required.

The Cyber Security Lead will be instrumental in helping to build a new SecOps function. This role will be responsible for helping to implement and maintain robust security across our infrastructure and incident response. You will be responsible for developing, implementing, and maintaining security solutions that protect systems from ever-evolving cyber threats moving towards a zero-trust operating model. The role will serve as the technical lead, drive key security initiatives, play a pivotal role in mentoring junior team members and increasing our overall security posture. The role will assist the Firm with our efforts to work towards ISO 27001 certification and implementing CIS controls.

Automation Engineer (Chef) 6-month contract Outside IR35 Remote working Must be based in the EU We are seeking an Automation Engineer with strong expertise in Chef InSpec, AWS, and Windows, you will play a key role in designing, automating, and securing enterprise infrastructure. The successful candidate will bring deep knowledge of Chef cookbooks, InSpec profiles, and CI/CD automation to enhance cyber resilience and compliance across hybrid environments. Key Responsibilites • Deliver engineering solutions aligned with the Cyber Resilient Framework across global Windows and AWS environments., • Develop and maintain Chef cookbooks and InSpec profiles to enforce compliance, configuration, and security baselines., • Integrate InSpec compliance testing within CI/CD pipelines (Jenkins, Bitbucket, GitHub Actions, etc.)., • Automate server build, configuration, and deployment processes for Windows and AWS infrastructure., • Collaborate with cross-functional teams (Windows, Linux, Cloud, Security) to ensure consistent engineering and automation standards., • Research and implement emerging automation, cloud, and security technologies to improve operational resilience.Essential Skills / Basic Qualifications, • Advanced experience with Chef DSL, cookbook development, and Chef InSpec profile creation., • Strong hands-on experience with AWS services (EC2, Systems Manager, Config, Security Hub, IAM)., • Proven ability to integrate automation and compliance tests into CI/CD pipelines., • Scripting proficiency in Ruby, PowerShell, or Python., • Deep understanding of server build, deployment, desired state configuration (DSC), and security hardening., • Practical experience with automation and configuration tools (Chef, Ansible, Terraform, Jenkins, etc.)., • Excellent written and verbal communication skills, working effectively in globally distributed teams.

McFall Recruitment are partnering with a Financial Services company seeking a pragmatic and experienced Head of Cyber Security Governance, Risk & Compliance to lead and evolve our global Information Security control framework. This pivotal role will shape the resilience, responsiveness, and maturity of our Information Security function across all regions and business units. Reporting directly to the Chief Information Security Officer (CISO), you’ll play a key leadership role in transforming Cyber Security —enhancing people, processes, and technology to protect the business and maintain operational resilience. What you’ll do • Lead the global Cyber Security risk management programme, driving best-in-class governance and compliance., • Develop and maintain cybersecurity policies, standards, and procedures aligned with regulatory requirements and business objectives., • Conduct risk assessments, manage control evaluations, and oversee treatment planning., • Embed cyber risk into enterprise risk frameworks through collaboration with global teams., • Oversee vendor risk management and ensure third-party compliance., • Chair and lead the Cyber Security Digital Resilience Forum., • Support the NIST maturity uplift programme and alignment with ISO 27001:2022., • Ensure compliance with key regulatory standards (e.g. DORA, GDPR, MAS, CPS230, SOX)., • Act as a trusted advisor to executives, boards, and regulators, providing clear, business-focused guidance., • Develop and maintain metrics and dashboards to monitor KRIs, control effectiveness, and compliance status. About you • Proven experience in Cyber Security leadership, ideally within financial services., • Deep understanding of global regulatory environments and financial sector risk frameworks., • Strong leadership and stakeholder engagement skills; able to communicate clearly across technical and non-technical audiences., • Hands-on experience managing global teams and priorities across time zones., • Relevant certifications such as CISM, CRISC, CISSP, ISO 27001 Lead Implementer/Auditor are highly desirable., • Methodical, analytical, and calm under pressure, with meticulous attention to detail., • Demonstrated ability to drive cultural change, improve processes, and uplift maturity levels.

IT Technical Project Lead London (Hybrid) Our Client is a globally recognised, successful bank who provide world-class services to various institutions and individuals. Offering a comprehensive range of retail and corporate financial services/products, this thriving business boasts over 10 million active customers in over 700 business locations. Due to business requirements, we are now looking to acquire the services of an experienced IT Technical Project Lead. • This is a hybrid role with 3 days in the office & 2 days from home This role oversees planning, executing, and implementing tech solutions within scope, budget, and according to timeline. This role connects technical teams with business stakeholders, ensuring quality, consistency, and alignment with IT and business strategies. Key Responsibilities: This role plays a pivotal role in ensuring the successful delivery of IT solutions by overseeing technical execution, managing cross-functional teams, and aligning technical outcomes with business goals. Below are the responsibilities grouped into relevant focus areas: Delivery Management • Oversee end-to-end delivery of technology solutions, from requirements gathering to deployment., • Define and manage delivery plans, timelines, and milestones in collaboration with project managers., • Provide technical direction and oversight to development team., • Ensure adherence to solution architecture, coding standards, and best practices., • Collaborate with Solution Architects to validate the feasibility and scalability of technical designs., • Coordinate work across cross-functional teams including developers, QA, business analysts, UI/UX designers, project managers, solution architect, process engineers, etc.,, • Act as the primary technical point of contact for business stakeholders and product owners., • Collaborating with Cyber Security team in vulnerability and code scan, ensure code quality checks, solutions are high-quality, secure, and scalable., • Promote agile and DevOps practices for faster, iterative delivery., • Coordinate knowledge transfer to operations/support teams., • Transition delivery for post-deployment support, solution performance monitoring, and post-launch issues resolution. Key Skills/Experience: Platform-Specific • Microsoft Power Platform (PowerApps, Power Automate, Dataverse): Understanding of custom app development, connectors, and governance., • Enterprise Tools: Experience with tools such as SharePoint, Dataverse, Dynamics 365, Azure DevOps. API Enterprise Service Bus and Integration Delivery & Project Management Experience • End-to-End Solution Delivery: Proven experience managing full project lifecycles from initiation to deployment., • Agile/Lean Delivery: Experience delivering in Agile environments, leading sprints, backlog grooming, and iterative releases., • Resource Planning: Managing cross-functional teams, assigning responsibilities, and optimizing team capacity., • Risk and Issue Management: Proactively identifying, managing, and mitigating issues and dependencies., • Budget & Cost Management: Experience managing delivery budgets and vendor contracts (if applicable). Leadership and Team Management • Team Leadership: Experience leading multi-disciplinary technical teams (developers, analysts, QA, DevOps, etc.,)., • Mentoring and Coaching: Providing guidance and support to junior team members or technical leads. Stakeholder & Communication Skills • Stakeholder Engagement: Ability to interact with and influence senior stakeholders, including C-level executives., • Business Acumen: Understands how technology impacts business outcomes and customer experience. Governance, Compliance & Quality • Testing & QA: Knowledge of testing strategies including unit, integration, UAT, and performance testing., • Audit and Documentation: Experience maintaining documentation, change logs, and audit trails. Technical Skills: • Software Development Lifecycle (SDLC): Understanding of waterfall, agile (Scrum), and hybrid methodologies., • Application Architecture: Knowledge of designing scalable, secure, and modular application architectures., • Integration & APIs: Experience with RESTful APIs, microservices, and system integration patterns., • Cloud Platforms: Experience with cloud services (e.g., Microsoft Azure, AWS, Google Cloud) including PaaS and SaaS offerings., • DevOps Practices: CI/CD pipelines, infrastructure as code, automated testing, and monitoring tools. The Curve Group is a dynamic Recruitment Services and Human Resources business with a mission to transform the working lives of the people and organisations we work with. We will retain your data for two years from the last point of contact, after which it will be securely deleted. You can view our full Privacy Policy here: ___You can view our full Privacy Policy here:

Enterprise Security Architect - Permanent - Hybrid (2 days in the office) - London - £100 - £115k per annum plus benefits Join our clients Enterprise Architecture (EA) Team as a foundational leader, shaping their security function This is a new and crucial role responsible for developing and maturing the company's cyber security strategy, roadmaps, and architecture. You will translate business goals into a robust security architecture, ensuring we meet our objectives securely and drive innovation. Key Responsibilities • Develop the cyber security strategy and architecture to support business and technology goals., • Create security roadmaps, principles, and standards to ensure secure-by-design delivery., • Provide architectural assurance, guidance, and mentorship to Solution and Technical Architects across the CIO department., • Collaborate closely with executive leadership, engineers, and product teams to deliver successful, secure outcomes., • Evaluate and recommend new cyber security technologies and oversee their implementation. What You'll Bring • Demonstrable experience as an Enterprise Architect for Security in a similar environment., • Strong strategic thinking and the energy to deliver practical, value-adding solutions., • Experience in modernising legacy estates and knowledge of contemporary, scalable methods., • Proficiency in architectural modelling (e.g., UML, ArchiMate) and best-practice use of architectural tools (ideally Bizzdesign)., • Excellent communication, negotiation, and influencing skills to drive company-wide change. What our client offers • A supportive, inclusive culture that trusts and invests in its people., • Hybrid working model (up to three days per week from home)., • 25 days holiday (with option to buy more)., • Work from anywhere in the world for up to two months per year., • Enhanced family-friendly leave and a range of other benefits (retail discounts, loans, etc.). Be the key change agent who drives best-practice security across our entire technology estate

Security Orchestration, Automation & Response (SOAR) Engineer | Palo Alto Cortex XSOAR, Python, Rest API's, Linux & Windows | Up to £1000 Inside | 2 Days p/ week in London We are seeking an experienced Security Orchestration, Automation & Response (SOAR) Engineer to strengthen cyber threat detection and automation capabilities within a leading financial organisation. This role combines hands-on technical expertise with strategic security automation and orchestration across modern platforms. You will work closely with detection, response, and engineering teams to design, build, and optimise security workflows — enabling faster, more effective incident response and reducing manual effort through automation. Key Responsibilities: • Develop and enhance security detections and automations across SOAR platforms (ideally Palo Alto Cortex XSOAR), • Create and maintain playbooks and integrations to improve incident response and operational efficiency, • Collaborate across teams to improve detection coverage and response workflows, • Monitor emerging threats and translate attacker TTPs into actionable detections and automated mitigations Key Skills & Experience: • Hands-on experience with Palo Alto Cortex XSOAR or other SOAR platforms, • Strong knowledge of threat detection and response engineering, • Familiarity with MITRE ATT&CK framework, • Proficiency in Python for automation and integration development, • Experience with query languages (KQL or similar), • Understanding of REST APIs and ability to develop and consume them, • Experience working in Azure environments, • Strong background in Windows, Linux, and macOS administration Security Orchestration, Automation & Response (SOAR) Engineer | Palo Alto Cortex XSOAR, Python, Rest API's, Linux & Windows | Up to £1000 Inside | 2 Days p/ week in London

Senior Penetration Tester -£300,000+ Total Package (£150,000 - £200,000 fixed) + Sign On + Bonus Entasis Partners are proud to be exclusively supporting a global organisation at the forefront of innovation in financial systems and high-performance computing. This is not your average security role. Our partner operates in a deeply technical, high-trust environment where the scale of data, the pace of experimentation, and the calibre of internal talent make for an exceptionally challenging and rewarding opportunity. With a newly developed central London site focused on next-generation research, this firm is seeking a Senior Penetration Tester to strengthen its already world-class internal security capability. The Opportunity This is a hands-on, highly autonomous role embedded within a specialist cyber function. You’ll be trusted to scope, execute, and deliver sophisticated penetration tests and control assessments across a range of technologies including Kubernetes, Jenkins, and Windows-based infrastructure. More than just finding issues, you’ll work in partnership with teams across the business to advise, remediate, and embed meaningful improvements. The environment is agile, collaborative, and engineered for depth not red tape. What You’ll Be Doing • Leading advanced penetration tests across infrastructure, applications, and DevOps pipelines, • Providing clear, actionable advice to technical and business stakeholders, • Assessing the effectiveness of existing security controls through hands-on testing, • Working closely with Detection, Risk and Compliance teams to provide assurance and technical insight, • Enhancing internal tools and frameworks to drive automation and assessment efficiency, • Coaching and supporting junior colleagues through knowledge sharing and collaboration What We’re Looking For You’ll bring deep technical experience, natural curiosity, and the confidence to challenge assumptions. You may have worked in financial services, or equally in fast-paced engineering environments but what matters is your capability and judgement. Must-haves include: • Strong penetration testing experience from planning to execution and reporting, • Understanding of vulnerability management and secure systems design, • Familiarity with DevSecOps tooling and scripting (e.g., Python, Jenkins, Ansible), • Strong grasp of how to assess and break technical controls — and explain fixes, • OSCP certification (required); CRT, OSEP or similar a strong bonus, • Clear, professional communication skills with both technical and non-technical teams Why Apply? • Exceptional total compensation ~£240,000+ package (base + discretionary bonus), • 30 days’ annual leave + flexible working environment, • 9% employer pension contribution, • Daily lunch allowance and on-site barista coffee, • Private healthcare and life assurance, • Monthly socials, company events, and modern informal culture, • Cycle-to-work scheme and premium office facilities This is an opportunity to test your skills at the very highest level with the tools, talent, and environment to match. To learn more or arrange a confidential conversation, please contact Entasis Partners directly.

Senior Cyber Architect Salary: £70,000 - £80,000 base DOE Remote/Home-based role with infrequent travel to client sites as and when required. MUST be eligible for UK Government Security Clearance. We’re seeking an experienced Senior Cyber Architect to join a fast-paced consulting engagement within a complex, high-impact technology environment. This isn’t a purely advisory position; it’s for someone who can design, build, and implement secure solutions across on-premise, cloud, and hybrid infrastructures. You’ll take ownership of key security projects, applying deep technical understanding to real-world challenges, and ensuring solutions are both secure and practical. We’re looking for someone who mirrors the blend of hands-on expertise and architectural thinking. If you thrive on solving complex challenges, guiding organisations on their secure-by-design journey, and working across diverse industries and technologies, this could be your next big move. What you’ll be doing as a Senior Cyber Architect: • Acting as a trusted advisor to clients, shaping secure security architecture solutions from concept through to implementation., • Designing and implementing security controls, frameworks, and technical solutions., • Designing and delivering security architecture across hybrid, cloud, and on-premises environments., • Navigating complex technical ecosystems that span operational tech, cloud, and on-premise systems., • Producing high-quality deliverables, from threat models and risk assessments to secure architecture blueprints., • Collaborating with cross-functional teams and clients, translating technical detail into business language., • Partnering with client teams, project managers, and technical specialists to deliver transformation programmes. We are looking for a Senior Cyber Architect who has experience: • Strong on-premise experience — especially in securing traditional infrastructure and understanding legacy system dependencies., • Proven hands-on experience in security architecture — not just advisory. You’ve designed, implemented, and delivered secure systems yourself (this is essential), • Background in security engineering, SecOps, pen testing, or other hands-on technical roles., • Excellent communication skills to engage both technical and non-technical audiences., • Adaptability to work across varied industries and technologies., • Experience in regulated or high-availability environments (e.g., aviation, manufacturing, critical infrastructure) is advantageous but not essential. Desirable certifications: • CISSP, CISM, or CISA., • SABSA, TOGAF, or other architecture certifications., • ISO 27001 Lead Auditor/Implementer., • Azure cloud certifications. Why join our client: You’ll be part of a forward-thinking consultancy where your expertise is valued, your ideas shape the future, and your work has a genuine impact. Expect to collaborate with leading organisations across multiple industries, tackle varied and exciting challenges and grow your career in an environment that encourages innovation and excellence. They have an excellent collaborative, people-first culture offering a fantastic place to work.

Harrington Starr are supporting a global financial services organisation to help them hire a Security Operations Manager to manage a hybrid in-house/ outsourced function. The role will involve providing both technical and strategic leadership. Key accountabilities involve: • Working with the CISO to help evolve the Sec Ops function, • Management of an in-house team and the outsourced provider, • Acting as the central POC\ escalation point for all major cyber incidents, • Collaborating with other cyber functions – GRC, architecture and engineering, • Working with stakeholders across the business – technical and non-technical, • Vendor management – including staying abreast of the latest tools, • A good knowledge of the current and evolving threat landscape You will need: • A good background in Security Operations\ Incident Response in a managerial or lead role, • Strong technical knowledge, • Demonstrable stakeholder management experience, • A technical background in infrastructure, security engineering or penetration testing preferred Please send your CV for immediate consideration.