We are Global IT Recruitment specialist that provides support to the clients across UK, Europe and Australia. We have an excellent job opportunity for you. Role Title: SIEM/Incident SME (Need Active DV Clearance) Location: Hybrid onsite in one of the following locations 2/3 days per week - Corsham, Portsmouth or Northallerton Duration: 6 months Role Description: Main Tech Skills required are ELK (Elastic, Logstash, Kibana) and Tanium The Cyber role is to join a growing security team responsible for designing, delivering and maintaining operational cybersecurity capabilities. Conducting pro-active, risk-based, protective monitoring on priority C4IS/networks to identify internal and external cyber-threats/attacks. This position involves a broad range of skills, including the development and mentoring of Junior Analysts, monitoring networks to actively remediate unauthorised activities. Your role Develop and integrate security event monitoring and incident management services. Respond to security incidents as they occur as part of an incident response team. Implement metrics and dashboards to give visibility of the Enterprise infrastructure. Use of the SOAR platform to assist with playbook automation and case management capabilities to streamline team processes and tools. Produce documentation to ensure the repeatability and standardisation of security operating procedures. Develop additional investigative methods using the SOC's software toolsets to enhance recognition opportunities for specific analysis. Maintain a baseline of system security according to latest threat intelligence and evolving trends. Participate in root cause analysis of incidents in conjunction with engineers across the enterprise. Provide Subject Matter Expertise (SME) on a broad range of information security standards and best practices. Offer strategic and tactical security guidance including valuation requirement of technical controls. Be part of the CRM process Liaise with the SOC engineers to maintain up-to-date dashboards of security alerts, to allow the organisation to better respond to an incident. Document, validate and create operational processes and procedures to help develop the SOC. Assist in identifying, prioritising, and coordinating the protection of critical cyber defence infrastructure and key resources. Build, install, configure, and test dedicated cyber defence hardware. Support Junior Analysts to manage SOC systems. Previous experience of Enterprise ICS/network architectures and technologies Experience and knowledge of SIEM solutions; having the ability to identify use cases and their creation, their deployment and tuning. Experience as a mentor/coach to Junior Analysts Your profile Previous experience of utilising the MITRE ATT&CK and Cyber Kill Chain frameworks Skilled in maintaining Microsoft directory services. Skilled in using virtualisation software. Knowledge of key security frameworks (eg ISO, NIST 800-53, 800-171, 800-172, C2M2) Excellent communication skills Experience of writing Defence/Government documentation Desirable Qualifications: Broad Spectrum Cyber Course (SANS SEC401 or SEC501 or equivalent) SIEM Design, Architecture and Analyst Course (SANS SEC455 or SEC555 or equivalent) Advanced Analyst Course (SANS SEC503 or equivalent)
May 17, 2024
Contractor
We are Global IT Recruitment specialist that provides support to the clients across UK, Europe and Australia. We have an excellent job opportunity for you. Role Title: SIEM/Incident SME (Need Active DV Clearance) Location: Hybrid onsite in one of the following locations 2/3 days per week - Corsham, Portsmouth or Northallerton Duration: 6 months Role Description: Main Tech Skills required are ELK (Elastic, Logstash, Kibana) and Tanium The Cyber role is to join a growing security team responsible for designing, delivering and maintaining operational cybersecurity capabilities. Conducting pro-active, risk-based, protective monitoring on priority C4IS/networks to identify internal and external cyber-threats/attacks. This position involves a broad range of skills, including the development and mentoring of Junior Analysts, monitoring networks to actively remediate unauthorised activities. Your role Develop and integrate security event monitoring and incident management services. Respond to security incidents as they occur as part of an incident response team. Implement metrics and dashboards to give visibility of the Enterprise infrastructure. Use of the SOAR platform to assist with playbook automation and case management capabilities to streamline team processes and tools. Produce documentation to ensure the repeatability and standardisation of security operating procedures. Develop additional investigative methods using the SOC's software toolsets to enhance recognition opportunities for specific analysis. Maintain a baseline of system security according to latest threat intelligence and evolving trends. Participate in root cause analysis of incidents in conjunction with engineers across the enterprise. Provide Subject Matter Expertise (SME) on a broad range of information security standards and best practices. Offer strategic and tactical security guidance including valuation requirement of technical controls. Be part of the CRM process Liaise with the SOC engineers to maintain up-to-date dashboards of security alerts, to allow the organisation to better respond to an incident. Document, validate and create operational processes and procedures to help develop the SOC. Assist in identifying, prioritising, and coordinating the protection of critical cyber defence infrastructure and key resources. Build, install, configure, and test dedicated cyber defence hardware. Support Junior Analysts to manage SOC systems. Previous experience of Enterprise ICS/network architectures and technologies Experience and knowledge of SIEM solutions; having the ability to identify use cases and their creation, their deployment and tuning. Experience as a mentor/coach to Junior Analysts Your profile Previous experience of utilising the MITRE ATT&CK and Cyber Kill Chain frameworks Skilled in maintaining Microsoft directory services. Skilled in using virtualisation software. Knowledge of key security frameworks (eg ISO, NIST 800-53, 800-171, 800-172, C2M2) Excellent communication skills Experience of writing Defence/Government documentation Desirable Qualifications: Broad Spectrum Cyber Course (SANS SEC401 or SEC501 or equivalent) SIEM Design, Architecture and Analyst Course (SANS SEC455 or SEC555 or equivalent) Advanced Analyst Course (SANS SEC503 or equivalent)
We are Centrica! We're so much more than an energy company. We're a family of brands revolutionising a cleaner, greener future. Working here is - we're powered by purpose. Together we can make an impact that will truly change tomorrow. Whether you're developing cutting-edge green tech, helping customers on the front line or simplifying operations behind the scenes. Your work here isn't just a job - it's a mission. We all play a vital role in energising a greener, fairer future . An opportunity to play your part We have an exciting opportunity for a Technology Risk Analyst in BG Services Business to help us to roll out an IT General Controls framework as we move towards an established control environment. The team operates as the first line of defence and is currently managing the implementation of an IT General Controls Framework. You will facilitate interactions between the Digital Technology Services team, BG Services and the BG operational controls team You will work collaboratively to ensure that the IT General Controls framework is introduced with consideration to our current risks and threats to create an established control environment to proactively manage our risk landscape. We have tailored our well-being & benefits package around our employees as follows: Competitive salary and bonus potential Employee Energy Allowance at 15% of the government price cap Pension scheme Company Funded Healthcare Plan 25 days holiday allowance, plus public holidays, and the option to buy up to 5 additional days Excellent range of flexible benefits, including technology vouchers, electric car lease scheme & travel insurance Location : You can work in Windsor/home; we have people working all over the UK but also a range of office locations. Accountabilities Assist in implementing the Technology risk and Controls framework and ensures timely assessment and treatment of security risks Ensure Technology risks are either treated or accepted in accordance with the risk appetite Works with the IT teams to identify and assess Technology risks including Cyber and InfoSec risks Ensure periodic Technology risk assessments of key services, third parties and regulatory commitments are performed, and remediation plans are monitored Ensure services are assessed and classified based on their Confidentiality, Integrity, and Availability Work with the IT/OT teams to understand their key Technology risks and agree the actions to mitigate or monitored and improve their controls Produce the quarterly IT Risk submission for the business units and working with Group level risk functions on Technology risk Inform senior leadership of risks and recommendations in non-technical terms, considering cost/benefit, to ensure security of Information Systems Support Legal and Compliance teams e.g. Data Protection and Privacy, as regards to Technology risks Understand the external security environment and emerging trends to support Technology risk management What we need from you Strong knowledge of Technology risk and Control assessment methods/ Technology Audit Strong knowledge of Information Security technologies, such as identity and access management, encryption, and multi-factor authentication Understanding of power utilities, retail energy, and oil & gas industry trends and emerging threats would be useful but not essential Ability to draw upon external network to understand emerging Cyber Security threats and events Knowledge of internal and/or external regulatory policies, standards, procedures, and controls (e.g., COBIT, COSO, NIST, ISO27xx) Ability to drive technical consensus and facilitate agreements with challenging stakeholders Ability to understand business visions and strategy Strong communication (oral and written) and conflict management skills Education/ Certification: CISA, CRISC or other similar qualification (desirable) Our commitment to diversity We are proud to be recognised as a disability-confident employer. Our customers come from a variety of different backgrounds, and so do we. We hire great people from all walks of life, not just because it's the right thing to do, but because it makes our company stronger. We will continue championing inclusivity while investing in our local communities to create a better, more sustainable world for everyone. We are incredibly proud to have been recognised by The Times for being one of the Top 50 Employers for Women. Our people are the beating heart of our business. We are incredibly proud of our commitment to being FlexFirst. From childcare to furry friends, we listened to our people and understood that they work best when they are comfortable and have a flexible working model that suits their individual needs.
May 17, 2024
Full time
We are Centrica! We're so much more than an energy company. We're a family of brands revolutionising a cleaner, greener future. Working here is - we're powered by purpose. Together we can make an impact that will truly change tomorrow. Whether you're developing cutting-edge green tech, helping customers on the front line or simplifying operations behind the scenes. Your work here isn't just a job - it's a mission. We all play a vital role in energising a greener, fairer future . An opportunity to play your part We have an exciting opportunity for a Technology Risk Analyst in BG Services Business to help us to roll out an IT General Controls framework as we move towards an established control environment. The team operates as the first line of defence and is currently managing the implementation of an IT General Controls Framework. You will facilitate interactions between the Digital Technology Services team, BG Services and the BG operational controls team You will work collaboratively to ensure that the IT General Controls framework is introduced with consideration to our current risks and threats to create an established control environment to proactively manage our risk landscape. We have tailored our well-being & benefits package around our employees as follows: Competitive salary and bonus potential Employee Energy Allowance at 15% of the government price cap Pension scheme Company Funded Healthcare Plan 25 days holiday allowance, plus public holidays, and the option to buy up to 5 additional days Excellent range of flexible benefits, including technology vouchers, electric car lease scheme & travel insurance Location : You can work in Windsor/home; we have people working all over the UK but also a range of office locations. Accountabilities Assist in implementing the Technology risk and Controls framework and ensures timely assessment and treatment of security risks Ensure Technology risks are either treated or accepted in accordance with the risk appetite Works with the IT teams to identify and assess Technology risks including Cyber and InfoSec risks Ensure periodic Technology risk assessments of key services, third parties and regulatory commitments are performed, and remediation plans are monitored Ensure services are assessed and classified based on their Confidentiality, Integrity, and Availability Work with the IT/OT teams to understand their key Technology risks and agree the actions to mitigate or monitored and improve their controls Produce the quarterly IT Risk submission for the business units and working with Group level risk functions on Technology risk Inform senior leadership of risks and recommendations in non-technical terms, considering cost/benefit, to ensure security of Information Systems Support Legal and Compliance teams e.g. Data Protection and Privacy, as regards to Technology risks Understand the external security environment and emerging trends to support Technology risk management What we need from you Strong knowledge of Technology risk and Control assessment methods/ Technology Audit Strong knowledge of Information Security technologies, such as identity and access management, encryption, and multi-factor authentication Understanding of power utilities, retail energy, and oil & gas industry trends and emerging threats would be useful but not essential Ability to draw upon external network to understand emerging Cyber Security threats and events Knowledge of internal and/or external regulatory policies, standards, procedures, and controls (e.g., COBIT, COSO, NIST, ISO27xx) Ability to drive technical consensus and facilitate agreements with challenging stakeholders Ability to understand business visions and strategy Strong communication (oral and written) and conflict management skills Education/ Certification: CISA, CRISC or other similar qualification (desirable) Our commitment to diversity We are proud to be recognised as a disability-confident employer. Our customers come from a variety of different backgrounds, and so do we. We hire great people from all walks of life, not just because it's the right thing to do, but because it makes our company stronger. We will continue championing inclusivity while investing in our local communities to create a better, more sustainable world for everyone. We are incredibly proud to have been recognised by The Times for being one of the Top 50 Employers for Women. Our people are the beating heart of our business. We are incredibly proud of our commitment to being FlexFirst. From childcare to furry friends, we listened to our people and understood that they work best when they are comfortable and have a flexible working model that suits their individual needs.
Employer Description: For more than 30 years, our Charterhouse teams have been pushing tech boundaries and exceeding expectations. For the clients we look after, this means delivering integrated technology solutions that drive their business success. Our reputation as a multi-award-winning solutions integrator of cloud, connectivity, networking, mobile and security solutions speaks for itself. Just as our solutions give our customers the freedom and assurance they need, we have made sure growth is a given - professionally and personally - so our colleagues can thrive.Pentesec, part of the Charterhouse Group, is our multi-award-winning cyber security MSSP. Providing SOC services, cyber security consultancy and training to organisations of all sizes, they deliver a range of Managed Security Services including Managed Detection and Response, Managed Firewall, Managed Intrusion Prevention and more to our customers.Our business is driven by our four company values (BOLD):. be yourself; own it; love what you do; do the right thing.As a member the SOC team you will provide security analysis of customer security events, monitor, manage and support highly secure customer environments with a focus on security event management, end-point security and next-generation intrusion prevention / firewalling for a portfolio of small and medium businesses. Vacancy Description: performing level 1 SOC analysis on tickets that are triggered by our various platforms of Rapid 7, Sentinal 1 and Microsoft Defender; performing health checks on customer systems and escalating issues according to procedures; incident response via ticket system; dealing with Customer inbound calls, logging tickets, assigning tickets, chasing responses through to closure; working with automation tools and our Level 3 analyst to assist with tuning out false alerts and ensuring efficiency. The Apprentice will work closely with colleagues across the business, and we aim to foster a collaborative work environment for ; Desirable Skills: We are looking for candidates with: an active interest in working in Cyber Security; excellent communication skills, both written and verbal; a self-starter with the ability to work productively in a remote working environment; fluency in Microsoft Office suite (Outlook, Excel, Word, PowerPoint, etc); an appropriate working environment in your home; availability to travel as required to visit customers and attend events to promote Charterhouse. Personal Qualities: Interactive approach to all tasks Great problem Solver Eager to learn and grow Entry Requirements: An A-Level in ICT OR an International Baccalaureate at Level 3 in ICT OR a Level 3 apprenticeship in a similar subject OR a BTEC Extended Diploma in IT (180 credits) You may also have a combination of qualifications and experience which demonstrate the minimum foundation needed for the programme. In this instance you could still be considered for the programme.If you hold international equivalents of the above qualifications, at the time of your application you must be able to provide an official document that states how your international qualifications compare to the UK ; For more information please visit the UK ENIC website. Benefits: a competitive Apprentice salary; a company laptop; a positive, communicative, flexible and supportive work environment, with regular feedback and reviews; monthly company updates via Teams, including strategy updates and Q&A; a working environment where active participation and input are encouraged; regular communication on a company, team and one-to-one basis; good employee benefits package (including life assurance, pension, EAP) 25 days' holiday plus birthday holiday. Onsite Gym Future Prospects: Salary package will increase after completion of apprenticeship Chance to become team lead and grow your own team Chance to work with great clients and be taken out by them Need to be able to attend company event on June 19th & 20th 2025 Important Information: Our apprenticeships are the perfect way to gain new skills, earn while you learn, and launch yourself into an exciting future. With over 30,000 successful apprenticeship graduates, we're a top 50 training provider, dedicated to helping you ; Apply now!
May 17, 2024
Full time
Employer Description: For more than 30 years, our Charterhouse teams have been pushing tech boundaries and exceeding expectations. For the clients we look after, this means delivering integrated technology solutions that drive their business success. Our reputation as a multi-award-winning solutions integrator of cloud, connectivity, networking, mobile and security solutions speaks for itself. Just as our solutions give our customers the freedom and assurance they need, we have made sure growth is a given - professionally and personally - so our colleagues can thrive.Pentesec, part of the Charterhouse Group, is our multi-award-winning cyber security MSSP. Providing SOC services, cyber security consultancy and training to organisations of all sizes, they deliver a range of Managed Security Services including Managed Detection and Response, Managed Firewall, Managed Intrusion Prevention and more to our customers.Our business is driven by our four company values (BOLD):. be yourself; own it; love what you do; do the right thing.As a member the SOC team you will provide security analysis of customer security events, monitor, manage and support highly secure customer environments with a focus on security event management, end-point security and next-generation intrusion prevention / firewalling for a portfolio of small and medium businesses. Vacancy Description: performing level 1 SOC analysis on tickets that are triggered by our various platforms of Rapid 7, Sentinal 1 and Microsoft Defender; performing health checks on customer systems and escalating issues according to procedures; incident response via ticket system; dealing with Customer inbound calls, logging tickets, assigning tickets, chasing responses through to closure; working with automation tools and our Level 3 analyst to assist with tuning out false alerts and ensuring efficiency. The Apprentice will work closely with colleagues across the business, and we aim to foster a collaborative work environment for ; Desirable Skills: We are looking for candidates with: an active interest in working in Cyber Security; excellent communication skills, both written and verbal; a self-starter with the ability to work productively in a remote working environment; fluency in Microsoft Office suite (Outlook, Excel, Word, PowerPoint, etc); an appropriate working environment in your home; availability to travel as required to visit customers and attend events to promote Charterhouse. Personal Qualities: Interactive approach to all tasks Great problem Solver Eager to learn and grow Entry Requirements: An A-Level in ICT OR an International Baccalaureate at Level 3 in ICT OR a Level 3 apprenticeship in a similar subject OR a BTEC Extended Diploma in IT (180 credits) You may also have a combination of qualifications and experience which demonstrate the minimum foundation needed for the programme. In this instance you could still be considered for the programme.If you hold international equivalents of the above qualifications, at the time of your application you must be able to provide an official document that states how your international qualifications compare to the UK ; For more information please visit the UK ENIC website. Benefits: a competitive Apprentice salary; a company laptop; a positive, communicative, flexible and supportive work environment, with regular feedback and reviews; monthly company updates via Teams, including strategy updates and Q&A; a working environment where active participation and input are encouraged; regular communication on a company, team and one-to-one basis; good employee benefits package (including life assurance, pension, EAP) 25 days' holiday plus birthday holiday. Onsite Gym Future Prospects: Salary package will increase after completion of apprenticeship Chance to become team lead and grow your own team Chance to work with great clients and be taken out by them Need to be able to attend company event on June 19th & 20th 2025 Important Information: Our apprenticeships are the perfect way to gain new skills, earn while you learn, and launch yourself into an exciting future. With over 30,000 successful apprenticeship graduates, we're a top 50 training provider, dedicated to helping you ; Apply now!
SIEM or Cyber Engineer Are you a skilled SIEM Engineer or Cyber Security professional with strong SIEM experience looking to make a real impact? We have an exciting opportunity for a talented individual to join a security team protecting country critical systems in Aerospace and Defence clients based in Hemel Hempstead with the flexibility of working from home 2 days a week! In this SIEM role, you'll play a vital role in: Designing and implementing best-in-class SIEM solutions (Splunk and/or Sentinel) to fortify our clients' security posture, with a focus on Defence and National Security. Crafting and delivering seamless onboarding experiences for our Managed SOC clients. Providing expert engineering support to analysts for efficient threat detection and response. Developing and maintaining robust detection rules to stay ahead of evolving threats. Actively participating in the design and optimization of security platforms. Im looking for Cyber / SIEM professional with a strong skillset in: SIEM or Cyber Security engineering: Deep understanding of security concepts and experience with SIEM solutions (Splunk and/or Sentinel) is a must. Cloud security expertise: A solid grasp of cloud technology to navigate and protect cloud environments is essential. Security design principles: Experience with Security Design Documents (HLD/LLD) in the SOC space is a plus. Scripting proficiency: Automate tasks and boost efficiency with scripting languages like Bash, Python, or PowerShell. Problem-solving prowess: A proven track record of resolving complex security engineering issues. Log management knowledge: Experience with log filtering is a valuable asset. To Secure the role you must be able to pass High-level security clearance and UK nationality is required for this role. If you're a skilled SIEM Engineer or Cyber Security professional who thrives in a dynamic environment and is passionate about safeguarding our nation's critical infrastructure, we want to hear from you! If you are interested please apply ASAP. The People Network is an employment agency and will respond to all applicants within three - five working days. If you do not hear within these timescales please feel free to get in touch.
May 17, 2024
Full time
SIEM or Cyber Engineer Are you a skilled SIEM Engineer or Cyber Security professional with strong SIEM experience looking to make a real impact? We have an exciting opportunity for a talented individual to join a security team protecting country critical systems in Aerospace and Defence clients based in Hemel Hempstead with the flexibility of working from home 2 days a week! In this SIEM role, you'll play a vital role in: Designing and implementing best-in-class SIEM solutions (Splunk and/or Sentinel) to fortify our clients' security posture, with a focus on Defence and National Security. Crafting and delivering seamless onboarding experiences for our Managed SOC clients. Providing expert engineering support to analysts for efficient threat detection and response. Developing and maintaining robust detection rules to stay ahead of evolving threats. Actively participating in the design and optimization of security platforms. Im looking for Cyber / SIEM professional with a strong skillset in: SIEM or Cyber Security engineering: Deep understanding of security concepts and experience with SIEM solutions (Splunk and/or Sentinel) is a must. Cloud security expertise: A solid grasp of cloud technology to navigate and protect cloud environments is essential. Security design principles: Experience with Security Design Documents (HLD/LLD) in the SOC space is a plus. Scripting proficiency: Automate tasks and boost efficiency with scripting languages like Bash, Python, or PowerShell. Problem-solving prowess: A proven track record of resolving complex security engineering issues. Log management knowledge: Experience with log filtering is a valuable asset. To Secure the role you must be able to pass High-level security clearance and UK nationality is required for this role. If you're a skilled SIEM Engineer or Cyber Security professional who thrives in a dynamic environment and is passionate about safeguarding our nation's critical infrastructure, we want to hear from you! If you are interested please apply ASAP. The People Network is an employment agency and will respond to all applicants within three - five working days. If you do not hear within these timescales please feel free to get in touch.
Job title: Lead Cyber Risk Analyst Location: Various - We offer a range of flexible working arrangements - please speak to your recruiter about the options for this role. Salary: £60,000+ Depending on experience What you'll be doing: Lead on developing the risk management data strategy; identifying potential data sources and approaches to connecting and exploiting the data to support risk analysis Conduct impact modelling to assess potential financial, operational, and reputational impacts to the company in the event of a major cyber incident Develop and present strategic risk reports to senior management, providing clear insights and recommendations Collaborate across the Group to lead risk analysis efforts and provide subject matter expertise (SME) guidance to different sectors Work closely with other cybersecurity teams to understand threat landscapes, vulnerabilities, and impact assessments Stay abreast of the latest cybersecurity trends, threats, and risk quantification techniques Contribute to the continuous improvement of the cybersecurity risk management framework Act as a delegate for the Head of Cyber Security Risk in various capacities as needed Your skills and experiences: Essential: Robust understanding of risk analysis methodologies, frameworks and theories (FAIR, NIST) Previous experience working in large and complex organisations Ability to effectively write high quality reports and presentations Advanced user with Microsoft Excel Bachelor's degree level qualification or above in risk management, mathematics, cyber security or another STEM subject Desirable: Previous experience working in corporate risk management or security consultancy roles Experience working with defence or national security organisations CISSP, CRISC, CISM or other advanced cyber security certification Benefits: You'll receive benefits including a competitive pension scheme, enhanced annual leave allowance and a Company contributed Share Incentive Plan. You'll also have access to additional benefits such as flexible working, an employee assistance programme, Cycle2work and employee discounts - you may also be eligible for an annual incentive. The CISO Team: Working for one of the largest defence companies in the world, this exciting company within the CISO's team, reporting to the Head of Cyber Security Risk within the risk Cyber function is now available. The Lead Cyber Risk Analyst will be pivotal in enhancing our cybersecurity posture through both quantitative and qualitative risk analysis. The position will allow you to build on your technical career working alongside various stakeholders and partners across BAE Systems and the wider Defence industry. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome candidates from all backgrounds and particularly from sections of the community who are currently underrepresented within our industry, including women, ethnic minorities, people with disabilities and LGBTQ+ individuals. We also want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments." Please be aware that many roles working for BAE Systems will be subject to both security and export control restrictions. These restrictions mean that factors including your nationality, any previous nationalities you have held, and your place of birth may limit those roles you can perform for the organisation. We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible. Closing Date: 16th May 2024
May 17, 2024
Full time
Job title: Lead Cyber Risk Analyst Location: Various - We offer a range of flexible working arrangements - please speak to your recruiter about the options for this role. Salary: £60,000+ Depending on experience What you'll be doing: Lead on developing the risk management data strategy; identifying potential data sources and approaches to connecting and exploiting the data to support risk analysis Conduct impact modelling to assess potential financial, operational, and reputational impacts to the company in the event of a major cyber incident Develop and present strategic risk reports to senior management, providing clear insights and recommendations Collaborate across the Group to lead risk analysis efforts and provide subject matter expertise (SME) guidance to different sectors Work closely with other cybersecurity teams to understand threat landscapes, vulnerabilities, and impact assessments Stay abreast of the latest cybersecurity trends, threats, and risk quantification techniques Contribute to the continuous improvement of the cybersecurity risk management framework Act as a delegate for the Head of Cyber Security Risk in various capacities as needed Your skills and experiences: Essential: Robust understanding of risk analysis methodologies, frameworks and theories (FAIR, NIST) Previous experience working in large and complex organisations Ability to effectively write high quality reports and presentations Advanced user with Microsoft Excel Bachelor's degree level qualification or above in risk management, mathematics, cyber security or another STEM subject Desirable: Previous experience working in corporate risk management or security consultancy roles Experience working with defence or national security organisations CISSP, CRISC, CISM or other advanced cyber security certification Benefits: You'll receive benefits including a competitive pension scheme, enhanced annual leave allowance and a Company contributed Share Incentive Plan. You'll also have access to additional benefits such as flexible working, an employee assistance programme, Cycle2work and employee discounts - you may also be eligible for an annual incentive. The CISO Team: Working for one of the largest defence companies in the world, this exciting company within the CISO's team, reporting to the Head of Cyber Security Risk within the risk Cyber function is now available. The Lead Cyber Risk Analyst will be pivotal in enhancing our cybersecurity posture through both quantitative and qualitative risk analysis. The position will allow you to build on your technical career working alongside various stakeholders and partners across BAE Systems and the wider Defence industry. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome candidates from all backgrounds and particularly from sections of the community who are currently underrepresented within our industry, including women, ethnic minorities, people with disabilities and LGBTQ+ individuals. We also want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments." Please be aware that many roles working for BAE Systems will be subject to both security and export control restrictions. These restrictions mean that factors including your nationality, any previous nationalities you have held, and your place of birth may limit those roles you can perform for the organisation. We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible. Closing Date: 16th May 2024
Information Services and Security have a vital role to play in a crucial national mission. We're here to enable the organisation to deliver through the use of technology. As AWE transforms itself to meet the needs of the UK's next-generation nuclear deterrent, we need to adapt to deliver data-driven decision making, flexible and future-proofed IT services, adaptable cyber security, support to a multi-billion Pound building programme, and many more. The scale might be daunting to some, but you'll find it stimulating. We've got a long journey that we've only just started and we're looking for motivated people who can take us in the right direction. Your role will contribute directly to that shared mission. We won't deceive you, in some areas we're starting from a low base, but within ten years this organisation will look very different, and you can help make that happen. This is a role where you'll contribute to a legacy of national security for decades to come. So come and join us The Business Analyst role takes responsibility for investigative work to determine business requirements and specify effective business processes, through improvements in information systems, information management, practices, procedures, and organisation change. They select, adopt and adapt appropriate business analysis methods, tools and techniques; selecting appropriately from predictive (plan-driven) approaches or adaptive (iterative/agile) approaches. The BA collaborates with stakeholders at all levels, in the conduct of investigations for strategy studies, business requirements specifications and feasibility studies. They prepare business cases which define potential benefits, options for achieving these benefits through development of new or changed processes, and associated business risks. The Business Analyst role forms part of a pooled resource with a reporting line into the IS BA Team Lead and task-managed by an IS PM. Location - Reading area. Although there are opportunities to work from home occasionally you will be required to travel to site as per business demands. Salary - £Negotiable depending on experience As part of our People Promise, AWE (one of the best 25 big companies to work for in the UK) has a range of benefits to suit you. These include: Time to recharge your batteries with 270 hours of annual leave (plus every other Friday off work) Consideration for flexible working arrangements so that your work may fit in with your lifestyle. Just let us know on your application if you wish to work part time Opportunities for Professional Career Development that include funding for the annual membership of a relevant professional body, access to mentors and training Employee Assistance Programme and Occupational Health Services A generous defined contribution Group Personal Pension (we will pay between 9% and 13% of your pensionable pay depending on your own contribution) Life Assurance Discounts - access to savings on a wide range of everyday spending Special Leave Policy including paid time off for volunteering, public service (including reserve forces) and caring for your family A host of voluntary & core benefits to suit your health and wellbeing - more information available on our careers site Key Accountabilities: Ensuring the business requirements are defined and addressed. Identifying and evaluating relevant solutions to business problems. Work with the BRMs to assure the realisation of business benefits. Maintain good knowledge of IS Governance and IS processes; specifically the front end and delivery processes. Maintain good overall understanding of AWE Business and Business Strategy and if appropriate specific areas of the business. Maintain and promote high personal standards in environment, safety, health, security and quality and be a great team player. Additional accountabilities for this job profile may be defined and appointed through the Chief Engineer Management Arrangements, with appointees listed within the Company Design Authorities and Technical Authorities, as held in the company management system. Key Responsibilities: Develop Request Brief documentation that clearly defines the business issue, need for change and recommended approaches, for presentation to IS Governance Boards (including Front End Governance Board (FEGB), Delivery Governance Board (DGB . Provide scoping services to help clarify business problems, objectives and potential solutions by using appropriate business analysis techniques including: Data Analysis, Process Analysis, Business Case Assessments and Root Cause Analysis. Elicit and validate requirements through the effective use of requirements gathering workshops and resolve any complex requirement conflicts through effective stakeholder engagement. Work with the BRMs and Delivery Managers to identify stakeholders who are affected by a proposed initiative or who share a common business need. Work closely with IS Architects to identify and evaluate potential solutions and also to validate the recommended solution addresses the business requirements. If appropriate, identify and document project risks, issues, assumptions and dependencies and undertake impact analysis. The Company may require you to fulfil any other reasonable duties aligned to your position from time to time in line with business needs. Essential skills: Experience delivering BA artefacts at pace to concurrent projects or programmes: Work Package and Problem Statement definition Impact Analysis, Gap analysis, Root cause Analysis Definition of Scope and Objectives, Stakeholder mapping RAID development Requirements Management: elicitation, documentation, validation, prioritisation, review and sign-off Workshop facilitation, stakeholder 121s, questionnaire creation, focus groups Functional and Non-Functional Requirements definition: Functional Breakdown Structure, High and Low-level Requirements definition, User stories and Acceptance criteria; Requirements Catalogue, Business Rules, Wireframing, Business Context Diagrams, Business Process Modelling and Mapping; Business Process Re-engineering Solution assessment and validation Input to Release and Launch planning; User Training and Education strategies Definition of MVPs, KPIs and metrics for Financial and Operational Benefits Realisation Good Stakeholder Management and Communication skills Experience delivering work-packages at pace in a highly regulated, change-focussed environment Desirable skills Professional certification e.g BCS International Diploma is Business Analysis; IIBA CBAP or equivalent work experience Familiarity with Project Management techniques Familiarity with Waterfall and Agile Delivery methodologies Experience with Sharepoint, DevOps, Jira Holds or willing to undergo UKSV SC/ DV clearance All Candidates must be willing and able to obtain and maintain the necessary security clearance for the role.
May 16, 2024
Full time
Information Services and Security have a vital role to play in a crucial national mission. We're here to enable the organisation to deliver through the use of technology. As AWE transforms itself to meet the needs of the UK's next-generation nuclear deterrent, we need to adapt to deliver data-driven decision making, flexible and future-proofed IT services, adaptable cyber security, support to a multi-billion Pound building programme, and many more. The scale might be daunting to some, but you'll find it stimulating. We've got a long journey that we've only just started and we're looking for motivated people who can take us in the right direction. Your role will contribute directly to that shared mission. We won't deceive you, in some areas we're starting from a low base, but within ten years this organisation will look very different, and you can help make that happen. This is a role where you'll contribute to a legacy of national security for decades to come. So come and join us The Business Analyst role takes responsibility for investigative work to determine business requirements and specify effective business processes, through improvements in information systems, information management, practices, procedures, and organisation change. They select, adopt and adapt appropriate business analysis methods, tools and techniques; selecting appropriately from predictive (plan-driven) approaches or adaptive (iterative/agile) approaches. The BA collaborates with stakeholders at all levels, in the conduct of investigations for strategy studies, business requirements specifications and feasibility studies. They prepare business cases which define potential benefits, options for achieving these benefits through development of new or changed processes, and associated business risks. The Business Analyst role forms part of a pooled resource with a reporting line into the IS BA Team Lead and task-managed by an IS PM. Location - Reading area. Although there are opportunities to work from home occasionally you will be required to travel to site as per business demands. Salary - £Negotiable depending on experience As part of our People Promise, AWE (one of the best 25 big companies to work for in the UK) has a range of benefits to suit you. These include: Time to recharge your batteries with 270 hours of annual leave (plus every other Friday off work) Consideration for flexible working arrangements so that your work may fit in with your lifestyle. Just let us know on your application if you wish to work part time Opportunities for Professional Career Development that include funding for the annual membership of a relevant professional body, access to mentors and training Employee Assistance Programme and Occupational Health Services A generous defined contribution Group Personal Pension (we will pay between 9% and 13% of your pensionable pay depending on your own contribution) Life Assurance Discounts - access to savings on a wide range of everyday spending Special Leave Policy including paid time off for volunteering, public service (including reserve forces) and caring for your family A host of voluntary & core benefits to suit your health and wellbeing - more information available on our careers site Key Accountabilities: Ensuring the business requirements are defined and addressed. Identifying and evaluating relevant solutions to business problems. Work with the BRMs to assure the realisation of business benefits. Maintain good knowledge of IS Governance and IS processes; specifically the front end and delivery processes. Maintain good overall understanding of AWE Business and Business Strategy and if appropriate specific areas of the business. Maintain and promote high personal standards in environment, safety, health, security and quality and be a great team player. Additional accountabilities for this job profile may be defined and appointed through the Chief Engineer Management Arrangements, with appointees listed within the Company Design Authorities and Technical Authorities, as held in the company management system. Key Responsibilities: Develop Request Brief documentation that clearly defines the business issue, need for change and recommended approaches, for presentation to IS Governance Boards (including Front End Governance Board (FEGB), Delivery Governance Board (DGB . Provide scoping services to help clarify business problems, objectives and potential solutions by using appropriate business analysis techniques including: Data Analysis, Process Analysis, Business Case Assessments and Root Cause Analysis. Elicit and validate requirements through the effective use of requirements gathering workshops and resolve any complex requirement conflicts through effective stakeholder engagement. Work with the BRMs and Delivery Managers to identify stakeholders who are affected by a proposed initiative or who share a common business need. Work closely with IS Architects to identify and evaluate potential solutions and also to validate the recommended solution addresses the business requirements. If appropriate, identify and document project risks, issues, assumptions and dependencies and undertake impact analysis. The Company may require you to fulfil any other reasonable duties aligned to your position from time to time in line with business needs. Essential skills: Experience delivering BA artefacts at pace to concurrent projects or programmes: Work Package and Problem Statement definition Impact Analysis, Gap analysis, Root cause Analysis Definition of Scope and Objectives, Stakeholder mapping RAID development Requirements Management: elicitation, documentation, validation, prioritisation, review and sign-off Workshop facilitation, stakeholder 121s, questionnaire creation, focus groups Functional and Non-Functional Requirements definition: Functional Breakdown Structure, High and Low-level Requirements definition, User stories and Acceptance criteria; Requirements Catalogue, Business Rules, Wireframing, Business Context Diagrams, Business Process Modelling and Mapping; Business Process Re-engineering Solution assessment and validation Input to Release and Launch planning; User Training and Education strategies Definition of MVPs, KPIs and metrics for Financial and Operational Benefits Realisation Good Stakeholder Management and Communication skills Experience delivering work-packages at pace in a highly regulated, change-focussed environment Desirable skills Professional certification e.g BCS International Diploma is Business Analysis; IIBA CBAP or equivalent work experience Familiarity with Project Management techniques Familiarity with Waterfall and Agile Delivery methodologies Experience with Sharepoint, DevOps, Jira Holds or willing to undergo UKSV SC/ DV clearance All Candidates must be willing and able to obtain and maintain the necessary security clearance for the role.
The demand for newly trained and qualified Cyber Security professionals has never been greater and this boasts excellent opportunities for growth amongst other benefits; due to the fact that companies across the globe try to protect themselves from an increase in cyber attacks We can help you develop the skills alongside industry certifications employers are looking for and launch your new career in Cyber Security. Newto Training can support you at any stage of your career journey whether you're new to the industry or looking to exchange your skills, this Cyber Security course is designed to get you role-ready if you're considering a career in Cyber Security. This is a training course which leads to guaranteed interviews upon completion. Fees apply. Within our Cyber Security training programme you will cover the following certifications: CompTIA Network+: Network+ certifies the essential skills needed to confidently design, configure, manage and troubleshoot any wired and wireless devices. CompTIA Security+: Security+ provides a global benchmark for best practices in IT network and operational security, one of the fastest-growing fields in IT. Microsoft Azure Foundations.: This provides you with the fundamental knowledge of cloud concepts, along with Azure services, workloads, security, privacy and support. CompTIA CySA+ Cybersecurity Analyst (CySA+): applies behavioral analytics to the IT security field to improve the overall state of IT security. CompTIA PenTest+: CompTIA PenTest+ is for intermediate level cybersecurity professionals who are tasked with penetration testing to manage vulnerabilities on a network. Upon completion of your course we'll put you in touch with our partner companies to get you interviews for a role in I.T. Course cost - £1795, or, £179.50 per month No prior industry experience required - No matter your background, previous studies or work history - if you think you have the base-line skills needed then we can help you launch the career you want. APPLY NOW for more information.
May 16, 2024
Full time
The demand for newly trained and qualified Cyber Security professionals has never been greater and this boasts excellent opportunities for growth amongst other benefits; due to the fact that companies across the globe try to protect themselves from an increase in cyber attacks We can help you develop the skills alongside industry certifications employers are looking for and launch your new career in Cyber Security. Newto Training can support you at any stage of your career journey whether you're new to the industry or looking to exchange your skills, this Cyber Security course is designed to get you role-ready if you're considering a career in Cyber Security. This is a training course which leads to guaranteed interviews upon completion. Fees apply. Within our Cyber Security training programme you will cover the following certifications: CompTIA Network+: Network+ certifies the essential skills needed to confidently design, configure, manage and troubleshoot any wired and wireless devices. CompTIA Security+: Security+ provides a global benchmark for best practices in IT network and operational security, one of the fastest-growing fields in IT. Microsoft Azure Foundations.: This provides you with the fundamental knowledge of cloud concepts, along with Azure services, workloads, security, privacy and support. CompTIA CySA+ Cybersecurity Analyst (CySA+): applies behavioral analytics to the IT security field to improve the overall state of IT security. CompTIA PenTest+: CompTIA PenTest+ is for intermediate level cybersecurity professionals who are tasked with penetration testing to manage vulnerabilities on a network. Upon completion of your course we'll put you in touch with our partner companies to get you interviews for a role in I.T. Course cost - £1795, or, £179.50 per month No prior industry experience required - No matter your background, previous studies or work history - if you think you have the base-line skills needed then we can help you launch the career you want. APPLY NOW for more information.
At Direct Line Group, insurance is just the start. Combining decades of industry experience with talented people in every field from data, technology, customer care and auto repair, to HR, finance and procurement , we're a customer-obsessed market powerhouse. And we all work together to be brilliant for customers, every single day. We're evolving, to be a more digitally-focused data-driven insurance company of the future - and your unique talent, skills and ideas can drive our success. Like us, you thrive on collaboration, exploration and innovation. And like you, we take tech seriously. That's why we're embracing the move to a more digital, flexible world. With constant investment in the newest tools, programmes and equipment for our teams, it all adds up to creating the best possible user experience for customers. And a great career for you. Join us. Own the evolution. We have an exciting opportunity for a Senior Security Operations Analyst to join our re-energised Cyber Defence team! Reporting into the Cyber Defence Security Operations Lead, you will act as the as a secondary contact and escalation point for the team. You'll manage a team of Security Analysts to oversee the day-to-day operational delivery of services provided by our third party 24x7 Security Operations Centre, and will take ownership of our security presence and identify any gaps by working with various stakeholders across the business. What else you'll be doing: Maintaining security oversight of the technical infrastructure delivered by third party suppliers and raising concerns/issues that pose a security risk to the organisation accordingly. You will also manage any operational risk remediation to conclusion and take ownership within the team. Managing development and improvements required for detection engineering and associated technologies. Responsible for the operational and threat malware analysis for the group. Providing security input and for maintaining relationships with the Service Management function in relation to change management, problem management and incident management. Responsible for the level 2 / 3 operational Cyber incident response. Escalating in a timely manner any incidents and anomalies that are detected within DLG and providing subject matter expertise and guidance for operational challenges. Monitoring and responding to emerging threat patterns, vulnerabilities and anomalies and providing escalations of any unknown threats to relevant areas within the company. Collating metrics on the status of technical information security controls across the DLG estate, highlighting risk areas and working to develop and manage remediation plans as required. Collaborating with all CISO teams to report appropriate operational issues that may be resolved at an architecture level Operational On-Call Requirement This role has a shared, rotational 24/7 on-call requirement and forms part of information security incident response capability. You will act as the single point of contact for all security related response actions and decisions, including management of each incident from a security perspective, interaction with IM/MIM teams (where required) and recording of all key security decisions. What you'll need: Knowledge and operational experience in firewalls, intrusion detection and prevention systems, anti-virus and content filtering, URL filtering, authentication solutions, switches, routers, Voice over IP (VoIP), firewall zoning. Ability to read and understand system data including security event logs, system logs, application logs, and device logs, etc. Knowledge and experience of enterprise grade technologies including operating systems, databases, and web applications. Knowledge and experience of performing network traffic analysis for identifying any developing patterns. Ability to assist with knowledge transfer and mentoring/up skilling of junior team members Security Analysis for CompTIA CySA+ or similar level of certification It would be beneficial if you have: Experience with any of the following technologies: Data Loss Prevention, Intrusion Prevention/Detection Systems, Firewalls, SIEM. Knowledge of reporting suites such as Power BI Good understanding of Microsoft security suites and associated qualifications Threat identification. Security certifications such as CISM, CISSP, M.Inst.ISP, CISA by a recognised professional body Technical certifications by a recognised professional body in network or systems engineering Fundamental Cloud Concepts for AWS. OWASP Top 10: API Security Playbook. Ways of Working This role is based out of our London Bridge office. Our hybrid model way of working offers a 'best of both worlds' approach combining the best parts of home and office-working, offering flexibility for everyone. When you'll be in the office depends on your role, but most colleagues are in 2 days a week, and we'll consider the flexible working options that work best for you. Read our flexible working approach here Benefits We wouldn't be where we are today without our people and the wide variety of perspectives and life experiences they bring. That's why we offer excellent benefits to suit your lifestyle and a flexible working model combining the best parts of home and office-working, varying with the nature of your role. Our core benefits include: 9% employer contributed pension Up to 10% bonus 50% off home, motor and pet insurance plus free travel insurance and Green Flag breakdown cover Additional optional Health and Dental insurance EV car scheme which allows all colleagues to lease a brand new electric or plug-in hybrid car in a tax efficient way. 25 days annual leave Buy as you earn share scheme Employee discounts and cashback Plus many more! Being yourself Difference makes us who we are. We believe everyone should feel comfortable to bring their whole selves to work - that's why we champion diverse voices, build workplaces that work for people, and invest in the things that matter. From senior leadership to inclusivity networks, adaptive working to inclusion training, we've made it our mission to give you everything you need to be authentically you. Discover more at Together we're one of a kind.
May 16, 2024
Full time
At Direct Line Group, insurance is just the start. Combining decades of industry experience with talented people in every field from data, technology, customer care and auto repair, to HR, finance and procurement , we're a customer-obsessed market powerhouse. And we all work together to be brilliant for customers, every single day. We're evolving, to be a more digitally-focused data-driven insurance company of the future - and your unique talent, skills and ideas can drive our success. Like us, you thrive on collaboration, exploration and innovation. And like you, we take tech seriously. That's why we're embracing the move to a more digital, flexible world. With constant investment in the newest tools, programmes and equipment for our teams, it all adds up to creating the best possible user experience for customers. And a great career for you. Join us. Own the evolution. We have an exciting opportunity for a Senior Security Operations Analyst to join our re-energised Cyber Defence team! Reporting into the Cyber Defence Security Operations Lead, you will act as the as a secondary contact and escalation point for the team. You'll manage a team of Security Analysts to oversee the day-to-day operational delivery of services provided by our third party 24x7 Security Operations Centre, and will take ownership of our security presence and identify any gaps by working with various stakeholders across the business. What else you'll be doing: Maintaining security oversight of the technical infrastructure delivered by third party suppliers and raising concerns/issues that pose a security risk to the organisation accordingly. You will also manage any operational risk remediation to conclusion and take ownership within the team. Managing development and improvements required for detection engineering and associated technologies. Responsible for the operational and threat malware analysis for the group. Providing security input and for maintaining relationships with the Service Management function in relation to change management, problem management and incident management. Responsible for the level 2 / 3 operational Cyber incident response. Escalating in a timely manner any incidents and anomalies that are detected within DLG and providing subject matter expertise and guidance for operational challenges. Monitoring and responding to emerging threat patterns, vulnerabilities and anomalies and providing escalations of any unknown threats to relevant areas within the company. Collating metrics on the status of technical information security controls across the DLG estate, highlighting risk areas and working to develop and manage remediation plans as required. Collaborating with all CISO teams to report appropriate operational issues that may be resolved at an architecture level Operational On-Call Requirement This role has a shared, rotational 24/7 on-call requirement and forms part of information security incident response capability. You will act as the single point of contact for all security related response actions and decisions, including management of each incident from a security perspective, interaction with IM/MIM teams (where required) and recording of all key security decisions. What you'll need: Knowledge and operational experience in firewalls, intrusion detection and prevention systems, anti-virus and content filtering, URL filtering, authentication solutions, switches, routers, Voice over IP (VoIP), firewall zoning. Ability to read and understand system data including security event logs, system logs, application logs, and device logs, etc. Knowledge and experience of enterprise grade technologies including operating systems, databases, and web applications. Knowledge and experience of performing network traffic analysis for identifying any developing patterns. Ability to assist with knowledge transfer and mentoring/up skilling of junior team members Security Analysis for CompTIA CySA+ or similar level of certification It would be beneficial if you have: Experience with any of the following technologies: Data Loss Prevention, Intrusion Prevention/Detection Systems, Firewalls, SIEM. Knowledge of reporting suites such as Power BI Good understanding of Microsoft security suites and associated qualifications Threat identification. Security certifications such as CISM, CISSP, M.Inst.ISP, CISA by a recognised professional body Technical certifications by a recognised professional body in network or systems engineering Fundamental Cloud Concepts for AWS. OWASP Top 10: API Security Playbook. Ways of Working This role is based out of our London Bridge office. Our hybrid model way of working offers a 'best of both worlds' approach combining the best parts of home and office-working, offering flexibility for everyone. When you'll be in the office depends on your role, but most colleagues are in 2 days a week, and we'll consider the flexible working options that work best for you. Read our flexible working approach here Benefits We wouldn't be where we are today without our people and the wide variety of perspectives and life experiences they bring. That's why we offer excellent benefits to suit your lifestyle and a flexible working model combining the best parts of home and office-working, varying with the nature of your role. Our core benefits include: 9% employer contributed pension Up to 10% bonus 50% off home, motor and pet insurance plus free travel insurance and Green Flag breakdown cover Additional optional Health and Dental insurance EV car scheme which allows all colleagues to lease a brand new electric or plug-in hybrid car in a tax efficient way. 25 days annual leave Buy as you earn share scheme Employee discounts and cashback Plus many more! Being yourself Difference makes us who we are. We believe everyone should feel comfortable to bring their whole selves to work - that's why we champion diverse voices, build workplaces that work for people, and invest in the things that matter. From senior leadership to inclusivity networks, adaptive working to inclusion training, we've made it our mission to give you everything you need to be authentically you. Discover more at Together we're one of a kind.
Head of Security Engineering (Hedge Fund) Reference: HOSE - 04 - 17 Sector: Town/City: London Contract Type: Permanent Leading the development of the Security Engineering department and helping set the long term strategy for the organisations capability in this area. As part of the Information Security leadership team you will have the opportunity to shape the direction of the team and take responsibility supporting the CISO in developing the long term strategy. Position Overview: As the Head of Security Engineering, you will be responsible for leading our security engineering team and driving the development and implementation of robust security solutions to protect our systems, networks, and data. This is a key leadership role that requires strategic vision, technical expertise, and strong collaboration skills. Key Responsibilities: Develop and execute a strategic security roadmap aligned with the organization's goals and objectives. Lead and mentor a team of security engineers and analysts, fostering a culture of excellence and innovation. Design and implement security architecture and solutions to protect against cyber threats and vulnerabilities. Ensure compliance with relevant security standards, regulations, and best practices. Collaborate with cross-functional teams to integrate security into all aspects of the organization's operations. Manage relationships with security vendors and service providers, evaluating and selecting appropriate security solutions and technologies. Assess security risks and develop risk mitigation strategies to protect the organization's assets. Promote security awareness and education throughout the organization, ensuring employees understand their role in maintaining a secure environment. Continuously evaluate and improve security processes, technologies, and practices to adapt to evolving threats and business needs.
May 15, 2024
Full time
Head of Security Engineering (Hedge Fund) Reference: HOSE - 04 - 17 Sector: Town/City: London Contract Type: Permanent Leading the development of the Security Engineering department and helping set the long term strategy for the organisations capability in this area. As part of the Information Security leadership team you will have the opportunity to shape the direction of the team and take responsibility supporting the CISO in developing the long term strategy. Position Overview: As the Head of Security Engineering, you will be responsible for leading our security engineering team and driving the development and implementation of robust security solutions to protect our systems, networks, and data. This is a key leadership role that requires strategic vision, technical expertise, and strong collaboration skills. Key Responsibilities: Develop and execute a strategic security roadmap aligned with the organization's goals and objectives. Lead and mentor a team of security engineers and analysts, fostering a culture of excellence and innovation. Design and implement security architecture and solutions to protect against cyber threats and vulnerabilities. Ensure compliance with relevant security standards, regulations, and best practices. Collaborate with cross-functional teams to integrate security into all aspects of the organization's operations. Manage relationships with security vendors and service providers, evaluating and selecting appropriate security solutions and technologies. Assess security risks and develop risk mitigation strategies to protect the organization's assets. Promote security awareness and education throughout the organization, ensuring employees understand their role in maintaining a secure environment. Continuously evaluate and improve security processes, technologies, and practices to adapt to evolving threats and business needs.
Information Services and Security have a vital role to play in a crucial national mission. We're here to enable the organisation to deliver through the use of technology. As AWE transforms itself to meet the needs of the UK's next-generation nuclear deterrent, we need to adapt to deliver data-driven decision making, flexible and future-proofed IT services, adaptable cyber security, support to a multi-billion Pound building programme, and many more. The scale might be daunting to some, but you'll find it stimulating. We've got a long journey that we've only just started and we're looking for motivated people who can take us in the right direction. Your role will contribute directly to that shared mission. We won't deceive you, in some areas we're starting from a low base, but within ten years this organisation will look very different, and you can help make that happen. This is a role where you'll contribute to a legacy of national security for decades to come. So come and join us. We are recruiting for a Cyber Security Analyst to conduct the monitoring of Cyber Security systems; data collation, interpretation and delivery of actionable reports to provide insight for Management into Cyber Security issues. What we do at AWE is unique and so are our threats. The Cyber SOC monitor both traditional networks and cloud environments and the SOC benefits from having a wide range of tooling available to the analysts. Analysts within the SOC have the ability to help grow and shape what we monitor and how we respond to threat. We offer and encourage self-development to ensure our analysts remain knowledgeable and the skills in order to maintain our mission. We are looking for an experienced analyst/incident response analyst with a passion for Cyber Security. Location - Reading/Basingstoke Salary - £35,840 - £48,000 pa As part of our People Promise, AWE (one of the best 25 big companies to work for in the UK) has a range of benefits to suit you. These include: Time to recharge your batteries with 270 hours of annual leave (plus every other Friday off work) Consideration for flexible working arrangements so that your work may fit in with your lifestyle. Just let us know on your application if you wish to work part time Opportunities for Professional Career Development that include funding for the annual membership of a relevant professional body, access to mentors and training Employee Assistance Programme and Occupational Health Services A generous defined contribution Group Personal Pension (we will pay between 9% and 13% of your pensionable pay depending on your own contribution) Life Assurance Discounts - access to savings on a wide range of everyday spending Special Leave Policy including paid time off for volunteering, public service (including reserve forces) and caring for your family A host of voluntary & core benefits to suit your health and wellbeing - more information available on our careers site Key Accountabilities: Monitoring activity on corporate networks for compliance against Company policy. Monitor alerts and first line response to Cyber security incidents. Maintain and promote high personal standards in environment, safety, health, security and quality and be a great team player. Additional accountabilities for this job profile may be defined and appointed through the Chief Engineer Management Arrangements, with appointees listed within the Company Design Authorities and Technical Authorities, as held in the company management system. Key Responsibilities: Support to the AWE Security Operations Centre (SOC) Manager in ensuring that SLAs are delivered by all members of the AWE Cyber Team. Support to experiential training of the analyst pool (BT and AWE). Monitor for external and insider threats Conduct Threat Hunts Write new rules and tune existing rules and use cases Assess and develop existing toolsets to improve capability Support the wider AWE in improving our defences Conduct incident response You Will Have: Experience within a SOC environment Incident response experience A passion for Cyber Security A qualification/certification in Cyber Security would be nice to have but not essential All Candidates must be willing and able to obtain and maintain the necessary security clearance for the role.
May 15, 2024
Full time
Information Services and Security have a vital role to play in a crucial national mission. We're here to enable the organisation to deliver through the use of technology. As AWE transforms itself to meet the needs of the UK's next-generation nuclear deterrent, we need to adapt to deliver data-driven decision making, flexible and future-proofed IT services, adaptable cyber security, support to a multi-billion Pound building programme, and many more. The scale might be daunting to some, but you'll find it stimulating. We've got a long journey that we've only just started and we're looking for motivated people who can take us in the right direction. Your role will contribute directly to that shared mission. We won't deceive you, in some areas we're starting from a low base, but within ten years this organisation will look very different, and you can help make that happen. This is a role where you'll contribute to a legacy of national security for decades to come. So come and join us. We are recruiting for a Cyber Security Analyst to conduct the monitoring of Cyber Security systems; data collation, interpretation and delivery of actionable reports to provide insight for Management into Cyber Security issues. What we do at AWE is unique and so are our threats. The Cyber SOC monitor both traditional networks and cloud environments and the SOC benefits from having a wide range of tooling available to the analysts. Analysts within the SOC have the ability to help grow and shape what we monitor and how we respond to threat. We offer and encourage self-development to ensure our analysts remain knowledgeable and the skills in order to maintain our mission. We are looking for an experienced analyst/incident response analyst with a passion for Cyber Security. Location - Reading/Basingstoke Salary - £35,840 - £48,000 pa As part of our People Promise, AWE (one of the best 25 big companies to work for in the UK) has a range of benefits to suit you. These include: Time to recharge your batteries with 270 hours of annual leave (plus every other Friday off work) Consideration for flexible working arrangements so that your work may fit in with your lifestyle. Just let us know on your application if you wish to work part time Opportunities for Professional Career Development that include funding for the annual membership of a relevant professional body, access to mentors and training Employee Assistance Programme and Occupational Health Services A generous defined contribution Group Personal Pension (we will pay between 9% and 13% of your pensionable pay depending on your own contribution) Life Assurance Discounts - access to savings on a wide range of everyday spending Special Leave Policy including paid time off for volunteering, public service (including reserve forces) and caring for your family A host of voluntary & core benefits to suit your health and wellbeing - more information available on our careers site Key Accountabilities: Monitoring activity on corporate networks for compliance against Company policy. Monitor alerts and first line response to Cyber security incidents. Maintain and promote high personal standards in environment, safety, health, security and quality and be a great team player. Additional accountabilities for this job profile may be defined and appointed through the Chief Engineer Management Arrangements, with appointees listed within the Company Design Authorities and Technical Authorities, as held in the company management system. Key Responsibilities: Support to the AWE Security Operations Centre (SOC) Manager in ensuring that SLAs are delivered by all members of the AWE Cyber Team. Support to experiential training of the analyst pool (BT and AWE). Monitor for external and insider threats Conduct Threat Hunts Write new rules and tune existing rules and use cases Assess and develop existing toolsets to improve capability Support the wider AWE in improving our defences Conduct incident response You Will Have: Experience within a SOC environment Incident response experience A passion for Cyber Security A qualification/certification in Cyber Security would be nice to have but not essential All Candidates must be willing and able to obtain and maintain the necessary security clearance for the role.
We are looking for a Cyber Security Analyst to join our Clients Security Operations team within their expanding and dynamic Information Security function. Reporting to the Head of Security Operations, the successful candidate will play a critical role in monitoring telemetry systems across networks, servers, and endpoints, and responding to security threats. As a member of the information security team, you will collaborate with like-minded professionals who share a passion for tackling technical security challenges and strive to stay ahead of emerging threats. Key Responsibilities of the Cyber Security Analyst: Operate Microsoft Defender security tooling stack, reviewing alerts, vulnerabilities, investigating incidents, and optimizing detection capabilities. Maintain Microsoft SC-200 certification and possess expertise in common attack techniques against Windows AD/AAD environments. Ensure documentation of processes and procedures is comprehensive, relevant, and regularly updated. Act as the point of contact for security incidents, coordinating response and remediation efforts. Demonstrate willingness to learn new tools and technologies, with a focus on continuous growth and improvement. Optimize existing security tooling and evaluate new technologies judiciously. Understand attacker Tactics, Techniques, and Procedures (TTPs), contributing to threat intelligence analysis and response. Excel as a solo contributor and collaborate effectively within the team. Display creativity, imagination, and commitment to mitigating security risks. Requirements of the Cyber Security Analyst: Experience in operating Microsoft Sentinel and Zscaler security products. Ideally hold a Microsoft SC-300, SC-400, and/or SC-900 certifications. Background in offensive security or penetration testing, including platforms such as HackTheBox or TryHackMe. Familiarity with EDR, CSPM, PAM, NGFW, vulnerability management, and mail filtering tooling. Additional certifications such as OSCP or eCPPT. (Desirable) Strong understanding of tooling optimization and aversion to unnecessary technology purchases. If you have the experience required for the Cyber Security Analyst please apply attaching your CV.
May 15, 2024
Full time
We are looking for a Cyber Security Analyst to join our Clients Security Operations team within their expanding and dynamic Information Security function. Reporting to the Head of Security Operations, the successful candidate will play a critical role in monitoring telemetry systems across networks, servers, and endpoints, and responding to security threats. As a member of the information security team, you will collaborate with like-minded professionals who share a passion for tackling technical security challenges and strive to stay ahead of emerging threats. Key Responsibilities of the Cyber Security Analyst: Operate Microsoft Defender security tooling stack, reviewing alerts, vulnerabilities, investigating incidents, and optimizing detection capabilities. Maintain Microsoft SC-200 certification and possess expertise in common attack techniques against Windows AD/AAD environments. Ensure documentation of processes and procedures is comprehensive, relevant, and regularly updated. Act as the point of contact for security incidents, coordinating response and remediation efforts. Demonstrate willingness to learn new tools and technologies, with a focus on continuous growth and improvement. Optimize existing security tooling and evaluate new technologies judiciously. Understand attacker Tactics, Techniques, and Procedures (TTPs), contributing to threat intelligence analysis and response. Excel as a solo contributor and collaborate effectively within the team. Display creativity, imagination, and commitment to mitigating security risks. Requirements of the Cyber Security Analyst: Experience in operating Microsoft Sentinel and Zscaler security products. Ideally hold a Microsoft SC-300, SC-400, and/or SC-900 certifications. Background in offensive security or penetration testing, including platforms such as HackTheBox or TryHackMe. Familiarity with EDR, CSPM, PAM, NGFW, vulnerability management, and mail filtering tooling. Additional certifications such as OSCP or eCPPT. (Desirable) Strong understanding of tooling optimization and aversion to unnecessary technology purchases. If you have the experience required for the Cyber Security Analyst please apply attaching your CV.
The company: A thriving company in the Durham area is looking to expand their Cyber security services for their large client base. They are on a journey of service excellence and are looking for proactive team players to join them in their growth. With an aim for technical excellence, this company offers strong progression and training opportunities, alongside the opportunity to work alongside some of the best in the industry. The role: As a Security Analyst, where you will play a pivotal role in developing and enhancing the SIEM and Endpoint Detection and Response platforms. You will be supporting the expanding SOC service and will play a pivotal role in defining what cyber excellence looks like. This is a great greenfield opportunity to put best practice processes in place, and use your proactive way of working to make a difference. This position is ideal for someone passionate about cybersecurity and eager to drive digital transformation for our clients. Day to Day of the role: Assist in customer onboarding to the Security Operations Centre (SOC) and SIEM. Create and implement new detection rules for the SIEM. Analyse and respond to alerts from SIEM solutions, focusing on identifying unusual and anomalous behaviours within our information systems. Conduct proactive threat and vulnerability searches within our information systems. Collaborate with Incident Response team members to contain and resolve security incidents. Continuously enhance the security posture for both our organisation and our clients. Required Skills & Qualifications: Prior experience working in a Security Operations Centre. Demonstrable expertise with SIEM, EDR, and Vulnerability Scanning tools, preferably Microsoft Sentinel and Defender. Proficiency in developing SOC triage runbooks. Ability to set up data connectors and integrate with third-party APIs and applications. Experience in creating and implementing use cases for analytics and threat hunting. Skill in fine-tuning SIEM platforms to reduce false positives and enhance automation. Relevant certifications in the field of cybersecurity. Strong analytical abilities and effective problem-solving skills. Resilience under pressure and adeptness in prioritising workloads. Benefits: 27 Days Annual Leave Your birthday off 7% matched pension contribution Hybrid and flexible workign options Annual pay reviews Enhanced sick pay benefit Car lease scheme Training programmes Progression plans Perk box membership 4 months full pay maternity leave And more! Next Steps? If you would like to know anything more about this role or even just want to hear what other Infrastructure, Cloud and Security positions I have that may also be a good match for you then please apply to this advert / or catch me on LinkedIn "Hayley Bee You must be fully eligible to work in the UK to apply to this position and be able to travel into office on occasion
May 15, 2024
Full time
The company: A thriving company in the Durham area is looking to expand their Cyber security services for their large client base. They are on a journey of service excellence and are looking for proactive team players to join them in their growth. With an aim for technical excellence, this company offers strong progression and training opportunities, alongside the opportunity to work alongside some of the best in the industry. The role: As a Security Analyst, where you will play a pivotal role in developing and enhancing the SIEM and Endpoint Detection and Response platforms. You will be supporting the expanding SOC service and will play a pivotal role in defining what cyber excellence looks like. This is a great greenfield opportunity to put best practice processes in place, and use your proactive way of working to make a difference. This position is ideal for someone passionate about cybersecurity and eager to drive digital transformation for our clients. Day to Day of the role: Assist in customer onboarding to the Security Operations Centre (SOC) and SIEM. Create and implement new detection rules for the SIEM. Analyse and respond to alerts from SIEM solutions, focusing on identifying unusual and anomalous behaviours within our information systems. Conduct proactive threat and vulnerability searches within our information systems. Collaborate with Incident Response team members to contain and resolve security incidents. Continuously enhance the security posture for both our organisation and our clients. Required Skills & Qualifications: Prior experience working in a Security Operations Centre. Demonstrable expertise with SIEM, EDR, and Vulnerability Scanning tools, preferably Microsoft Sentinel and Defender. Proficiency in developing SOC triage runbooks. Ability to set up data connectors and integrate with third-party APIs and applications. Experience in creating and implementing use cases for analytics and threat hunting. Skill in fine-tuning SIEM platforms to reduce false positives and enhance automation. Relevant certifications in the field of cybersecurity. Strong analytical abilities and effective problem-solving skills. Resilience under pressure and adeptness in prioritising workloads. Benefits: 27 Days Annual Leave Your birthday off 7% matched pension contribution Hybrid and flexible workign options Annual pay reviews Enhanced sick pay benefit Car lease scheme Training programmes Progression plans Perk box membership 4 months full pay maternity leave And more! Next Steps? If you would like to know anything more about this role or even just want to hear what other Infrastructure, Cloud and Security positions I have that may also be a good match for you then please apply to this advert / or catch me on LinkedIn "Hayley Bee You must be fully eligible to work in the UK to apply to this position and be able to travel into office on occasion
Director, Transaction Advisory Services - Financial Due Diligence - London, UK page is loaded Director, Transaction Advisory Services - Financial Due Diligence - London, UK Apply locations London, UK time type Full time posted on Posted 30+ Days Ago job requisition id R0638 Business Unit: Financial and Valuation Advisory Industry: TAS - Transaction Advisory Services Houlihan Lokey, Inc. (NYSE:HLI) is a global investment bank with expertise in mergers and acquisitions, capital markets, financial restructuring, and financial and valuation advisory. Houlihan Lokey serves corporations, institutions, and governments worldwide with offices in the Americas, Europe, the Middle East, and the Asia-Pacific region. Independent advice and intellectual rigor are hallmarks of the firm's commitment to client success across its advisory services. The firm is the No. 1 investment bank for global M&A transactions under $1 billion, the No. 1 M&A advisor for the past eight consecutive years in the U.S., the No. 1 global restructuring advisor for the past nine consecutive years, and the No. 1 global M&A fairness opinion advisor over the past 25 years, all based on number of transactions and according to data provided by Refinitiv. Transaction Advisory Services Houlihan Lokey's Transaction Advisory Services (TAS) team assists private equity and corporate clients by providing cohesive diligence across financial, tax, data analytics, cybersecurity, and technical accounting. Leveraging data-based insights, strong technical knowledge and industry experience, the TAS team supports clients in M&A, strategic transformations and capital markets endeavors. Drawing on Houlihan Lokey's market leadership in middle-market M&A transactions, our deals experts provide candid, unbiased, and rigorous support on matters most impacting deal value, and assist investors in identifying and evaluating key value drivers and risk factors. Job Purpose: Our TAS - Financial Due Diligence practice is growing rapidly and seeking a Director to spearhead our growth in the UK. As a senior professional in the group, you will be teamed with a highly talented and dedicated group of M&A financial and tax due diligence professionals on an investment banking platform. Houlihan Lokey is the only investment bank that has a dedicated TAS practice which provides our team with greater industry insights and knowledge on current market dynamics as we partner and collaborate with the broader corporate finance and capital markets businesses. You will develop and extend your financial, business development, and interpersonal skills as you perform M&A financial due diligence related to the purchase and sale of private and public companies while greatly increasing your professional network. The environment at Houlihan Lokey is collaborative and entrepreneurial. The ideal candidate should be motivated, creative, commercially driven, and possess strong skills in overall project management, leading, managing, developing people, and business development. Candidates must have a strong knowledge and prior experience in M&A financial due diligence. We team closely with our corporate finance and restructuring colleagues across all our industry platforms, on a variety of projects and accounts. Responsibilities: Develop a go-to-market approach, build an experienced execution team and develop trusted relationships with clients and other HL business leaders Lead business development initiatives and events for both existing firm accounts as well as targeted new accounts and network with prospects to build revenue producing relationships Spearhead internal and external practice development efforts and overall account management for the UK and European markets Assist in leading various firm-level strategic growth and operational initiatives with senior members of the firm Operate as the lead officer on various multi-discipline client accounts Serve as the lead professional on engagements-serving as a principal contact with client personnel, managing client deliverables, and overseeing engagement colleagues Lead client and diligence meetings with senior sponsor and C-suite professionals, draft and review tailored due diligence reports specific to key issues such as normalized earnings, achievability of management's budget, indebtedness considerations, and working capital analysis Direct the efforts of Senior Vice Presidents, Vice Presidents, Associates and Financial Analysts, providing guidance with an apprenticeship approach and serving as a career mentor responsible for development of the team Collaborate closely with corporate finance, capital markets, valuation, and financial restructuring colleagues and drive cross-firm execution and selling efforts Basic Qualifications: The ideal candidate will be highly motivated with an exceptional work ethic, and have a demonstrated track record of client development (private equity client experience preferred) 12+ years of professional experience, including extensive financial due diligence experience at a Big 4 firm Undergraduate degree from an accredited institution Qualified Chartered Accountant or similar designation Representative domestic and cross-border deal and client history on private and public transactions and capital markets activities. Significant experience with VDD engagements Preferred Qualifications: Demonstrated client account management abilities Demonstrated direct impact to revenue growth at clients Mastery of IFRS and UK GAAP including transaction related issues Exceptional analytical abilities Exceptional verbal and written communication skills and project management skills Strong command of Microsoft Excel, PowerPoint and common database systems. Experience with data analytics tools (Alteryx, Tableau, etc.) preferred Ability and desired willingness to travel Ability to manage multiple assignments simultaneously Strong sector experience in one of the following sectors: Business Services; Consumer, Foods & Retail; Financial Services, TECH or Real Estate We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, gender identity, sexual orientation, protected veteran status, or any other characteristic protected by law. Similar Jobs (2) Director, Transaction Advisory Services - Accounting and Financial Reporting - London, UK locations London, UK time type Full time posted on Posted 30+ Days Ago Director, Transaction Advisory Services - M&A Tax - London, UK locations London, UK time type Full time posted on Posted 30+ Days Ago Houlihan Lokey, Inc. (NYSE:HLI) is a global investment bank with expertise in mergers and acquisitions, capital markets, financial restructuring, and financial and valuation advisory. Houlihan Lokey serves corporations, institutions, and governments worldwide with offices in the Americas, Europe, the Middle East, and the Asia-Pacific region. Independent advice and intellectual rigor are hallmarks of the firm's commitment to client success across its advisory services. The firm is the No. 1 investment bank for all global M&A transactions, the No. 1 M&A advisor for the past nine consecutive years in the U.S., the No. 1 global restructuring advisor for the past ten consecutive years, and the No. 1 global M&A fairness opinion advisor over the past 25 years, all based on number of transactions and according to data provided by LSEG (formerly Refinitiv).
May 14, 2024
Full time
Director, Transaction Advisory Services - Financial Due Diligence - London, UK page is loaded Director, Transaction Advisory Services - Financial Due Diligence - London, UK Apply locations London, UK time type Full time posted on Posted 30+ Days Ago job requisition id R0638 Business Unit: Financial and Valuation Advisory Industry: TAS - Transaction Advisory Services Houlihan Lokey, Inc. (NYSE:HLI) is a global investment bank with expertise in mergers and acquisitions, capital markets, financial restructuring, and financial and valuation advisory. Houlihan Lokey serves corporations, institutions, and governments worldwide with offices in the Americas, Europe, the Middle East, and the Asia-Pacific region. Independent advice and intellectual rigor are hallmarks of the firm's commitment to client success across its advisory services. The firm is the No. 1 investment bank for global M&A transactions under $1 billion, the No. 1 M&A advisor for the past eight consecutive years in the U.S., the No. 1 global restructuring advisor for the past nine consecutive years, and the No. 1 global M&A fairness opinion advisor over the past 25 years, all based on number of transactions and according to data provided by Refinitiv. Transaction Advisory Services Houlihan Lokey's Transaction Advisory Services (TAS) team assists private equity and corporate clients by providing cohesive diligence across financial, tax, data analytics, cybersecurity, and technical accounting. Leveraging data-based insights, strong technical knowledge and industry experience, the TAS team supports clients in M&A, strategic transformations and capital markets endeavors. Drawing on Houlihan Lokey's market leadership in middle-market M&A transactions, our deals experts provide candid, unbiased, and rigorous support on matters most impacting deal value, and assist investors in identifying and evaluating key value drivers and risk factors. Job Purpose: Our TAS - Financial Due Diligence practice is growing rapidly and seeking a Director to spearhead our growth in the UK. As a senior professional in the group, you will be teamed with a highly talented and dedicated group of M&A financial and tax due diligence professionals on an investment banking platform. Houlihan Lokey is the only investment bank that has a dedicated TAS practice which provides our team with greater industry insights and knowledge on current market dynamics as we partner and collaborate with the broader corporate finance and capital markets businesses. You will develop and extend your financial, business development, and interpersonal skills as you perform M&A financial due diligence related to the purchase and sale of private and public companies while greatly increasing your professional network. The environment at Houlihan Lokey is collaborative and entrepreneurial. The ideal candidate should be motivated, creative, commercially driven, and possess strong skills in overall project management, leading, managing, developing people, and business development. Candidates must have a strong knowledge and prior experience in M&A financial due diligence. We team closely with our corporate finance and restructuring colleagues across all our industry platforms, on a variety of projects and accounts. Responsibilities: Develop a go-to-market approach, build an experienced execution team and develop trusted relationships with clients and other HL business leaders Lead business development initiatives and events for both existing firm accounts as well as targeted new accounts and network with prospects to build revenue producing relationships Spearhead internal and external practice development efforts and overall account management for the UK and European markets Assist in leading various firm-level strategic growth and operational initiatives with senior members of the firm Operate as the lead officer on various multi-discipline client accounts Serve as the lead professional on engagements-serving as a principal contact with client personnel, managing client deliverables, and overseeing engagement colleagues Lead client and diligence meetings with senior sponsor and C-suite professionals, draft and review tailored due diligence reports specific to key issues such as normalized earnings, achievability of management's budget, indebtedness considerations, and working capital analysis Direct the efforts of Senior Vice Presidents, Vice Presidents, Associates and Financial Analysts, providing guidance with an apprenticeship approach and serving as a career mentor responsible for development of the team Collaborate closely with corporate finance, capital markets, valuation, and financial restructuring colleagues and drive cross-firm execution and selling efforts Basic Qualifications: The ideal candidate will be highly motivated with an exceptional work ethic, and have a demonstrated track record of client development (private equity client experience preferred) 12+ years of professional experience, including extensive financial due diligence experience at a Big 4 firm Undergraduate degree from an accredited institution Qualified Chartered Accountant or similar designation Representative domestic and cross-border deal and client history on private and public transactions and capital markets activities. Significant experience with VDD engagements Preferred Qualifications: Demonstrated client account management abilities Demonstrated direct impact to revenue growth at clients Mastery of IFRS and UK GAAP including transaction related issues Exceptional analytical abilities Exceptional verbal and written communication skills and project management skills Strong command of Microsoft Excel, PowerPoint and common database systems. Experience with data analytics tools (Alteryx, Tableau, etc.) preferred Ability and desired willingness to travel Ability to manage multiple assignments simultaneously Strong sector experience in one of the following sectors: Business Services; Consumer, Foods & Retail; Financial Services, TECH or Real Estate We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, gender identity, sexual orientation, protected veteran status, or any other characteristic protected by law. Similar Jobs (2) Director, Transaction Advisory Services - Accounting and Financial Reporting - London, UK locations London, UK time type Full time posted on Posted 30+ Days Ago Director, Transaction Advisory Services - M&A Tax - London, UK locations London, UK time type Full time posted on Posted 30+ Days Ago Houlihan Lokey, Inc. (NYSE:HLI) is a global investment bank with expertise in mergers and acquisitions, capital markets, financial restructuring, and financial and valuation advisory. Houlihan Lokey serves corporations, institutions, and governments worldwide with offices in the Americas, Europe, the Middle East, and the Asia-Pacific region. Independent advice and intellectual rigor are hallmarks of the firm's commitment to client success across its advisory services. The firm is the No. 1 investment bank for all global M&A transactions, the No. 1 M&A advisor for the past nine consecutive years in the U.S., the No. 1 global restructuring advisor for the past ten consecutive years, and the No. 1 global M&A fairness opinion advisor over the past 25 years, all based on number of transactions and according to data provided by LSEG (formerly Refinitiv).
Head of Data and Tech - Workplace page is loaded Head of Data and Tech - Workplace Apply locations London time type Full time posted on Posted Yesterday job requisition id R We're Landsec We are Landsec, we build and invest in buildings, spaces and partnerships to create sustainable places, connect communities and realise potential. We are one of the largest real estate companies in Europe, with a portfolio of retail, leisure, workspace and residential hubs. Landsec is shaping a better future by leading our industry on environmental and social sustainability while delivering value for our shareholders, great experiences for our guests and positive change for our communities. The Role: This role will be a member of the Workplace Executive committee, being the voice and shaping the data and technology direction for Workplace, within the context of the Landsec group. Works across the Workplace business areas to guide and deliver data and technology (products, systems and services), make investment plans and drive realisation of value. Responsible for maintaining and optimising business operations to support the current Workplace business model. The role will have a particular emphasis on building long-term, strategic relationships with senior stakeholders to ensure that technology enabled change is delivered in a way that aligns with wider group strategy Salary: Competitive The Team: This is a new role that has been created to support data and technology leadership oversight for Landsec's Workplace business. In Workplace we develop, own and manage offices that meet the evolving needs of occupiers ranging from global corporates to small, fast growing businesses. Demand for high quality, sustainable office space is healthy and our track record and deep relationships with occupiers, local authorities and partners alike underpin our competitive advantage. This means we are able to source, envision and deliver complex projects in a way that few can match. What you will be responsible for: Define the Workplace technology strategy for this business area, in line with global Landsec technology strategy. Define, own and deliver portfolio roadmaps for Workplace business areas, in alignment with the business strategy. Prepare and participate in business planning to agree annual budgets for Workplace D&T. Operating in a cross functional matrix team structure, encouraged by project demand, potential direct line management of delivery manager(s), portfolio or programme teams, business architecture, business analysts disciplines, and dotted line management of solution architects, data engineers and building engineers. Delivering data and technology solutions Working collaboratively with the Group Enterprise Architecture (EA) function, Group technical disciplines (data, building engineering, platforms) and business SME's on the development of new products, product enhancements and product redesign. In partnership with the Group EA function, explore how mainstream and emerging technologies can be used to advance business strategy and optimise business operations. Working collaboratively with the Group Cybersecurity function to ensure secure by design for any new initiatives, supporting in-flight cyber programmes and ensuring security of data and technology estate at all times. Business services and Application management Ensure key workplace business services are operating within SLA, meeting end user needs. Ownership all Workplace applications that support those business services. In partnership with Group Cybersecurity function, ensure all applications are compliant (Secure, data privacy and software compliance) and tracked within CMDB / central inventory. In partnership with Group EA, building full application lifecycle, architecture roadmaps with rationalisation plans. Vendor Management Establishing and communicating requirements in acquiring technology applications, services, systems and equipment. Manage technology vendors for the software and hardware procured. Negotiating and managing vendor contracts to cost, safety and performance standards. Risk management Ensuring that the appropriate risk assessments are made when introducing new information and operational technology into Landsec. Setting up risk management actions so that internal and external systems are safe and secure. Performance management and central reporting Provide regular reporting on portfolio, support, vendor and financial / budget performance. Report on key controls performance Your skills, experience and qualifications: Essential criteria Real estate background - experience in delivering solutions across the real estate value chain i.e., to support development, marketing, operate assets etc. e.g., exposure to building. information modelling, or working with smart building technology and building management systems. Experience in delivering insight initiatives - e.g., on assets, tenants, occupiers through diagnostic, descriptive, predictive or prescriptive analytics approaches. Waterfall and agile ways of working - scrum, kanban etc., managing cross functional teams with disciplines across engineering, architecture, project management, etc. Desirable Exposure to AI / GenAI / machine learning in delivering real estate tech solutions etc. Experience in delivering business to business, direct to consumer digital platforms. Life and Benefits at Landsec We have a great benefits package, there to support you with your work-life balance and in moments that matter. We offer exceptional Learning & Development opportunities to help you grow and reach your potential and we also play our part in supporting the communities where we live and work. Here are some of our core benefits, view our Benefits and career development page for more information. Discretionary annual bonus plan 25 days annual leave (plus bank holidays) rising to 27 days after 2 years and options to purchase an additional holiday each year. Enhanced pension contributions - Landsec will contribute up to 10.5% subject to your contribution Private medical insurance, Life assurance and income protection. Enhanced maternity, adoption, shared parental leave policies (view our Family policies page for more details) Annual Sharesave plans with the chance to buy Landsec shares at a discounted rates Up to 4 working days to volunteer per year and 'Give As You Earn' programmes allowing you to donate to charities straight out of your pay and we top up by 20% And when it comes to your health and wellbeing you will also have access to other benefits: our employee assistance programme, digital GP, cycle to work scheme, a mindfulness app and a health app supporting fertility and menopause. Diversity and Inclusion At Landsec, we value diversity & inclusion. We work to better reflect the diversity of the communities we work within and empower everyone who works at Landsec to realise their potential. We strive to ensure all our information, and services are accessible to and usable by everyone. If you would like to receive any information in a different way or would like us to do anything differently to help you apply for our roles, please get in touch with our recruitment partners by emailing To find out more about our approach, visit our Diversity and Inclusion page . At Landsec, we build and invest in buildings, spaces and partnerships to create sustainable places, connect communities and realise potential. We are one of the largest real estate companies in Europe, with a portfolio of retail, leisure, workspace and residential hubs. Landsec is shaping a better future by leading our industry on environmental and social sustainability while delivering value for our shareholders, great experiences for our guests and positive change for our communities. All qualified applicants will receive consideration for employment and we do not discriminate on the grounds of age, disability, gender identity and gender expression, sexual orientation, marital or civil partner status, pregnancy and/or parental status, ethnicity, race, nationality, citizenship, cultural background,socio-economic background, religion or belief Flexible Working Depending on the nature of your role, Landsec may be able to offer different ways of working to fit around your lifestyle. We know that flexible working can make a real difference to your wellbeing and professional development, and in turn can benefit us as an employer and our customers. The flexible working options available to you is something that can be discussed at the interview stage during the recruitment process The Recruitment Process To apply for a role at Landsec please click apply in any available role, create a candidate account and upload your CV with the supporting information. Stage 1: Review CV's Once you have applied your application will be assessed against the required skills, experience and qualifications. Commonly you will be informed whether you move onto the interview process via a telephone call or email message within 2 weeks of your application being uploaded. Stage 2: Interview . click apply for full job details
May 14, 2024
Full time
Head of Data and Tech - Workplace page is loaded Head of Data and Tech - Workplace Apply locations London time type Full time posted on Posted Yesterday job requisition id R We're Landsec We are Landsec, we build and invest in buildings, spaces and partnerships to create sustainable places, connect communities and realise potential. We are one of the largest real estate companies in Europe, with a portfolio of retail, leisure, workspace and residential hubs. Landsec is shaping a better future by leading our industry on environmental and social sustainability while delivering value for our shareholders, great experiences for our guests and positive change for our communities. The Role: This role will be a member of the Workplace Executive committee, being the voice and shaping the data and technology direction for Workplace, within the context of the Landsec group. Works across the Workplace business areas to guide and deliver data and technology (products, systems and services), make investment plans and drive realisation of value. Responsible for maintaining and optimising business operations to support the current Workplace business model. The role will have a particular emphasis on building long-term, strategic relationships with senior stakeholders to ensure that technology enabled change is delivered in a way that aligns with wider group strategy Salary: Competitive The Team: This is a new role that has been created to support data and technology leadership oversight for Landsec's Workplace business. In Workplace we develop, own and manage offices that meet the evolving needs of occupiers ranging from global corporates to small, fast growing businesses. Demand for high quality, sustainable office space is healthy and our track record and deep relationships with occupiers, local authorities and partners alike underpin our competitive advantage. This means we are able to source, envision and deliver complex projects in a way that few can match. What you will be responsible for: Define the Workplace technology strategy for this business area, in line with global Landsec technology strategy. Define, own and deliver portfolio roadmaps for Workplace business areas, in alignment with the business strategy. Prepare and participate in business planning to agree annual budgets for Workplace D&T. Operating in a cross functional matrix team structure, encouraged by project demand, potential direct line management of delivery manager(s), portfolio or programme teams, business architecture, business analysts disciplines, and dotted line management of solution architects, data engineers and building engineers. Delivering data and technology solutions Working collaboratively with the Group Enterprise Architecture (EA) function, Group technical disciplines (data, building engineering, platforms) and business SME's on the development of new products, product enhancements and product redesign. In partnership with the Group EA function, explore how mainstream and emerging technologies can be used to advance business strategy and optimise business operations. Working collaboratively with the Group Cybersecurity function to ensure secure by design for any new initiatives, supporting in-flight cyber programmes and ensuring security of data and technology estate at all times. Business services and Application management Ensure key workplace business services are operating within SLA, meeting end user needs. Ownership all Workplace applications that support those business services. In partnership with Group Cybersecurity function, ensure all applications are compliant (Secure, data privacy and software compliance) and tracked within CMDB / central inventory. In partnership with Group EA, building full application lifecycle, architecture roadmaps with rationalisation plans. Vendor Management Establishing and communicating requirements in acquiring technology applications, services, systems and equipment. Manage technology vendors for the software and hardware procured. Negotiating and managing vendor contracts to cost, safety and performance standards. Risk management Ensuring that the appropriate risk assessments are made when introducing new information and operational technology into Landsec. Setting up risk management actions so that internal and external systems are safe and secure. Performance management and central reporting Provide regular reporting on portfolio, support, vendor and financial / budget performance. Report on key controls performance Your skills, experience and qualifications: Essential criteria Real estate background - experience in delivering solutions across the real estate value chain i.e., to support development, marketing, operate assets etc. e.g., exposure to building. information modelling, or working with smart building technology and building management systems. Experience in delivering insight initiatives - e.g., on assets, tenants, occupiers through diagnostic, descriptive, predictive or prescriptive analytics approaches. Waterfall and agile ways of working - scrum, kanban etc., managing cross functional teams with disciplines across engineering, architecture, project management, etc. Desirable Exposure to AI / GenAI / machine learning in delivering real estate tech solutions etc. Experience in delivering business to business, direct to consumer digital platforms. Life and Benefits at Landsec We have a great benefits package, there to support you with your work-life balance and in moments that matter. We offer exceptional Learning & Development opportunities to help you grow and reach your potential and we also play our part in supporting the communities where we live and work. Here are some of our core benefits, view our Benefits and career development page for more information. Discretionary annual bonus plan 25 days annual leave (plus bank holidays) rising to 27 days after 2 years and options to purchase an additional holiday each year. Enhanced pension contributions - Landsec will contribute up to 10.5% subject to your contribution Private medical insurance, Life assurance and income protection. Enhanced maternity, adoption, shared parental leave policies (view our Family policies page for more details) Annual Sharesave plans with the chance to buy Landsec shares at a discounted rates Up to 4 working days to volunteer per year and 'Give As You Earn' programmes allowing you to donate to charities straight out of your pay and we top up by 20% And when it comes to your health and wellbeing you will also have access to other benefits: our employee assistance programme, digital GP, cycle to work scheme, a mindfulness app and a health app supporting fertility and menopause. Diversity and Inclusion At Landsec, we value diversity & inclusion. We work to better reflect the diversity of the communities we work within and empower everyone who works at Landsec to realise their potential. We strive to ensure all our information, and services are accessible to and usable by everyone. If you would like to receive any information in a different way or would like us to do anything differently to help you apply for our roles, please get in touch with our recruitment partners by emailing To find out more about our approach, visit our Diversity and Inclusion page . At Landsec, we build and invest in buildings, spaces and partnerships to create sustainable places, connect communities and realise potential. We are one of the largest real estate companies in Europe, with a portfolio of retail, leisure, workspace and residential hubs. Landsec is shaping a better future by leading our industry on environmental and social sustainability while delivering value for our shareholders, great experiences for our guests and positive change for our communities. All qualified applicants will receive consideration for employment and we do not discriminate on the grounds of age, disability, gender identity and gender expression, sexual orientation, marital or civil partner status, pregnancy and/or parental status, ethnicity, race, nationality, citizenship, cultural background,socio-economic background, religion or belief Flexible Working Depending on the nature of your role, Landsec may be able to offer different ways of working to fit around your lifestyle. We know that flexible working can make a real difference to your wellbeing and professional development, and in turn can benefit us as an employer and our customers. The flexible working options available to you is something that can be discussed at the interview stage during the recruitment process The Recruitment Process To apply for a role at Landsec please click apply in any available role, create a candidate account and upload your CV with the supporting information. Stage 1: Review CV's Once you have applied your application will be assessed against the required skills, experience and qualifications. Commonly you will be informed whether you move onto the interview process via a telephone call or email message within 2 weeks of your application being uploaded. Stage 2: Interview . click apply for full job details
The Nottingham Building Society
Nottingham, Nottinghamshire
Contract type: Permanent Hours: Full-time, 35 hours Location: Head Office, Nottingham (hybrid working, 2 days per week onsite) Salary: £55000 - £65000 Application process: Please apply via the application button which will direct you to our careers site. If you require any adjustments to assist you in applying for this role, please contact We are growing our Information Security team and have an opportunity to join The Nottingham as an Information Security Specialist! As an organisation we're looking for different perspectives, diverse thinking, and new expertise to help accelerate our organisational transformation! We're committed to protecting what matters most, our customer and colleague data. Our comprehensive security solutions ensure the confidentiality, security, and integrity of both customer and corporate information. Safeguarding against potential risks, the Information Security team preserve the Society's credibility, financial stability, and ongoing business activities. You'll champion change and the integration of technology to move our business forward while continuously refining policy and processes to effectively safeguard the organisation. We're an organisation passionate about technology, driving change, and collaborating with exceptional colleagues. We empower subject matter experts with the autonomy to drive initiatives within their respective roles, fostering innovation and expertise-driven solutions. This would be a great opportunity for an experienced Information Security Analyst or Specialist looking for more breadth and development in an organisation transforming at pace for the future. Here's a taste of what you will be doing as an Information Security Specialist at The Nottingham - A key area of your role will be to ensure the organisation is compliant with IT security policies, standards and procedures based around ISO 27001 to ensure we are not exposed to threats that are capable of weakening the Society's security defences. You will be responsible for maintaining our security policies, standards and procedures with a strong security posture. You will apply controls to ensure that appropriate information and system / application access privileges and security clearances are maintained. You will manage the security related configurations of servers and firewalls, and management of periodic assessments to confirm that the Society is not vulnerable. Working closely with other departments you will define building / application deployment standards for the Society. You will also oversee User Accounts for a broad spectrum of the Society's systems. Contribute to our culture of learning and skill development within the team and stay informed about industry trends, emerging technologies, and best practices in Information Security. About you: - You will be collaborative, curious and change resilient. We're looking for experience working in an IT Security environment with an understanding of ISO 27001, NIST CyberSecurity Framework or equivalent. You will have a sound technical knowledge of computing, cloud and communications technologies. You will ideally hold CISSP (Certified Information Security Systems Professional), CISM (Certified Information Security Manager) or similar. Reward & Benefits: - A fair and competitive salary evaluated against market data, annual discretionary bonus scheme, Medicash healthcare scheme, 25 days annual leave plus bank holidays, holiday purchase scheme (buy up to 5 days) and enhanced family leave. Commitment and dedication to your ongoing personal and professional development. We help you to own and grow your potential so you can be at your best in your current role and to support your future career aspirations. Flexible and hybrid working to encourage a work life balance, we want you to be at your best inside and outside of work. A friendly and inclusive culture where teams genuinely strive to do the right thing by their colleagues and our customers. A strong sustainability agenda - we're continually finding new ways to be kinder to the environment by reducing our carbon footprint. We're passionate about giving back to the communities in which we serve as well as supporting local charities as part of the Samuel Fox Foundation. One of the many ways you can get involved is to use the 2 days per year paid leave to volunteer for causes or charities that are important to you. Your health and wellbeing is our priority, we encourage this through a suite of support resources, including a team of trained mental health first aiders. Embracing Diversity Together: - We proudly embrace and celebrate diversity as a fundamental cornerstone of our values. We believe that a diverse and inclusive workplace is not just essential for our success but is also a reflection of the vibrant communities we serve. Our commitment to diversity extends beyond our internal culture to the way we approach advertising and engage with our customers. Our commitment means actively working to eliminate barriers and biases that may hinder equal opportunities within our organisation. We strive to ensure that all individuals, regardless of background, have an equal chance to thrive and advance in their careers. We acknowledge that diversity is not just a goal to be achieved but a continuous journey toward creating an environment that embraces differences and promotes equal opportunities for all. We are committed to fostering an inclusive culture that encourages collaboration, creativity, and a sense of belonging for every member of our community. About us: - We are a mutual, which means we don't have shareholders. Instead, we're owned by our members and use our money to do good, investing in our community, responsible causes, and - well, you. So, we're always striving to do the right thing for our team, communities and members. Although our history spans over 170 years, our purpose of helping our members save, plan for and protect their financial futures is enduring. At The Nottingham Building Society, we are dedicated to overcoming obstacles and turning challenges into opportunities. At the heart of our mission is our unwavering commitment to breaking down barriers and building better futures by helping our customers achieve the significant milestone of owning their own home.
May 13, 2024
Full time
Contract type: Permanent Hours: Full-time, 35 hours Location: Head Office, Nottingham (hybrid working, 2 days per week onsite) Salary: £55000 - £65000 Application process: Please apply via the application button which will direct you to our careers site. If you require any adjustments to assist you in applying for this role, please contact We are growing our Information Security team and have an opportunity to join The Nottingham as an Information Security Specialist! As an organisation we're looking for different perspectives, diverse thinking, and new expertise to help accelerate our organisational transformation! We're committed to protecting what matters most, our customer and colleague data. Our comprehensive security solutions ensure the confidentiality, security, and integrity of both customer and corporate information. Safeguarding against potential risks, the Information Security team preserve the Society's credibility, financial stability, and ongoing business activities. You'll champion change and the integration of technology to move our business forward while continuously refining policy and processes to effectively safeguard the organisation. We're an organisation passionate about technology, driving change, and collaborating with exceptional colleagues. We empower subject matter experts with the autonomy to drive initiatives within their respective roles, fostering innovation and expertise-driven solutions. This would be a great opportunity for an experienced Information Security Analyst or Specialist looking for more breadth and development in an organisation transforming at pace for the future. Here's a taste of what you will be doing as an Information Security Specialist at The Nottingham - A key area of your role will be to ensure the organisation is compliant with IT security policies, standards and procedures based around ISO 27001 to ensure we are not exposed to threats that are capable of weakening the Society's security defences. You will be responsible for maintaining our security policies, standards and procedures with a strong security posture. You will apply controls to ensure that appropriate information and system / application access privileges and security clearances are maintained. You will manage the security related configurations of servers and firewalls, and management of periodic assessments to confirm that the Society is not vulnerable. Working closely with other departments you will define building / application deployment standards for the Society. You will also oversee User Accounts for a broad spectrum of the Society's systems. Contribute to our culture of learning and skill development within the team and stay informed about industry trends, emerging technologies, and best practices in Information Security. About you: - You will be collaborative, curious and change resilient. We're looking for experience working in an IT Security environment with an understanding of ISO 27001, NIST CyberSecurity Framework or equivalent. You will have a sound technical knowledge of computing, cloud and communications technologies. You will ideally hold CISSP (Certified Information Security Systems Professional), CISM (Certified Information Security Manager) or similar. Reward & Benefits: - A fair and competitive salary evaluated against market data, annual discretionary bonus scheme, Medicash healthcare scheme, 25 days annual leave plus bank holidays, holiday purchase scheme (buy up to 5 days) and enhanced family leave. Commitment and dedication to your ongoing personal and professional development. We help you to own and grow your potential so you can be at your best in your current role and to support your future career aspirations. Flexible and hybrid working to encourage a work life balance, we want you to be at your best inside and outside of work. A friendly and inclusive culture where teams genuinely strive to do the right thing by their colleagues and our customers. A strong sustainability agenda - we're continually finding new ways to be kinder to the environment by reducing our carbon footprint. We're passionate about giving back to the communities in which we serve as well as supporting local charities as part of the Samuel Fox Foundation. One of the many ways you can get involved is to use the 2 days per year paid leave to volunteer for causes or charities that are important to you. Your health and wellbeing is our priority, we encourage this through a suite of support resources, including a team of trained mental health first aiders. Embracing Diversity Together: - We proudly embrace and celebrate diversity as a fundamental cornerstone of our values. We believe that a diverse and inclusive workplace is not just essential for our success but is also a reflection of the vibrant communities we serve. Our commitment to diversity extends beyond our internal culture to the way we approach advertising and engage with our customers. Our commitment means actively working to eliminate barriers and biases that may hinder equal opportunities within our organisation. We strive to ensure that all individuals, regardless of background, have an equal chance to thrive and advance in their careers. We acknowledge that diversity is not just a goal to be achieved but a continuous journey toward creating an environment that embraces differences and promotes equal opportunities for all. We are committed to fostering an inclusive culture that encourages collaboration, creativity, and a sense of belonging for every member of our community. About us: - We are a mutual, which means we don't have shareholders. Instead, we're owned by our members and use our money to do good, investing in our community, responsible causes, and - well, you. So, we're always striving to do the right thing for our team, communities and members. Although our history spans over 170 years, our purpose of helping our members save, plan for and protect their financial futures is enduring. At The Nottingham Building Society, we are dedicated to overcoming obstacles and turning challenges into opportunities. At the heart of our mission is our unwavering commitment to breaking down barriers and building better futures by helping our customers achieve the significant milestone of owning their own home.
At Direct Line Group, insurance is just the start. Combining decades of industry experience with talented people in every field from data, technology, customer care and auto repair, to HR, finance and procurement , we're a customer-obsessed market powerhouse. And we all work together to be brilliant for customers, every single day. We're evolving, to be a more digitally-focused data-driven insurance company of the future - and your unique talent, skills and ideas can drive our success. Like us, you thrive on collaboration, exploration and innovation. And like you, we take tech seriously. That's why we're embracing the move to a more digital, flexible world. With constant investment in the newest tools, programmes and equipment for our teams, it all adds up to creating the best possible user experience for customers. And a great career for you. Join us. Own the evolution. We have an exciting opportunity for a Senior Security Operations Analyst to join our re-energised Cyber Defence team! Reporting into the Cyber Defence Security Operations Lead, you will act as the as a secondary contact and escalation point for the team. You'll manage a team of Security Analysts to oversee the day-to-day operational delivery of services provided by our third party 24x7 Security Operations Centre, and will take ownership of our security presence and identify any gaps by working with various stakeholders across the business. What else you'll be doing: Maintaining security oversight of the technical infrastructure delivered by third party suppliers and raising concerns/issues that pose a security risk to the organisation accordingly. You will also manage any operational risk remediation to conclusion and take ownership within the team. Managing development and improvements required for detection engineering and associated technologies. Responsible for the operational and threat malware analysis for the group. Providing security input and for maintaining relationships with the Service Management function in relation to change management, problem management and incident management. Responsible for the level 2 / 3 operational Cyber incident response. Escalating in a timely manner any incidents and anomalies that are detected within DLG and providing subject matter expertise and guidance for operational challenges. Monitoring and responding to emerging threat patterns, vulnerabilities and anomalies and providing escalations of any unknown threats to relevant areas within the company. Collating metrics on the status of technical information security controls across the DLG estate, highlighting risk areas and working to develop and manage remediation plans as required. Collaborating with all CISO teams to report appropriate operational issues that may be resolved at an architecture level Operational On-Call Requirement This role has a shared, rotational 24/7 on-call requirement and forms part of information security incident response capability. You will act as the single point of contact for all security related response actions and decisions, including management of each incident from a security perspective, interaction with IM/MIM teams (where required) and recording of all key security decisions. What you'll need: Knowledge and operational experience in firewalls, intrusion detection and prevention systems, anti-virus and content filtering, URL filtering, authentication solutions, switches, routers, Voice over IP (VoIP), firewall zoning. Ability to read and understand system data including security event logs, system logs, application logs, and device logs, etc. Knowledge and experience of enterprise grade technologies including operating systems, databases, and web applications. Knowledge and experience of performing network traffic analysis for identifying any developing patterns. Ability to assist with knowledge transfer and mentoring/up skilling of junior team members Security Analysis for CompTIA CySA+ or similar level of certification It would be beneficial if you have: Experience with any of the following technologies: Data Loss Prevention, Intrusion Prevention/Detection Systems, Firewalls, SIEM. Knowledge of reporting suites such as Power BI Good understanding of Microsoft security suites and associated qualifications Threat identification. Security certifications such as CISM, CISSP, M.Inst.ISP, CISA by a recognised professional body Technical certifications by a recognised professional body in network or systems engineering Fundamental Cloud Concepts for AWS. OWASP Top 10: API Security Playbook. Ways of Working This role is based out of our London Bridge office. Our hybrid model way of working offers a 'best of both worlds' approach combining the best parts of home and office-working, offering flexibility for everyone. When you'll be in the office depends on your role, but most colleagues are in 2 days a week, and we'll consider the flexible working options that work best for you. Read our flexible working approach here Benefits We wouldn't be where we are today without our people and the wide variety of perspectives and life experiences they bring. That's why we offer excellent benefits to suit your lifestyle and a flexible working model combining the best parts of home and office-working, varying with the nature of your role. Our core benefits include: 9% employer contributed pension Up to 10% bonus 50% off home, motor and pet insurance plus free travel insurance and Green Flag breakdown cover Additional optional Health and Dental insurance EV car scheme which allows all colleagues to lease a brand new electric or plug-in hybrid car in a tax efficient way. 25 days annual leave Buy as you earn share scheme Employee discounts and cashback Plus many more! Being yourself Difference makes us who we are. We believe everyone should feel comfortable to bring their whole selves to work - that's why we champion diverse voices, build workplaces that work for people, and invest in the things that matter. From senior leadership to inclusivity networks, adaptive working to inclusion training, we've made it our mission to give you everything you need to be authentically you. Discover more at Together we're one of a kind.
May 13, 2024
Full time
At Direct Line Group, insurance is just the start. Combining decades of industry experience with talented people in every field from data, technology, customer care and auto repair, to HR, finance and procurement , we're a customer-obsessed market powerhouse. And we all work together to be brilliant for customers, every single day. We're evolving, to be a more digitally-focused data-driven insurance company of the future - and your unique talent, skills and ideas can drive our success. Like us, you thrive on collaboration, exploration and innovation. And like you, we take tech seriously. That's why we're embracing the move to a more digital, flexible world. With constant investment in the newest tools, programmes and equipment for our teams, it all adds up to creating the best possible user experience for customers. And a great career for you. Join us. Own the evolution. We have an exciting opportunity for a Senior Security Operations Analyst to join our re-energised Cyber Defence team! Reporting into the Cyber Defence Security Operations Lead, you will act as the as a secondary contact and escalation point for the team. You'll manage a team of Security Analysts to oversee the day-to-day operational delivery of services provided by our third party 24x7 Security Operations Centre, and will take ownership of our security presence and identify any gaps by working with various stakeholders across the business. What else you'll be doing: Maintaining security oversight of the technical infrastructure delivered by third party suppliers and raising concerns/issues that pose a security risk to the organisation accordingly. You will also manage any operational risk remediation to conclusion and take ownership within the team. Managing development and improvements required for detection engineering and associated technologies. Responsible for the operational and threat malware analysis for the group. Providing security input and for maintaining relationships with the Service Management function in relation to change management, problem management and incident management. Responsible for the level 2 / 3 operational Cyber incident response. Escalating in a timely manner any incidents and anomalies that are detected within DLG and providing subject matter expertise and guidance for operational challenges. Monitoring and responding to emerging threat patterns, vulnerabilities and anomalies and providing escalations of any unknown threats to relevant areas within the company. Collating metrics on the status of technical information security controls across the DLG estate, highlighting risk areas and working to develop and manage remediation plans as required. Collaborating with all CISO teams to report appropriate operational issues that may be resolved at an architecture level Operational On-Call Requirement This role has a shared, rotational 24/7 on-call requirement and forms part of information security incident response capability. You will act as the single point of contact for all security related response actions and decisions, including management of each incident from a security perspective, interaction with IM/MIM teams (where required) and recording of all key security decisions. What you'll need: Knowledge and operational experience in firewalls, intrusion detection and prevention systems, anti-virus and content filtering, URL filtering, authentication solutions, switches, routers, Voice over IP (VoIP), firewall zoning. Ability to read and understand system data including security event logs, system logs, application logs, and device logs, etc. Knowledge and experience of enterprise grade technologies including operating systems, databases, and web applications. Knowledge and experience of performing network traffic analysis for identifying any developing patterns. Ability to assist with knowledge transfer and mentoring/up skilling of junior team members Security Analysis for CompTIA CySA+ or similar level of certification It would be beneficial if you have: Experience with any of the following technologies: Data Loss Prevention, Intrusion Prevention/Detection Systems, Firewalls, SIEM. Knowledge of reporting suites such as Power BI Good understanding of Microsoft security suites and associated qualifications Threat identification. Security certifications such as CISM, CISSP, M.Inst.ISP, CISA by a recognised professional body Technical certifications by a recognised professional body in network or systems engineering Fundamental Cloud Concepts for AWS. OWASP Top 10: API Security Playbook. Ways of Working This role is based out of our London Bridge office. Our hybrid model way of working offers a 'best of both worlds' approach combining the best parts of home and office-working, offering flexibility for everyone. When you'll be in the office depends on your role, but most colleagues are in 2 days a week, and we'll consider the flexible working options that work best for you. Read our flexible working approach here Benefits We wouldn't be where we are today without our people and the wide variety of perspectives and life experiences they bring. That's why we offer excellent benefits to suit your lifestyle and a flexible working model combining the best parts of home and office-working, varying with the nature of your role. Our core benefits include: 9% employer contributed pension Up to 10% bonus 50% off home, motor and pet insurance plus free travel insurance and Green Flag breakdown cover Additional optional Health and Dental insurance EV car scheme which allows all colleagues to lease a brand new electric or plug-in hybrid car in a tax efficient way. 25 days annual leave Buy as you earn share scheme Employee discounts and cashback Plus many more! Being yourself Difference makes us who we are. We believe everyone should feel comfortable to bring their whole selves to work - that's why we champion diverse voices, build workplaces that work for people, and invest in the things that matter. From senior leadership to inclusivity networks, adaptive working to inclusion training, we've made it our mission to give you everything you need to be authentically you. Discover more at Together we're one of a kind.
Cyber Security Analyst High Level Security Clearance Required Up to 80,000 + Bonus Gloucestershire 2 Stage Interview Process Yolk Recruitment are working with a National Security Consultancy looking to grow their Cyber Security division. They're looking for experience Cyber Security Analyst's to join at their Gloucestershire site. If successful you will join an experienced team workign to keep critical UK assets & applications secure. You will play a crucial role in identifying and mitigating cybersecurity risks, conducting security assessments, and helping protect clients' most valuable assets. They are based in Gloucestershire & the role requires active high level UK security clearance. What you will be doing: Conduct regular security assessments, vulnerability scans, and penetration tests to identify potential weaknesses in client systems and networks. Analyse security data, logs, and events to detect and respond to security incidents and threats. Develop and implement security policies, procedures, and guidelines to ensure compliance with industry standards and regulations. Monitor and investigate security breaches, incidents, and suspicious activities to identify the root causes and recommend remediation actions. Collaborate with clients to provide guidance and recommendations for enhancing their cybersecurity posture. The experience you will bring to the team: Proven experience in cybersecurity, preferably in a consulting or national security environment. Strong understanding of security principles, risk management, and security frameworks. Proficiency in security tools and technologies such as SIEM, IDS/IPS, firewall, and antivirus solutions. Knowledge of network protocols, security standards, and best practices. Excellent problem-solving and analytical skills. Strong communication and interpersonal skills, with the ability to work effectively with diverse teams and clients. What you'll receive in return: Salary up to 80,000 (dependent on experience) Guaranteed clearance bonus of 5,000 Annual performance bonus up to 10% Private medical insurance Enhanced pension scheme (5% / 10%) 25 days holiday (bank holidays on top) Got your attention? If you believe that you have the skills and experience for the role - then please get in touch. We also offer a referral scheme for any candidates whose details are passed to us that we successfully place. If you have any further questions then please contact Ryan Harris at Yolk Recruitment. Please note, whilst we do our best to contact all candidates, due to the high number of applications we receive we cannot guarantee this for every role. If you have not heard anything from us within 7 days of applying - then unfortunately you have been unsuccessful. Please keep an eye on our website for more opportunities. 'Yolk Recruitment Ltd acts as an employment business for temporary positions and an employment agency for permanent positions. Yolk Recruitment Limited is committed to equal opportunity and diversity. Suitable candidates with equivalent qualifications and more or less experience can apply. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
May 12, 2024
Full time
Cyber Security Analyst High Level Security Clearance Required Up to 80,000 + Bonus Gloucestershire 2 Stage Interview Process Yolk Recruitment are working with a National Security Consultancy looking to grow their Cyber Security division. They're looking for experience Cyber Security Analyst's to join at their Gloucestershire site. If successful you will join an experienced team workign to keep critical UK assets & applications secure. You will play a crucial role in identifying and mitigating cybersecurity risks, conducting security assessments, and helping protect clients' most valuable assets. They are based in Gloucestershire & the role requires active high level UK security clearance. What you will be doing: Conduct regular security assessments, vulnerability scans, and penetration tests to identify potential weaknesses in client systems and networks. Analyse security data, logs, and events to detect and respond to security incidents and threats. Develop and implement security policies, procedures, and guidelines to ensure compliance with industry standards and regulations. Monitor and investigate security breaches, incidents, and suspicious activities to identify the root causes and recommend remediation actions. Collaborate with clients to provide guidance and recommendations for enhancing their cybersecurity posture. The experience you will bring to the team: Proven experience in cybersecurity, preferably in a consulting or national security environment. Strong understanding of security principles, risk management, and security frameworks. Proficiency in security tools and technologies such as SIEM, IDS/IPS, firewall, and antivirus solutions. Knowledge of network protocols, security standards, and best practices. Excellent problem-solving and analytical skills. Strong communication and interpersonal skills, with the ability to work effectively with diverse teams and clients. What you'll receive in return: Salary up to 80,000 (dependent on experience) Guaranteed clearance bonus of 5,000 Annual performance bonus up to 10% Private medical insurance Enhanced pension scheme (5% / 10%) 25 days holiday (bank holidays on top) Got your attention? If you believe that you have the skills and experience for the role - then please get in touch. We also offer a referral scheme for any candidates whose details are passed to us that we successfully place. If you have any further questions then please contact Ryan Harris at Yolk Recruitment. Please note, whilst we do our best to contact all candidates, due to the high number of applications we receive we cannot guarantee this for every role. If you have not heard anything from us within 7 days of applying - then unfortunately you have been unsuccessful. Please keep an eye on our website for more opportunities. 'Yolk Recruitment Ltd acts as an employment business for temporary positions and an employment agency for permanent positions. Yolk Recruitment Limited is committed to equal opportunity and diversity. Suitable candidates with equivalent qualifications and more or less experience can apply. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
IT Security and Compliance Analyst York - Hybrid (2-3 days per week on-site) 12 months Main Purpose: Provide Security & Compliance support to the NiM businesses and IT incl. relevant contribution to agreed IT support model, operational sustain incl. incident and request management, Market Security Compliance Indicator (MSCI) measure and Information Security Managment (ISMS) contribution. Key Outputs: Sustain the IT product portfolio, across all UKI NiM (Nestle in the Market) businesses, by providing first level support, incorporating the Service Portal and subject matter experts, to agreed targets and SLO, ensuring Compliance by following relevant GLOBE Standards and Policies, incl. Nestl IT Security Policy and Cyber Securirty Awareness Supporting the Security & Compliance Specialists with ownership or support of relevant MSCI measures and ISMS controls Providing support to the Market Role Coordinator for GLOBE SAP Security sustain and projects Supporting the application compliance process and governance framework for solution onboarding. Specifically supporting facilitation of the Control Decision Tree, application controls and supporting IT application owners to supply adequate evidence whilst providing guidance on required remediation. Sustaining the IT Software Asset Management Standard, with specific support where required (incl. supporting SAM Service Functional Owners, compliance evidence, ensuring SAM compliant process and behaviours) Maintain knowledge in key areas of Security & Compliance to ensure cross-skilling and sufficient cover for team members Supporting the IT and business to ensure we are 'In Control' inc. IT Standards & controls Key Relationships External to Nestle Group: External Auditors when requested (e.g. Ernst & Young) External suppliers as needed (e.g. SAP, HP etc.) Work with external customers and vendors to ensure compliance Main Purpose of Job: Some experience of IT Security and Compliance (incl. MSCI and ISMS) Evidence of delivering results Good working knowledge of IS/IT systems & processes Experience and knowledge of Audits and Risk Assessments Good understanding of key IS/IT Security policies Good understanding of all IT Security & Compliance Standards (incl. RISE, Cloud, Digital etc.) Ability to deliver training or Present to employees Knowledge: Core knowledge of the 10 Nestl Corporate Business Principles and expert knowledge in our areas of responsibility. Good understanding of the Nestl UKI NiM business. Basic knowledge of inter-relationship of NiM businesses, key functions and their key priorities. Good knowledge of Nestl Management and Leadership Principles. Good understanding of IIRM (Interaction, Incident & Request Management Best Practice) Effective prioritisation (Able to assess impact on a Business impacting incident and prioritise accordingly) Good Knowledge of Nestl IT Security & Compliance standard requirements (End User Security, RISE, Cloud & own subject matter compliance requirements) Randstad Business Support is acting as an Employment Business in relation to this vacancy.
May 11, 2024
Contractor
IT Security and Compliance Analyst York - Hybrid (2-3 days per week on-site) 12 months Main Purpose: Provide Security & Compliance support to the NiM businesses and IT incl. relevant contribution to agreed IT support model, operational sustain incl. incident and request management, Market Security Compliance Indicator (MSCI) measure and Information Security Managment (ISMS) contribution. Key Outputs: Sustain the IT product portfolio, across all UKI NiM (Nestle in the Market) businesses, by providing first level support, incorporating the Service Portal and subject matter experts, to agreed targets and SLO, ensuring Compliance by following relevant GLOBE Standards and Policies, incl. Nestl IT Security Policy and Cyber Securirty Awareness Supporting the Security & Compliance Specialists with ownership or support of relevant MSCI measures and ISMS controls Providing support to the Market Role Coordinator for GLOBE SAP Security sustain and projects Supporting the application compliance process and governance framework for solution onboarding. Specifically supporting facilitation of the Control Decision Tree, application controls and supporting IT application owners to supply adequate evidence whilst providing guidance on required remediation. Sustaining the IT Software Asset Management Standard, with specific support where required (incl. supporting SAM Service Functional Owners, compliance evidence, ensuring SAM compliant process and behaviours) Maintain knowledge in key areas of Security & Compliance to ensure cross-skilling and sufficient cover for team members Supporting the IT and business to ensure we are 'In Control' inc. IT Standards & controls Key Relationships External to Nestle Group: External Auditors when requested (e.g. Ernst & Young) External suppliers as needed (e.g. SAP, HP etc.) Work with external customers and vendors to ensure compliance Main Purpose of Job: Some experience of IT Security and Compliance (incl. MSCI and ISMS) Evidence of delivering results Good working knowledge of IS/IT systems & processes Experience and knowledge of Audits and Risk Assessments Good understanding of key IS/IT Security policies Good understanding of all IT Security & Compliance Standards (incl. RISE, Cloud, Digital etc.) Ability to deliver training or Present to employees Knowledge: Core knowledge of the 10 Nestl Corporate Business Principles and expert knowledge in our areas of responsibility. Good understanding of the Nestl UKI NiM business. Basic knowledge of inter-relationship of NiM businesses, key functions and their key priorities. Good knowledge of Nestl Management and Leadership Principles. Good understanding of IIRM (Interaction, Incident & Request Management Best Practice) Effective prioritisation (Able to assess impact on a Business impacting incident and prioritise accordingly) Good Knowledge of Nestl IT Security & Compliance standard requirements (End User Security, RISE, Cloud & own subject matter compliance requirements) Randstad Business Support is acting as an Employment Business in relation to this vacancy.
IT Security Analyst Bromborough, Leeds or Caythorpe (Hybrid) 40,000 Gleeson Recruitment are working on a great opportunity alongside an incredible, longstanding organisation who are seeking a highly motivated and skilled Security Operations Centre (SOC) Engineer. You will play a critical role in managing security events, analysing Sentinel logs, maintaining and updating FortiGate firewalls, and assisting in the implementation and monitoring of best practices aligned with NIST guidelines and governance requirements. Essential Requirements: 5 years of experience in a technical SOC or cybersecurity role, 5 years experience of Cyber Security investigations and incident response environments Good knowledge of Anti Malware, Anti Phishing, EndPoint Detection and Response systems. Good all round knowledge of different threat scenarios, investigations, incident response processes and remdiation techniques. Good knowledge of cyber security systems and tooling Reasonable knowledge of Security Information and Event Management systems Reasonable knowledge of Firewall systems (Fortigate essential) Foundational knowledge of Security Orchestration, Automation and Response (SOAR) systems Good knowledge of common operating systems (Windows, Mac, Linux) Good knowledge of networking and network equipment Relevant certifications such as CompTIA Security+, CISSP, CISM, or equivalent are a plus; or a desire to progress towards these certificationsProficiency in using SIEM tools, log analysis platforms, and firewall management consoles (FortiGate experience preferred). Good understanding of risk management, cybersecurity principles, best practices, and frameworks such as NIST. Strong analytical and problem-solving skills, with the ability to identify and respond to security incidents effectively. Excellent communication skills, both written and verbal, with the ability to communicate technical concepts to non-technical stakeholders. The ability to report relevant facts and add value through expert interpretation of data is important. Proven ability to work collaboratively in cross-functional teams and adapt to a fast-paced and evolving security landscape. Structured, disciplined and outcome/delivery focused If interested, click the apply button now! GleeIT At Gleeson Recruitment Group, we embrace inclusivity and welcome applicants of all backgrounds, experiences, and abilities. We are proud to be a disability confident employer. By applying you will be registered as a candidate with Gleeson Recruitment Limited. Our Privacy Policy is available on our website and explains how we will use your data.
May 11, 2024
Full time
IT Security Analyst Bromborough, Leeds or Caythorpe (Hybrid) 40,000 Gleeson Recruitment are working on a great opportunity alongside an incredible, longstanding organisation who are seeking a highly motivated and skilled Security Operations Centre (SOC) Engineer. You will play a critical role in managing security events, analysing Sentinel logs, maintaining and updating FortiGate firewalls, and assisting in the implementation and monitoring of best practices aligned with NIST guidelines and governance requirements. Essential Requirements: 5 years of experience in a technical SOC or cybersecurity role, 5 years experience of Cyber Security investigations and incident response environments Good knowledge of Anti Malware, Anti Phishing, EndPoint Detection and Response systems. Good all round knowledge of different threat scenarios, investigations, incident response processes and remdiation techniques. Good knowledge of cyber security systems and tooling Reasonable knowledge of Security Information and Event Management systems Reasonable knowledge of Firewall systems (Fortigate essential) Foundational knowledge of Security Orchestration, Automation and Response (SOAR) systems Good knowledge of common operating systems (Windows, Mac, Linux) Good knowledge of networking and network equipment Relevant certifications such as CompTIA Security+, CISSP, CISM, or equivalent are a plus; or a desire to progress towards these certificationsProficiency in using SIEM tools, log analysis platforms, and firewall management consoles (FortiGate experience preferred). Good understanding of risk management, cybersecurity principles, best practices, and frameworks such as NIST. Strong analytical and problem-solving skills, with the ability to identify and respond to security incidents effectively. Excellent communication skills, both written and verbal, with the ability to communicate technical concepts to non-technical stakeholders. The ability to report relevant facts and add value through expert interpretation of data is important. Proven ability to work collaboratively in cross-functional teams and adapt to a fast-paced and evolving security landscape. Structured, disciplined and outcome/delivery focused If interested, click the apply button now! GleeIT At Gleeson Recruitment Group, we embrace inclusivity and welcome applicants of all backgrounds, experiences, and abilities. We are proud to be a disability confident employer. By applying you will be registered as a candidate with Gleeson Recruitment Limited. Our Privacy Policy is available on our website and explains how we will use your data.
Business Unit: Technology Operations & Cyber Security (TOCS) Salary range: £40,000 - £60,000 per annum DOE Location: Hybrid - remote working with occasional travel to office or hub Contract type : Permanent with flexibility regarding working hours. Live up to your potential. Live a Life More Virgin Our Team Working in Security Operations is a big deal as we play a key role in keeping Virgin Money safe. We're at the beginning of an exciting new journey with a big vision as we grow our team and enhance our security and cyber operation. We're seeking curious, technical geniuses who love to ask 'what if?' We're a diverse bunch who love what we do and ensure we have fun along the way. The Identity and Access Management (IAM) Governance team is currently a small but mighty team and part of the wider Security Operations area of TOCS. The team's primary responsibility is Governance of Identity within the bank. What you'll be doing Collaborating with technical and business stakeholders to ensure the IAM requirements are understood. Providing expert knowledge and experience in I&A technologies, taking a strategic view to influence and support architectural direction. Influencing the right IAM outcomes for the organisation to reduce risk, increase quality and reduce manual effort. Raising, managing and ownership of risks. Creating and maintaining a roadmap for the supported technologies, building the solution designs Conducting Privilege Access reviews using specialised Identity Governance and Administration tools such as RSA G&L Assisting in driving an IAM improvements programme to improve efficiencies and reduce risk. Keep us safe by providing advice on appropriate IAM controls across a number of technical disciplines. Ensuring compliance with the IAM elements of the Information Security Policy and associated Access Governance Framework Leading and owning technical projects Supporting project teams to ensure our solution designs meet the organisation's strategic needs. Build relationships with third parties and other teams to identify risks and perform remediation involving directory services (such as Active Directory) health and future strategy. We need you to have. Experience of working within an Information Security IAM related discipline. Demonstrable experience in conducting privilege access reviews. Knowledge of IAM concepts such as RBAC, Toxic Combination management, Privileged access management and monitoring. Practical experience and expert knowledge of: Identity Access Management systems (IAM). Identity Governance and Administration (IGA) system administration such as RSA G&L. Privilege Access Management (PAM) systems and methodologies including the following, CyberArk, Microsoft Entra. Experience of positively influencing at a senior level to get the right outcome. A track record of technical leadership with a passion for inspiring, developing, and coaching team members including deputising. Gravitas and experience of leading complex technical projects from development through to production It's a bonus if you have but not essential. RSA G&L certification A qualification in a Cyber Security related discipline. Knowledge of Active Directory, RACF, Microsoft Entra ID and certifications. Knowledge of scripting such as PowerShell and SQL. Experience of working in an Agile environment Worked within the Financial Services Red Hot Rewards Generous holidays - 38.5 days annual leave (including bank holidays and prorated if part-time) plus the option to buy more Up to five extra paid well-being days per year 20 weeks paid, gender-neutral family leave (52 weeks in total) for expectant parents and those looking to adopt Market-leading pension Free private medical cover, income protection and life assurance Flexible benefits include Cycle to Work, wellness and health assessments, and critical illness Ability to work anywhere in the UK (where the role allows) And there's no waiting around, you'll enjoy these benefits from day one. Feeling insatiably curious about this role? Apply as soon as you can. If we're lucky to receive a lot of interest, we may close the advert early and would hate you to miss out. We're all about helping you Live a Life More Virgin , so happy to talk flexible working with you. Say hello to Virgin Money We're making great strides towards achieving our ambition of becoming the UK's best digital bank. As a full-service digital bank with a heritage stretching back over 180 years, we re a workforce to be reckoned with. We're putting the full power of our experience behind disruptive ideas that reinvent the role a bank plays in people's lives. We strive to create positive experiences for our millions of customers and our purpose, 'Making You Happier About Money', underpins everything we do. We believe in doing banking differently, innovating and working together to make a real difference. Join us and Live a Life More Virgin that empowers you with choice and flexibility in how you work. Be yourself at Virgin Money Our purpose is to make people happier about money, this means seeing and feeling the world as our customers do by creating a workforce that reflects the rich diversity of our customers and communities. We're committed to creating an inclusive culture where colleagues feel safe and inspired to contribute, speak up and be heard. As a Disability Confident Leader, we're committed to removing any obstacles to inclusion. If you need any reasonable adjustments or support making your application, contact our Talent Acquisition team Now the legal bit Living A Life More Virgin allows our colleagues to be based anywhere in the UK (if the role allows it), but we'll need you to confirm you have the right to work in the UK. If you're successful in securing a role with us, there are some checks you need to complete before starting. These include credit and criminal record checks and three years' worth of satisfactory references. If the role is part of the Senior Manager Regime and Certification Regime, it requires enhanced pre-employment checks - we'll ask for six years of regulatory references, and once in the role, you'll be subject to periodic employment checks. Advertised: 09 May 2024 GMT Daylight Time Applications close: 23 May 2024 GMT Daylight Time
May 11, 2024
Full time
Business Unit: Technology Operations & Cyber Security (TOCS) Salary range: £40,000 - £60,000 per annum DOE Location: Hybrid - remote working with occasional travel to office or hub Contract type : Permanent with flexibility regarding working hours. Live up to your potential. Live a Life More Virgin Our Team Working in Security Operations is a big deal as we play a key role in keeping Virgin Money safe. We're at the beginning of an exciting new journey with a big vision as we grow our team and enhance our security and cyber operation. We're seeking curious, technical geniuses who love to ask 'what if?' We're a diverse bunch who love what we do and ensure we have fun along the way. The Identity and Access Management (IAM) Governance team is currently a small but mighty team and part of the wider Security Operations area of TOCS. The team's primary responsibility is Governance of Identity within the bank. What you'll be doing Collaborating with technical and business stakeholders to ensure the IAM requirements are understood. Providing expert knowledge and experience in I&A technologies, taking a strategic view to influence and support architectural direction. Influencing the right IAM outcomes for the organisation to reduce risk, increase quality and reduce manual effort. Raising, managing and ownership of risks. Creating and maintaining a roadmap for the supported technologies, building the solution designs Conducting Privilege Access reviews using specialised Identity Governance and Administration tools such as RSA G&L Assisting in driving an IAM improvements programme to improve efficiencies and reduce risk. Keep us safe by providing advice on appropriate IAM controls across a number of technical disciplines. Ensuring compliance with the IAM elements of the Information Security Policy and associated Access Governance Framework Leading and owning technical projects Supporting project teams to ensure our solution designs meet the organisation's strategic needs. Build relationships with third parties and other teams to identify risks and perform remediation involving directory services (such as Active Directory) health and future strategy. We need you to have. Experience of working within an Information Security IAM related discipline. Demonstrable experience in conducting privilege access reviews. Knowledge of IAM concepts such as RBAC, Toxic Combination management, Privileged access management and monitoring. Practical experience and expert knowledge of: Identity Access Management systems (IAM). Identity Governance and Administration (IGA) system administration such as RSA G&L. Privilege Access Management (PAM) systems and methodologies including the following, CyberArk, Microsoft Entra. Experience of positively influencing at a senior level to get the right outcome. A track record of technical leadership with a passion for inspiring, developing, and coaching team members including deputising. Gravitas and experience of leading complex technical projects from development through to production It's a bonus if you have but not essential. RSA G&L certification A qualification in a Cyber Security related discipline. Knowledge of Active Directory, RACF, Microsoft Entra ID and certifications. Knowledge of scripting such as PowerShell and SQL. Experience of working in an Agile environment Worked within the Financial Services Red Hot Rewards Generous holidays - 38.5 days annual leave (including bank holidays and prorated if part-time) plus the option to buy more Up to five extra paid well-being days per year 20 weeks paid, gender-neutral family leave (52 weeks in total) for expectant parents and those looking to adopt Market-leading pension Free private medical cover, income protection and life assurance Flexible benefits include Cycle to Work, wellness and health assessments, and critical illness Ability to work anywhere in the UK (where the role allows) And there's no waiting around, you'll enjoy these benefits from day one. Feeling insatiably curious about this role? Apply as soon as you can. If we're lucky to receive a lot of interest, we may close the advert early and would hate you to miss out. We're all about helping you Live a Life More Virgin , so happy to talk flexible working with you. Say hello to Virgin Money We're making great strides towards achieving our ambition of becoming the UK's best digital bank. As a full-service digital bank with a heritage stretching back over 180 years, we re a workforce to be reckoned with. We're putting the full power of our experience behind disruptive ideas that reinvent the role a bank plays in people's lives. We strive to create positive experiences for our millions of customers and our purpose, 'Making You Happier About Money', underpins everything we do. We believe in doing banking differently, innovating and working together to make a real difference. Join us and Live a Life More Virgin that empowers you with choice and flexibility in how you work. Be yourself at Virgin Money Our purpose is to make people happier about money, this means seeing and feeling the world as our customers do by creating a workforce that reflects the rich diversity of our customers and communities. We're committed to creating an inclusive culture where colleagues feel safe and inspired to contribute, speak up and be heard. As a Disability Confident Leader, we're committed to removing any obstacles to inclusion. If you need any reasonable adjustments or support making your application, contact our Talent Acquisition team Now the legal bit Living A Life More Virgin allows our colleagues to be based anywhere in the UK (if the role allows it), but we'll need you to confirm you have the right to work in the UK. If you're successful in securing a role with us, there are some checks you need to complete before starting. These include credit and criminal record checks and three years' worth of satisfactory references. If the role is part of the Senior Manager Regime and Certification Regime, it requires enhanced pre-employment checks - we'll ask for six years of regulatory references, and once in the role, you'll be subject to periodic employment checks. Advertised: 09 May 2024 GMT Daylight Time Applications close: 23 May 2024 GMT Daylight Time