Senior Project Manager (inside IR35)

A Senior Project Manager with an information security background is required to work on a six month contract, with the possibility of extension for our defence client based in Preston.

Overview of the Senior Project Manager contract role

Overall responsibility to deliver internal and external business and enterprise projects to cost timescales, quality and customer satisfaction.

The projects range from technology and applications to business change focused on transition and transformation and customer tactical and strategic road maps.

The incumbent will be expected to shape, mobilise, plan and lead internal and external projects whilst adhering to internal delivery assurance processes and will be required to collaborate within the Portfolio and Project Management Team (PPM) to address lessons learned, share good practice and continuously improve delivery management.

Required skills / exposure

• Required - Security project experience
• Required - Familiar with Security Standards and documentation (e.g. ISO27000 / RMADS / GPG13 etc. etc.)
• Required - Experience with working in accredited environments (e.g. IL3 / IL5)
• Required - Strong financial / budgetary experience (e.g. managing IBP, £10M annual budgets, etc.)
• Required - People Management Skills and experience (not much people management still in the generic role description
• Required - People Management Skills and experience (not much people management still in the generic role description
• Required - Excel knowledge to an advanced standard
• Desirable - Engineering background
• Desirable - Experience with working within and with sign-on projects
• Desirable - Security qualification / certification (e.g. CISM from ISACA)

Do you know anyone who might be looking for a new role? You could benefit from our candidate referral scheme. Contact me on the above contact details for more information.

Outsource. Our People. Your Success.

Outsource UK is one of the country's largest and most successful independent recruitment consultancies, specialising in the IT, Digital, Financial Services and Engineering sectors.

We recruit talented people for contract and permanent opportunities, offer a consultative approach and have a reputation for providing a superior service to both clients and candidates.

The business focuses on building long lasting relationships based on reliability and trust. We do this by hiring and retaining a great team of recruitment consultants who listen and understand our client's and candidate's needs.

Our Manchester office (which covers the whole of the UK) provides a "one-stop shop" to clients and candidates operating in the engineering and manufacturing sectors and, in addition to Engineers, we source and provide temporary/contract and permanent opportunities for IT, Programme Management and Support Professionals (including Procurement / Purchasing / Supply Chain, HR, Finance and Administrative Support).

Please visit our website www.outsource-uk.co.uk

Senior Project Manager (inside IR35)

A Senior Project Manager with an information security background is required to work on a six month contract, with the possibility of extension for our defence client based in Preston.

Overview of the Senior Project Manager contract role

Overall responsibility to deliver internal and external business and enterprise projects to cost timescales, quality and customer satisfaction.

The projects range from technology and applications to business change focused on transition and transformation and customer tactical and strategic road maps.

The incumbent will be expected to shape, mobilise, plan and lead internal and external projects whilst adhering to internal delivery assurance processes and will be required to collaborate within the Portfolio and Project Management Team (PPM) to address lessons learned, share good practice and continuously improve delivery management.

Required skills / exposure

• Required - Security project experience
• Required - Familiar with Security Standards and documentation (e.g. ISO27000 / RMADS / GPG13 etc. etc.)
• Required - Experience with working in accredited environments (e.g. IL3 / IL5)
• Required - Strong financial / budgetary experience (e.g. managing IBP, £10M annual budgets, etc.)
• Required - People Management Skills and experience (not much people management still in the generic role description
• Required - People Management Skills and experience (not much people management still in the generic role description
• Required - Excel knowledge to an advanced standard
• Desirable - Engineering background
• Desirable - Experience with working within and with sign-on projects
• Desirable - Security qualification / certification (e.g. CISM from ISACA)

Do you know anyone who might be looking for a new role? You could benefit from our candidate referral scheme. Contact me on the above contact details for more information.

Outsource. Our People. Your Success.

Outsource UK is one of the country's largest and most successful independent recruitment consultancies, specialising in the IT, Digital, Financial Services and Engineering sectors.

We recruit talented people for contract and permanent opportunities, offer a consultative approach and have a reputation for providing a superior service to both clients and candidates.

The business focuses on building long lasting relationships based on reliability and trust. We do this by hiring and retaining a great team of recruitment consultants who listen and understand our client's and candidate's needs.

Our Manchester office (which covers the whole of the UK) provides a "one-stop shop" to clients and candidates operating in the engineering and manufacturing sectors and, in addition to Engineers, we source and provide temporary/contract and permanent opportunities for IT, Programme Management and Support Professionals (including Procurement / Purchasing / Supply Chain, HR, Finance and Administrative Support).

Please visit our website www.outsource-uk.co.uk

Tester, Automation

Your new company
This is one of the UK's leading brands originally known as one the biggest produces of paper maps they are transforming there business to produce digital map data, online route planning, sharing services and mobile apps plus many other location based products.

Your new role
We are looking for a proactive and technical Test Automation Engineer to join our test community within the Engineering group to drive the test automation and performance activities for a large geospatial investment programme.

• To provide test assurance by developing and maintaining the integration automation test framework in a test-first environment.
• Be responsible for defining and delivering performance test activities across multiple delivery teams to meet the requirements and ambitions of our stakeholders, whist contributing to effective agile delivery.
• The role will include daily contact with stakeholders, product owners and on-site team members to understand functional and non-functional requirements and design BDD integration and performance test scenarios according to the acceptance criteria.
• Regular participation in team estimation activities identifying opportunities to maximise test benefit within the team.
• Report to and provide regular updates to the domain Test Lead as well as provide mentoring and coaching to team members regarding test good practices.
• Responsible for developing the integration test automation framework in Python using public cloud architecture and on-premise systems.
• Provide assurance at team retrospectives and planning sessions to ensure good practice, continual improvements and appropriate standards are adhered to.

What you'll need to succeed
Experience: This is a technical role and requires expert knowledge of building and maintaining test automation frameworks in a CI/CD environment in the cloud.

• Proven experience of delivering automated test frameworks (Python) in a test-first CI/CD environment is essential
• Ability to define the appropriate end to end test approach for automation of a large and complex work programme
• Proven analytical skills, designing and implementing BDD feature files for functional and non-functional test activities is essential
• Data test experience, particularly with ETL systems
• Familiarity with RESTful interface testing

Behaviours:

• Experience of allocating and prioritising own work and working across multiple delivery teams
• Good knowledge of agile methodologies and software engineering best practice
• Coaching and mentoring experience
• Excellent verbal and written communication skills with ability to effectively communicate with stakeholders and customers

Technologies:

• Proven technical skills in one or more of the following tools is essential: Azure DevOps, Cucumber, JMeter, Selenium
• Working knowledge of programming languages and frameworks such as: JavaScript, Python, SQL, Visual Studio

What you'll get in return
£Flex Day rate, 6 month contract (Inside IR35)

What you need to do now
If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.
If this job isn't quite right for you but you are looking for a new position, please contact us for a confidential discussion on your career.

Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk

Tester, Automation

Your new company
This is one of the UK's leading brands originally known as one the biggest produces of paper maps they are transforming there business to produce digital map data, online route planning, sharing services and mobile apps plus many other location based products.

Your new role
We are looking for a proactive and technical Test Automation Engineer to join our test community within the Engineering group to drive the test automation and performance activities for a large geospatial investment programme.

• To provide test assurance by developing and maintaining the integration automation test framework in a test-first environment.
• Be responsible for defining and delivering performance test activities across multiple delivery teams to meet the requirements and ambitions of our stakeholders, whist contributing to effective agile delivery.
• The role will include daily contact with stakeholders, product owners and on-site team members to understand functional and non-functional requirements and design BDD integration and performance test scenarios according to the acceptance criteria.
• Regular participation in team estimation activities identifying opportunities to maximise test benefit within the team.
• Report to and provide regular updates to the domain Test Lead as well as provide mentoring and coaching to team members regarding test good practices.
• Responsible for developing the integration test automation framework in Python using public cloud architecture and on-premise systems.
• Provide assurance at team retrospectives and planning sessions to ensure good practice, continual improvements and appropriate standards are adhered to.

What you'll need to succeed
Experience: This is a technical role and requires expert knowledge of building and maintaining test automation frameworks in a CI/CD environment in the cloud.

• Proven experience of delivering automated test frameworks (Python) in a test-first CI/CD environment is essential
• Ability to define the appropriate end to end test approach for automation of a large and complex work programme
• Proven analytical skills, designing and implementing BDD feature files for functional and non-functional test activities is essential
• Data test experience, particularly with ETL systems
• Familiarity with RESTful interface testing

Behaviours:

• Experience of allocating and prioritising own work and working across multiple delivery teams
• Good knowledge of agile methodologies and software engineering best practice
• Coaching and mentoring experience
• Excellent verbal and written communication skills with ability to effectively communicate with stakeholders and customers

Technologies:

• Proven technical skills in one or more of the following tools is essential: Azure DevOps, Cucumber, JMeter, Selenium
• Working knowledge of programming languages and frameworks such as: JavaScript, Python, SQL, Visual Studio

What you'll get in return
£Flex Day rate, 6 month contract (Inside IR35)

What you need to do now
If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.
If this job isn't quite right for you but you are looking for a new position, please contact us for a confidential discussion on your career.

Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk

ALL APPLICANTS PLEASE BE AWARE THAT THIS ROLE IS INSIDE OF IR35...

Parity Group are delighted to be engaged with a well-known progressive organisation on a large project and as a result have the need for an Automation Test Engineer to join their team based in Southampton on a 6 months contract.

Role:

We are looking for a proactive and technical Test Automation Engineer to join our test community within the Engineering group to drive the test automation and performance activities for a large geospatial investment programme.

• To provide test assurance by developing and maintaining the integration automation test framework in a test-first environment.
• Be responsible for defining and delivering performance test activities across multiple delivery teams to meet the requirements and ambitions of our stakeholders, whist contributing to effective agile delivery.
• The role will include daily contact with stakeholders, product owners and on-site team members to understand functional and non-functional requirements and design BDD integration and performance test scenarios according to the acceptance criteria.
• Regular participation in team estimation activities identifying opportunities to maximise test benefit within the team.
• Report to and provide regular updates to the domain Test Lead as well as provide mentoring and coaching to team members regarding test good practices.
• Responsible for developing the integration test automation framework in Python using public cloud architecture and on-premise systems.
• Provide assurance at team retrospectives and planning sessions to ensure good practice, continual improvements and appropriate standards are adhered to.

Experience:

This is a technical role and requires expert knowledge of building and maintaining test automation frameworks in a CI/CD environment in the cloud.

• Proven experience of delivering automated test frameworks (Python) in a test-first CI/CD environment is essential
• Ability to define the appropriate end to end test approach for automation of a large and complex work programme
• Proven analytical skills, designing and implementing BDD feature files for functional and non-functional test activities is essential
• Data test experience, particularly with ETL systems
• Familiarity with RESTful interface testing

Behaviours:

• Experience of allocating and prioritising own work and working across multiple delivery teams
• Good knowledge of agile methodologies and software engineering best practice
• Coaching and mentoring experience
• Excellent verbal and written communication skills with ability to effectively communicate with stakeholders and customers

Technologies:

• Proven technical skills in one or more of the following tools is essential: Azure DevOps, Cucumber, JMeter, Selenium
• Working knowledge of programming languages and frameworks such as: JavaScript, Python, SQL, Visual Studio

If this sounds like the right role for you then wait no longer and get in touch immediately by applying with your CV or give Kishia Odiaka a call for a brief discussion and immediate consideration.

ALL APPLICANTS PLEASE BE AWARE THAT THIS ROLE IS INSIDE OF IR35...

Parity - Better Decisions : Better People

Parity Group plc acts in the capacity of an Employment Agency when providing contract recruitment services.

We welcome applications from all sections of society and applicants will be considered on the basis of their suitability for the position

At Parity, we are committed to protecting your privacy, we will process and hold your CV and use the information you have provided lawfully and in accordance with our Terms and Conditions and our Privacy Policy.

ALL APPLICANTS PLEASE BE AWARE THAT THIS ROLE IS INSIDE OF IR35...

Parity Group are delighted to be engaged with a well-known progressive organisation on a large project and as a result have the need for an Automation Test Engineer to join their team based in Southampton on a 6 months contract.

Role:

We are looking for a proactive and technical Test Automation Engineer to join our test community within the Engineering group to drive the test automation and performance activities for a large geospatial investment programme.

• To provide test assurance by developing and maintaining the integration automation test framework in a test-first environment.
• Be responsible for defining and delivering performance test activities across multiple delivery teams to meet the requirements and ambitions of our stakeholders, whist contributing to effective agile delivery.
• The role will include daily contact with stakeholders, product owners and on-site team members to understand functional and non-functional requirements and design BDD integration and performance test scenarios according to the acceptance criteria.
• Regular participation in team estimation activities identifying opportunities to maximise test benefit within the team.
• Report to and provide regular updates to the domain Test Lead as well as provide mentoring and coaching to team members regarding test good practices.
• Responsible for developing the integration test automation framework in Python using public cloud architecture and on-premise systems.
• Provide assurance at team retrospectives and planning sessions to ensure good practice, continual improvements and appropriate standards are adhered to.

Experience:

This is a technical role and requires expert knowledge of building and maintaining test automation frameworks in a CI/CD environment in the cloud.

• Proven experience of delivering automated test frameworks (Python) in a test-first CI/CD environment is essential
• Ability to define the appropriate end to end test approach for automation of a large and complex work programme
• Proven analytical skills, designing and implementing BDD feature files for functional and non-functional test activities is essential
• Data test experience, particularly with ETL systems
• Familiarity with RESTful interface testing

Behaviours:

• Experience of allocating and prioritising own work and working across multiple delivery teams
• Good knowledge of agile methodologies and software engineering best practice
• Coaching and mentoring experience
• Excellent verbal and written communication skills with ability to effectively communicate with stakeholders and customers

Technologies:

• Proven technical skills in one or more of the following tools is essential: Azure DevOps, Cucumber, JMeter, Selenium
• Working knowledge of programming languages and frameworks such as: JavaScript, Python, SQL, Visual Studio

If this sounds like the right role for you then wait no longer and get in touch immediately by applying with your CV or give Kishia Odiaka a call for a brief discussion and immediate consideration.

ALL APPLICANTS PLEASE BE AWARE THAT THIS ROLE IS INSIDE OF IR35...

Parity - Better Decisions : Better People

Parity Group plc acts in the capacity of an Employment Agency when providing contract recruitment services.

We welcome applications from all sections of society and applicants will be considered on the basis of their suitability for the position

At Parity, we are committed to protecting your privacy, we will process and hold your CV and use the information you have provided lawfully and in accordance with our Terms and Conditions and our Privacy Policy.

Security Designer / Architect

Edinburgh

£575 - £615p/d - Umbrella Only

3 Months

Fantastic new contract opportunity for an experienced Security Engineer with strong design and architecture skills required to join this market leading financial services business to help them deliver a range of cutting edge banking Cyber technologies.

You will work within the Security Engineering and Design team, working independently as well as within the larger function, across some of the most forward-looking projects within the group. The role will focus on the delivery of secure financial products and services. This will require obtaining a deep understanding of various technologies in order to produce or provide input into the necessary design or solution documents. This role will involve providing cyber security leadership within projects, working with security teams and SMEs across the group to ensure standards are met or surpassed as well as with product owners, vendors and developers.

Main responsibilities:

• Provide the following capabilities as required by the project or determined by the work load alignment:
  • Security Architecture
  • Security Engineering and Design
  • Security Consultancy
• Work with the engineering lead and project architect to deliver a security solutions.
• Analyse security risk within each design as appropriate to the scope and ensure that all interested stakeholders are informed or consulted where necessary.
• Design security controls in compliance with group-wide security standards and configuration workbooks.
• Where necessary support the project in articulating waivers related to security design decisions taken.
• Take the lead on security architecture decisions and issues where the problem scenario is not covered by a pattern or standard. Seek guidance from Security Specialists where appropriate.
• Collaborate with alternative technical resources with the goal of supporting projects in the production of design documentation e.g. Technical Solution Designs (TSD's) or security documentation where necessary.
• Ensure that the drivers of Cost, Pace and Quality are maintained during production of or contribution to design artefacts.
• Provide security design engineering effort that leads to the creation of high quality solutions that comply with all relevant group-wide policies and Security Standards.
• Provide security support for assigned projects at review committees, boards or forums in order to facilitate the project through governance.
• Provide support for projects as they move into the delivery stage at a level suitable to ensure that the solution is implemented as per the design. Ensure the solution is taken back through governance where the design has changed during the implementation cycle.

Skills Required:

• Proven experience and knowledge of a broad range of IT security principles and associated technologies.
• Significant knowledge of Cyber Security as it applies to Enterprise business and ideally exposure to risk or threat assessment techniques.
• Technical experience and demonstrable skill in one or more of the following areas:
  • Cryptographic knowledge including encryption, key exchange, certificate handling and protocols (x509, PKCS12 etc)
  • Security Control Frameworks e.g. ISO27001 and practical experience in their implementation
  • Security Architecture principles, generic best practices
  • Network security devices
  • Endpoint defence solutions
  • Exposure to malware infection vectors and defence methods
  • Endpoint and Server hardening principles, best practices
  • Web application firewalls, network load balancers, proxy systems
  • Network, Endpoint and Application logging concepts, best practice and monitoring systems including SIEM
  • Authentication, Authorisation and Accounting concepts, best practice and IAM management systems. OTP and MFA systems.
  • Active Directory Security including federated solutions using ADFS, SAML etc
  • Exposure to cloud security models including public, private and hybrid concepts
  • Application security including web applications, SaaS services etc
  • Data handling principles, protective marking/tagging and data security knowledge

For any further queries regarding the role, please contact Danny Palmer on or at

Security Designer / Architect

Edinburgh

£575 - £615p/d - Umbrella Only

3 Months

Fantastic new contract opportunity for an experienced Security Engineer with strong design and architecture skills required to join this market leading financial services business to help them deliver a range of cutting edge banking Cyber technologies.

You will work within the Security Engineering and Design team, working independently as well as within the larger function, across some of the most forward-looking projects within the group. The role will focus on the delivery of secure financial products and services. This will require obtaining a deep understanding of various technologies in order to produce or provide input into the necessary design or solution documents. This role will involve providing cyber security leadership within projects, working with security teams and SMEs across the group to ensure standards are met or surpassed as well as with product owners, vendors and developers.

Main responsibilities:

• Provide the following capabilities as required by the project or determined by the work load alignment:
  • Security Architecture
  • Security Engineering and Design
  • Security Consultancy
• Work with the engineering lead and project architect to deliver a security solutions.
• Analyse security risk within each design as appropriate to the scope and ensure that all interested stakeholders are informed or consulted where necessary.
• Design security controls in compliance with group-wide security standards and configuration workbooks.
• Where necessary support the project in articulating waivers related to security design decisions taken.
• Take the lead on security architecture decisions and issues where the problem scenario is not covered by a pattern or standard. Seek guidance from Security Specialists where appropriate.
• Collaborate with alternative technical resources with the goal of supporting projects in the production of design documentation e.g. Technical Solution Designs (TSD's) or security documentation where necessary.
• Ensure that the drivers of Cost, Pace and Quality are maintained during production of or contribution to design artefacts.
• Provide security design engineering effort that leads to the creation of high quality solutions that comply with all relevant group-wide policies and Security Standards.
• Provide security support for assigned projects at review committees, boards or forums in order to facilitate the project through governance.
• Provide support for projects as they move into the delivery stage at a level suitable to ensure that the solution is implemented as per the design. Ensure the solution is taken back through governance where the design has changed during the implementation cycle.

Skills Required:

• Proven experience and knowledge of a broad range of IT security principles and associated technologies.
• Significant knowledge of Cyber Security as it applies to Enterprise business and ideally exposure to risk or threat assessment techniques.
• Technical experience and demonstrable skill in one or more of the following areas:
  • Cryptographic knowledge including encryption, key exchange, certificate handling and protocols (x509, PKCS12 etc)
  • Security Control Frameworks e.g. ISO27001 and practical experience in their implementation
  • Security Architecture principles, generic best practices
  • Network security devices
  • Endpoint defence solutions
  • Exposure to malware infection vectors and defence methods
  • Endpoint and Server hardening principles, best practices
  • Web application firewalls, network load balancers, proxy systems
  • Network, Endpoint and Application logging concepts, best practice and monitoring systems including SIEM
  • Authentication, Authorisation and Accounting concepts, best practice and IAM management systems. OTP and MFA systems.
  • Active Directory Security including federated solutions using ADFS, SAML etc
  • Exposure to cloud security models including public, private and hybrid concepts
  • Application security including web applications, SaaS services etc
  • Data handling principles, protective marking/tagging and data security knowledge

For any further queries regarding the role, please contact Danny Palmer on or at

Security Designer / Architect

Bristol

£575 - £615p/d - Umbrella Only

3 Months

Fantastic new contract opportunity for an experienced Security Engineer with strong design and architecture skills required to join this market leading financial services business to help them deliver a range of cutting edge banking Cyber technologies.

You will work within the Security Engineering and Design team, working independently as well as within the larger function, across some of the most forward-looking projects within the group. The role will focus on the delivery of secure financial products and services. This will require obtaining a deep understanding of various technologies in order to produce or provide input into the necessary design or solution documents. This role will involve providing cyber security leadership within projects, working with security teams and SMEs across the group to ensure standards are met or surpassed as well as with product owners, vendors and developers.

Main responsibilities:

• Provide the following capabilities as required by the project or determined by the work load alignment:
  • Security Architecture
  • Security Engineering and Design
  • Security Consultancy
• Work with the engineering lead and project architect to deliver a security solutions.
• Analyse security risk within each design as appropriate to the scope and ensure that all interested stakeholders are informed or consulted where necessary.
• Design security controls in compliance with group-wide security standards and configuration workbooks.
• Where necessary support the project in articulating waivers related to security design decisions taken.
• Take the lead on security architecture decisions and issues where the problem scenario is not covered by a pattern or standard. Seek guidance from Security Specialists where appropriate.
• Collaborate with alternative technical resources with the goal of supporting projects in the production of design documentation e.g. Technical Solution Designs (TSD's) or security documentation where necessary.
• Ensure that the drivers of Cost, Pace and Quality are maintained during production of or contribution to design artefacts.
• Provide security design engineering effort that leads to the creation of high quality solutions that comply with all relevant group-wide policies and Security Standards.
• Provide security support for assigned projects at review committees, boards or forums in order to facilitate the project through governance.
• Provide support for projects as they move into the delivery stage at a level suitable to ensure that the solution is implemented as per the design. Ensure the solution is taken back through governance where the design has changed during the implementation cycle.

Skills Required:

• Proven experience and knowledge of a broad range of IT security principles and associated technologies.
• Significant knowledge of Cyber Security as it applies to Enterprise business and ideally exposure to risk or threat assessment techniques.
• Technical experience and demonstrable skill in one or more of the following areas:
  • Cryptographic knowledge including encryption, key exchange, certificate handling and protocols (x509, PKCS12 etc)
  • Security Control Frameworks e.g. ISO27001 and practical experience in their implementation
  • Security Architecture principles, generic best practices
  • Network security devices
  • Endpoint defence solutions
  • Exposure to malware infection vectors and defence methods
  • Endpoint and Server hardening principles, best practices
  • Web application firewalls, network load balancers, proxy systems
  • Network, Endpoint and Application logging concepts, best practice and monitoring systems including SIEM
  • Authentication, Authorisation and Accounting concepts, best practice and IAM management systems. OTP and MFA systems.
  • Active Directory Security including federated solutions using ADFS, SAML etc
  • Exposure to cloud security models including public, private and hybrid concepts
  • Application security including web applications, SaaS services etc
  • Data handling principles, protective marking/tagging and data security knowledge

For any further queries regarding the role, please contact Danny Palmer on or at

Security Designer / Architect

Bristol

£575 - £615p/d - Umbrella Only

3 Months

Fantastic new contract opportunity for an experienced Security Engineer with strong design and architecture skills required to join this market leading financial services business to help them deliver a range of cutting edge banking Cyber technologies.

You will work within the Security Engineering and Design team, working independently as well as within the larger function, across some of the most forward-looking projects within the group. The role will focus on the delivery of secure financial products and services. This will require obtaining a deep understanding of various technologies in order to produce or provide input into the necessary design or solution documents. This role will involve providing cyber security leadership within projects, working with security teams and SMEs across the group to ensure standards are met or surpassed as well as with product owners, vendors and developers.

Main responsibilities:

• Provide the following capabilities as required by the project or determined by the work load alignment:
  • Security Architecture
  • Security Engineering and Design
  • Security Consultancy
• Work with the engineering lead and project architect to deliver a security solutions.
• Analyse security risk within each design as appropriate to the scope and ensure that all interested stakeholders are informed or consulted where necessary.
• Design security controls in compliance with group-wide security standards and configuration workbooks.
• Where necessary support the project in articulating waivers related to security design decisions taken.
• Take the lead on security architecture decisions and issues where the problem scenario is not covered by a pattern or standard. Seek guidance from Security Specialists where appropriate.
• Collaborate with alternative technical resources with the goal of supporting projects in the production of design documentation e.g. Technical Solution Designs (TSD's) or security documentation where necessary.
• Ensure that the drivers of Cost, Pace and Quality are maintained during production of or contribution to design artefacts.
• Provide security design engineering effort that leads to the creation of high quality solutions that comply with all relevant group-wide policies and Security Standards.
• Provide security support for assigned projects at review committees, boards or forums in order to facilitate the project through governance.
• Provide support for projects as they move into the delivery stage at a level suitable to ensure that the solution is implemented as per the design. Ensure the solution is taken back through governance where the design has changed during the implementation cycle.

Skills Required:

• Proven experience and knowledge of a broad range of IT security principles and associated technologies.
• Significant knowledge of Cyber Security as it applies to Enterprise business and ideally exposure to risk or threat assessment techniques.
• Technical experience and demonstrable skill in one or more of the following areas:
  • Cryptographic knowledge including encryption, key exchange, certificate handling and protocols (x509, PKCS12 etc)
  • Security Control Frameworks e.g. ISO27001 and practical experience in their implementation
  • Security Architecture principles, generic best practices
  • Network security devices
  • Endpoint defence solutions
  • Exposure to malware infection vectors and defence methods
  • Endpoint and Server hardening principles, best practices
  • Web application firewalls, network load balancers, proxy systems
  • Network, Endpoint and Application logging concepts, best practice and monitoring systems including SIEM
  • Authentication, Authorisation and Accounting concepts, best practice and IAM management systems. OTP and MFA systems.
  • Active Directory Security including federated solutions using ADFS, SAML etc
  • Exposure to cloud security models including public, private and hybrid concepts
  • Application security including web applications, SaaS services etc
  • Data handling principles, protective marking/tagging and data security knowledge

For any further queries regarding the role, please contact Danny Palmer on or at