Concur Developer My Yorkshire based client is looking to recruit a Developer/Analyst with proven expertise in Concur. Taking ownership of the day to day administration and system related processes for the Concur expense and invoice system, the Developer/Analyst will handle functional, administrative and technical support aspects of the Concur system. Within this role, the Concur Analyst Developer will: Assist with project work and country implementations Demonstrate technical and functional knowledge of the Concur system to perform administrative tasks, configure audit rules, general ledger account changes and system extracts Provide best practice advice Investigate system issues and testing fixes liaising with the SAP support teams accordingly Liaise with third party suppliers Investigate and troubleshoot system issues, mitigating risk Perform regular system healthchecks Advise, guide and train users regarding system functionality. Run detailed reports within the Concur Cognos Reporting Tool Technically, the Concur Developer will possess the following: Proven understanding of Concur - Accounts Payables, Invoice Management, Expense Management and Legal Billing processes. Proven knowledge of ERP - ideally SAP S/4 Hana Experience of Microsoft SQL Databases, IT Group policies and ServiceNow Knowledge of Master Data, contract and processing, pricing and billing. In return, you will be offered an attractive salary and benefits package
Apr 25, 2024
Full time
Concur Developer My Yorkshire based client is looking to recruit a Developer/Analyst with proven expertise in Concur. Taking ownership of the day to day administration and system related processes for the Concur expense and invoice system, the Developer/Analyst will handle functional, administrative and technical support aspects of the Concur system. Within this role, the Concur Analyst Developer will: Assist with project work and country implementations Demonstrate technical and functional knowledge of the Concur system to perform administrative tasks, configure audit rules, general ledger account changes and system extracts Provide best practice advice Investigate system issues and testing fixes liaising with the SAP support teams accordingly Liaise with third party suppliers Investigate and troubleshoot system issues, mitigating risk Perform regular system healthchecks Advise, guide and train users regarding system functionality. Run detailed reports within the Concur Cognos Reporting Tool Technically, the Concur Developer will possess the following: Proven understanding of Concur - Accounts Payables, Invoice Management, Expense Management and Legal Billing processes. Proven knowledge of ERP - ideally SAP S/4 Hana Experience of Microsoft SQL Databases, IT Group policies and ServiceNow Knowledge of Master Data, contract and processing, pricing and billing. In return, you will be offered an attractive salary and benefits package
Are you looking for a Security role within a dynamic, innovative financial technology organisation? If so, we are recruiting for a Cyber Operations Engineer to join our IT Department! Working alongside the Cyber Operations Lead you will help to design, develop, and mature the company's cybersecurity capability, including the selection, implementation, and management of security tools/technologies, focused on detection, prevention, and analysis of security threats. This role offers a great opportunity to help define and shape the security function within a collaborative IT department, ensuring the protection of customer assets. Responsibilities include: Work with technology and business teams to deliver security processes, technologies and controls, acting as the authority on security related queries. Define, design, implement, and maintain security solutions appropriate to the business' needs. Support the definition, execution and continuous improvement of key cybersecurity processes including vulnerability & patch management, security incident response, security monitoring, endpoint security, identity and access management, network security, and cryptography. Assist with developing and maintaining security policies, processes and incident response management plans and playbooks. Prepare and document standard operating procedures and protocols. Provide expertise on security requirements into core technology processes like asset management, change management, third-party management, technology development & acquisition, configuration management, etc. Contribute as a team member in projects and change initiatives aimed at increasing enterprise security capabilities e.g., identity and access management, log aggregation, etc. Required experience: Minimum of 3 years' experience in a Security/Cyber Engineer/Analyst, role focusing on designing and implementing security solutions and managing security infrastructure. Previous experience working within a financial services environment and a working understanding of relevant regulations. Experience and in-depth technical knowledge of deploying, maintaining, and configuring a wide range of security technologies within a large and complex environment (anti-malware/EDR, SIEM solutions, vulnerability scanners, patch management, CASB, DLP, penetration testing tools, etc.) Knowledge of TCP/IP and related network protocols: knowledge of standard network protocols like TCP, ARP, ICMP, DHCP, DNS, HTTP, SNMP, VPN etc., and accompanying protocol/packet analysis/manipulation tools. Understanding of key operating systems and network appliances and the ability to assess their security posture based on their configuration/deployment. Experience of working effectively with a variety of stakeholders from different technology and business teams. Strong verbal and written communication skills. Desirable experience: Professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or Certified Information Security Manager (CISM). Strong knowledge of Operating System security and system hardening concepts such as CIS Benchmarks. Experience in working with information security frameworks and regulatory requirements including ISO27001, NIST, PCI DSS, GDPR, Cyber Essentials. Experience of general IT Audit processes and conducting risk assessments. You will be a proactive self - starter with strong communication skills and comfortable interacting with stakeholders at all levels. You will have the ability to tailor your approach and translate requirements to non-technical members of staff. We offer a competitive remuneration package, including company discretionary bonus, excellent pension contributions, an attractive staff share scheme, BUPA health insurance, buying and selling of annual leave and sponsorship of relevant professional qualifications. The role is based in our central London office, working a minimum of two days a week in the office and three days a week from home. About Us Transact is the leading independent investment wrap platform in the UK. Established in 2000, we have over £54.9 billion of funds under direction (as at Sept 2023) on behalf of over 7,600 advisers and 230,000 investor clients. Our service includes an online platform, owned and built by us, and dedicated regional adviser support to help bring clients' assets and investments together in a smarter, more tax efficient way. We offer access to a wide range of tax wrappers (including ISAs, pensions and life insurance investment bonds) and funds which advisers use to build client investment portfolios. Portfolio valuations, purchases and sales are all supported via Transact Online which is available 24/7. Transact's parent company, IntegraFin Holdings plc, is listed on the London Stock Exchange and is a constituent of the FTSE 250 index. Equal Opportunities We provide a diverse and inclusive workplace and ensure that all of our staff respect and understand individual differences. We are an equal opportunities employer and positively encourage applications from suitably qualified and eligible candidates regardless of age, disability, gender reassignment, marital or civil partner status, pregnancy or maternity, race, religion or belief, sex or sexual orientation.
Apr 25, 2024
Full time
Are you looking for a Security role within a dynamic, innovative financial technology organisation? If so, we are recruiting for a Cyber Operations Engineer to join our IT Department! Working alongside the Cyber Operations Lead you will help to design, develop, and mature the company's cybersecurity capability, including the selection, implementation, and management of security tools/technologies, focused on detection, prevention, and analysis of security threats. This role offers a great opportunity to help define and shape the security function within a collaborative IT department, ensuring the protection of customer assets. Responsibilities include: Work with technology and business teams to deliver security processes, technologies and controls, acting as the authority on security related queries. Define, design, implement, and maintain security solutions appropriate to the business' needs. Support the definition, execution and continuous improvement of key cybersecurity processes including vulnerability & patch management, security incident response, security monitoring, endpoint security, identity and access management, network security, and cryptography. Assist with developing and maintaining security policies, processes and incident response management plans and playbooks. Prepare and document standard operating procedures and protocols. Provide expertise on security requirements into core technology processes like asset management, change management, third-party management, technology development & acquisition, configuration management, etc. Contribute as a team member in projects and change initiatives aimed at increasing enterprise security capabilities e.g., identity and access management, log aggregation, etc. Required experience: Minimum of 3 years' experience in a Security/Cyber Engineer/Analyst, role focusing on designing and implementing security solutions and managing security infrastructure. Previous experience working within a financial services environment and a working understanding of relevant regulations. Experience and in-depth technical knowledge of deploying, maintaining, and configuring a wide range of security technologies within a large and complex environment (anti-malware/EDR, SIEM solutions, vulnerability scanners, patch management, CASB, DLP, penetration testing tools, etc.) Knowledge of TCP/IP and related network protocols: knowledge of standard network protocols like TCP, ARP, ICMP, DHCP, DNS, HTTP, SNMP, VPN etc., and accompanying protocol/packet analysis/manipulation tools. Understanding of key operating systems and network appliances and the ability to assess their security posture based on their configuration/deployment. Experience of working effectively with a variety of stakeholders from different technology and business teams. Strong verbal and written communication skills. Desirable experience: Professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or Certified Information Security Manager (CISM). Strong knowledge of Operating System security and system hardening concepts such as CIS Benchmarks. Experience in working with information security frameworks and regulatory requirements including ISO27001, NIST, PCI DSS, GDPR, Cyber Essentials. Experience of general IT Audit processes and conducting risk assessments. You will be a proactive self - starter with strong communication skills and comfortable interacting with stakeholders at all levels. You will have the ability to tailor your approach and translate requirements to non-technical members of staff. We offer a competitive remuneration package, including company discretionary bonus, excellent pension contributions, an attractive staff share scheme, BUPA health insurance, buying and selling of annual leave and sponsorship of relevant professional qualifications. The role is based in our central London office, working a minimum of two days a week in the office and three days a week from home. About Us Transact is the leading independent investment wrap platform in the UK. Established in 2000, we have over £54.9 billion of funds under direction (as at Sept 2023) on behalf of over 7,600 advisers and 230,000 investor clients. Our service includes an online platform, owned and built by us, and dedicated regional adviser support to help bring clients' assets and investments together in a smarter, more tax efficient way. We offer access to a wide range of tax wrappers (including ISAs, pensions and life insurance investment bonds) and funds which advisers use to build client investment portfolios. Portfolio valuations, purchases and sales are all supported via Transact Online which is available 24/7. Transact's parent company, IntegraFin Holdings plc, is listed on the London Stock Exchange and is a constituent of the FTSE 250 index. Equal Opportunities We provide a diverse and inclusive workplace and ensure that all of our staff respect and understand individual differences. We are an equal opportunities employer and positively encourage applications from suitably qualified and eligible candidates regardless of age, disability, gender reassignment, marital or civil partner status, pregnancy or maternity, race, religion or belief, sex or sexual orientation.
Senior Identity and Access Management Analyst (IAM) -£55,000-£62,000+up to 35% Bonus My client are a Global giant in the Retail world in home furnishings. The group is made up of a number of companies with a top UK brand at the heart of it based in Nottingham. Due to continued growth and an ever changing world they are looking to boost their Cyber Security with a few roles. One of which is that of a Senior Identity and Access Management Analyst (IAM) which will be based from their office in Nottingham. As the Senior Identity and Access Management Analyst (IAM) you will be responsible for administration, monitoring, and operational activities related to Identity and Access Management (IAM) under the purview of the Identity and Access Management Director. On a daily basis the Senior Identity and Access Management Analyst (IAM) will be responsible for: Provide user account life cycle management, including creating, provisioning, securing, and termination of access within the IAM tools according to documented processes and standards. Collaborate in the design, implementation, and support of IAM technologies including Identity Governance and Administration (IGA), Privileged Access Management (PAM), and Multi-factor Authentication (MFA). Troubleshoot security and workflow issues independently or in collaboration with other Information Systems teams and/or stakeholders, while adhering to internal service standards. Participate in ongoing auditing and risk assessments, and implementation of audit recommendations. Develop and maintain detailed documentation on standard operating procedures, system configurations, and technical settings for internal team use, end user support, and other teams as needed. Generate reports to perform in-depth analysis and data collection to assist in continuous improvement of IAM processes and standards. Monitor IAM tools for anomalies or unauthorized access, responding to alerts and coordinating with the Security Operations Team as appropriate. If you are a strong Identity and Access Management Analyst (IAM) and are CISSP accredited that I am keen to hear from you. On offer is a top salary with a huge potential bonus as well as working within a cutting edge security team. Interested? Apply now for an immediate interview.
Apr 25, 2024
Full time
Senior Identity and Access Management Analyst (IAM) -£55,000-£62,000+up to 35% Bonus My client are a Global giant in the Retail world in home furnishings. The group is made up of a number of companies with a top UK brand at the heart of it based in Nottingham. Due to continued growth and an ever changing world they are looking to boost their Cyber Security with a few roles. One of which is that of a Senior Identity and Access Management Analyst (IAM) which will be based from their office in Nottingham. As the Senior Identity and Access Management Analyst (IAM) you will be responsible for administration, monitoring, and operational activities related to Identity and Access Management (IAM) under the purview of the Identity and Access Management Director. On a daily basis the Senior Identity and Access Management Analyst (IAM) will be responsible for: Provide user account life cycle management, including creating, provisioning, securing, and termination of access within the IAM tools according to documented processes and standards. Collaborate in the design, implementation, and support of IAM technologies including Identity Governance and Administration (IGA), Privileged Access Management (PAM), and Multi-factor Authentication (MFA). Troubleshoot security and workflow issues independently or in collaboration with other Information Systems teams and/or stakeholders, while adhering to internal service standards. Participate in ongoing auditing and risk assessments, and implementation of audit recommendations. Develop and maintain detailed documentation on standard operating procedures, system configurations, and technical settings for internal team use, end user support, and other teams as needed. Generate reports to perform in-depth analysis and data collection to assist in continuous improvement of IAM processes and standards. Monitor IAM tools for anomalies or unauthorized access, responding to alerts and coordinating with the Security Operations Team as appropriate. If you are a strong Identity and Access Management Analyst (IAM) and are CISSP accredited that I am keen to hear from you. On offer is a top salary with a huge potential bonus as well as working within a cutting edge security team. Interested? Apply now for an immediate interview.
My client, an International law firm based in London, are looking for an information security operational analyst to join their growing team. This role would require you to be in the office 3 days per week (2 from home). The hiring manager would also like someone from a legal or Financial Services/Banking background and a CISSP and/or MSC in Information Security is a MUST. Role and Responsibilities (this is a broad but not exhaustive list): Monitor computer networks for security issues Investigate security breaches and other cybersecurity incidents Install security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs Document security breaches and assess the damage they cause / Policy reviews Work with the security team and the wider IT team and external security partners to perform tests and uncover network vulnerabilities Fix detected vulnerabilities to maintain a high-security standard Stay current on IT security trends and news / Vendor security assessments Develop company-wide best practices for security / Network / Software / WIFI / Cloud / Messaging etc Assist in performing penetration testing / Monitoring and recording Risk and assessment Help colleagues install security software and understand information security best practice. Research security enhancements and make recommendations to management Stay up to date on information technology trends and security standards Qualifications and Experience: About the Information Security Operational Analyst role: The role of the Security Analyst will implement information security related tasks and focused on support and delivery, as advised and requested by the Head of Information Security (CISO). There are two streams of the organisational structure, Policy & Compliance and Operations. The skill set required for each is somewhat similar. However, will depend on what the candidate's experience preference and aptitude, aligned to educational and professional qualifications. Bachelor's degree in computer science or related field Certified Information Systems Security Professional (CISSP) or a MSC in Information Security is a must Certified Information Systems Auditor (CISA), or ISO Lead Auditor or Implementer qualification would be desirable for the role Experience in information security or related field Experience with computer network penetration testing and techniques Understanding of firewalls, proxies, SIEM, antivirus, and IDPS concepts Ability to identify and mitigate network vulnerabilities and explain how to avoid them Understanding of patch management with the ability to deploy patches in a timely manner while understanding business impact A general background in working within IT, preferably within an Infrastructure or Application support/management role. Demonstrable experience facilitating IT Control audit activities. With Relevant IT Security or Information Risk Management qualifications (Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA , or ISO Lead Auditor or Implementer qualification, would be advantages for the role and desirable. Experience working with large and extended Operational and Engineering teams Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates
Apr 24, 2024
Full time
My client, an International law firm based in London, are looking for an information security operational analyst to join their growing team. This role would require you to be in the office 3 days per week (2 from home). The hiring manager would also like someone from a legal or Financial Services/Banking background and a CISSP and/or MSC in Information Security is a MUST. Role and Responsibilities (this is a broad but not exhaustive list): Monitor computer networks for security issues Investigate security breaches and other cybersecurity incidents Install security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs Document security breaches and assess the damage they cause / Policy reviews Work with the security team and the wider IT team and external security partners to perform tests and uncover network vulnerabilities Fix detected vulnerabilities to maintain a high-security standard Stay current on IT security trends and news / Vendor security assessments Develop company-wide best practices for security / Network / Software / WIFI / Cloud / Messaging etc Assist in performing penetration testing / Monitoring and recording Risk and assessment Help colleagues install security software and understand information security best practice. Research security enhancements and make recommendations to management Stay up to date on information technology trends and security standards Qualifications and Experience: About the Information Security Operational Analyst role: The role of the Security Analyst will implement information security related tasks and focused on support and delivery, as advised and requested by the Head of Information Security (CISO). There are two streams of the organisational structure, Policy & Compliance and Operations. The skill set required for each is somewhat similar. However, will depend on what the candidate's experience preference and aptitude, aligned to educational and professional qualifications. Bachelor's degree in computer science or related field Certified Information Systems Security Professional (CISSP) or a MSC in Information Security is a must Certified Information Systems Auditor (CISA), or ISO Lead Auditor or Implementer qualification would be desirable for the role Experience in information security or related field Experience with computer network penetration testing and techniques Understanding of firewalls, proxies, SIEM, antivirus, and IDPS concepts Ability to identify and mitigate network vulnerabilities and explain how to avoid them Understanding of patch management with the ability to deploy patches in a timely manner while understanding business impact A general background in working within IT, preferably within an Infrastructure or Application support/management role. Demonstrable experience facilitating IT Control audit activities. With Relevant IT Security or Information Risk Management qualifications (Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA , or ISO Lead Auditor or Implementer qualification, would be advantages for the role and desirable. Experience working with large and extended Operational and Engineering teams Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates
Title: Information Security Consultant Salary: Up to 60,000 DOE Location: Leeds (on-site) My client is looking for a skilled Information Security Consultant to join their existing Information Security team to offer guidance on IT security and further develop IT policies across a multi-region infrastructure. This is an opportunity to join a growing team, with a great company culture and several exciting projects to get stuck into, all in a fast-paced environment! They are unable to offer sponsorship, so the perfect candidate will have the full right to work in the UK, without a visa that will expire. Responsibilities: Assist in managing security incidents and alerts. Conduct regular security checks and investigate exceptions. Complete client security questionnaires for bidding. Raise awareness of security risks. Enhance security policies, processes, and controls. Proactively identify security risks and mitigations. Participate in system and application design. Develop training guides for users and staff. Manage the IT Risk register. Test and improve Disaster Recovery plans. Technical Requirements: Minimum two years of practical experience in enterprise security and infrastructure. Familiarity with enterprise information security standards: Cyber Essentials, ISO 27001, 27002, Data Protection Act, GDPR. Proficiency in Microsoft O365 Security, Networking, Security operations, Vulnerability Management, and Security Auditing. Strong understanding of security testing principles, including hands-on experience in vulnerability scanning, risk identification, resolution, and reporting. Demonstrated expertise in formal document creation, including report and procedure development. Essential Skills: Microsoft O365 platform expertise. Advanced Threat Intelligence analysis and best practices implementation. Proficient in managing Security Incident Response processes. Knowledgeable about Disaster Recovery and Business Continuity principles. Experienced in event and log analysis. The company is looking to fill this position ASAP, so please apply with a copy of your CV if interested! Key Words: Information Security Analyst, Information Security Engineer, Security Analyst, Information Security, NIST, COBIT, ISO-27001, ISO-27002, Compliance, Governance, Risk, Cyber Security, SOX, Sentinel, Defender, InTune BeTechnology Group Limited is acting as an Employment Agency in relation to this vacancy.
Apr 24, 2024
Full time
Title: Information Security Consultant Salary: Up to 60,000 DOE Location: Leeds (on-site) My client is looking for a skilled Information Security Consultant to join their existing Information Security team to offer guidance on IT security and further develop IT policies across a multi-region infrastructure. This is an opportunity to join a growing team, with a great company culture and several exciting projects to get stuck into, all in a fast-paced environment! They are unable to offer sponsorship, so the perfect candidate will have the full right to work in the UK, without a visa that will expire. Responsibilities: Assist in managing security incidents and alerts. Conduct regular security checks and investigate exceptions. Complete client security questionnaires for bidding. Raise awareness of security risks. Enhance security policies, processes, and controls. Proactively identify security risks and mitigations. Participate in system and application design. Develop training guides for users and staff. Manage the IT Risk register. Test and improve Disaster Recovery plans. Technical Requirements: Minimum two years of practical experience in enterprise security and infrastructure. Familiarity with enterprise information security standards: Cyber Essentials, ISO 27001, 27002, Data Protection Act, GDPR. Proficiency in Microsoft O365 Security, Networking, Security operations, Vulnerability Management, and Security Auditing. Strong understanding of security testing principles, including hands-on experience in vulnerability scanning, risk identification, resolution, and reporting. Demonstrated expertise in formal document creation, including report and procedure development. Essential Skills: Microsoft O365 platform expertise. Advanced Threat Intelligence analysis and best practices implementation. Proficient in managing Security Incident Response processes. Knowledgeable about Disaster Recovery and Business Continuity principles. Experienced in event and log analysis. The company is looking to fill this position ASAP, so please apply with a copy of your CV if interested! Key Words: Information Security Analyst, Information Security Engineer, Security Analyst, Information Security, NIST, COBIT, ISO-27001, ISO-27002, Compliance, Governance, Risk, Cyber Security, SOX, Sentinel, Defender, InTune BeTechnology Group Limited is acting as an Employment Agency in relation to this vacancy.
Information Security Analyst Up to 53,000 per annum plus benefits This is remote based role but ideally looking for someone close to West Midlands or West Yorkshire as these are the two UK offices PLEASE NOTE Due to the volume we will receive on this role please do not call to follow up on your application. You will receive confirmation your CV has been received and we will be in touch within 7 days if you are shortlisted. This superb international FinTech corporate with UK offices in the West Midlands and West Yorkshire are seeking an Information Security Analyst to join their skilled Security Team, responsible for protecting the organisations IT systems and Data. This is a permanent role with a base salary up to 53,000 per annum plus benefits. The role can be home based but you will need to live within a commutable distance of their offices in either Solihull or Halifax. This role involves monitoring, analysing, and reporting on the performance of the security controls and security tooling that have been implemented in the Organisation. By utilising the security tools the business has implemented, the Information Security Analyst will be responsible for ensuring that these tools are being utilised correctly, providing the necessary management information (MI) and using this MI to produce regular reports to senior management. The Information Security Analyst will also provide support to the necessary business functions in responding to security incidents, implementing security measures, and ensuring compliance with security policies and regulations. Key Responsibilities will include: Configure and manage security tolls and technologies to monitor and defend against cyber threats Generate reports on security vulnerabilities and compliance status for management Collaborate with IT Teams to integrate security controls into infrastructure and applications Monitor security alerts and incidents, investigate security breaches, and implement incident response procedures Analyse security incidents to identify root causes and recommend corrective actions Provide security guidance and support to IT teams and business units Stay up to date on emerging security threats, vulnerabilities, and technologies Conduct security assessments and audits to identify vulnerabilities and weaknesses in systems and networks Skills and experience required: You must have previous experience working within a Cyber Security or Information Security role A sound understanding the cyber security landscape Understanding of regulatory compliance requirements such as GDPR, ISO27001, or PCI DSS (Payment Card Industry Data Security Standard) Experience with security tools such as SIEM (Security Information and Event Management), IDS/IPS (Intrusion Detection/Prevention System), and malware protection Developing security reporting packs for differing targeted audiences Knowledge of risk assessment tools, technologies and methods Ability to communicate security issues to peers and management Strong knowledge of networking protocols, operating systems, and security technologies Excellent analytical and problem-solving skills Strong communication and teamwork skills Ability to work independently and prioritize tasks in a fast-paced environment Experience with cloud security principles and technologies (e.g., AWS, Azure)
Apr 24, 2024
Full time
Information Security Analyst Up to 53,000 per annum plus benefits This is remote based role but ideally looking for someone close to West Midlands or West Yorkshire as these are the two UK offices PLEASE NOTE Due to the volume we will receive on this role please do not call to follow up on your application. You will receive confirmation your CV has been received and we will be in touch within 7 days if you are shortlisted. This superb international FinTech corporate with UK offices in the West Midlands and West Yorkshire are seeking an Information Security Analyst to join their skilled Security Team, responsible for protecting the organisations IT systems and Data. This is a permanent role with a base salary up to 53,000 per annum plus benefits. The role can be home based but you will need to live within a commutable distance of their offices in either Solihull or Halifax. This role involves monitoring, analysing, and reporting on the performance of the security controls and security tooling that have been implemented in the Organisation. By utilising the security tools the business has implemented, the Information Security Analyst will be responsible for ensuring that these tools are being utilised correctly, providing the necessary management information (MI) and using this MI to produce regular reports to senior management. The Information Security Analyst will also provide support to the necessary business functions in responding to security incidents, implementing security measures, and ensuring compliance with security policies and regulations. Key Responsibilities will include: Configure and manage security tolls and technologies to monitor and defend against cyber threats Generate reports on security vulnerabilities and compliance status for management Collaborate with IT Teams to integrate security controls into infrastructure and applications Monitor security alerts and incidents, investigate security breaches, and implement incident response procedures Analyse security incidents to identify root causes and recommend corrective actions Provide security guidance and support to IT teams and business units Stay up to date on emerging security threats, vulnerabilities, and technologies Conduct security assessments and audits to identify vulnerabilities and weaknesses in systems and networks Skills and experience required: You must have previous experience working within a Cyber Security or Information Security role A sound understanding the cyber security landscape Understanding of regulatory compliance requirements such as GDPR, ISO27001, or PCI DSS (Payment Card Industry Data Security Standard) Experience with security tools such as SIEM (Security Information and Event Management), IDS/IPS (Intrusion Detection/Prevention System), and malware protection Developing security reporting packs for differing targeted audiences Knowledge of risk assessment tools, technologies and methods Ability to communicate security issues to peers and management Strong knowledge of networking protocols, operating systems, and security technologies Excellent analytical and problem-solving skills Strong communication and teamwork skills Ability to work independently and prioritize tasks in a fast-paced environment Experience with cloud security principles and technologies (e.g., AWS, Azure)
As the lead Security Risk Analyst, you will drive the strategic direction for the system level risk identification, management, and review for one of the most critical networks - the Operational Technology Services Network (OTSN). Ensuring new and changed standards grow the cyber security maturity of the organisation, are proportionate to the risk (in line with the ET's risk appetite & the NIS Regulation) and are in line with security & resilience strategies. Key accountabilities Lead the creation, development, and management of OTSNs risk assessment frameworks and principles to support the cyber security decision making processes within ET. Provide expert technical support for the risk assessment of vulnerabilities and deviations from the target state including agreeing mitigating actions within agreed delegated authority. Support the development of cyber security policies and specifications to reduce risk. Improve organisational cyber security maturity and support compliance with the NIS Regulation for the OTSN by managing OTSN registers in line with risk appetite. Support the business to understand cyber security requirements for OTSN through engagement with projects and design teams on OTSN risks. Support the business to understand cyber security risks through appropriate reporting and communication of current risks and vulnerabilities. Influence the security and resilience strategies to accelerate cyber security risk reduction. Support the optimisation of OTSN management strategies in the long-term interests of consumers and the business Interpersonal, Supervisory or Management Relevant experience risk reporting including leading teams of risk analysts and/or project management. Strong data analytical skills and excellent written and communication skills with the ability to interface comfortably with senior stakeholders. Strong investigation and problem-solving skills, demonstrating autonomy and initiative. Proactive with the ability to work under tight deadline pressures across multiple workstreams. Sound understanding and proven experience of IEC 62443, ISO27000, NIST CSF and audit processes. Experience of introducing changes to specifications or policies that apply to a technical audience. Extensive experience communicating difficult and standard issues associated with areas of expertise in a clear and concise manner both verbally & in writing. Eager to develop their business and technical skills, you will be comfortable breaking new ground and changing the way the business makes decisions. Technical or Specialist Technical understanding of the LAN / WAN Networks and Operational Technology (OT). Detailed understanding of how cyber security risks can manifest within networks, devices, and systems. Understanding of asset management principles, including risk management, decision making, planning, asset lifecycle and asset data/information. Experience of using and developing decision making frameworks and tools including economic assessments (NPV, CBA) and whole life asset assessments (WLV) Familiarity with international standards related to cyber security including IEC62443 and IEC62351 Commensurate experience with O365, including excel and preferable Power BI. Experience with MITRE ATT&CK desirable, preferably MITRE ICS.
Apr 24, 2024
Full time
As the lead Security Risk Analyst, you will drive the strategic direction for the system level risk identification, management, and review for one of the most critical networks - the Operational Technology Services Network (OTSN). Ensuring new and changed standards grow the cyber security maturity of the organisation, are proportionate to the risk (in line with the ET's risk appetite & the NIS Regulation) and are in line with security & resilience strategies. Key accountabilities Lead the creation, development, and management of OTSNs risk assessment frameworks and principles to support the cyber security decision making processes within ET. Provide expert technical support for the risk assessment of vulnerabilities and deviations from the target state including agreeing mitigating actions within agreed delegated authority. Support the development of cyber security policies and specifications to reduce risk. Improve organisational cyber security maturity and support compliance with the NIS Regulation for the OTSN by managing OTSN registers in line with risk appetite. Support the business to understand cyber security requirements for OTSN through engagement with projects and design teams on OTSN risks. Support the business to understand cyber security risks through appropriate reporting and communication of current risks and vulnerabilities. Influence the security and resilience strategies to accelerate cyber security risk reduction. Support the optimisation of OTSN management strategies in the long-term interests of consumers and the business Interpersonal, Supervisory or Management Relevant experience risk reporting including leading teams of risk analysts and/or project management. Strong data analytical skills and excellent written and communication skills with the ability to interface comfortably with senior stakeholders. Strong investigation and problem-solving skills, demonstrating autonomy and initiative. Proactive with the ability to work under tight deadline pressures across multiple workstreams. Sound understanding and proven experience of IEC 62443, ISO27000, NIST CSF and audit processes. Experience of introducing changes to specifications or policies that apply to a technical audience. Extensive experience communicating difficult and standard issues associated with areas of expertise in a clear and concise manner both verbally & in writing. Eager to develop their business and technical skills, you will be comfortable breaking new ground and changing the way the business makes decisions. Technical or Specialist Technical understanding of the LAN / WAN Networks and Operational Technology (OT). Detailed understanding of how cyber security risks can manifest within networks, devices, and systems. Understanding of asset management principles, including risk management, decision making, planning, asset lifecycle and asset data/information. Experience of using and developing decision making frameworks and tools including economic assessments (NPV, CBA) and whole life asset assessments (WLV) Familiarity with international standards related to cyber security including IEC62443 and IEC62351 Commensurate experience with O365, including excel and preferable Power BI. Experience with MITRE ATT&CK desirable, preferably MITRE ICS.
IT Cyber Security Manager Surrey - Hybrid Working My client is a leading financial services organisation based in Surrey who are recruiting for a IT Cyber Security Manager As a IT Cyber Security Manager, you will Provide Security Input for projects in a Digital Transformation Programme as well as establish and maintain cyber security policies and procedures. Own threat management and response. Manage and mentor the cyber security team. Manage Security tooling risks and processes. Own vulnerability management through the whole lifecycle from internal and external monitoring and identification to remediation and reporting. IT Cyber Security Manager Benefits: 22 days holiday + 8 Bank Holiday (Holiday's increase to 27, 1 additional day per year worked) Healthy contributed pension Training and development Access to a number of financial based products Dress down Fridays As a IT Cyber Security Manager, you will perform the following tasks: Establish and maintain robust cyber security policies, playbooks, and procedures, ensuring compliance with regulatory requirements industry standards and the Cyber Security Strategy. Identify, evaluate, and mitigate cyber threats. Lead incident response activities and investigations into security breaches. Conduct regular risk assessments, audits, and testing of the security infrastructure to identify vulnerabilities and implement necessary improvements. Act as the escalation point on monitoring of corporate environment to identify security issues or incidents (Threat Hunting) Manage and mentor the security analyst, (monitoring, Investigation, root cause analysis of Security alerts from multiple information sources. Including, but not limited to Darktrace, LogPoint, WithSecure, Mimecast, while ensuring the team stays relevant to the latest Cyber Security trends and technologies. Introduce processes to maintain the integrity and protection of corporate and customer data. Responsible for managing the business IT vulnerabilities and provide to the service desk team, paths to remediation, through the whole lifecycle to ensure safety and compliance for the business. Investigate and analyse escalated security matters, identify methods and solutions in response to security related queries including the ones, submitted by end users. Perform root cause analysis of security incidents and participate in post-incident reviews to provide practical recommendations for improving the organisation's threat detection and incident response capabilities and overall security posture Perform malware analysis and digital forensics where appropriate Drive internal phishing campaigns (KnowBe4 platform) and work with management and HR - Training to raise Cyber awareness within the corporate environment, (new hire inductions, periodic training, etc) Own maintenance, renewal and distribution of SSL Certificates Manage and own the process of achieving and maintaining Security related certifications (CE+, PCI, etc) Ensure readiness, appropriate versioning and health, of the security systems used on security operations Identify and promote continual service improvement of all cyber security systems and procedures Share knowledge with and cross-train other members of the other IT teams IT Cyber Security Manager Documentation & Reporting: Assist in development of company-wide best practices for Cyber Security Document all security alerts, incidents and actions taken for both internal and regulatory use Contribute to maintenance of Cyber Security Operations Manual Manage cyber security actions in audits, cyber security exercises and provide supporting documentation Provide cyber security related reporting dashboards for use at different levels within the business (Regulatory, Board updates, Vulnerabilities, etc) IT Cyber Security Manager Key Skills & Experience: At least 5 year experience in a similar Cyber/IT Security/InfoSec based role Experience in a wide range of Cyber Security areas. Experience with security tool sets (SIEM, FIM, EDR, NDR) The ability to contextualise, categorise and prioritise security events, incidents, and alerts Knowledge of security framework and standards implementation (NiST, ISO27001, PCI-DSS, etc) Demonstrable passion and enthusiasm for security, including the ability to keep current with the latest threats, technologies, and trends Thorough understanding of adversarial tactics, techniques, and procedures Knowledge of security related skills within infrastructure, cloud, virtualisation and network concepts and technologies, particularly in a Microsoft-centric environment (Defender for Cloud, Cloud apps, Security scores, Purview including Data classification and retention, Identity Management, and conditional Access) Strong attention to detail with an analytical mindset and the ability to spot and investigate anomalous behaviour Strong Communication skills and the ability to communicate and present at all levels IT Cyber Security Manager Technologies involved: SIEM - Logpoint Automated Intrusion and response - Darktrace AntiVirus / Malware detection Email Filtering & Web Security - Mimecast FIM - Tripwire VMware & VDI Horizon Windows Environment Microsoft Azure & O365 (Purview, IAM, PIM, Defender for cloud, cloud apps, endpoint) AWS WAF Duo Multifactor Authentication IT Cyber Security Manager Additional points if: CISSP Experience in financial sector or other highly regulated environment Experience and understanding of Network Security Services advertised by Gold Group are those of an Agency and/or an Employment Business. We will contact you within the next 14 days if you are selected for interview. For a copy of our privacy policy please visit our website.
Apr 24, 2024
Full time
IT Cyber Security Manager Surrey - Hybrid Working My client is a leading financial services organisation based in Surrey who are recruiting for a IT Cyber Security Manager As a IT Cyber Security Manager, you will Provide Security Input for projects in a Digital Transformation Programme as well as establish and maintain cyber security policies and procedures. Own threat management and response. Manage and mentor the cyber security team. Manage Security tooling risks and processes. Own vulnerability management through the whole lifecycle from internal and external monitoring and identification to remediation and reporting. IT Cyber Security Manager Benefits: 22 days holiday + 8 Bank Holiday (Holiday's increase to 27, 1 additional day per year worked) Healthy contributed pension Training and development Access to a number of financial based products Dress down Fridays As a IT Cyber Security Manager, you will perform the following tasks: Establish and maintain robust cyber security policies, playbooks, and procedures, ensuring compliance with regulatory requirements industry standards and the Cyber Security Strategy. Identify, evaluate, and mitigate cyber threats. Lead incident response activities and investigations into security breaches. Conduct regular risk assessments, audits, and testing of the security infrastructure to identify vulnerabilities and implement necessary improvements. Act as the escalation point on monitoring of corporate environment to identify security issues or incidents (Threat Hunting) Manage and mentor the security analyst, (monitoring, Investigation, root cause analysis of Security alerts from multiple information sources. Including, but not limited to Darktrace, LogPoint, WithSecure, Mimecast, while ensuring the team stays relevant to the latest Cyber Security trends and technologies. Introduce processes to maintain the integrity and protection of corporate and customer data. Responsible for managing the business IT vulnerabilities and provide to the service desk team, paths to remediation, through the whole lifecycle to ensure safety and compliance for the business. Investigate and analyse escalated security matters, identify methods and solutions in response to security related queries including the ones, submitted by end users. Perform root cause analysis of security incidents and participate in post-incident reviews to provide practical recommendations for improving the organisation's threat detection and incident response capabilities and overall security posture Perform malware analysis and digital forensics where appropriate Drive internal phishing campaigns (KnowBe4 platform) and work with management and HR - Training to raise Cyber awareness within the corporate environment, (new hire inductions, periodic training, etc) Own maintenance, renewal and distribution of SSL Certificates Manage and own the process of achieving and maintaining Security related certifications (CE+, PCI, etc) Ensure readiness, appropriate versioning and health, of the security systems used on security operations Identify and promote continual service improvement of all cyber security systems and procedures Share knowledge with and cross-train other members of the other IT teams IT Cyber Security Manager Documentation & Reporting: Assist in development of company-wide best practices for Cyber Security Document all security alerts, incidents and actions taken for both internal and regulatory use Contribute to maintenance of Cyber Security Operations Manual Manage cyber security actions in audits, cyber security exercises and provide supporting documentation Provide cyber security related reporting dashboards for use at different levels within the business (Regulatory, Board updates, Vulnerabilities, etc) IT Cyber Security Manager Key Skills & Experience: At least 5 year experience in a similar Cyber/IT Security/InfoSec based role Experience in a wide range of Cyber Security areas. Experience with security tool sets (SIEM, FIM, EDR, NDR) The ability to contextualise, categorise and prioritise security events, incidents, and alerts Knowledge of security framework and standards implementation (NiST, ISO27001, PCI-DSS, etc) Demonstrable passion and enthusiasm for security, including the ability to keep current with the latest threats, technologies, and trends Thorough understanding of adversarial tactics, techniques, and procedures Knowledge of security related skills within infrastructure, cloud, virtualisation and network concepts and technologies, particularly in a Microsoft-centric environment (Defender for Cloud, Cloud apps, Security scores, Purview including Data classification and retention, Identity Management, and conditional Access) Strong attention to detail with an analytical mindset and the ability to spot and investigate anomalous behaviour Strong Communication skills and the ability to communicate and present at all levels IT Cyber Security Manager Technologies involved: SIEM - Logpoint Automated Intrusion and response - Darktrace AntiVirus / Malware detection Email Filtering & Web Security - Mimecast FIM - Tripwire VMware & VDI Horizon Windows Environment Microsoft Azure & O365 (Purview, IAM, PIM, Defender for cloud, cloud apps, endpoint) AWS WAF Duo Multifactor Authentication IT Cyber Security Manager Additional points if: CISSP Experience in financial sector or other highly regulated environment Experience and understanding of Network Security Services advertised by Gold Group are those of an Agency and/or an Employment Business. We will contact you within the next 14 days if you are selected for interview. For a copy of our privacy policy please visit our website.
Concur Developer My Yorkshire based client is looking to recruit a Developer/Analyst with proven expertise in Concur. Taking ownership of the day to day administration and system related processes for the Concur expense and invoice system, the Developer/Analyst will handle functional, administrative and technical support aspects of the Concur system. Within this role, the Concur Analyst Developer will: Assist with project work and country implementations Demonstrate technical and functional knowledge of the Concur system to perform administrative tasks, configure audit rules, general ledger account changes and system extracts Provide best practice advice Investigate system issues and testing fixes liaising with the SAP support teams accordingly Liaise with third party suppliers Investigate and troubleshoot system issues, mitigating risk Perform regular system healthchecks Advise, guide and train users regarding system functionality. Run detailed reports within the Concur Cognos Reporting Tool Technically, the Concur Developer will possess the following: Proven understanding of Concur - Accounts Payables, Invoice Management, Expense Management and Legal Billing processes. Proven knowledge of ERP - ideally SAP S/4 Hana Experience of Microsoft SQL Databases, IT Group policies and ServiceNow Knowledge of Master Data, contract and processing, pricing and billing. In return, you will be offered an attractive salary and benefits package
Apr 24, 2024
Full time
Concur Developer My Yorkshire based client is looking to recruit a Developer/Analyst with proven expertise in Concur. Taking ownership of the day to day administration and system related processes for the Concur expense and invoice system, the Developer/Analyst will handle functional, administrative and technical support aspects of the Concur system. Within this role, the Concur Analyst Developer will: Assist with project work and country implementations Demonstrate technical and functional knowledge of the Concur system to perform administrative tasks, configure audit rules, general ledger account changes and system extracts Provide best practice advice Investigate system issues and testing fixes liaising with the SAP support teams accordingly Liaise with third party suppliers Investigate and troubleshoot system issues, mitigating risk Perform regular system healthchecks Advise, guide and train users regarding system functionality. Run detailed reports within the Concur Cognos Reporting Tool Technically, the Concur Developer will possess the following: Proven understanding of Concur - Accounts Payables, Invoice Management, Expense Management and Legal Billing processes. Proven knowledge of ERP - ideally SAP S/4 Hana Experience of Microsoft SQL Databases, IT Group policies and ServiceNow Knowledge of Master Data, contract and processing, pricing and billing. In return, you will be offered an attractive salary and benefits package
Title: Information Security Consultant Salary: Up to £60,000 DOE Location: Leeds (on-site) My client is looking for a skilled Information Security Consultant to join their existing Information Security team to offer guidance on IT security and further develop IT policies across a multi-region infrastructure. This is an opportunity to join a growing team, with a great company culture and several exciting projects to get stuck into, all in a fast-paced environment! They are unable to offer sponsorship, so the perfect candidate will have the full right to work in the UK, without a visa that will expire. Responsibilities: Assist in managing security incidents and alerts. Conduct regular security checks and investigate exceptions. Complete client security questionnaires for bidding. Raise awareness of security risks. Enhance security policies, processes, and controls. Proactively identify security risks and mitigations. Participate in system and application design. Develop training guides for users and staff. Manage the IT Risk register. Test and improve Disaster Recovery plans. Technical Requirements: Minimum two years of practical experience in enterprise security and infrastructure. Familiarity with enterprise information security standards: Cyber Essentials, ISO 27001, 27002, Data Protection Act, GDPR. Proficiency in Microsoft O365 Security, Networking, Security operations, Vulnerability Management, and Security Auditing. Strong understanding of security testing principles, including hands-on experience in vulnerability scanning, risk identification, resolution, and reporting. Demonstrated expertise in formal document creation, including report and procedure development. Essential Skills: Microsoft O365 platform expertise. Advanced Threat Intelligence analysis and best practices implementation. Proficient in managing Security Incident Response processes. Knowledgeable about Disaster Recovery and Business Continuity principles. Experienced in event and log analysis. The company is looking to fill this position ASAP, so please apply with a copy of your CV if interested! Key Words: Information Security Analyst, Information Security Engineer, Security Analyst, Information Security, NIST, COBIT, ISO-27001, ISO-27002, Compliance, Governance, Risk, Cyber Security, SOX, Sentinel, Defender, InTune BeTechnology Group Limited is acting as an Employment Agency in relation to this vacancy.
Apr 23, 2024
Full time
Title: Information Security Consultant Salary: Up to £60,000 DOE Location: Leeds (on-site) My client is looking for a skilled Information Security Consultant to join their existing Information Security team to offer guidance on IT security and further develop IT policies across a multi-region infrastructure. This is an opportunity to join a growing team, with a great company culture and several exciting projects to get stuck into, all in a fast-paced environment! They are unable to offer sponsorship, so the perfect candidate will have the full right to work in the UK, without a visa that will expire. Responsibilities: Assist in managing security incidents and alerts. Conduct regular security checks and investigate exceptions. Complete client security questionnaires for bidding. Raise awareness of security risks. Enhance security policies, processes, and controls. Proactively identify security risks and mitigations. Participate in system and application design. Develop training guides for users and staff. Manage the IT Risk register. Test and improve Disaster Recovery plans. Technical Requirements: Minimum two years of practical experience in enterprise security and infrastructure. Familiarity with enterprise information security standards: Cyber Essentials, ISO 27001, 27002, Data Protection Act, GDPR. Proficiency in Microsoft O365 Security, Networking, Security operations, Vulnerability Management, and Security Auditing. Strong understanding of security testing principles, including hands-on experience in vulnerability scanning, risk identification, resolution, and reporting. Demonstrated expertise in formal document creation, including report and procedure development. Essential Skills: Microsoft O365 platform expertise. Advanced Threat Intelligence analysis and best practices implementation. Proficient in managing Security Incident Response processes. Knowledgeable about Disaster Recovery and Business Continuity principles. Experienced in event and log analysis. The company is looking to fill this position ASAP, so please apply with a copy of your CV if interested! Key Words: Information Security Analyst, Information Security Engineer, Security Analyst, Information Security, NIST, COBIT, ISO-27001, ISO-27002, Compliance, Governance, Risk, Cyber Security, SOX, Sentinel, Defender, InTune BeTechnology Group Limited is acting as an Employment Agency in relation to this vacancy.
Overview: Our client is looking for an Information Security Assurance Analyst Operations. The aim of this role is the effective operation, reporting and evidencing of their technology and information security control environment and the overall Information Security Management System (ISMS). Based in Reigate £38,000 - £43,000 Hybrid Eligibility for annual bonus, up to 15% 27 days holiday per annum, plus bank holidays Company pension scheme Death in service benefit Employee Assistance Programme Job specification: Maintaining and improving our ISMS - Updating ISMS policies, procedures, standards, and guidance - Coordinate and provide necessary support in planning and completing internal ISMS reviews. Supplier onboarding and annual supplier security assessments - Maintaining and developing our security awareness and education programmes - Analysis of information security alerts and incidents - Report on incidents, risks, threats and vulnerabilities - Scheduling internal and external penetration and vulnerability tests and managing remediation planning Assist in evaluation of cyber security tools Manage online ISMS system. Assist the ISM to deliver Information Security projects Participate in technology and information security related audits, providing support regarding the collation and supply of evidence to requests. Ensuring information security controls are evaluated and effective - Identifying ISMS nonconformities - Respond to audit recommendations. Establish a good working relationship with all internal and external key stakeholders, and third-party vendors. Create reports on information security projects and activities - Report on information and cyber security incidents - Create ISMS reports based on key metrics - Articulate associated risks in both technical and non-technical terminology. Support the on-going review process to continually improve and refine the ISMS Support the ISM in performing targeted information security risk assessments. Identify risks, incidents, and breaches, in accordance with company policies and department procedures. Person specification: Appropriate level of education or professional risk/compliance/Information Security related qualifications Experience within technology risk management and/or audit function would be beneficial Experience of working in a regulated environment / awareness of requirements such as GDPR Experience in the maintenance of a certified IS027001 Information Security Management System and related controls (ISO27002) Understanding of technology and information security risk management frameworks Excellent verbal and communication skills Excellent team player who can establish strong working relationships
Apr 23, 2024
Full time
Overview: Our client is looking for an Information Security Assurance Analyst Operations. The aim of this role is the effective operation, reporting and evidencing of their technology and information security control environment and the overall Information Security Management System (ISMS). Based in Reigate £38,000 - £43,000 Hybrid Eligibility for annual bonus, up to 15% 27 days holiday per annum, plus bank holidays Company pension scheme Death in service benefit Employee Assistance Programme Job specification: Maintaining and improving our ISMS - Updating ISMS policies, procedures, standards, and guidance - Coordinate and provide necessary support in planning and completing internal ISMS reviews. Supplier onboarding and annual supplier security assessments - Maintaining and developing our security awareness and education programmes - Analysis of information security alerts and incidents - Report on incidents, risks, threats and vulnerabilities - Scheduling internal and external penetration and vulnerability tests and managing remediation planning Assist in evaluation of cyber security tools Manage online ISMS system. Assist the ISM to deliver Information Security projects Participate in technology and information security related audits, providing support regarding the collation and supply of evidence to requests. Ensuring information security controls are evaluated and effective - Identifying ISMS nonconformities - Respond to audit recommendations. Establish a good working relationship with all internal and external key stakeholders, and third-party vendors. Create reports on information security projects and activities - Report on information and cyber security incidents - Create ISMS reports based on key metrics - Articulate associated risks in both technical and non-technical terminology. Support the on-going review process to continually improve and refine the ISMS Support the ISM in performing targeted information security risk assessments. Identify risks, incidents, and breaches, in accordance with company policies and department procedures. Person specification: Appropriate level of education or professional risk/compliance/Information Security related qualifications Experience within technology risk management and/or audit function would be beneficial Experience of working in a regulated environment / awareness of requirements such as GDPR Experience in the maintenance of a certified IS027001 Information Security Management System and related controls (ISO27002) Understanding of technology and information security risk management frameworks Excellent verbal and communication skills Excellent team player who can establish strong working relationships
Senior IT Risk Analyst - up to £70,000 London/ hybrid We're partnered with one of the UK's leading brands that are currently hiring for a Senior IT Risk Analyst to join their team going from strength to strength. They thrive to be the best in the field and outdo with their experience in data and technology. The business has modified the work structure to help the customers, take on new technologies and develop business outclass. The role of a Senior IT Risk Analyst supports in the identification, analysis, management, and effective monitoring of risks. The role will be focussed on project and BAU risk. The Senior IT Risk Analyst will be working on a hybrid working model of 1 day per week onsite in the Londin office. Responsibilities of the Senior IT Risk Analyst: - Support the Technology Risk Manager and Senior Risk Lead - Assess the technology risk domains, analysing data, and evaluating the impact of potential events. - Conduct RISK assessments and write risks for change incidents. - Full understanding of IT risk management processes, frameworks, and procedures - Risk and issue identification, assessment, management, and reporting; working with risk and action owners in a timely manner. Key experience of the Senior IT Risk Analyst: - 3+ years' experience Technology risk - Understanding and interested in Software Development and AI. - Ability to explain SDLC - Strong knowledge the policies and support compliance activities. - Able to quickly understand, evaluate risk data, identify trends and themes. - Proven experience producing reliable Management Information of risks, issues, risk measurement metrics and provide support to the Technology Risk Analysts. - risk mitigation plans and audit response plans and be able to report and explain deficiencies that are outside of appetite. Senior IT Risk Analyst - up to £70,000 London/ Hybrid To discuss this exciting opportunity in more detail, please APPLY NOW for a no obligation chat with your VIQU Consultant. Additionally, you can contact Dan Freeman , by exploring the VIQU IT Recruitment website . If you know someone who would be ideal for this role, by way of showing our appreciation, VIQU is offering an introduction fee up to £1,000 once your referral has successfully started work with our client (terms apply). To be the first to hear about other exciting opportunities, technology and recruitment news, please also follow us at ' VIQU IT Recruitment' on LinkedIn, and
Apr 22, 2024
Full time
Senior IT Risk Analyst - up to £70,000 London/ hybrid We're partnered with one of the UK's leading brands that are currently hiring for a Senior IT Risk Analyst to join their team going from strength to strength. They thrive to be the best in the field and outdo with their experience in data and technology. The business has modified the work structure to help the customers, take on new technologies and develop business outclass. The role of a Senior IT Risk Analyst supports in the identification, analysis, management, and effective monitoring of risks. The role will be focussed on project and BAU risk. The Senior IT Risk Analyst will be working on a hybrid working model of 1 day per week onsite in the Londin office. Responsibilities of the Senior IT Risk Analyst: - Support the Technology Risk Manager and Senior Risk Lead - Assess the technology risk domains, analysing data, and evaluating the impact of potential events. - Conduct RISK assessments and write risks for change incidents. - Full understanding of IT risk management processes, frameworks, and procedures - Risk and issue identification, assessment, management, and reporting; working with risk and action owners in a timely manner. Key experience of the Senior IT Risk Analyst: - 3+ years' experience Technology risk - Understanding and interested in Software Development and AI. - Ability to explain SDLC - Strong knowledge the policies and support compliance activities. - Able to quickly understand, evaluate risk data, identify trends and themes. - Proven experience producing reliable Management Information of risks, issues, risk measurement metrics and provide support to the Technology Risk Analysts. - risk mitigation plans and audit response plans and be able to report and explain deficiencies that are outside of appetite. Senior IT Risk Analyst - up to £70,000 London/ Hybrid To discuss this exciting opportunity in more detail, please APPLY NOW for a no obligation chat with your VIQU Consultant. Additionally, you can contact Dan Freeman , by exploring the VIQU IT Recruitment website . If you know someone who would be ideal for this role, by way of showing our appreciation, VIQU is offering an introduction fee up to £1,000 once your referral has successfully started work with our client (terms apply). To be the first to hear about other exciting opportunities, technology and recruitment news, please also follow us at ' VIQU IT Recruitment' on LinkedIn, and
Junior Cyber Security Analyst. Location: London. On-premises. Office Based: Four days a week. Remote Working: One day a week. An exceptional career opportunity is available to work for a nationally recognised museum. The museum has recently invested significantly in advanced systems to detect, prevent and resolve emerging cyber threats. Additionally, the museum must comply with various regulatory frameworks and legislation such as PCI-DSS, GDPR, CAA and Cyber Essentials. The maintenance of these security systems requires dedicated security team resources. This vacancy is a fantastic opportunity for a junior-level cybersecurity enthusiast with practical blue team knowledge/experience to develop more cyber awareness and understanding. Junior Cyber Security Analyst Key Skills: We are eager to connect with aspiring Junior Cyber Security Analysts, Cyber Security Interns, Entry-Level Cyber Security Engineers, Junior IT Security Engineers, and other early-career professionals focusing on cyber and IT security. To excel in this position, you must possess many of the following: - A good understanding of Cyber and IT Security concepts and practices. - Some experience performing Antivirus audits and checks. - Good knowledge or practical experience of blue team activities, including daily monitoring and reporting cyber threats, hazards, or risks. - The ability to patch devices, systems, or networks against vulnerabilities. - Knowledge or experience of one or more of the following: Cyber Essentials, Darktrace, Qualys. - Experience working with any endpoint security tool or software, such as MS Defender, Sophos, ESET, Trellix, Symantec, etc. - Have excellent English communication skills (written and verbal). All applicants must reside in the UK and have the right to work. About the Junior Cyber Security Analyst position: You will be a member of the IT Security Team. You will track and report daily cyber threats, hazards, risks, controls, mitigations, and measures to safeguard our client's systems and personnel. You will proactively monitor all output from the various security systems to ensure minimal downtime, and the business will always be protected from cyber threats. You will ensure that all websites, services, servers, and employee devices have installed adequate vulnerability patches. Responsibilities include: - Harnessing the cutting-edge capabilities of Darktrace to detect, prevent, and monitor cyber threats in real-time. - Finding systemic cyber vulnerabilities to make sure security is preserved. - To oversee the patching of critical systems and infrastructure across the entire company, including those platforms maintained by third-party suppliers, in accordance with Cyber Essentials, and to make sure that all devices covered by the programme comply with the standard. - Investigating and researching attack methods to create defences against emerging threats. - Support and adhere to the IT Security Incident Response process as needed. - Assistance with cyber security risk assessments, yearly audits, and ongoing improvement of incident management. Salary and Benefits: Salary: To £30-38,000 Location: London. On-premises. Office Based: Four days a week. Remote Working: One day a week. Holiday: 25 days + Bank Holidays. Rising to 30 days after five years. Museum benefits: - 20% discount in all on-site shops - 25% discount in museum cafes - Free entry to a large number of other museums and galleries. - Enhanced maternity and paternity: Yes Other benefits: - Access to Childcare vouchers. - Access to in-house training programmes and development. For more information on this Junior Cyber Security Analyst position, please get in touch with us to discuss. Our client welcomes everyone. They celebrate difference and encourage everyone to join and be themselves at work.
Apr 22, 2024
Full time
Junior Cyber Security Analyst. Location: London. On-premises. Office Based: Four days a week. Remote Working: One day a week. An exceptional career opportunity is available to work for a nationally recognised museum. The museum has recently invested significantly in advanced systems to detect, prevent and resolve emerging cyber threats. Additionally, the museum must comply with various regulatory frameworks and legislation such as PCI-DSS, GDPR, CAA and Cyber Essentials. The maintenance of these security systems requires dedicated security team resources. This vacancy is a fantastic opportunity for a junior-level cybersecurity enthusiast with practical blue team knowledge/experience to develop more cyber awareness and understanding. Junior Cyber Security Analyst Key Skills: We are eager to connect with aspiring Junior Cyber Security Analysts, Cyber Security Interns, Entry-Level Cyber Security Engineers, Junior IT Security Engineers, and other early-career professionals focusing on cyber and IT security. To excel in this position, you must possess many of the following: - A good understanding of Cyber and IT Security concepts and practices. - Some experience performing Antivirus audits and checks. - Good knowledge or practical experience of blue team activities, including daily monitoring and reporting cyber threats, hazards, or risks. - The ability to patch devices, systems, or networks against vulnerabilities. - Knowledge or experience of one or more of the following: Cyber Essentials, Darktrace, Qualys. - Experience working with any endpoint security tool or software, such as MS Defender, Sophos, ESET, Trellix, Symantec, etc. - Have excellent English communication skills (written and verbal). All applicants must reside in the UK and have the right to work. About the Junior Cyber Security Analyst position: You will be a member of the IT Security Team. You will track and report daily cyber threats, hazards, risks, controls, mitigations, and measures to safeguard our client's systems and personnel. You will proactively monitor all output from the various security systems to ensure minimal downtime, and the business will always be protected from cyber threats. You will ensure that all websites, services, servers, and employee devices have installed adequate vulnerability patches. Responsibilities include: - Harnessing the cutting-edge capabilities of Darktrace to detect, prevent, and monitor cyber threats in real-time. - Finding systemic cyber vulnerabilities to make sure security is preserved. - To oversee the patching of critical systems and infrastructure across the entire company, including those platforms maintained by third-party suppliers, in accordance with Cyber Essentials, and to make sure that all devices covered by the programme comply with the standard. - Investigating and researching attack methods to create defences against emerging threats. - Support and adhere to the IT Security Incident Response process as needed. - Assistance with cyber security risk assessments, yearly audits, and ongoing improvement of incident management. Salary and Benefits: Salary: To £30-38,000 Location: London. On-premises. Office Based: Four days a week. Remote Working: One day a week. Holiday: 25 days + Bank Holidays. Rising to 30 days after five years. Museum benefits: - 20% discount in all on-site shops - 25% discount in museum cafes - Free entry to a large number of other museums and galleries. - Enhanced maternity and paternity: Yes Other benefits: - Access to Childcare vouchers. - Access to in-house training programmes and development. For more information on this Junior Cyber Security Analyst position, please get in touch with us to discuss. Our client welcomes everyone. They celebrate difference and encourage everyone to join and be themselves at work.
Junior Cyber Security Analyst. Location: Duxford, Cambridgeshire. On-premises. Office Based: Four days a week. Remote Working: One day a week. An exceptional career opportunity is available to work for a globally recognized museum. The museum has recently invested significantly in advanced systems to detect, prevent and resolve emerging cyber threats. Additionally, the museum must comply with various regulatory frameworks and legislation such as PCI-DSS, GDPR, CAA and Cyber Essentials. The maintenance of these security systems requires dedicated security team resources. This vacancy is a fantastic opportunity for a junior-level cybersecurity enthusiast with practical blue team knowledge/experience to develop more cyber awareness and understanding. Junior Cyber Security Analyst Key Skills: We are eager to connect with aspiring Junior Cyber Security Analysts, Cyber Security Interns, Entry-Level Cyber Security Engineers, Junior IT Security Engineers, and other early-career professionals focusing on cyber and IT security. To excel in this position, you must possess many of the following: - A good understanding of Cyber and IT Security concepts and practices. - Some experience performing Antivirus audits and checks. - Good knowledge or practical experience of blue team activities, including daily monitoring and reporting cyber threats, hazards, or risks. - The ability to patch devices, systems, or networks against vulnerabilities. - Knowledge or experience of one or more of the following: Cyber Essentials, Darktrace, Qualys. - Experience working with any endpoint security tool or software, such as MS Defender, Sophos, ESET, Trellix, Symantec, etc. - Have excellent English communication skills (written and verbal). All applicants must reside in the UK and have the right to work. About the Junior Cyber Security Analyst position: You will be a member of the IT Security Team. You will track and report daily cyber threats, hazards, risks, controls, mitigations, and measures to safeguard our client's systems and personnel. You will proactively monitor all output from the various security systems to ensure minimal downtime, and the business will always be protected from cyber threats. You will ensure that all websites, services, servers, and employee devices have installed adequate vulnerability patches. Responsibilities include: - Harnessing the cutting-edge capabilities of Darktrace to detect, prevent, and monitor cyber threats in real-time. - Finding systemic cyber vulnerabilities to make sure security is preserved. - To oversee the patching of critical systems and infrastructure across the entire company, including those platforms maintained by third-party suppliers, in accordance with Cyber Essentials, and to make sure that all devices covered by the programme comply with the standard. - Investigating and researching attack methods to create defences against emerging threats. - Support and adhere to the IT Security Incident Response process as needed. - Assistance with cyber security risk assessments, yearly audits, and ongoing improvement of incident management. Salary and Benefits: Salary: To £30-38,000 Location: Duxford, Cambridgeshire. On-premises. Office Based: Four days a week. Remote Working: One day a week. Holiday: 25 days + Bank Holidays. Rising to 30 days after five years. Museum benefits: - 20% discount in all on-site shops - 25% discount in museum cafes - Free entry to a large number of other museums and galleries. - Enhanced maternity and paternity: Yes Other benefits: - Access to Childcare vouchers. - Access to in-house training programmes and development. For more information on this Junior Cyber Security Analyst position, please get in touch with us to discuss. Our client welcomes everyone. They celebrate difference and encourage everyone to join and be themselves at work.
Apr 22, 2024
Full time
Junior Cyber Security Analyst. Location: Duxford, Cambridgeshire. On-premises. Office Based: Four days a week. Remote Working: One day a week. An exceptional career opportunity is available to work for a globally recognized museum. The museum has recently invested significantly in advanced systems to detect, prevent and resolve emerging cyber threats. Additionally, the museum must comply with various regulatory frameworks and legislation such as PCI-DSS, GDPR, CAA and Cyber Essentials. The maintenance of these security systems requires dedicated security team resources. This vacancy is a fantastic opportunity for a junior-level cybersecurity enthusiast with practical blue team knowledge/experience to develop more cyber awareness and understanding. Junior Cyber Security Analyst Key Skills: We are eager to connect with aspiring Junior Cyber Security Analysts, Cyber Security Interns, Entry-Level Cyber Security Engineers, Junior IT Security Engineers, and other early-career professionals focusing on cyber and IT security. To excel in this position, you must possess many of the following: - A good understanding of Cyber and IT Security concepts and practices. - Some experience performing Antivirus audits and checks. - Good knowledge or practical experience of blue team activities, including daily monitoring and reporting cyber threats, hazards, or risks. - The ability to patch devices, systems, or networks against vulnerabilities. - Knowledge or experience of one or more of the following: Cyber Essentials, Darktrace, Qualys. - Experience working with any endpoint security tool or software, such as MS Defender, Sophos, ESET, Trellix, Symantec, etc. - Have excellent English communication skills (written and verbal). All applicants must reside in the UK and have the right to work. About the Junior Cyber Security Analyst position: You will be a member of the IT Security Team. You will track and report daily cyber threats, hazards, risks, controls, mitigations, and measures to safeguard our client's systems and personnel. You will proactively monitor all output from the various security systems to ensure minimal downtime, and the business will always be protected from cyber threats. You will ensure that all websites, services, servers, and employee devices have installed adequate vulnerability patches. Responsibilities include: - Harnessing the cutting-edge capabilities of Darktrace to detect, prevent, and monitor cyber threats in real-time. - Finding systemic cyber vulnerabilities to make sure security is preserved. - To oversee the patching of critical systems and infrastructure across the entire company, including those platforms maintained by third-party suppliers, in accordance with Cyber Essentials, and to make sure that all devices covered by the programme comply with the standard. - Investigating and researching attack methods to create defences against emerging threats. - Support and adhere to the IT Security Incident Response process as needed. - Assistance with cyber security risk assessments, yearly audits, and ongoing improvement of incident management. Salary and Benefits: Salary: To £30-38,000 Location: Duxford, Cambridgeshire. On-premises. Office Based: Four days a week. Remote Working: One day a week. Holiday: 25 days + Bank Holidays. Rising to 30 days after five years. Museum benefits: - 20% discount in all on-site shops - 25% discount in museum cafes - Free entry to a large number of other museums and galleries. - Enhanced maternity and paternity: Yes Other benefits: - Access to Childcare vouchers. - Access to in-house training programmes and development. For more information on this Junior Cyber Security Analyst position, please get in touch with us to discuss. Our client welcomes everyone. They celebrate difference and encourage everyone to join and be themselves at work.
Cyber Security Risk & Assurance Analyst - 45-50k + Bonus Job Accountabilities Effectively leverage the Digital Safety risk framework to identify, analyse and manage cyber risk reflecting in-depth knowledge and experience. Actively engage with numerous functions, from technical IT to business facing functions, to gather a comprehensive range of risk-related information to demonstrate broad organisational understanding. Apply the Digital Safety assurance processes to accurately identify and register risks, demonstrating strategic initiative and proactively. to perceive and register risks. Collaborate with the IT Quality and Risk function to identify significant areas of IT risk in the context of Digital Safety risks, demonstrating strong cross-functional teamwork. Report to senior management via appropriate forums on risk and assurance findings and risk treatment plans. Present and articulate findings at risk forums to facilitate the management of identified risks, showcasing nuanced understanding and strong communication skills. Maintain and update knowledge of the current threat landscape and evaluate its impact on the likelihood of risk events occurring, reflecting a commitment to knowledge development. Provide education, guidance and mentorship to colleagues outside of Risk and Assurance on the use of the risk methodology, fostering a companywide understanding of risk management and reporting. Supporting Risk and Assurance: Tracking, management and reporting of risk, control and deviation remediation activities, Facilitate in the preparation of material for internal or external auditors, Preside over meetings, ensuring key decisions and discussions are minute and action logs are maintained for future reference. Provide strategic support to the Digital Safety Risk and Assurance team to identify and capture gaps and information concerning our data governance framework. Responsible for updating the risk register of information assets with risks associated with each asset. Business skills Has sufficient communication skills for effective dialogue with customers, suppliers and partners. Is able to work in a team. Is able to plan, schedule and monitor own work within short time horizons. Demonstrates a rational and organised approach to work. Understands and uses appropriate methods, tools and applications. Identifies and negotiates own development opportunities. Is fully aware of and complies with essential organisational security practices expected of the individual. Analytical mind-set. Motivation to develop and maintain subject matter expertise. Enthusiastic, pro-active and positive attitude. Ability to work to deadlines, prioritize and multi-task. Ability to manage own workload and meeting schedule. Basic Report writing. Ability to absorb and learn technical information and communicate this in a way that is easy to understand. Cyber Security Risk & Assurance Analyst - 45-50k + Bonus .
Apr 22, 2024
Full time
Cyber Security Risk & Assurance Analyst - 45-50k + Bonus Job Accountabilities Effectively leverage the Digital Safety risk framework to identify, analyse and manage cyber risk reflecting in-depth knowledge and experience. Actively engage with numerous functions, from technical IT to business facing functions, to gather a comprehensive range of risk-related information to demonstrate broad organisational understanding. Apply the Digital Safety assurance processes to accurately identify and register risks, demonstrating strategic initiative and proactively. to perceive and register risks. Collaborate with the IT Quality and Risk function to identify significant areas of IT risk in the context of Digital Safety risks, demonstrating strong cross-functional teamwork. Report to senior management via appropriate forums on risk and assurance findings and risk treatment plans. Present and articulate findings at risk forums to facilitate the management of identified risks, showcasing nuanced understanding and strong communication skills. Maintain and update knowledge of the current threat landscape and evaluate its impact on the likelihood of risk events occurring, reflecting a commitment to knowledge development. Provide education, guidance and mentorship to colleagues outside of Risk and Assurance on the use of the risk methodology, fostering a companywide understanding of risk management and reporting. Supporting Risk and Assurance: Tracking, management and reporting of risk, control and deviation remediation activities, Facilitate in the preparation of material for internal or external auditors, Preside over meetings, ensuring key decisions and discussions are minute and action logs are maintained for future reference. Provide strategic support to the Digital Safety Risk and Assurance team to identify and capture gaps and information concerning our data governance framework. Responsible for updating the risk register of information assets with risks associated with each asset. Business skills Has sufficient communication skills for effective dialogue with customers, suppliers and partners. Is able to work in a team. Is able to plan, schedule and monitor own work within short time horizons. Demonstrates a rational and organised approach to work. Understands and uses appropriate methods, tools and applications. Identifies and negotiates own development opportunities. Is fully aware of and complies with essential organisational security practices expected of the individual. Analytical mind-set. Motivation to develop and maintain subject matter expertise. Enthusiastic, pro-active and positive attitude. Ability to work to deadlines, prioritize and multi-task. Ability to manage own workload and meeting schedule. Basic Report writing. Ability to absorb and learn technical information and communicate this in a way that is easy to understand. Cyber Security Risk & Assurance Analyst - 45-50k + Bonus .
Market Data Admin & Compliance Support Analyst £200 per day Inside IR35 6 Months London-based initially then Hybrid We have an exciting opportunity for an experienced Market Data Administrator & Compliance Support Analyst to join a London based multinational financial services company on an initial 6-month contract. Responsibilities: Manage Market Data Systems and Trading Systems as well as Applications related to contract and agreements (new, old, renewal, termination, change of terms, queries). Manage vendor's Market Data License. Manage Exchange, Specialist data and Products permissions and access control Manage Market Data and Trading Applications' Risk assessment Manage Market Data and Trading Applications' Inventory Manage Market Data cost allocations and invoices on Finance & Control systems Participate in Market Data and Applications Audit by the vendors, external and internal audits. Regular audit and verification of Market Data Ensuring adherence to the organisation's policy and processes. Required Skills/Experience Refinitiv and Bloomberg training. ITFL Foundation Certification or equivalent service management knowledge. Educated to degree level or possess equivalent professional experience. Extensive experience in managing Refinitiv and Bloomberg User administrations, Data administrations and Agreement Services offered by Computappoint Limited are those of an Employment Business and/or Employment Agency in relation to this vacancy
Apr 21, 2024
Full time
Market Data Admin & Compliance Support Analyst £200 per day Inside IR35 6 Months London-based initially then Hybrid We have an exciting opportunity for an experienced Market Data Administrator & Compliance Support Analyst to join a London based multinational financial services company on an initial 6-month contract. Responsibilities: Manage Market Data Systems and Trading Systems as well as Applications related to contract and agreements (new, old, renewal, termination, change of terms, queries). Manage vendor's Market Data License. Manage Exchange, Specialist data and Products permissions and access control Manage Market Data and Trading Applications' Risk assessment Manage Market Data and Trading Applications' Inventory Manage Market Data cost allocations and invoices on Finance & Control systems Participate in Market Data and Applications Audit by the vendors, external and internal audits. Regular audit and verification of Market Data Ensuring adherence to the organisation's policy and processes. Required Skills/Experience Refinitiv and Bloomberg training. ITFL Foundation Certification or equivalent service management knowledge. Educated to degree level or possess equivalent professional experience. Extensive experience in managing Refinitiv and Bloomberg User administrations, Data administrations and Agreement Services offered by Computappoint Limited are those of an Employment Business and/or Employment Agency in relation to this vacancy
Controls and Operations Analyst. to £50,000 + full benefits package For a candidate with auditing or accounting or controls / process experience and knowledge of Sarbanes Oxley and Solvency II, financial reporting this could be an excellent opportunity to join a leading insurance organisation with an excellent market reputation . Experience in evaluating IT Internal Controls and systems for SOX and/or Data Quality for Solvency II is highly desirable. The fundamental function of the Controls and Operations Analyst is to support the Controls and Data Assurance Manager with monitoring, maintaining and improving the internal controls framework and improving operational effectiveness and efficiency through the delivery of best practice process standards and continuous key process improvement. As a Controls and Operations Analyst you will :- Participate in risk-based scoping, mapping, documentation, control evaluations, gap remediation and regular (quarterly) certifications / attestations and testing as part of the internal control and data quality framework. Ensure key controls are designed and operating effectively throughout the year. Work with the business areas to identify new and changed processes impacting compliance and ensure that new controls and datasets are identified, documented and evaluated in a timely manner. Oversee the DQ framework Investigate DQ improvement ideas with the business and present conclusions at DQ Forum Work with business to implement rules over the data to improve quality Maintain up-to-date cycle documentation Prepare reporting to key audiences based on each period's self-assessments and KPI's, communicating areas of concern, improvements and changes to control and data frameworks. Support the team performing activities for the Sourcing function and monitoring of SLAs To prepare monthly reporting for submission to Governance committees. To collate, review, maintain and update as required, key process monitoring timetables detailing key multi departmental processes across the business. Work with the team to maintain the process framework (comprising of a central process library, departmental process maps and procedures) Support and enable improvement initiatives fostering and delivering a continual improvement ethos.
Apr 21, 2024
Full time
Controls and Operations Analyst. to £50,000 + full benefits package For a candidate with auditing or accounting or controls / process experience and knowledge of Sarbanes Oxley and Solvency II, financial reporting this could be an excellent opportunity to join a leading insurance organisation with an excellent market reputation . Experience in evaluating IT Internal Controls and systems for SOX and/or Data Quality for Solvency II is highly desirable. The fundamental function of the Controls and Operations Analyst is to support the Controls and Data Assurance Manager with monitoring, maintaining and improving the internal controls framework and improving operational effectiveness and efficiency through the delivery of best practice process standards and continuous key process improvement. As a Controls and Operations Analyst you will :- Participate in risk-based scoping, mapping, documentation, control evaluations, gap remediation and regular (quarterly) certifications / attestations and testing as part of the internal control and data quality framework. Ensure key controls are designed and operating effectively throughout the year. Work with the business areas to identify new and changed processes impacting compliance and ensure that new controls and datasets are identified, documented and evaluated in a timely manner. Oversee the DQ framework Investigate DQ improvement ideas with the business and present conclusions at DQ Forum Work with business to implement rules over the data to improve quality Maintain up-to-date cycle documentation Prepare reporting to key audiences based on each period's self-assessments and KPI's, communicating areas of concern, improvements and changes to control and data frameworks. Support the team performing activities for the Sourcing function and monitoring of SLAs To prepare monthly reporting for submission to Governance committees. To collate, review, maintain and update as required, key process monitoring timetables detailing key multi departmental processes across the business. Work with the team to maintain the process framework (comprising of a central process library, departmental process maps and procedures) Support and enable improvement initiatives fostering and delivering a continual improvement ethos.
MunichRe is a global market leader in re-insurance, global specialty insurance and digital solutions. New technologies are disrupting the insurance value chain. Our innovative minds in IT spearhead the transformation and make change happen. We support clients with a comprehensive range of insurance and risk management products. Our goal is to become even more digital through the expertise of our IT & Tech specialists, and by leveraging data and insights to support innovation and client service. We are therefore making targeted IT investments and helping our insurance clients and partners to tackle problems in the modern digital world with innovative and forward-looking solutions. As a Senior Solutions Architect you will design end-to-end solutions for London market specialty insurance companies, that ensure consistency with specified requirements agreed with customers, while integrating with existing systems, adhering to industry best practices, and following Munich Re Architecture standards and patterns. In this role, you will enable and guide the design and development of integrated solutions in large and complex projects, often with a global scope. You will be responsible for taking ownership of an entire Technology Landscape supporting an end to end insurance value chain, and co-ordinate various activities with multiple IT and Business stakeholders. Lead Solution architect for London Market Specialty Insurance Companies (Great Lakes and MR Specialty Group) consulting on and designing technology solutions as a core team member of the Global Specialty Solution architecture practice. Close collaboration with business architects and change teams during the inception and development of architecture and product requirements, including with executive stakeholders. Design and implement technology solutions and mapping of customer requirements to systems/technical requirements to ensure alignment with the Global Specialty insurance Target architecture and technology roadmaps. Accountability for detailed component specifications and translating these into detailed designs for implementation. Engaging with and providing technical oversight of the work of analysts and software developers, to provide technical expertise and guidance. Guiding solutions through the appointed Architecture Review Board and Solution Design Forum, ensure production of artifacts necessary to meet our architectural governance processes. Achieve the balance between functional, service quality and systems management requirements. Oversee the adherence to appropriate standards (performance, monitor capability, audit acceptability, secure environment). Support the strategic direction of technology investments to help develop the enterprise architecture and maximizing the return on technology investments Proficiency in data modeling, data integration, and data analytics, as data is a crucial aspect of insurance operations. Design business solutions that compliment and support our data strategy throughout the Technology landscape. Your profile Preferably a University degree in Computer engineering / IT or similar qualification Experience in delivery of IT solutions in the specialty insurance industry, preferably London markets Experience in designing and developing solutions (Solution Development life cycles, and the application of IT risk & security considerations) Proven experience in designing and developing solutions (Solution Development life cycles, and the application of IT risk & security considerations) Insurance Domain Knowledge: A solid understanding of the insurance industry, particularly the unique aspects and complexities of the Lloyd's London Market, including insurance underwriting, claims processing, risk management, and regulatory requirements. Ability to understand and interpret Business Requirements and convert them into Technology implementation specifications for the development and integrations teams to follow; thus, solving business programs using Technology platforms and tools available within our environment. Strong focus on delivery and execution IT Architecture and Systems: Strong knowledge of IT architecture principles, enterprise architecture frameworks, and various technology platforms. Familiarity with core insurance systems like policy administration, claims management, reinsurance, and reporting systems used in the insurance industry. Strong knowledge of cloud-based solutions and emerging technologies in the insurance industry. Understanding how these technologies can be applied to improve processes and enhance customer experiences. Familiarity with insurance regulatory requirements in the London Market and other relevant jurisdictions. Excellent communication and interpersonal skills to effectively engage with various stakeholders, including business users, IT teams, vendors, and senior management. The ability to translate technical concepts to non-technical stakeholders is essential. The ability to lead and inspire a team of architects and technical professionals, providing direction, guidance, and mentorship. Strong communication and presentation skills to articulate technical concepts and solutions to non-technical stakeholders and senior management. Thought leadership - able to monitor market trends and to guide creative thinking on future technology capabilities which will help increase the business value of Munich Re. The ability to foster collaboration and teamwork among cross-functional teams, breaking down silos and encouraging knowledge sharing. A willingness to mentor and coach junior architects and team members, fostering a culture of continuous learning and improvement. About us As the world's leading reinsurance company with more than 11,000 employees at over 50 locations, Munich Re introduces a paradigm shift in the way you think about insurance. By turning uncertainty into a manageable risk, we enable fundamental change. Join us working on topics today that will concern society tomorrow, whether that be climate change, major construction projects, medical risk assessment or even space travel. Together we embrace a culture where multiskilled teams dare to think big. We create the new and the different for our clients and cultivate innovation. Sounds like you? Push boundaries with us and be part of Munich Re. Our employees are our greatest strength. That's why we offer them a wide range of benefits. You can find some examples below. For more insights about working at Munich Re please click here . Unlock your potential Professional Training & Certification: We accompany you in building up your professional profile by supporting with customized professional training and certification opportunities. Diversity, Equity & Inclusion: We embrace the power of differences and are convinced that diversity fosters innovation and resilience and enables us to act braver and better. Continuous Learning: We believe that continuous learning is a key differentiator and critical for building new skills and accelerating growth. Career Mobility: We actively support career mobility, and our strong global and regional presence offers a wealth of career growth opportunities for you.
Apr 20, 2024
Full time
MunichRe is a global market leader in re-insurance, global specialty insurance and digital solutions. New technologies are disrupting the insurance value chain. Our innovative minds in IT spearhead the transformation and make change happen. We support clients with a comprehensive range of insurance and risk management products. Our goal is to become even more digital through the expertise of our IT & Tech specialists, and by leveraging data and insights to support innovation and client service. We are therefore making targeted IT investments and helping our insurance clients and partners to tackle problems in the modern digital world with innovative and forward-looking solutions. As a Senior Solutions Architect you will design end-to-end solutions for London market specialty insurance companies, that ensure consistency with specified requirements agreed with customers, while integrating with existing systems, adhering to industry best practices, and following Munich Re Architecture standards and patterns. In this role, you will enable and guide the design and development of integrated solutions in large and complex projects, often with a global scope. You will be responsible for taking ownership of an entire Technology Landscape supporting an end to end insurance value chain, and co-ordinate various activities with multiple IT and Business stakeholders. Lead Solution architect for London Market Specialty Insurance Companies (Great Lakes and MR Specialty Group) consulting on and designing technology solutions as a core team member of the Global Specialty Solution architecture practice. Close collaboration with business architects and change teams during the inception and development of architecture and product requirements, including with executive stakeholders. Design and implement technology solutions and mapping of customer requirements to systems/technical requirements to ensure alignment with the Global Specialty insurance Target architecture and technology roadmaps. Accountability for detailed component specifications and translating these into detailed designs for implementation. Engaging with and providing technical oversight of the work of analysts and software developers, to provide technical expertise and guidance. Guiding solutions through the appointed Architecture Review Board and Solution Design Forum, ensure production of artifacts necessary to meet our architectural governance processes. Achieve the balance between functional, service quality and systems management requirements. Oversee the adherence to appropriate standards (performance, monitor capability, audit acceptability, secure environment). Support the strategic direction of technology investments to help develop the enterprise architecture and maximizing the return on technology investments Proficiency in data modeling, data integration, and data analytics, as data is a crucial aspect of insurance operations. Design business solutions that compliment and support our data strategy throughout the Technology landscape. Your profile Preferably a University degree in Computer engineering / IT or similar qualification Experience in delivery of IT solutions in the specialty insurance industry, preferably London markets Experience in designing and developing solutions (Solution Development life cycles, and the application of IT risk & security considerations) Proven experience in designing and developing solutions (Solution Development life cycles, and the application of IT risk & security considerations) Insurance Domain Knowledge: A solid understanding of the insurance industry, particularly the unique aspects and complexities of the Lloyd's London Market, including insurance underwriting, claims processing, risk management, and regulatory requirements. Ability to understand and interpret Business Requirements and convert them into Technology implementation specifications for the development and integrations teams to follow; thus, solving business programs using Technology platforms and tools available within our environment. Strong focus on delivery and execution IT Architecture and Systems: Strong knowledge of IT architecture principles, enterprise architecture frameworks, and various technology platforms. Familiarity with core insurance systems like policy administration, claims management, reinsurance, and reporting systems used in the insurance industry. Strong knowledge of cloud-based solutions and emerging technologies in the insurance industry. Understanding how these technologies can be applied to improve processes and enhance customer experiences. Familiarity with insurance regulatory requirements in the London Market and other relevant jurisdictions. Excellent communication and interpersonal skills to effectively engage with various stakeholders, including business users, IT teams, vendors, and senior management. The ability to translate technical concepts to non-technical stakeholders is essential. The ability to lead and inspire a team of architects and technical professionals, providing direction, guidance, and mentorship. Strong communication and presentation skills to articulate technical concepts and solutions to non-technical stakeholders and senior management. Thought leadership - able to monitor market trends and to guide creative thinking on future technology capabilities which will help increase the business value of Munich Re. The ability to foster collaboration and teamwork among cross-functional teams, breaking down silos and encouraging knowledge sharing. A willingness to mentor and coach junior architects and team members, fostering a culture of continuous learning and improvement. About us As the world's leading reinsurance company with more than 11,000 employees at over 50 locations, Munich Re introduces a paradigm shift in the way you think about insurance. By turning uncertainty into a manageable risk, we enable fundamental change. Join us working on topics today that will concern society tomorrow, whether that be climate change, major construction projects, medical risk assessment or even space travel. Together we embrace a culture where multiskilled teams dare to think big. We create the new and the different for our clients and cultivate innovation. Sounds like you? Push boundaries with us and be part of Munich Re. Our employees are our greatest strength. That's why we offer them a wide range of benefits. You can find some examples below. For more insights about working at Munich Re please click here . Unlock your potential Professional Training & Certification: We accompany you in building up your professional profile by supporting with customized professional training and certification opportunities. Diversity, Equity & Inclusion: We embrace the power of differences and are convinced that diversity fosters innovation and resilience and enables us to act braver and better. Continuous Learning: We believe that continuous learning is a key differentiator and critical for building new skills and accelerating growth. Career Mobility: We actively support career mobility, and our strong global and regional presence offers a wealth of career growth opportunities for you.
Alexander Mann Solutions - Public Sector Resourcing
City, London
Swift Configuration Analyst - (Inside IR35) Contract Term: 6 Months Contracting Authority: Bank of England Location: London - Hybrid Description: We are seeking an experienced senior configuration analyst to join the Financial Messaging Services team (FMS) within the Digital Platforms division of Technology. FMS support and configure third party applications and hardware, primarily products provided by SWIFT. The successful candidate should have extensive previous experience of configuring and supporting SWIFT products. Summary of the Team/Division Technology manage and support all aspect of technology delivery across the Bank, from maintaining critical systems which underpin the UK economy, to providing complex data analytics, implementing comprehensive cyber security programmes, and introducing innovative solutions in support of a digital workplace. Technology's key objective is to support all other areas of the Bank in achieving our collective mission to promote the good of the people of the UK by maintaining monetary and financial stability. This is achieved through the delivery of appropriate, high performing, resilient solutions and information services across the organisation and externally. The Digital Platforms division develops and maintains our IT applications and infrastructure, working with Architecture, Analysis and Consultancy to translate requirements and high-level outline solutions into new and enhanced services. Digital Platforms also provides on-going maintenance and support across our IT estate to ensure that we continually deliver great service to our customers. Within Digital Platforms, Financial Systems Solutions (FSS) develops and supports a number of the Bank's critical services. Within FSS itself, FMS support a number of key third party applications and some hardware associated with the Bank of England financial messaging services. The team's primary focus is on the support and configuration of SWIFT products plus a small number of other applications which interact with SWIFT messages. The Bank uses SWIFT for a number of key services within the Banking, Payments and Innovation directorate. As the Operator of the UK Real-Time Gross Settlement System (RTGS), the reliance on SWIFT is paramount. Detailed Description of the Role : We are seeking an experienced senior configuration analyst to join the Financial Messaging Services team. From a service perspective, the team are responsible for maintaining and supporting the Bank's SWIFT product estate which underpin critical financial services within the Banking, Payments and Financial Resilience directorate. Key areas of responsibility are: Technica l Display an ability to provide technical leadership for the development and support of SWIFT services Use your technical and business experience to support the Bank's production and UAT financial messaging systems. Provide daily support of the Bank's operational Live and UAT financial messaging systems; monitoring performance and ensure full and rapid problem resolution. Provide out of hours support, including Bank holidays. Deliver high quality software components and documentation which conform to FMS guidelines and standards. Coordinate operational activity for a set of systems/services. This will include (but is not limited to) failover and backup tests, pen test response/remediation, audit actions, risk and threat registers and security reviews. Apply analytical and problem-solving skills to incidents, requests and problems (as defined by ITIL) Triage calls as they arrive, making initial assessments around impact and urgency to derive priority Proactively manage major/significant IT incidents. Service Improvement Proactively seek out system improvements that result in a reduction in support calls Implement process changes that improve the service delivered to the business Identify improvements that result in increased team performance against Technology's SLA Empower first line colleagues and the business to be able to resolve incidents and requests earlier in the lifecycle Team Working Engage with multiple stakeholders both internally and externally Ensure team standards and processes are adhered to Proactively contribute and update system/process documentation Consistently demonstrate Bank values in day to day work, namely being: collaborative, inclusive, empowering, decisive and open Adopt the Service First culture The ideal candidate will have: Demonstrable specialist experience of the following SWIFT products Alliance Connect Alliance Gateway Alliance Web Platform SWIFT Alliance Messaging Hub HSM Transaction Delivery Agent An ability to engage confidently and effectively with senior stakeholders, both business and technical The ability to create concise, informative technical documentation The ability to identify and escalate risks in the interests of protecting Live service/systems Have an understanding of good team practice and the ability to work with others sharing. Have the ability to form and maintain trusting relationships with business colleagues and demonstrate an understanding of business processes. The following skills and competencies are desirable for this role (although they could be learnt on the job): Demonstrable technical experience with the following products SWIFT Alliance Access SWIFT Security Officer and O2M IBM MQ Client Both Windows and Linux operating systems
Apr 19, 2024
Contractor
Swift Configuration Analyst - (Inside IR35) Contract Term: 6 Months Contracting Authority: Bank of England Location: London - Hybrid Description: We are seeking an experienced senior configuration analyst to join the Financial Messaging Services team (FMS) within the Digital Platforms division of Technology. FMS support and configure third party applications and hardware, primarily products provided by SWIFT. The successful candidate should have extensive previous experience of configuring and supporting SWIFT products. Summary of the Team/Division Technology manage and support all aspect of technology delivery across the Bank, from maintaining critical systems which underpin the UK economy, to providing complex data analytics, implementing comprehensive cyber security programmes, and introducing innovative solutions in support of a digital workplace. Technology's key objective is to support all other areas of the Bank in achieving our collective mission to promote the good of the people of the UK by maintaining monetary and financial stability. This is achieved through the delivery of appropriate, high performing, resilient solutions and information services across the organisation and externally. The Digital Platforms division develops and maintains our IT applications and infrastructure, working with Architecture, Analysis and Consultancy to translate requirements and high-level outline solutions into new and enhanced services. Digital Platforms also provides on-going maintenance and support across our IT estate to ensure that we continually deliver great service to our customers. Within Digital Platforms, Financial Systems Solutions (FSS) develops and supports a number of the Bank's critical services. Within FSS itself, FMS support a number of key third party applications and some hardware associated with the Bank of England financial messaging services. The team's primary focus is on the support and configuration of SWIFT products plus a small number of other applications which interact with SWIFT messages. The Bank uses SWIFT for a number of key services within the Banking, Payments and Innovation directorate. As the Operator of the UK Real-Time Gross Settlement System (RTGS), the reliance on SWIFT is paramount. Detailed Description of the Role : We are seeking an experienced senior configuration analyst to join the Financial Messaging Services team. From a service perspective, the team are responsible for maintaining and supporting the Bank's SWIFT product estate which underpin critical financial services within the Banking, Payments and Financial Resilience directorate. Key areas of responsibility are: Technica l Display an ability to provide technical leadership for the development and support of SWIFT services Use your technical and business experience to support the Bank's production and UAT financial messaging systems. Provide daily support of the Bank's operational Live and UAT financial messaging systems; monitoring performance and ensure full and rapid problem resolution. Provide out of hours support, including Bank holidays. Deliver high quality software components and documentation which conform to FMS guidelines and standards. Coordinate operational activity for a set of systems/services. This will include (but is not limited to) failover and backup tests, pen test response/remediation, audit actions, risk and threat registers and security reviews. Apply analytical and problem-solving skills to incidents, requests and problems (as defined by ITIL) Triage calls as they arrive, making initial assessments around impact and urgency to derive priority Proactively manage major/significant IT incidents. Service Improvement Proactively seek out system improvements that result in a reduction in support calls Implement process changes that improve the service delivered to the business Identify improvements that result in increased team performance against Technology's SLA Empower first line colleagues and the business to be able to resolve incidents and requests earlier in the lifecycle Team Working Engage with multiple stakeholders both internally and externally Ensure team standards and processes are adhered to Proactively contribute and update system/process documentation Consistently demonstrate Bank values in day to day work, namely being: collaborative, inclusive, empowering, decisive and open Adopt the Service First culture The ideal candidate will have: Demonstrable specialist experience of the following SWIFT products Alliance Connect Alliance Gateway Alliance Web Platform SWIFT Alliance Messaging Hub HSM Transaction Delivery Agent An ability to engage confidently and effectively with senior stakeholders, both business and technical The ability to create concise, informative technical documentation The ability to identify and escalate risks in the interests of protecting Live service/systems Have an understanding of good team practice and the ability to work with others sharing. Have the ability to form and maintain trusting relationships with business colleagues and demonstrate an understanding of business processes. The following skills and competencies are desirable for this role (although they could be learnt on the job): Demonstrable technical experience with the following products SWIFT Alliance Access SWIFT Security Officer and O2M IBM MQ Client Both Windows and Linux operating systems
The Associate Due Diligence Analyst position requires a highly diligent and analytic individual with a keen interest in information security. It is a fully remote role, reporting to the Senior Analyst Client Details The company is a medium sized global business, they are now expanding their 3rd party Due Diligence team. Description Conduct thorough assessments of third-party vendor's information security policies, procedures, and controls. Evaluate vendor's security controls against industry standards Analyse vendor security questionnaires and documentation to assess risk and compliance with contractual security requirements. Collaborate closely with internal stakeholders, including Legal, Procurement, and IT, to ensure alignment on vendor security requirements and risk mitigation strategies. Prepare detailed reports and recommendations based on assessment findings to support decision-making and vendor management processes. Monitor and track remediation efforts for identified security issues and follow up with vendors as needed to ensure timely resolution. Profile Around 1 year experience in either one of Due Diligence, 3rd Party Assurance, QA, IT GRC or IT Audit Good analytic and evaluation skills With formal training in Information / IT assessment and evaluation Job Offer Remote working arrangement with comprehensive benefits
Apr 18, 2024
Full time
The Associate Due Diligence Analyst position requires a highly diligent and analytic individual with a keen interest in information security. It is a fully remote role, reporting to the Senior Analyst Client Details The company is a medium sized global business, they are now expanding their 3rd party Due Diligence team. Description Conduct thorough assessments of third-party vendor's information security policies, procedures, and controls. Evaluate vendor's security controls against industry standards Analyse vendor security questionnaires and documentation to assess risk and compliance with contractual security requirements. Collaborate closely with internal stakeholders, including Legal, Procurement, and IT, to ensure alignment on vendor security requirements and risk mitigation strategies. Prepare detailed reports and recommendations based on assessment findings to support decision-making and vendor management processes. Monitor and track remediation efforts for identified security issues and follow up with vendors as needed to ensure timely resolution. Profile Around 1 year experience in either one of Due Diligence, 3rd Party Assurance, QA, IT GRC or IT Audit Good analytic and evaluation skills With formal training in Information / IT assessment and evaluation Job Offer Remote working arrangement with comprehensive benefits