Cyber Threat Intelligence Analyst We are helping a household name that impacts all of our lives to develop new cyber capabilities from the ground up. They're looking for a Cyber Threat Intelligence analyst to help out with their Threat Intell function and keep them ahead of the curve when it comes to threat management and security automation. This is a rare opportunity to join a large organisation and play a pivotal role in building new capabilities with no Legacy systems in place and you'll have the chance to shape the future of their cybersecurity operations from the very beginning. We're looking for candidates with experience in: Threat management and modelling TTPs Cyber threat intelligence tools and technologies. Staying up to date with new and emerging threats Details: Location: West Midlands - 2x a month on-site Salary: Up to £70,000 If you're interested in this exciting opportunity, please apply or send your CV to (see below)
May 12, 2025
Full time
Cyber Threat Intelligence Analyst We are helping a household name that impacts all of our lives to develop new cyber capabilities from the ground up. They're looking for a Cyber Threat Intelligence analyst to help out with their Threat Intell function and keep them ahead of the curve when it comes to threat management and security automation. This is a rare opportunity to join a large organisation and play a pivotal role in building new capabilities with no Legacy systems in place and you'll have the chance to shape the future of their cybersecurity operations from the very beginning. We're looking for candidates with experience in: Threat management and modelling TTPs Cyber threat intelligence tools and technologies. Staying up to date with new and emerging threats Details: Location: West Midlands - 2x a month on-site Salary: Up to £70,000 If you're interested in this exciting opportunity, please apply or send your CV to (see below)
*Inside IR35* We are seeking an experienced Performance Tester to join a high-impact programme delivering a robust Privileged Access Management (PAM) solution for a leading enterprise client. This role is instrumental in validating the scalability, stability, and responsiveness of the PAM platform under realistic enterprise load conditions. You will work alongside solution architects, system engineers, and security specialists to define and execute a comprehensive performance testing strategy. Your work will directly influence the robustness and operational readiness of a security-critical environment designed to safeguard the organisation's most sensitive assets. Key Responsibilities: Collaborate with business analysts, solution architects, and engineers to gather performance testing requirements and PAM-specific use cases. Design and implement performance, load, stress, and scalability test scenarios targeting PAM components. Develop and maintain automated test scripts using tools such as LoadRunner, LoadRunner Enterprise (LRE), JMeter, Gatling , or similar. Monitor system performance metrics during tests, identify bottlenecks, and work with technical teams to diagnose root causes. Analyze test results and produce detailed reports with actionable insights and recommendations for optimisation. Contribute to performance tuning efforts across the PAM platform, including API responsiveness, session handling, and authentication processes. Support regression and validation testing post-optimisation to ensure improvements are effective and stable. Key Requirements: Proven experience in performance and load testing in enterprise environments, preferably in security or identity access management domains. Hands-on experience with one or more performance testing tools such as LoadRunner, LRE, JMeter, Gatling , or equivalent. Familiarity with PAM tools such as CyberArk, BeyondTrust, Delinea, or HashiCorp Vault (experience with CyberArk highly desirable). Strong understanding of system performance metrics, resource utilization, and service latency diagnostics. Ability to interpret complex technical scenarios and translate them into measurable performance test cases. Strong analytical and problem-solving skills with excellent written documentation and reporting capability. Ability to work independently and collaboratively in cross-functional teams.
May 12, 2025
Contractor
*Inside IR35* We are seeking an experienced Performance Tester to join a high-impact programme delivering a robust Privileged Access Management (PAM) solution for a leading enterprise client. This role is instrumental in validating the scalability, stability, and responsiveness of the PAM platform under realistic enterprise load conditions. You will work alongside solution architects, system engineers, and security specialists to define and execute a comprehensive performance testing strategy. Your work will directly influence the robustness and operational readiness of a security-critical environment designed to safeguard the organisation's most sensitive assets. Key Responsibilities: Collaborate with business analysts, solution architects, and engineers to gather performance testing requirements and PAM-specific use cases. Design and implement performance, load, stress, and scalability test scenarios targeting PAM components. Develop and maintain automated test scripts using tools such as LoadRunner, LoadRunner Enterprise (LRE), JMeter, Gatling , or similar. Monitor system performance metrics during tests, identify bottlenecks, and work with technical teams to diagnose root causes. Analyze test results and produce detailed reports with actionable insights and recommendations for optimisation. Contribute to performance tuning efforts across the PAM platform, including API responsiveness, session handling, and authentication processes. Support regression and validation testing post-optimisation to ensure improvements are effective and stable. Key Requirements: Proven experience in performance and load testing in enterprise environments, preferably in security or identity access management domains. Hands-on experience with one or more performance testing tools such as LoadRunner, LRE, JMeter, Gatling , or equivalent. Familiarity with PAM tools such as CyberArk, BeyondTrust, Delinea, or HashiCorp Vault (experience with CyberArk highly desirable). Strong understanding of system performance metrics, resource utilization, and service latency diagnostics. Ability to interpret complex technical scenarios and translate them into measurable performance test cases. Strong analytical and problem-solving skills with excellent written documentation and reporting capability. Ability to work independently and collaboratively in cross-functional teams.
Senior IT Security Analyst - Permanent - Birmingham/Hybrid Hybrid working - this role requires 2-3 days per week in Snowhill, Birmingham Salary - this role is offering up to £45k + 15% flex fund. Senior IT Security Analyst required for a leading client based in Birmingham. The Security Officer will be responsible for the development, implementation, and maintenance of robust security controls to mature/improve security capabilities within the IT Security, Compliance, and Identity function. This role ensures the protection of assets, systems, and data from internal and external threats, whilst driving continuous improvement in security controls. Key Skills & Responsibilities: Providing expert assistance in managing live security incidents, conducting in-depth investigations, and ensuring corrective actions are effectively implemented. Offering strategic guidance on identifying, analysing, and mitigating potential threats. Skilled in leveraging actionable intelligence, industry insights, and maintaining awareness of the evolving threat landscape. Detecting and categorizing security weaknesses across networks, systems, and applications while proactively mitigating or eliminating their impact. Identifying IT security risks and leading audit remediation initiatives to strengthen overall security posture. Researching and assessing new and evolving technologies, products, services, methodologies, and techniques to stay ahead of industry advancements. Well-versed in ITIL v4, Agile, and other best practices for optimizing IT service management. Strong understanding of day-to-day SOC operations and industry-leading approaches to incident response and monitoring. Knowledgeable in Firewalls, network security groups, access control mechanisms, and other essential security controls. Proven ability to enhance security posture through continuous service improvements. Hands-on experience managing live cyber incidents and implementing effective remediation strategies. Skilled in collaborating with supplier teams to drive managed service enhancements. Comprehensive experience across IT security domains, including software, Servers, infrastructure, and networks. Expertise in designing and implementing secure systems to protect critical assets. Strong understanding of system architectures and the potential impact of vulnerabilities across diverse environments. Interested? Please submit your updated CV to Lewis Rushton at Crimson for immediate consideration. Not interested? Do you know someone who might be a perfect fit for this role? Refer a friend and earn £250 worth of vouchers! Crimson is acting as an employment agency regarding this vacancy
May 12, 2025
Full time
Senior IT Security Analyst - Permanent - Birmingham/Hybrid Hybrid working - this role requires 2-3 days per week in Snowhill, Birmingham Salary - this role is offering up to £45k + 15% flex fund. Senior IT Security Analyst required for a leading client based in Birmingham. The Security Officer will be responsible for the development, implementation, and maintenance of robust security controls to mature/improve security capabilities within the IT Security, Compliance, and Identity function. This role ensures the protection of assets, systems, and data from internal and external threats, whilst driving continuous improvement in security controls. Key Skills & Responsibilities: Providing expert assistance in managing live security incidents, conducting in-depth investigations, and ensuring corrective actions are effectively implemented. Offering strategic guidance on identifying, analysing, and mitigating potential threats. Skilled in leveraging actionable intelligence, industry insights, and maintaining awareness of the evolving threat landscape. Detecting and categorizing security weaknesses across networks, systems, and applications while proactively mitigating or eliminating their impact. Identifying IT security risks and leading audit remediation initiatives to strengthen overall security posture. Researching and assessing new and evolving technologies, products, services, methodologies, and techniques to stay ahead of industry advancements. Well-versed in ITIL v4, Agile, and other best practices for optimizing IT service management. Strong understanding of day-to-day SOC operations and industry-leading approaches to incident response and monitoring. Knowledgeable in Firewalls, network security groups, access control mechanisms, and other essential security controls. Proven ability to enhance security posture through continuous service improvements. Hands-on experience managing live cyber incidents and implementing effective remediation strategies. Skilled in collaborating with supplier teams to drive managed service enhancements. Comprehensive experience across IT security domains, including software, Servers, infrastructure, and networks. Expertise in designing and implementing secure systems to protect critical assets. Strong understanding of system architectures and the potential impact of vulnerabilities across diverse environments. Interested? Please submit your updated CV to Lewis Rushton at Crimson for immediate consideration. Not interested? Do you know someone who might be a perfect fit for this role? Refer a friend and earn £250 worth of vouchers! Crimson is acting as an employment agency regarding this vacancy
Protection Group International
Liverpool, Lancashire
At PGI, we believe that building digital resilience is essential for a safer, more secure world. We empower organisations globally to thrive amidst evolving cybersecurity challenges by delivering expert training and capacity-building solutions. We are seeking experienced freelance trainers to join us and assist in delivering high-quality training programs. As a trainer with PGI, you'll help equip individuals and organisations with the skills they need to combat cyber threats and enhance their resilience. We are particularly interested in trainers with expertise in the following certifications: CREST Practitioner Threat Intelligence Analyst (CPTIA) CREST Registered Threat Intelligence Analyst (CRTIA) CREST Practitioner Intrusion Analyst (CPIA) CREST Registered Intrusion Analyst (CRIA) CREST Practitioner Security Analyst (CPSA) CREST Registered Penetration Tester (CRT) SOC, Digital Forensics or Incident Response trainers (to deliver at entry, intermediate and advanced levels) Trainers who can deliver Cyber Security Awareness or technical Train-the-Trainer (TTT/ToT) content Why Your Work Matters Cybersecurity is the backbone of a thriving digital world. By joining PGI, you'll have the opportunity to: Make a meaningful impact by transferring vital skills to organisations and individuals across the globe. Help governments, businesses, and NGOs strengthen their defences against cyber threats. Contribute to the global effort to create a safer, more equitable digital ecosystem. About PGI PGI is a leading international consultancy dedicated to building digital resilience. Our team is committed to tackling some of the most pressing global challenges in cybersecurity, OSINT, and digital transformation. With projects spanning 80+ countries , we pride ourselves on driving impactful solutions for governments, businesses, and non-profits. What We're Looking For We invite freelance trainers who: Are proficient in delivering training on one or more of the listed CompTIA certifications. Have a proven ability to create engaging, hands-on learning experiences that empower learners. Can tailor training to address specific needs of diverse clients, including governments, corporates, and NGOs. Have strong knowledge of cybersecurity principles and industry best practices. Are inspired by the opportunity to make a difference through education and skills-building. Responsibilities Deliver accredited and non-accredited training programs with professionalism and expertise. Provide guidance on certification pathways, equipping participants for success. Customize training materials to address unique client needs and organisational goals. Ensure alignment with industry frameworks and standards Preferred Qualifications Familiarity with global cybersecurity standards and frameworks. Willingness to travel internationally and engage with culturally diverse audiences. What You'll Gain As a freelance trainer with PGI, you'll have the chance to: Work on high-profile international projects with tangible impact. Join a diverse and inclusive team united by a shared commitment to global cybersecurity. Shape the future of cybersecurity by mentoring the next generation of experts. Please note, this is not a permanent vacancy this is to be added to our pool of subcontractors. We will reach out once an opportunity becomes available. Accessibility at PGI Every individual has different requirements, so we are committed to implementing reasonable adjustments to mitigate physical and non-physical barriers in the workplace. We strive to make the recruitment process as accessible as possible, but if you have any questions or concerns, please get in touch. Please note: We are not accepting applications or speculative profiles from any recruitment agencies. If we require additional resource, we will reach out to you.
May 12, 2025
Full time
At PGI, we believe that building digital resilience is essential for a safer, more secure world. We empower organisations globally to thrive amidst evolving cybersecurity challenges by delivering expert training and capacity-building solutions. We are seeking experienced freelance trainers to join us and assist in delivering high-quality training programs. As a trainer with PGI, you'll help equip individuals and organisations with the skills they need to combat cyber threats and enhance their resilience. We are particularly interested in trainers with expertise in the following certifications: CREST Practitioner Threat Intelligence Analyst (CPTIA) CREST Registered Threat Intelligence Analyst (CRTIA) CREST Practitioner Intrusion Analyst (CPIA) CREST Registered Intrusion Analyst (CRIA) CREST Practitioner Security Analyst (CPSA) CREST Registered Penetration Tester (CRT) SOC, Digital Forensics or Incident Response trainers (to deliver at entry, intermediate and advanced levels) Trainers who can deliver Cyber Security Awareness or technical Train-the-Trainer (TTT/ToT) content Why Your Work Matters Cybersecurity is the backbone of a thriving digital world. By joining PGI, you'll have the opportunity to: Make a meaningful impact by transferring vital skills to organisations and individuals across the globe. Help governments, businesses, and NGOs strengthen their defences against cyber threats. Contribute to the global effort to create a safer, more equitable digital ecosystem. About PGI PGI is a leading international consultancy dedicated to building digital resilience. Our team is committed to tackling some of the most pressing global challenges in cybersecurity, OSINT, and digital transformation. With projects spanning 80+ countries , we pride ourselves on driving impactful solutions for governments, businesses, and non-profits. What We're Looking For We invite freelance trainers who: Are proficient in delivering training on one or more of the listed CompTIA certifications. Have a proven ability to create engaging, hands-on learning experiences that empower learners. Can tailor training to address specific needs of diverse clients, including governments, corporates, and NGOs. Have strong knowledge of cybersecurity principles and industry best practices. Are inspired by the opportunity to make a difference through education and skills-building. Responsibilities Deliver accredited and non-accredited training programs with professionalism and expertise. Provide guidance on certification pathways, equipping participants for success. Customize training materials to address unique client needs and organisational goals. Ensure alignment with industry frameworks and standards Preferred Qualifications Familiarity with global cybersecurity standards and frameworks. Willingness to travel internationally and engage with culturally diverse audiences. What You'll Gain As a freelance trainer with PGI, you'll have the chance to: Work on high-profile international projects with tangible impact. Join a diverse and inclusive team united by a shared commitment to global cybersecurity. Shape the future of cybersecurity by mentoring the next generation of experts. Please note, this is not a permanent vacancy this is to be added to our pool of subcontractors. We will reach out once an opportunity becomes available. Accessibility at PGI Every individual has different requirements, so we are committed to implementing reasonable adjustments to mitigate physical and non-physical barriers in the workplace. We strive to make the recruitment process as accessible as possible, but if you have any questions or concerns, please get in touch. Please note: We are not accepting applications or speculative profiles from any recruitment agencies. If we require additional resource, we will reach out to you.
CGI Cyber Security Team in the UK is one of the largest Cyber consultancies in the UK with around 300 members. The UK Cyber team works across a variety of domains including: Government, Defence, Critical Infrastructure, Healthcare, Utilities, Banking and Financial Services and Many more. At CGI you will get the opportunity to work across a number of domains and work in all areas of Cyber Security allowing you to grow and develop your career. We offer full 360-degree services to our clients from initial consulting on a range of areas including Risk Assessments, Vulnerability Management, Accreditations (ISO27001, GDPR), GRC (Governance, Risk, Compliance), Security Architecture Design and Build (technical and Non-technical), Incident Response, Protective Monitoring Services, Penetration Testing and much more. We take clients through a journey to improve their overall security posture and maturity to ensure they feel reassured in the Security control, measures and systems we have put in place in line with their requirements. At CGI training and development is very important not only do we give you training to keep you up to date with the latest trends within an ever-changing landscape, but we also combine that training with your career ambitions, so we support you in taking your career anywhere you want it to go. Our roles are only available if you hold or fulfil the criteria to obtain a UK Security Clearance. Your future duties and responsibilities An opportunity for an experienced penetration testers has become available due to growth, joining the CGI Cyber Security business unit, one of the largest groups of cyber security specialists in the UK. CGI has a long established reputation in this area, undertaking rigorous testing for a variety of commercial and public sector clients for over 30 years. Experience of the assessment of bespoke applications, cloud technologies and mobile applications (on diverse mobile platforms) would be of an advantage. You would join our established team of penetration testers with the possibility of progressing to team leader or principal tester positions. You would be able to work flexibly, undertaking work at home and at client sites across the UK. Required qualifications to be successful in this role We would be interested to talk further if you hold any of the following qualifications: - CHECK Team Leader (CTL) - CHECK Team Member (CTM) - CREST Certified Simulated Attack Specialist (CCSAS) - CREST Certified Tester (CCT). Sometimes known as CREST Certified Infrastructure Tester (CCT Inf) or CREST Certified Web Application Tester (CCT App) - Cyber Scheme Team Leader (CSTL) - TigerScheme Qualified Security Team Leader (QSTL) - Crest Registered Tester (CRT) - Cyber Scheme Team Member (CSTM) - TigerScheme Qualified Security Team Member (QSTM) - CREST Practitioner Security Analyst (CPSA) - Offensive Security Certified Professional (OSCP) Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
May 11, 2025
Full time
CGI Cyber Security Team in the UK is one of the largest Cyber consultancies in the UK with around 300 members. The UK Cyber team works across a variety of domains including: Government, Defence, Critical Infrastructure, Healthcare, Utilities, Banking and Financial Services and Many more. At CGI you will get the opportunity to work across a number of domains and work in all areas of Cyber Security allowing you to grow and develop your career. We offer full 360-degree services to our clients from initial consulting on a range of areas including Risk Assessments, Vulnerability Management, Accreditations (ISO27001, GDPR), GRC (Governance, Risk, Compliance), Security Architecture Design and Build (technical and Non-technical), Incident Response, Protective Monitoring Services, Penetration Testing and much more. We take clients through a journey to improve their overall security posture and maturity to ensure they feel reassured in the Security control, measures and systems we have put in place in line with their requirements. At CGI training and development is very important not only do we give you training to keep you up to date with the latest trends within an ever-changing landscape, but we also combine that training with your career ambitions, so we support you in taking your career anywhere you want it to go. Our roles are only available if you hold or fulfil the criteria to obtain a UK Security Clearance. Your future duties and responsibilities An opportunity for an experienced penetration testers has become available due to growth, joining the CGI Cyber Security business unit, one of the largest groups of cyber security specialists in the UK. CGI has a long established reputation in this area, undertaking rigorous testing for a variety of commercial and public sector clients for over 30 years. Experience of the assessment of bespoke applications, cloud technologies and mobile applications (on diverse mobile platforms) would be of an advantage. You would join our established team of penetration testers with the possibility of progressing to team leader or principal tester positions. You would be able to work flexibly, undertaking work at home and at client sites across the UK. Required qualifications to be successful in this role We would be interested to talk further if you hold any of the following qualifications: - CHECK Team Leader (CTL) - CHECK Team Member (CTM) - CREST Certified Simulated Attack Specialist (CCSAS) - CREST Certified Tester (CCT). Sometimes known as CREST Certified Infrastructure Tester (CCT Inf) or CREST Certified Web Application Tester (CCT App) - Cyber Scheme Team Leader (CSTL) - TigerScheme Qualified Security Team Leader (QSTL) - Crest Registered Tester (CRT) - Cyber Scheme Team Member (CSTM) - TigerScheme Qualified Security Team Member (QSTM) - CREST Practitioner Security Analyst (CPSA) - Offensive Security Certified Professional (OSCP) Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
Financial Controls Senior Analyst Department: FP&A & Accounts Employment Type: Permanent - Full Time Location: London Reporting To: Aaron Parmar Description Are you a Financial Controls or Audit professional with an interest in Insurance? Ready for a new challenge within an award-winning Private Equity backed business that champions innovation? Year on year our business has grown at a compound rate of +c30% pa and the Finance function has had to similarly grow to support the business. We now have two brand-new roles for budding Audit professionals to help establish the financial control environment and ensure that the control function continues to develop as the business grows. The CFC Group is complex and currently includes an MGA, an insurance syndicate and cyber security business lines in the UK and overseas. In addition, a new transactional insurance accounting platform is being implemented over the next 18 months within the main UK MGA business. This is a fantastic opportunity for a budding Financial Controls professional to grow their skillset within a truly interesting Financial Services environment with a twist! About the role Reporting to the Financial Controls Manager, you will be responsible for documenting procedures and developing, shaping and embedding a Key Financial Controls Framework across the Finance function and wider CFC business. This is very much a hands-on role, collaborating with functions outside of Finance plus external and (outsourced) internal auditors, documenting processes and procedures and reviewing testing. About you So what are we looking for? Well, although a role in which we will encourage your development, we're really keen to receive applications from Finance professionals who have begun their careers in Audit or Financial Controls, either in Practice or an in-house environment. We imagine you'll have begun studying towards a Finance qualification (ACA/ACCA/CIMA equivalent), and we look forward to supporting this further. We're looking for driven, self-starters with a strong work ethic, that like working in a collaborative, team-first environment. Does this sound exciting? Register your interest and let's start the conversation, or click through to our website below to find out more! Core Values Love what you do: We show up each day ready to take on the world. Our passion and intensity set us apart and makes the difference to our colleagues, customers, brokers and carriers. Challenge everything: We're never afraid to question the way that things are done and we constantly challenge ourselves and others to makes things better. Have fun, be good: Insurance is a serious business, but we don't take ourselves too seriously. We make it fun to work at CFC, we welcome all viewpoints, and we treat everyone how we would expect to be treated.
May 11, 2025
Full time
Financial Controls Senior Analyst Department: FP&A & Accounts Employment Type: Permanent - Full Time Location: London Reporting To: Aaron Parmar Description Are you a Financial Controls or Audit professional with an interest in Insurance? Ready for a new challenge within an award-winning Private Equity backed business that champions innovation? Year on year our business has grown at a compound rate of +c30% pa and the Finance function has had to similarly grow to support the business. We now have two brand-new roles for budding Audit professionals to help establish the financial control environment and ensure that the control function continues to develop as the business grows. The CFC Group is complex and currently includes an MGA, an insurance syndicate and cyber security business lines in the UK and overseas. In addition, a new transactional insurance accounting platform is being implemented over the next 18 months within the main UK MGA business. This is a fantastic opportunity for a budding Financial Controls professional to grow their skillset within a truly interesting Financial Services environment with a twist! About the role Reporting to the Financial Controls Manager, you will be responsible for documenting procedures and developing, shaping and embedding a Key Financial Controls Framework across the Finance function and wider CFC business. This is very much a hands-on role, collaborating with functions outside of Finance plus external and (outsourced) internal auditors, documenting processes and procedures and reviewing testing. About you So what are we looking for? Well, although a role in which we will encourage your development, we're really keen to receive applications from Finance professionals who have begun their careers in Audit or Financial Controls, either in Practice or an in-house environment. We imagine you'll have begun studying towards a Finance qualification (ACA/ACCA/CIMA equivalent), and we look forward to supporting this further. We're looking for driven, self-starters with a strong work ethic, that like working in a collaborative, team-first environment. Does this sound exciting? Register your interest and let's start the conversation, or click through to our website below to find out more! Core Values Love what you do: We show up each day ready to take on the world. Our passion and intensity set us apart and makes the difference to our colleagues, customers, brokers and carriers. Challenge everything: We're never afraid to question the way that things are done and we constantly challenge ourselves and others to makes things better. Have fun, be good: Insurance is a serious business, but we don't take ourselves too seriously. We make it fun to work at CFC, we welcome all viewpoints, and we treat everyone how we would expect to be treated.
We are seeking a Threat Analyst to join our rapidly growing Information Security team. This is a unique opportunity for an aspiring and motivated professional to be at the forefront of our cyber defence strategy, protecting our brand from existing and emerging threats. You will combine the expertise of a Threat Hunter and Cyber Threat Intelligence Analyst, and will work alongside our Senior Threat Analyst to build our threat intelligence and hunting capabilities from the ground up. You'll have a major input on what new tooling and services we use and the backing to implement this. You'll be an innovative collaborator with strong technical and communication skills, and an appetite for complex problem solving. Seize the opportunity to join a dynamic security team, reporting to the Head of Cyber Defence, and lead the development of advanced CTI and threat hunting strategies, seamlessly integrating into our security processes and driving continuous improvements. What you'll be doing In this role, your key responsibilities will include but not be limited to: Working closely with the wider information security team, including our MSP SOC, to improve the overall security posture of the organisation. Implementing and utilising our cyber threat intelligence approach, including tooling and feeds. Maintaining a current understanding of the cyber threat landscape with a focus on the health research sector. Triaging, analysing, and responding to threat intelligence alerts from partners and other stakeholders. Tracking relevant threat actors, specifically their tactics, techniques, and procedures (TTPs). Providing threat input to support the assessment of security risk and threat modelling activities of Our Future Health. Implementing and iterating our threat hunting approach through use of cutting edge hunting techniques, including automation of aspects of the threat hunting process. Creating threat hunting hypotheses and performing threat intelligence led proactive threat hunts across the estate. Contributing to detection engineering initiatives by identifying opportunities for, and implementation of new detections and improvements to existing detections. Leveraging in-house knowledge to enrich and benefit the SIEM and SOC (e.g. managing Sentinel watchlists, assisting with triage, sharing knowledge of our technical estate with the MSP analysts, etc.) Assisting with incident investigation and insider threat monitoring. Producing written reports and providing verbal briefings which capture the relevance of cyber threats to Our Future Health to a variety of internal stakeholders. We are prioritising talent over experience for this role. While we don't expect you to have expertise in every area, some experience in cyber threat intelligence and/or threat hunting, along with familiarity with Microsoft's security products, is essential. You will have some of the following skills and experience: Experience in Cyber Threat Intelligence Experience in Threat Hunting Experience with the Microsoft Sentinel SIEM/SOAR platform Proficient in writing KQL Strong understanding of threat intelligence principles and practices. Strong understanding of security risk management Understanding of threat modelling Knowledge of ISO 27001 and other commonly used security standards Understanding of modern cloud technologies Ideally experience with the Microsoft Defender suite, Microsoft Entra and Microsoft Purview Ideally experience with Microsoft Azure Exposure to Agile working Ability to translate between technical and non-technical teams Desire to be part of a small fast-paced team Relevant certifications, such as: CISM, CISA, CISSP, CCSP, Microsoft certifications (MS-500, AZ-500, AZ-700, SC-200, SC-300), CompTIA Security+ and Cloud+, Cloud Security Alliance CCSK, GIAC CTI, GIAC CFR Benefits £45,000 - £60,000 per annum Generous Pension Scheme - We invest in your future with employer contributions of up to 12%. 30 Days Holiday + Bank Holidays - Enjoy a generous holiday allowance with the flexibility to take bank holidays when it suits you. Enhanced Parental Leave - Supporting you during life's biggest moments. Career Growth & Development - £500 per year to spend on Learnerbly, our learning platform, plus regular appraisals and development opportunities. EV Car Scheme Cycle to Work Scheme - Save 25-39% on a new bike and accessories through salary sacrifice. Home & Tech Savings - Get up to 8% off on IKEA and Currys products, spreading the cost over 12 months through salary sacrifice £1,000 Employee Referral Bonus - Know someone amazing? Get rewarded for bringing them on board! Wellbeing Support - Access to Mental Health First Aiders, plus 24/7 online GP services and an Employee Assistance Programme for you and your family. A Great Place to Work - We have a lovely Central London office in Holborn, and offer flexible and remote working arrangements. Join us - let's prevent disease together.
May 11, 2025
Full time
We are seeking a Threat Analyst to join our rapidly growing Information Security team. This is a unique opportunity for an aspiring and motivated professional to be at the forefront of our cyber defence strategy, protecting our brand from existing and emerging threats. You will combine the expertise of a Threat Hunter and Cyber Threat Intelligence Analyst, and will work alongside our Senior Threat Analyst to build our threat intelligence and hunting capabilities from the ground up. You'll have a major input on what new tooling and services we use and the backing to implement this. You'll be an innovative collaborator with strong technical and communication skills, and an appetite for complex problem solving. Seize the opportunity to join a dynamic security team, reporting to the Head of Cyber Defence, and lead the development of advanced CTI and threat hunting strategies, seamlessly integrating into our security processes and driving continuous improvements. What you'll be doing In this role, your key responsibilities will include but not be limited to: Working closely with the wider information security team, including our MSP SOC, to improve the overall security posture of the organisation. Implementing and utilising our cyber threat intelligence approach, including tooling and feeds. Maintaining a current understanding of the cyber threat landscape with a focus on the health research sector. Triaging, analysing, and responding to threat intelligence alerts from partners and other stakeholders. Tracking relevant threat actors, specifically their tactics, techniques, and procedures (TTPs). Providing threat input to support the assessment of security risk and threat modelling activities of Our Future Health. Implementing and iterating our threat hunting approach through use of cutting edge hunting techniques, including automation of aspects of the threat hunting process. Creating threat hunting hypotheses and performing threat intelligence led proactive threat hunts across the estate. Contributing to detection engineering initiatives by identifying opportunities for, and implementation of new detections and improvements to existing detections. Leveraging in-house knowledge to enrich and benefit the SIEM and SOC (e.g. managing Sentinel watchlists, assisting with triage, sharing knowledge of our technical estate with the MSP analysts, etc.) Assisting with incident investigation and insider threat monitoring. Producing written reports and providing verbal briefings which capture the relevance of cyber threats to Our Future Health to a variety of internal stakeholders. We are prioritising talent over experience for this role. While we don't expect you to have expertise in every area, some experience in cyber threat intelligence and/or threat hunting, along with familiarity with Microsoft's security products, is essential. You will have some of the following skills and experience: Experience in Cyber Threat Intelligence Experience in Threat Hunting Experience with the Microsoft Sentinel SIEM/SOAR platform Proficient in writing KQL Strong understanding of threat intelligence principles and practices. Strong understanding of security risk management Understanding of threat modelling Knowledge of ISO 27001 and other commonly used security standards Understanding of modern cloud technologies Ideally experience with the Microsoft Defender suite, Microsoft Entra and Microsoft Purview Ideally experience with Microsoft Azure Exposure to Agile working Ability to translate between technical and non-technical teams Desire to be part of a small fast-paced team Relevant certifications, such as: CISM, CISA, CISSP, CCSP, Microsoft certifications (MS-500, AZ-500, AZ-700, SC-200, SC-300), CompTIA Security+ and Cloud+, Cloud Security Alliance CCSK, GIAC CTI, GIAC CFR Benefits £45,000 - £60,000 per annum Generous Pension Scheme - We invest in your future with employer contributions of up to 12%. 30 Days Holiday + Bank Holidays - Enjoy a generous holiday allowance with the flexibility to take bank holidays when it suits you. Enhanced Parental Leave - Supporting you during life's biggest moments. Career Growth & Development - £500 per year to spend on Learnerbly, our learning platform, plus regular appraisals and development opportunities. EV Car Scheme Cycle to Work Scheme - Save 25-39% on a new bike and accessories through salary sacrifice. Home & Tech Savings - Get up to 8% off on IKEA and Currys products, spreading the cost over 12 months through salary sacrifice £1,000 Employee Referral Bonus - Know someone amazing? Get rewarded for bringing them on board! Wellbeing Support - Access to Mental Health First Aiders, plus 24/7 online GP services and an Employee Assistance Programme for you and your family. A Great Place to Work - We have a lovely Central London office in Holborn, and offer flexible and remote working arrangements. Join us - let's prevent disease together.
An exciting opportunity has arisen for a Cyber Security Analyst with 2-3 years of experience in a 2nd line support role and security-focused role to join a well-established estate agency. This full-time role offers excellent benefits and a competitive salary. As a Cyber Security Analyst, you will join the security team, gaining valuable experience in protecting critical systems while assisting with the implementation and maintenance of security infrastructure. Travel expenses will be reimbursed in line with government travel reimbursement guidelines. You will be responsible for: Support the monitoring of security systems by reviewing server logs, firewall logs, and network traffic for any irregularities. Assist with security audits and testing to identify vulnerabilities and contribute to implementing solutions. Help manage security tools such as firewalls, intrusion detection systems, and anti-virus software. Support system backups and updates, ensuring data protection and system integrity. Provide basic security guidance to users and encourage adherence to security best practices. What we are looking for: Previously worked as a Cyber Security Analyst, IT Security Analyst, Security Analyst, SOC Analyst, IT Security Administrator, Network Security Administrator, Network Administrator, Cybersecurity Engineer, Security Specialist or in a similar role. Possess 2-3 years of experience in a 2nd line support role and security-focused role. Experience and understanding of IT systems and networks, with a passion for cybersecurity. Strong communication and problem-solving skills. Shift: Monday - Friday: 9:00am - 5:30pm What s on offer: Competitive salary 33 days holiday plus birthday off Pension scheme Employee assistance scheme Career progression opportunities Apply now for this exceptional Cyber Security Analyst opportunity to work with a dynamic team and further enhance your career. Important Information: We endeavour to process your personal data in a fair and transparent manner. In applying for this role, Additional Resources will be acting in your best interest and may contact you in relation to the role, either by email, phone or text message. For more information see our Privacy Policy on our website. It is important you are aware of your individual rights and the provisions the company has put in place to protect your data. If you would like further information on the policy or GDPR please contact us. Additional Resources Ltd is an Employment Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003.
May 11, 2025
Full time
An exciting opportunity has arisen for a Cyber Security Analyst with 2-3 years of experience in a 2nd line support role and security-focused role to join a well-established estate agency. This full-time role offers excellent benefits and a competitive salary. As a Cyber Security Analyst, you will join the security team, gaining valuable experience in protecting critical systems while assisting with the implementation and maintenance of security infrastructure. Travel expenses will be reimbursed in line with government travel reimbursement guidelines. You will be responsible for: Support the monitoring of security systems by reviewing server logs, firewall logs, and network traffic for any irregularities. Assist with security audits and testing to identify vulnerabilities and contribute to implementing solutions. Help manage security tools such as firewalls, intrusion detection systems, and anti-virus software. Support system backups and updates, ensuring data protection and system integrity. Provide basic security guidance to users and encourage adherence to security best practices. What we are looking for: Previously worked as a Cyber Security Analyst, IT Security Analyst, Security Analyst, SOC Analyst, IT Security Administrator, Network Security Administrator, Network Administrator, Cybersecurity Engineer, Security Specialist or in a similar role. Possess 2-3 years of experience in a 2nd line support role and security-focused role. Experience and understanding of IT systems and networks, with a passion for cybersecurity. Strong communication and problem-solving skills. Shift: Monday - Friday: 9:00am - 5:30pm What s on offer: Competitive salary 33 days holiday plus birthday off Pension scheme Employee assistance scheme Career progression opportunities Apply now for this exceptional Cyber Security Analyst opportunity to work with a dynamic team and further enhance your career. Important Information: We endeavour to process your personal data in a fair and transparent manner. In applying for this role, Additional Resources will be acting in your best interest and may contact you in relation to the role, either by email, phone or text message. For more information see our Privacy Policy on our website. It is important you are aware of your individual rights and the provisions the company has put in place to protect your data. If you would like further information on the policy or GDPR please contact us. Additional Resources Ltd is an Employment Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003.
Security Operations Analyst Salary: Competitive per annum plus bonus and Veolia benefits Location: Cannock / hybrid When you see the world as we do, you see the chance to help the world take better care of its resources, and help it become a better place for everyone. It's why we're looking for someone who's just as committed as we are, to push for genuine change and bring our ambition of Ecological Transformation to life. We know that everyone here at Veolia can help us work alongside our communities, look after the environment, and contribute to our inclusive culture. Are you an experienced IT professional with a passion for cybersecurity? If you're naturally curious about cyber threats and eager to build robust security solutions, this role offers an exciting pathway into Cybersecurity Architecture and we'd love to hear from you! What we can offer you; Access to our company pension scheme Discounts on everything from groceries to well known retailers Access to a range of resources to support your physical, mental and financial health; so you can lean on us whenever you need to 24 hour access to a virtual GP, 365 days a year, for you and family members in your household One paid days leave every year to volunteer and support your community Ongoing training and development opportunities, allowing you to reach your full potential What will you be doing? In this role, you won't be starting from scratch. We'll value your existing expertise and provide you with the support and opportunities to develop your cybersecurity skills further. You'll be working within the team to design and implement security architectures that protect our critical infrastructure, drawing on your understanding of network design, system hardening, cloud security best practices, and potential areas like identity management or data protection. What are we looking for? Experience in a senior infrastructure role with deep technical knowledge of one or more: Microsoft (Server, Azure, M365), Cisco networking, VMware, Linux, AWS, GCP, or enterprise storage. A natural problem solver with an understanding of complex systems and the ability to identify issues. Interest in cyber security and motivation to learn about risks, controls, and security frameworks. Eagerness to expand your skillset and transition into a highly sought-after career in cyber security architecture. This is your opportunity to leverage your valuable expertise and transition into a rewarding career, in a dynamic and critical field.We'll help you to thrive in a role where you can make a tangible impact on the security and resilience of our organisation. What's next? Apply today, so we can make a difference for generations to come. We're proud to be listed in The Sunday Times Best Places to Work 2024, being named as a Top 10 Very Big Organisation to work for two years in a row! This accolade further demonstrates our commitment to our people and our actions in creating an environment where everyone can be their true selves and enjoy working at Veolia. We want to ensure that you feel supported throughout the application process and provide reasonable adjustments where necessary and requested. If you require any reasonable adjustments as part of your application and interview process please do not hesitate to let us know. We know how important it is to be fully committed to building and maintaining a diverse and inclusive place to work for every one of our colleagues. We are committed to ensuring that all job applicants and members of staff are treated equally, without discrimination because of sex, gender, sexual orientation, marital or civil partner status, pregnancy or maternity, gender reassignment, race, nationality, ethnic or national origin, religion or belief, disability or age. We therefore welcome and encourage all candidates who meet the minimum requirements to apply.
May 11, 2025
Full time
Security Operations Analyst Salary: Competitive per annum plus bonus and Veolia benefits Location: Cannock / hybrid When you see the world as we do, you see the chance to help the world take better care of its resources, and help it become a better place for everyone. It's why we're looking for someone who's just as committed as we are, to push for genuine change and bring our ambition of Ecological Transformation to life. We know that everyone here at Veolia can help us work alongside our communities, look after the environment, and contribute to our inclusive culture. Are you an experienced IT professional with a passion for cybersecurity? If you're naturally curious about cyber threats and eager to build robust security solutions, this role offers an exciting pathway into Cybersecurity Architecture and we'd love to hear from you! What we can offer you; Access to our company pension scheme Discounts on everything from groceries to well known retailers Access to a range of resources to support your physical, mental and financial health; so you can lean on us whenever you need to 24 hour access to a virtual GP, 365 days a year, for you and family members in your household One paid days leave every year to volunteer and support your community Ongoing training and development opportunities, allowing you to reach your full potential What will you be doing? In this role, you won't be starting from scratch. We'll value your existing expertise and provide you with the support and opportunities to develop your cybersecurity skills further. You'll be working within the team to design and implement security architectures that protect our critical infrastructure, drawing on your understanding of network design, system hardening, cloud security best practices, and potential areas like identity management or data protection. What are we looking for? Experience in a senior infrastructure role with deep technical knowledge of one or more: Microsoft (Server, Azure, M365), Cisco networking, VMware, Linux, AWS, GCP, or enterprise storage. A natural problem solver with an understanding of complex systems and the ability to identify issues. Interest in cyber security and motivation to learn about risks, controls, and security frameworks. Eagerness to expand your skillset and transition into a highly sought-after career in cyber security architecture. This is your opportunity to leverage your valuable expertise and transition into a rewarding career, in a dynamic and critical field.We'll help you to thrive in a role where you can make a tangible impact on the security and resilience of our organisation. What's next? Apply today, so we can make a difference for generations to come. We're proud to be listed in The Sunday Times Best Places to Work 2024, being named as a Top 10 Very Big Organisation to work for two years in a row! This accolade further demonstrates our commitment to our people and our actions in creating an environment where everyone can be their true selves and enjoy working at Veolia. We want to ensure that you feel supported throughout the application process and provide reasonable adjustments where necessary and requested. If you require any reasonable adjustments as part of your application and interview process please do not hesitate to let us know. We know how important it is to be fully committed to building and maintaining a diverse and inclusive place to work for every one of our colleagues. We are committed to ensuring that all job applicants and members of staff are treated equally, without discrimination because of sex, gender, sexual orientation, marital or civil partner status, pregnancy or maternity, gender reassignment, race, nationality, ethnic or national origin, religion or belief, disability or age. We therefore welcome and encourage all candidates who meet the minimum requirements to apply.
We are currently supporting Nesta with their search for an Information Security Officer to join their IT function. In this crucial role, you'll be instrumental in ensuring they are compliant with their information security accreditations and our data, systems, and networks are protected from evolving cyber threats. Nesta are a Charity and an innovation agency for social good. They design, test and scale new solutions to society's biggest problems, changing millions of lives for the better. The role is hybrid and will require 2 days a week on site in London. As the Group Information Security Analyst/Officer, you will: Lead and maintain security accreditations: Successfully manage Cyber Essentials, Cyber Essentials Plus, and ISO 27001 certifications. Deliver comprehensive training: Develop and deliver engaging training on ISO 27001, cybersecurity awareness, AI, and data protection. Stay ahead of threats: Continuously monitor and adapt to emerging cybersecurity threats, ensuring robust governance and safeguarding measures. Manage business continuity: Oversee Business Continuity Planning (BCP) and Disaster Recovery Plans. Incident management: Act as the technology team's point of contact for legal matters related to information security incidents and actively triage and manage security incidents and breaches. Risk assessment: Identify, assess, and mitigate information and cybersecurity risks, compliance issues, and vulnerabilities. Policy development: Create, implement, and enforce information security policies, procedures, and guidelines. Compliance and communication: Respond to security questionnaires, data protection queries, and liaise with third-party partners and suppliers. Strategic leadership: Represent the Technology team in developing and implementing group-wide cybersecurity strategies. Proactive monitoring: Continuously monitor the technology estate to ensure compliance and maintain a strong security posture. ISMS management: Coordinate the improvement and maintenance of the Information Security Management System (ISMS) in line with ISO 27001 and Cyber Essentials. Experience Required: Information Security Management: Extensive experience in implementing and maintaining ISMS and achieving ISO 27001 certification. Proven track record managing security accreditations (Cyber Essentials, Cyber Essentials Plus). Strong expertise in information security risk management, data protection, and compliance frameworks (GDPR). Technical Expertise: Solid understanding of IT architecture, organisational governance, and information security principles. Proficiency in designing and managing control frameworks and using security monitoring tools. Knowledge of current and emerging cybersecurity threats. Training and Governance: Experience delivering cybersecurity and data protection training. Ability to ensure relevant and timely governance. Skills: Excellent problem-solving and communication skills (written and verbal). Strong organisational and prioritisation abilities. Ability to translate complex technical information. Ability to work to tight deadlines.
May 11, 2025
Full time
We are currently supporting Nesta with their search for an Information Security Officer to join their IT function. In this crucial role, you'll be instrumental in ensuring they are compliant with their information security accreditations and our data, systems, and networks are protected from evolving cyber threats. Nesta are a Charity and an innovation agency for social good. They design, test and scale new solutions to society's biggest problems, changing millions of lives for the better. The role is hybrid and will require 2 days a week on site in London. As the Group Information Security Analyst/Officer, you will: Lead and maintain security accreditations: Successfully manage Cyber Essentials, Cyber Essentials Plus, and ISO 27001 certifications. Deliver comprehensive training: Develop and deliver engaging training on ISO 27001, cybersecurity awareness, AI, and data protection. Stay ahead of threats: Continuously monitor and adapt to emerging cybersecurity threats, ensuring robust governance and safeguarding measures. Manage business continuity: Oversee Business Continuity Planning (BCP) and Disaster Recovery Plans. Incident management: Act as the technology team's point of contact for legal matters related to information security incidents and actively triage and manage security incidents and breaches. Risk assessment: Identify, assess, and mitigate information and cybersecurity risks, compliance issues, and vulnerabilities. Policy development: Create, implement, and enforce information security policies, procedures, and guidelines. Compliance and communication: Respond to security questionnaires, data protection queries, and liaise with third-party partners and suppliers. Strategic leadership: Represent the Technology team in developing and implementing group-wide cybersecurity strategies. Proactive monitoring: Continuously monitor the technology estate to ensure compliance and maintain a strong security posture. ISMS management: Coordinate the improvement and maintenance of the Information Security Management System (ISMS) in line with ISO 27001 and Cyber Essentials. Experience Required: Information Security Management: Extensive experience in implementing and maintaining ISMS and achieving ISO 27001 certification. Proven track record managing security accreditations (Cyber Essentials, Cyber Essentials Plus). Strong expertise in information security risk management, data protection, and compliance frameworks (GDPR). Technical Expertise: Solid understanding of IT architecture, organisational governance, and information security principles. Proficiency in designing and managing control frameworks and using security monitoring tools. Knowledge of current and emerging cybersecurity threats. Training and Governance: Experience delivering cybersecurity and data protection training. Ability to ensure relevant and timely governance. Skills: Excellent problem-solving and communication skills (written and verbal). Strong organisational and prioritisation abilities. Ability to translate complex technical information. Ability to work to tight deadlines.
Are you passionate about protecting data, staying one step ahead of cyber threats, and making a real impact in a growing, forward-thinking business? We re looking for an Information Security Analyst who s ready to roll up their sleeves and help us stay secure, compliant, and resilient. This is a hybrid, 12 month, fixed term contract role requiring you to work 1 day per week in either London, Horsham or Mansfield . Expect some travel between offices, occasional client meetings, and the opportunity to collaborate across our wider group. Must be eligible to work in the UK - No sponsorship available What you'll be doing: From running vulnerability assessments to delivering engaging security training sessions, this role is hands-on and high-impact. You ll be: Proactively identifying and tackling system vulnerabilities Leading the charge on third-party risk assessments Educating teams with security awareness programs (yes, including phishing simulations!) Supporting incident response and continuous security improvements Helping shape and implement our information security policies What you'll bring: You're not just good at spotting risks - you re a great communicator, a natural problem-solver, and someone who thrives in a fast-paced, collaborative environment. Ideally, you ll also have: Experience with Microsoft Sentinel, Defender, Cloud App Security, or Purview A solid grasp of ISO27001, NIST, UK GDPR, and security frameworks Knowledge of vendor management and vulnerability assessments Bonus points for certifications like ISO27001 Lead Implementer, CISSP, or CISM What s in it for you? Private healthcare & life insurance Generous pension scheme (up to 10% employer contribution) days holiday + celebration day + volunteering day Travel insurance for your adventures Enhanced family leave, wellness fund, holiday buy/sell scheme & more Hybrid working with 1 day in the office in either Horsham, London or Mansfield Mon - Fri, 9am 5pm
May 11, 2025
Contractor
Are you passionate about protecting data, staying one step ahead of cyber threats, and making a real impact in a growing, forward-thinking business? We re looking for an Information Security Analyst who s ready to roll up their sleeves and help us stay secure, compliant, and resilient. This is a hybrid, 12 month, fixed term contract role requiring you to work 1 day per week in either London, Horsham or Mansfield . Expect some travel between offices, occasional client meetings, and the opportunity to collaborate across our wider group. Must be eligible to work in the UK - No sponsorship available What you'll be doing: From running vulnerability assessments to delivering engaging security training sessions, this role is hands-on and high-impact. You ll be: Proactively identifying and tackling system vulnerabilities Leading the charge on third-party risk assessments Educating teams with security awareness programs (yes, including phishing simulations!) Supporting incident response and continuous security improvements Helping shape and implement our information security policies What you'll bring: You're not just good at spotting risks - you re a great communicator, a natural problem-solver, and someone who thrives in a fast-paced, collaborative environment. Ideally, you ll also have: Experience with Microsoft Sentinel, Defender, Cloud App Security, or Purview A solid grasp of ISO27001, NIST, UK GDPR, and security frameworks Knowledge of vendor management and vulnerability assessments Bonus points for certifications like ISO27001 Lead Implementer, CISSP, or CISM What s in it for you? Private healthcare & life insurance Generous pension scheme (up to 10% employer contribution) days holiday + celebration day + volunteering day Travel insurance for your adventures Enhanced family leave, wellness fund, holiday buy/sell scheme & more Hybrid working with 1 day in the office in either Horsham, London or Mansfield Mon - Fri, 9am 5pm
Analyst, Vendor Risk Management Location: Hybrid In Leeds, UK The Position The Analyst, Vendor Risk Management will work with clients to identify client supply chain risk and cybersecurity challenges, advise on best practices in vendor risk management, and ensure successful delivery of BlueVoyant solutions to solve customer problems. The incumbent will consult directly with clients to establish and improve the management of vendor risks, implement third-party cybersecurity risk management programs and support the day-to-day review of and interaction with third party vendors. Key Responsibilities Participate in third-party risk management consulting engagements as part of BlueVoyant's Supply Chain Defense business. Support Third Party Risk Workshops at BlueVoyant Clients focused on the following topics: Vendor Identification and Stratification Vendor On-boarding, Monitoring and Remediation Cybersecurity Risk Questionnaire Development Project and program delivery, including project and process management, reporting, engagement in senior leadership meetings, drafting and reviewing materials for senior management and other governance activities. Communicate findings and recommendations to client stakeholders, best practices, tools and technology. Mature standard operating procedures for customers to optimize utilization of BlueVoyant's offerings. Enable business development in renewal, cross-sell, and up-sell opportunities of BlueVoyant offerings while maintaining client trust. Create repeatable processes and frameworks portable across clients and industries to accelerate future Third-Party Risk Cybersecurity Risk Management implementations. Travel to Clients as requested. German or French as a first or second language preferable but not essential. Qualifications CISSP or similar preferred. Familiarity with encryption fundamentals and network design required. 1+ years of Third-Party Risk Management consulting (including vendor cybersecurity risk) at a Big 4 consulting firm or vendor risk management company. 2+ years leading an enterprise risk management program, including Third-Party Risk, Internal Risk Maturity and Assessment, Risk Consolidation, and Risk Reporting. Information security/cybersecurity accreditation and background. Experience working in a cybersecurity or technology organization. Entrepreneurial nature and drive for results. Clear communication and writing skills. Ability to conduct deep client discovery to uncover root cause problems and build trusted relationships. Ability to design programs and solutions with minimal guidance and oversight. About BlueVoyant At BlueVoyant, we recognize that effective cyber security requires active prevention and defense across both your organization and supply chain. Our proprietary data, analytics, and technology, coupled with deep expertise, works as a force multiplier to secure your full ecosystem. Accuracy! Actionability! Timeliness! Scalability! Led by CEO, Jim Rosenthal, BlueVoyant's highly skilled team includes former government cyber officials with extensive frontline experience in responding to advanced cyber threats on behalf of the National Security Agency, Federal Bureau of Investigation, Unit 8200, and GCHQ, together with private sector experts. BlueVoyant services utilize large real-time datasets with industry leading analytics and technologies. Founded in 2017 by Fortune 500 executives, including Executive Chairman, Tom Glocer, and former Government cyber officials, BlueVoyant is headquartered in New York City and has offices in Maryland, Tel Aviv, San Francisco, London, Budapest, and Latin America. All employees must be authorized to work in the United Kingdom. BlueVoyant provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, BlueVoyant complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. BlueVoyant Candidate Privacy Notice To understand how we secure and manage your personal data upon submitting a job application, please see our Candidate Privacy Notice, which can be found here - Candidate Privacy Notice
May 10, 2025
Full time
Analyst, Vendor Risk Management Location: Hybrid In Leeds, UK The Position The Analyst, Vendor Risk Management will work with clients to identify client supply chain risk and cybersecurity challenges, advise on best practices in vendor risk management, and ensure successful delivery of BlueVoyant solutions to solve customer problems. The incumbent will consult directly with clients to establish and improve the management of vendor risks, implement third-party cybersecurity risk management programs and support the day-to-day review of and interaction with third party vendors. Key Responsibilities Participate in third-party risk management consulting engagements as part of BlueVoyant's Supply Chain Defense business. Support Third Party Risk Workshops at BlueVoyant Clients focused on the following topics: Vendor Identification and Stratification Vendor On-boarding, Monitoring and Remediation Cybersecurity Risk Questionnaire Development Project and program delivery, including project and process management, reporting, engagement in senior leadership meetings, drafting and reviewing materials for senior management and other governance activities. Communicate findings and recommendations to client stakeholders, best practices, tools and technology. Mature standard operating procedures for customers to optimize utilization of BlueVoyant's offerings. Enable business development in renewal, cross-sell, and up-sell opportunities of BlueVoyant offerings while maintaining client trust. Create repeatable processes and frameworks portable across clients and industries to accelerate future Third-Party Risk Cybersecurity Risk Management implementations. Travel to Clients as requested. German or French as a first or second language preferable but not essential. Qualifications CISSP or similar preferred. Familiarity with encryption fundamentals and network design required. 1+ years of Third-Party Risk Management consulting (including vendor cybersecurity risk) at a Big 4 consulting firm or vendor risk management company. 2+ years leading an enterprise risk management program, including Third-Party Risk, Internal Risk Maturity and Assessment, Risk Consolidation, and Risk Reporting. Information security/cybersecurity accreditation and background. Experience working in a cybersecurity or technology organization. Entrepreneurial nature and drive for results. Clear communication and writing skills. Ability to conduct deep client discovery to uncover root cause problems and build trusted relationships. Ability to design programs and solutions with minimal guidance and oversight. About BlueVoyant At BlueVoyant, we recognize that effective cyber security requires active prevention and defense across both your organization and supply chain. Our proprietary data, analytics, and technology, coupled with deep expertise, works as a force multiplier to secure your full ecosystem. Accuracy! Actionability! Timeliness! Scalability! Led by CEO, Jim Rosenthal, BlueVoyant's highly skilled team includes former government cyber officials with extensive frontline experience in responding to advanced cyber threats on behalf of the National Security Agency, Federal Bureau of Investigation, Unit 8200, and GCHQ, together with private sector experts. BlueVoyant services utilize large real-time datasets with industry leading analytics and technologies. Founded in 2017 by Fortune 500 executives, including Executive Chairman, Tom Glocer, and former Government cyber officials, BlueVoyant is headquartered in New York City and has offices in Maryland, Tel Aviv, San Francisco, London, Budapest, and Latin America. All employees must be authorized to work in the United Kingdom. BlueVoyant provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, BlueVoyant complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. BlueVoyant Candidate Privacy Notice To understand how we secure and manage your personal data upon submitting a job application, please see our Candidate Privacy Notice, which can be found here - Candidate Privacy Notice
Security Operations Centre Lead is required by Logic to work for a large scale industry leading organisation based in Hemel Hempstead. As a SOC Shift Lead, you will ensure the smooth operation and continual enhancement of SOC processes and personnel. You will play a pivotal role in protecting client systems and guiding the team through sophisticated cyber defence challenges. Your responsibilities will include: Monitoring, triaging, and investigating alerts across host and network security systems Performing deep analysis of traffic, logs, and system events to identify threats and vulnerabilities Providing line management to SOC Analysts (team of 4) -developing capability and supporting career progression Enhancing team knowledge across SOC tooling, detection methodologies, and threat triage Analysing and optimising detection rules and use cases based on Mitre Att&ck Maintaining detailed and up-to-date incident documentation, findings, and mitigation strategies Acting as a representative of the SOC in key meetings and internal stakeholder engagements In order to be successful for this role you will need to be able to demonstrate the following experience: Proven experience in a Security Operations Centre (SOC) environment Experience working as a SOC Level 2 Previous people management or line management experience Strong familiarity with SIEM platforms including Microsoft Sentinel and Splunk Knowledge and use of the Mitre Att&ck Framework for detection and threat analysis In-depth understanding of: Client-server applications and multi-tier web environments Relational databases, firewalls, VPNs, enterprise AntiVirus solutions Networking principles (eg TCP/IP, WAN, LAN, SMTP, HTTP, FTP, POP, LDAP) Please note this is a shift-based position, following a rotation of 2 days (6am-6pm), 2 nights (6pm-6am), 4 days off. Due to the highly secure nature of this work all applicants will be required to gain UK Security Clearance to the highest level. You must be a British National who has been resident in the UK for at least the last 10 years and you cannot have been outside the UK for more than 28 days on any one occasion within the last 5 years. To apply for this role please send your CV in the first instance and if relevant you will be contacted with full role and company information. We are passionate about promoting diversity, inclusion, and equality, and are committed to working with clients who share our outlook. We offer equal opportunities to all candidates regardless of background, identity, sexuality, and disability. We strive to create inclusive cultures where diversity is seen as real value for the company. Our mission is for everyone to feel empowered to be their true authentic selves at work.
May 10, 2025
Full time
Security Operations Centre Lead is required by Logic to work for a large scale industry leading organisation based in Hemel Hempstead. As a SOC Shift Lead, you will ensure the smooth operation and continual enhancement of SOC processes and personnel. You will play a pivotal role in protecting client systems and guiding the team through sophisticated cyber defence challenges. Your responsibilities will include: Monitoring, triaging, and investigating alerts across host and network security systems Performing deep analysis of traffic, logs, and system events to identify threats and vulnerabilities Providing line management to SOC Analysts (team of 4) -developing capability and supporting career progression Enhancing team knowledge across SOC tooling, detection methodologies, and threat triage Analysing and optimising detection rules and use cases based on Mitre Att&ck Maintaining detailed and up-to-date incident documentation, findings, and mitigation strategies Acting as a representative of the SOC in key meetings and internal stakeholder engagements In order to be successful for this role you will need to be able to demonstrate the following experience: Proven experience in a Security Operations Centre (SOC) environment Experience working as a SOC Level 2 Previous people management or line management experience Strong familiarity with SIEM platforms including Microsoft Sentinel and Splunk Knowledge and use of the Mitre Att&ck Framework for detection and threat analysis In-depth understanding of: Client-server applications and multi-tier web environments Relational databases, firewalls, VPNs, enterprise AntiVirus solutions Networking principles (eg TCP/IP, WAN, LAN, SMTP, HTTP, FTP, POP, LDAP) Please note this is a shift-based position, following a rotation of 2 days (6am-6pm), 2 nights (6pm-6am), 4 days off. Due to the highly secure nature of this work all applicants will be required to gain UK Security Clearance to the highest level. You must be a British National who has been resident in the UK for at least the last 10 years and you cannot have been outside the UK for more than 28 days on any one occasion within the last 5 years. To apply for this role please send your CV in the first instance and if relevant you will be contacted with full role and company information. We are passionate about promoting diversity, inclusion, and equality, and are committed to working with clients who share our outlook. We offer equal opportunities to all candidates regardless of background, identity, sexuality, and disability. We strive to create inclusive cultures where diversity is seen as real value for the company. Our mission is for everyone to feel empowered to be their true authentic selves at work.
Job Title: Digital Operations Manager/ IT Manager/IT Operations Support Manager Location: London Department: Digital Operations Salary: 60-70k + Benefits Company Overview: We are dedicated to shaping the future of digital infrastructure and services. We are seeking a highly motivated and experienced Digital Operations Manager to oversee the daily operations of our digital ecosystem, ensuring top-tier performance, security, and compliance. This is an exciting opportunity to lead a dynamic team and drive the success of our digital projects. As the Digital Operations Manager, you will play a pivotal role in maintaining the integrity of our IT systems, collaborating closely with cross-functional teams, and ensuring our digital operations meet the highest standards. Key Responsibilities: Team Leadership and Management: Lead, mentor, and manage a diverse team of IT professionals including an Application Support Specialist, Technical Project Manager, Cyber Security and Compliance Analyst, and End-to-End QA Specialist. Allocate resources efficiently to ensure timely and successful project delivery. Conduct regular performance reviews and provide ongoing feedback to foster growth and development within the team. Operational Oversight: Oversee the daily operations of digital systems, applications, and infrastructure. Ensure high availability and performance of all IT services and applications. Implement and maintain monitoring systems to proactively identify and resolve issues. Application Support: Manage application support activities to ensure the prompt resolution of incidents and service requests. Collaborate with the Application Support Manager to develop and implement effective support processes and documentation. Ensure all applications are updated, patched, and maintained in line with best practices. Technical Project Management: Oversee the planning, execution, and delivery of technical projects. Work closely with the Technical Project Manager to ensure projects are completed on time, within scope, and budget. Facilitate communication and collaboration between project teams and stakeholders. Cyber Security and Compliance: Ensure the implementation and adherence to cyber security policies and procedures. Collaborate with the Cyber Security and Compliance resources to conduct regular security assessments and audits. Manage compliance with relevant regulations and standards, such as GDPR and Cyber Essentials Plus. Quality Assurance: Oversee the end-to-end quality assurance process for all digital products and services. Work with the End-to-End QA Specialist to develop comprehensive test plans and ensure thorough testing. Ensure quality assurance processes are followed to maintain high standards. Strategic Planning and Improvement: Develop and implement strategies to enhance digital operations and IT service delivery. Identify opportunities for process optimisation and efficiency gains. Stakeholder Communication: Act as the primary point of contact for all digital operations-related matters. Provide regular updates to senior management on the status of projects, operational performance, and security compliance. Facilitate effective communication between IT teams and business units. Problem Solving and Incident Management: Manage and resolve high-priority incidents and critical issues. Conduct root cause analysis and implement corrective actions to prevent recurrence. Develop and maintain incident response plans and procedures. Requirements: Proven experience as a Digital Operations Manager, IT Manager, Support Manager, or similar role. Strong leadership and team management skills with the ability to mentor and inspire a diverse team. Excellent understanding of IT infrastructure, application support, and digital operations. Demonstrated experience in managing technical projects and ensuring successful delivery. In-depth knowledge of cyber security principles and compliance requirements. Strong understanding of quality assurance processes and methodologies. Exceptional problem-solving and analytical abilities. Excellent communication and interpersonal skills, with the ability to engage effectively with stakeholders at all levels. Familiarity with IT service management (ITSM) frameworks such as ITIL. Relevant certifications (e.g., PMP, CISSP, ITIL) are advantageous. What We Offer: Competitive salary and benefits package. A dynamic, collaborative work environment with opportunities for professional development and growth. A chance to lead and shape the future of digital operations People Source Consulting Ltd is acting as an Employment Agency in relation to this vacancy. People Source specialise in technology recruitment across niche markets including Information Technology, Digital TV, Digital Marketing, Project and Programme Management, SAP, Digital and Consumer Electronics, Air Traffic Management, Management Consultancy, Business Intelligence, Manufacturing, Telecoms, Public Sector, Healthcare, Finance and Oil & Gas.
May 10, 2025
Full time
Job Title: Digital Operations Manager/ IT Manager/IT Operations Support Manager Location: London Department: Digital Operations Salary: 60-70k + Benefits Company Overview: We are dedicated to shaping the future of digital infrastructure and services. We are seeking a highly motivated and experienced Digital Operations Manager to oversee the daily operations of our digital ecosystem, ensuring top-tier performance, security, and compliance. This is an exciting opportunity to lead a dynamic team and drive the success of our digital projects. As the Digital Operations Manager, you will play a pivotal role in maintaining the integrity of our IT systems, collaborating closely with cross-functional teams, and ensuring our digital operations meet the highest standards. Key Responsibilities: Team Leadership and Management: Lead, mentor, and manage a diverse team of IT professionals including an Application Support Specialist, Technical Project Manager, Cyber Security and Compliance Analyst, and End-to-End QA Specialist. Allocate resources efficiently to ensure timely and successful project delivery. Conduct regular performance reviews and provide ongoing feedback to foster growth and development within the team. Operational Oversight: Oversee the daily operations of digital systems, applications, and infrastructure. Ensure high availability and performance of all IT services and applications. Implement and maintain monitoring systems to proactively identify and resolve issues. Application Support: Manage application support activities to ensure the prompt resolution of incidents and service requests. Collaborate with the Application Support Manager to develop and implement effective support processes and documentation. Ensure all applications are updated, patched, and maintained in line with best practices. Technical Project Management: Oversee the planning, execution, and delivery of technical projects. Work closely with the Technical Project Manager to ensure projects are completed on time, within scope, and budget. Facilitate communication and collaboration between project teams and stakeholders. Cyber Security and Compliance: Ensure the implementation and adherence to cyber security policies and procedures. Collaborate with the Cyber Security and Compliance resources to conduct regular security assessments and audits. Manage compliance with relevant regulations and standards, such as GDPR and Cyber Essentials Plus. Quality Assurance: Oversee the end-to-end quality assurance process for all digital products and services. Work with the End-to-End QA Specialist to develop comprehensive test plans and ensure thorough testing. Ensure quality assurance processes are followed to maintain high standards. Strategic Planning and Improvement: Develop and implement strategies to enhance digital operations and IT service delivery. Identify opportunities for process optimisation and efficiency gains. Stakeholder Communication: Act as the primary point of contact for all digital operations-related matters. Provide regular updates to senior management on the status of projects, operational performance, and security compliance. Facilitate effective communication between IT teams and business units. Problem Solving and Incident Management: Manage and resolve high-priority incidents and critical issues. Conduct root cause analysis and implement corrective actions to prevent recurrence. Develop and maintain incident response plans and procedures. Requirements: Proven experience as a Digital Operations Manager, IT Manager, Support Manager, or similar role. Strong leadership and team management skills with the ability to mentor and inspire a diverse team. Excellent understanding of IT infrastructure, application support, and digital operations. Demonstrated experience in managing technical projects and ensuring successful delivery. In-depth knowledge of cyber security principles and compliance requirements. Strong understanding of quality assurance processes and methodologies. Exceptional problem-solving and analytical abilities. Excellent communication and interpersonal skills, with the ability to engage effectively with stakeholders at all levels. Familiarity with IT service management (ITSM) frameworks such as ITIL. Relevant certifications (e.g., PMP, CISSP, ITIL) are advantageous. What We Offer: Competitive salary and benefits package. A dynamic, collaborative work environment with opportunities for professional development and growth. A chance to lead and shape the future of digital operations People Source Consulting Ltd is acting as an Employment Agency in relation to this vacancy. People Source specialise in technology recruitment across niche markets including Information Technology, Digital TV, Digital Marketing, Project and Programme Management, SAP, Digital and Consumer Electronics, Air Traffic Management, Management Consultancy, Business Intelligence, Manufacturing, Telecoms, Public Sector, Healthcare, Finance and Oil & Gas.
Role: Security Analyst - remote Location: London Salary: 40,000 Are you an experienced security analyst looking for your next opportunity in the security industry? If so, this so this is the perfect opportunity for you! I am working with a leading security service provider who are looking for a Security analyst to join their growing and dedicated team in providing some the UKs largest organisations with a range of services such as, pen testing, major incident response, digital forensics, and more. This is a great opportunity for an individual to further their security career in a focused environment surrounded by likeminded individuals. The role: Respond to SIEM alerts and action remediations. Perform and report on vulnerability scans. Manage request changes of clients This is a brilliant opportunity for someone with a passion for cyber security, and a couple of years in IT/Security roles to develop as an engineer very quickly in a security focussed environment, one not to be missed. If you wish to be considered, apply now with an up-to-date CV or contact me directly at jordan com ACTIVELY INTERVIEWING NOW! In Technology Group Ltd is acting as an Employment Agency in relation to this vacancy.
May 10, 2025
Full time
Role: Security Analyst - remote Location: London Salary: 40,000 Are you an experienced security analyst looking for your next opportunity in the security industry? If so, this so this is the perfect opportunity for you! I am working with a leading security service provider who are looking for a Security analyst to join their growing and dedicated team in providing some the UKs largest organisations with a range of services such as, pen testing, major incident response, digital forensics, and more. This is a great opportunity for an individual to further their security career in a focused environment surrounded by likeminded individuals. The role: Respond to SIEM alerts and action remediations. Perform and report on vulnerability scans. Manage request changes of clients This is a brilliant opportunity for someone with a passion for cyber security, and a couple of years in IT/Security roles to develop as an engineer very quickly in a security focussed environment, one not to be missed. If you wish to be considered, apply now with an up-to-date CV or contact me directly at jordan com ACTIVELY INTERVIEWING NOW! In Technology Group Ltd is acting as an Employment Agency in relation to this vacancy.
Programme Manager - Cyber Security & OT Permanent Worthing (Hybrid) 70,000 per annum We're supporting a major organisation on the South Coast looking for an experienced Programme Manager with a proven track record in delivering complex IT and Cyber Security programmes across Operational Technology (OT) and Network Information Systems environments. This permanent role offers the opportunity to lead a portfolio of business-critical cyber initiatives, ensuring compliance with industry regulations (including NISCAF) and driving transformation in a heavily integrated, legacy-heavy landscape. Responsibilities Leading and coordinating the delivery of cyber security programmes, particularly across OT and network infrastructure Managing a portfolio of projects, ensuring alignment with business objectives, regulatory compliance, and information security standards Overseeing the full delivery lifecycle - from initiation and design through to implementation and transition Line-managing a team of Project Managers and Analysts, providing mentorship, oversight, and strategic direction Collaborating with cross-functional teams including IT, InfoSec, business stakeholders, and external vendors Driving quality assurance across projects, enforcing governance and standards, and managing interdependencies Reporting on project progress, budgets, risks, and compliance issues to senior leadership and relevant authorities Requirements Deep experience managing cyber security and network information security programmes, including NISCAF compliance Strong understanding of Operational Technology (OT) environments and associated risks Solid background delivering complex IT and business change projects within legacy system landscapes Demonstrable leadership in managing project teams, third-party suppliers, and internal stakeholders Familiarity with delivery methodologies (Prince2, PMP, Agile) Proven ability to manage large portfolios and influence stakeholders across IT and business functions Strong knowledge of risk management, regulatory frameworks, and security governance Water or utilities industry experience would be advantageous
May 10, 2025
Full time
Programme Manager - Cyber Security & OT Permanent Worthing (Hybrid) 70,000 per annum We're supporting a major organisation on the South Coast looking for an experienced Programme Manager with a proven track record in delivering complex IT and Cyber Security programmes across Operational Technology (OT) and Network Information Systems environments. This permanent role offers the opportunity to lead a portfolio of business-critical cyber initiatives, ensuring compliance with industry regulations (including NISCAF) and driving transformation in a heavily integrated, legacy-heavy landscape. Responsibilities Leading and coordinating the delivery of cyber security programmes, particularly across OT and network infrastructure Managing a portfolio of projects, ensuring alignment with business objectives, regulatory compliance, and information security standards Overseeing the full delivery lifecycle - from initiation and design through to implementation and transition Line-managing a team of Project Managers and Analysts, providing mentorship, oversight, and strategic direction Collaborating with cross-functional teams including IT, InfoSec, business stakeholders, and external vendors Driving quality assurance across projects, enforcing governance and standards, and managing interdependencies Reporting on project progress, budgets, risks, and compliance issues to senior leadership and relevant authorities Requirements Deep experience managing cyber security and network information security programmes, including NISCAF compliance Strong understanding of Operational Technology (OT) environments and associated risks Solid background delivering complex IT and business change projects within legacy system landscapes Demonstrable leadership in managing project teams, third-party suppliers, and internal stakeholders Familiarity with delivery methodologies (Prince2, PMP, Agile) Proven ability to manage large portfolios and influence stakeholders across IT and business functions Strong knowledge of risk management, regulatory frameworks, and security governance Water or utilities industry experience would be advantageous
SOC Analyst Salary Range: 50,000 to 60,000 per annum (pro rata) Contract Type: 6-Month Fixed Term Location: Bristol (Hybrid - up to 3 days per week in office) Successful candidates must undergo pre-employment screening and meet UK National Security Vetting criteria. Role Overview As an SOC Analyst, you will be an integral part of the Security Operations Centre, responsible for monitoring, analysing, and responding to security threats and incidents. Your role will involve working with cutting-edge security tools and technologies to protect the IT infrastructure from cyber threats. You will collaborate with various teams to ensure a robust security posture and contribute to the continuous improvement of our security operations. Essential Skills Experience with security monitoring tools (e.g., SIEM). Strong analytical skills to assess complex security issues. Cyber incident response and handling experience. Ability to identify and mitigate security threats. Happy working in a fast-paced environment. Strong communication skills. Problem-solving and analytical skills. Key Responsibilities Monitor security alerts and logs from various sources, including SIEM systems, for suspicious activity. Analyse and investigate security incidents to determine their impact and root cause. Respond to security incidents, including containment, eradication, and recovery. Perform forensic analysis. Develop trusting relationships with critical third-party security providers. Prepare reports on security incidents and recommend improvements. Develop threat intelligence relevant to the business. Conduct threat hunting, vulnerability analysis, and penetration testing to identify risks. Continually assess security systems, suggesting appropriate tools and countermeasures. Prepare and maintain security and incident response documentation. Collaborate with management, IT, and other departments to implement security improvements. Participate in security audits and assessments. Stay updated with the latest cybersecurity trends, threats, and technologies. Qualifications Relevant certifications (e.g., CompTIA Security+, CEH, CISSP) are desirable. Technical Proficiency Strong understanding of IT security tools (SIEM, EDR, XDR), threat detection, and log analysis. Familiarity with scripting (Python, PowerShell, KQL) for automation. Benefits Competitive salary with annual reviews. 25 days holiday + option to buy additional leave. Flexible working policies. Enhanced parental benefits. Company pension scheme. Professional development support. Life assurance. Private healthcare. Performance-based bonus scheme. Support for professional memberships. Cycle-to-work scheme. Season ticket loan. Tailored optional benefits Services advertised by Gold Group are those of an Agency and/or an Employment Business. We will contact you within the next 14 days if you are selected for interview. For a copy of our privacy policy please visit our website.
May 10, 2025
Seasonal
SOC Analyst Salary Range: 50,000 to 60,000 per annum (pro rata) Contract Type: 6-Month Fixed Term Location: Bristol (Hybrid - up to 3 days per week in office) Successful candidates must undergo pre-employment screening and meet UK National Security Vetting criteria. Role Overview As an SOC Analyst, you will be an integral part of the Security Operations Centre, responsible for monitoring, analysing, and responding to security threats and incidents. Your role will involve working with cutting-edge security tools and technologies to protect the IT infrastructure from cyber threats. You will collaborate with various teams to ensure a robust security posture and contribute to the continuous improvement of our security operations. Essential Skills Experience with security monitoring tools (e.g., SIEM). Strong analytical skills to assess complex security issues. Cyber incident response and handling experience. Ability to identify and mitigate security threats. Happy working in a fast-paced environment. Strong communication skills. Problem-solving and analytical skills. Key Responsibilities Monitor security alerts and logs from various sources, including SIEM systems, for suspicious activity. Analyse and investigate security incidents to determine their impact and root cause. Respond to security incidents, including containment, eradication, and recovery. Perform forensic analysis. Develop trusting relationships with critical third-party security providers. Prepare reports on security incidents and recommend improvements. Develop threat intelligence relevant to the business. Conduct threat hunting, vulnerability analysis, and penetration testing to identify risks. Continually assess security systems, suggesting appropriate tools and countermeasures. Prepare and maintain security and incident response documentation. Collaborate with management, IT, and other departments to implement security improvements. Participate in security audits and assessments. Stay updated with the latest cybersecurity trends, threats, and technologies. Qualifications Relevant certifications (e.g., CompTIA Security+, CEH, CISSP) are desirable. Technical Proficiency Strong understanding of IT security tools (SIEM, EDR, XDR), threat detection, and log analysis. Familiarity with scripting (Python, PowerShell, KQL) for automation. Benefits Competitive salary with annual reviews. 25 days holiday + option to buy additional leave. Flexible working policies. Enhanced parental benefits. Company pension scheme. Professional development support. Life assurance. Private healthcare. Performance-based bonus scheme. Support for professional memberships. Cycle-to-work scheme. Season ticket loan. Tailored optional benefits Services advertised by Gold Group are those of an Agency and/or an Employment Business. We will contact you within the next 14 days if you are selected for interview. For a copy of our privacy policy please visit our website.
IT Information Security Analyst - Swindon - Perm - Hybrid Are you passionate about protecting critical systems and data? We're on the lookout for a proactive and solution-driven Information Security Analyst to be part of our forward-thinking global IT team. While this role is UK-based, your influence will be felt across our international operations. What You'll Be Doing You won't just be ticking compliance boxes-you'll be leading the charge in fortifying our organisation's security posture. Keep our local IT security framework in sync with wider Group standards by developing and updating policies, procedures, and guidance. Run scheduled audits and follow through with actionable improvements. Roll out and stress-test our business continuity approach. Turn data into insights with management reports that track compliance trends. Partner with teams across the globe to design, implement, and test security tools and controls. Lead the journey to achieving and maintaining ISO 27001 certification. Stay sharp on cybersecurity developments, translating new risks and regulations into meaningful action. Drive cultural change by creating impactful cybersecurity awareness campaigns. Vet suppliers and their platforms from a security lens to ensure we're only working with trusted partners. Support 25 National Sales Companies (NSCs) in aligning with global security expectations. What You Bring to the Table We're looking for a curious, thoughtful, and detail-oriented professional. Hands-on experience implementing and auditing against ISO 27001 standards. A solid foundation in enterprise-level Information Security practices. Strong analytical skills and a calm approach under competing demands. Familiarity with threat landscapes, vulnerability management, and risk frameworks. Willingness to travel within the UK and potentially abroad when needed-UK driving license required Why You'll Love Working With Us We believe exceptional work should be rewarded-and supported with a culture that prioritises wellbeing, growth, and flexibility. Rewards & Recognition 1,000 referral incentive Up to 8% employer pension contributions Annual bonus scheme Full sick pay cover Clear growth and development pathways Access to salary finance services Life assurance Schemes to support mortgage overpayments and ISA savings Company loan car scheme Paid time off with full pay Location: Swindon (Hybrid Working) Salary: 40,000 - 50,000 per annum Contract Type: Permanent Hours: Full Time If you're ready to elevate your career while making a difference in how we protect our people, systems, and data, we'd love to hear from you. Randstad Technologies Ltd is a leading specialist recruitment business for the IT & Engineering industries. Please note that due to a high level of applications, we can only respond to applicants whose skills & qualifications are suitable for this position. No terminology in this advert is intended to discriminate against any of the protected characteristics that fall under the Equality Act 2010. For the purposes of the Conduct Regulations 2003, when advertising permanent vacancies we are acting as an Employment Agency, and when advertising temporary/contract vacancies we are acting as an Employment Business.
May 10, 2025
Full time
IT Information Security Analyst - Swindon - Perm - Hybrid Are you passionate about protecting critical systems and data? We're on the lookout for a proactive and solution-driven Information Security Analyst to be part of our forward-thinking global IT team. While this role is UK-based, your influence will be felt across our international operations. What You'll Be Doing You won't just be ticking compliance boxes-you'll be leading the charge in fortifying our organisation's security posture. Keep our local IT security framework in sync with wider Group standards by developing and updating policies, procedures, and guidance. Run scheduled audits and follow through with actionable improvements. Roll out and stress-test our business continuity approach. Turn data into insights with management reports that track compliance trends. Partner with teams across the globe to design, implement, and test security tools and controls. Lead the journey to achieving and maintaining ISO 27001 certification. Stay sharp on cybersecurity developments, translating new risks and regulations into meaningful action. Drive cultural change by creating impactful cybersecurity awareness campaigns. Vet suppliers and their platforms from a security lens to ensure we're only working with trusted partners. Support 25 National Sales Companies (NSCs) in aligning with global security expectations. What You Bring to the Table We're looking for a curious, thoughtful, and detail-oriented professional. Hands-on experience implementing and auditing against ISO 27001 standards. A solid foundation in enterprise-level Information Security practices. Strong analytical skills and a calm approach under competing demands. Familiarity with threat landscapes, vulnerability management, and risk frameworks. Willingness to travel within the UK and potentially abroad when needed-UK driving license required Why You'll Love Working With Us We believe exceptional work should be rewarded-and supported with a culture that prioritises wellbeing, growth, and flexibility. Rewards & Recognition 1,000 referral incentive Up to 8% employer pension contributions Annual bonus scheme Full sick pay cover Clear growth and development pathways Access to salary finance services Life assurance Schemes to support mortgage overpayments and ISA savings Company loan car scheme Paid time off with full pay Location: Swindon (Hybrid Working) Salary: 40,000 - 50,000 per annum Contract Type: Permanent Hours: Full Time If you're ready to elevate your career while making a difference in how we protect our people, systems, and data, we'd love to hear from you. Randstad Technologies Ltd is a leading specialist recruitment business for the IT & Engineering industries. Please note that due to a high level of applications, we can only respond to applicants whose skills & qualifications are suitable for this position. No terminology in this advert is intended to discriminate against any of the protected characteristics that fall under the Equality Act 2010. For the purposes of the Conduct Regulations 2003, when advertising permanent vacancies we are acting as an Employment Agency, and when advertising temporary/contract vacancies we are acting as an Employment Business.
Elevate your career to new heights by joining our dynamic team, driven by a profound mission to safeguard national infrastructure. As a Senior Security Operations Centre (SOC) Analyst you'll also enjoy a rewarding salary and comprehensive benefits package crafted to fuel both your professional and personal aspirations. It would be advantageous for you to be SC cleared and be eligible to go through DV clearance as well. We are seeking someone with profound SOC experience, particularly at SOC Level 2. Mastery of SIEM tools such as Microsoft Sentinel and Splunk is crucial, along with a deep understanding of network protocols and infrastructure, including TCP/IP, VPNs, and firewalls. Your expertise in incident response and threat intelligence analysis is essential, as is your familiarity with the Mitre Att&ck framework and advanced threat detection techniques. Strong analytical and problem-solving skills are indispensable, as is the ability to offer mentorship and leadership within a SOC team. it would be highly desirable to have cybersecurity certifications like CRT or OSCP, and a proven talent for fine-tuning detection logic and enhancing SOC processes. Active engagement with the cybersecurity community and awareness of emerging trends will significantly bolster your application In this pivotal role, you will lead incident response initiatives, refine detection mechanisms, and mentor junior analysts. Key responsibilities include: Analysing security incidents using advanced SIEM platforms (Microsoft Sentinel, Splunk) Leading incident response and fortifying detection and containment strategies Tuning and maintaining detection rules, leveraging frameworks like Mitre Att&ck Collaborating with colleagues to enhance the Security Operations Centre's capabilities Staying abreast of cyber threat developments and contributing to best practices Supporting the continuous growth of the SOC team through knowledge sharing and mentorship The successful SOC analyst will join a key player in delivering impactful digital solutions to central government clients, ensuring national security by protecting and optimising mission-critical systems. This is more than a job; it s an unparalleled opportunity to make a meaningful impact in a highly secure and rewarding environment.
May 10, 2025
Full time
Elevate your career to new heights by joining our dynamic team, driven by a profound mission to safeguard national infrastructure. As a Senior Security Operations Centre (SOC) Analyst you'll also enjoy a rewarding salary and comprehensive benefits package crafted to fuel both your professional and personal aspirations. It would be advantageous for you to be SC cleared and be eligible to go through DV clearance as well. We are seeking someone with profound SOC experience, particularly at SOC Level 2. Mastery of SIEM tools such as Microsoft Sentinel and Splunk is crucial, along with a deep understanding of network protocols and infrastructure, including TCP/IP, VPNs, and firewalls. Your expertise in incident response and threat intelligence analysis is essential, as is your familiarity with the Mitre Att&ck framework and advanced threat detection techniques. Strong analytical and problem-solving skills are indispensable, as is the ability to offer mentorship and leadership within a SOC team. it would be highly desirable to have cybersecurity certifications like CRT or OSCP, and a proven talent for fine-tuning detection logic and enhancing SOC processes. Active engagement with the cybersecurity community and awareness of emerging trends will significantly bolster your application In this pivotal role, you will lead incident response initiatives, refine detection mechanisms, and mentor junior analysts. Key responsibilities include: Analysing security incidents using advanced SIEM platforms (Microsoft Sentinel, Splunk) Leading incident response and fortifying detection and containment strategies Tuning and maintaining detection rules, leveraging frameworks like Mitre Att&ck Collaborating with colleagues to enhance the Security Operations Centre's capabilities Staying abreast of cyber threat developments and contributing to best practices Supporting the continuous growth of the SOC team through knowledge sharing and mentorship The successful SOC analyst will join a key player in delivering impactful digital solutions to central government clients, ensuring national security by protecting and optimising mission-critical systems. This is more than a job; it s an unparalleled opportunity to make a meaningful impact in a highly secure and rewarding environment.
Cyber Threat Intelligence Analyst Full Time / Permanent 60,000 - 70,000 + bonus, private medical, double matched pension Warwickshire / Hybrid The Role and Company: I am looking for a driven Cyber Threat Intelligence Analyst to join a large nationally recognised brand head quartered in the West Midlands. As a Cyber Threat Intelligence Analyst you will work alongside the engineering team ensuring they know what to focus on and understand what emerging and advanced persistent threat actors are leveraging to compromise systems. The role will work in tandem with the rest of threat detection engineering to provide technical threat intelligence. You will provide actionable technical intelligence to detection engineers, threat hunters and security operations. We are ideally looking for someone Midlands based who can be on site in Warwickshire once a week / fortnight on average. Responsibilities and Experience required: Conduct in-depth analysis of threat groups, their capabilities, motivations, and tactics Excellent written and verbal communication ability Articulating complex concepts to various stakeholders across the business. Knowledge of tactics, techniques and procedures that involve cloud technology. Proficiency in relevant cyber threat intelligence tools and technologies. Self-motivated with strong problem-solving and critical thinking skills A strong attention to detail including being able to find new and emerging threats/malware that impact systems and technology. Consuming new threat reports, extracting relevant and actionable intelligence including TTPs and behavioural indicators. Working closely with detection engineers and threat hunters to build bespoke detections to detect novel TTPs based on intelligence. Develop comprehensive threat intelligence reports detailing your findings, risk assessments, and recommended mitigation strategies. Monitor and gather threat intelligence from open sources, dark web forums, industry feeds, and other relevant data sources. Please apply via the link or contact (url removed) for more information Modis International Ltd acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers in the UK. Modis Europe Ltd provide a variety of international solutions that connect clients to the best talent in the world. For all positions based in Switzerland, Modis Europe Ltd works with its licensed Swiss partner Accurity GmbH to ensure that candidate applications are handled in accordance with Swiss law. Both Modis International Ltd and Modis Europe Ltd are Equal Opportunities Employers. By applying for this role your details will be submitted to Modis International Ltd and/ or Modis Europe Ltd. Our Candidate Privacy Information Statement which explains how we will use your information is available on the Modis website.
May 10, 2025
Full time
Cyber Threat Intelligence Analyst Full Time / Permanent 60,000 - 70,000 + bonus, private medical, double matched pension Warwickshire / Hybrid The Role and Company: I am looking for a driven Cyber Threat Intelligence Analyst to join a large nationally recognised brand head quartered in the West Midlands. As a Cyber Threat Intelligence Analyst you will work alongside the engineering team ensuring they know what to focus on and understand what emerging and advanced persistent threat actors are leveraging to compromise systems. The role will work in tandem with the rest of threat detection engineering to provide technical threat intelligence. You will provide actionable technical intelligence to detection engineers, threat hunters and security operations. We are ideally looking for someone Midlands based who can be on site in Warwickshire once a week / fortnight on average. Responsibilities and Experience required: Conduct in-depth analysis of threat groups, their capabilities, motivations, and tactics Excellent written and verbal communication ability Articulating complex concepts to various stakeholders across the business. Knowledge of tactics, techniques and procedures that involve cloud technology. Proficiency in relevant cyber threat intelligence tools and technologies. Self-motivated with strong problem-solving and critical thinking skills A strong attention to detail including being able to find new and emerging threats/malware that impact systems and technology. Consuming new threat reports, extracting relevant and actionable intelligence including TTPs and behavioural indicators. Working closely with detection engineers and threat hunters to build bespoke detections to detect novel TTPs based on intelligence. Develop comprehensive threat intelligence reports detailing your findings, risk assessments, and recommended mitigation strategies. Monitor and gather threat intelligence from open sources, dark web forums, industry feeds, and other relevant data sources. Please apply via the link or contact (url removed) for more information Modis International Ltd acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers in the UK. Modis Europe Ltd provide a variety of international solutions that connect clients to the best talent in the world. For all positions based in Switzerland, Modis Europe Ltd works with its licensed Swiss partner Accurity GmbH to ensure that candidate applications are handled in accordance with Swiss law. Both Modis International Ltd and Modis Europe Ltd are Equal Opportunities Employers. By applying for this role your details will be submitted to Modis International Ltd and/ or Modis Europe Ltd. Our Candidate Privacy Information Statement which explains how we will use your information is available on the Modis website.
