About the role
The primary purpose of this role is to develop, maintain, continuously improve, and support both internal and client-facing IT infrastructure, including servers, storage, networks, and telecoms systems. The successful candidate will report directly to our Global Infrastructure Lead, providing expert Infrastructure oversight, while working with the wider IT department to ensure the successful delivery and performance of our IT services the fulfillment of our obligations, and Service Level Targets.
What you will do
Takes a lead role in completing more complex project tasks to enable the on-time, within-budget, and scope delivery of IT Infrastructure projects.
Takes a lead role in conducting more complex root cause analysis to identify and resolve complex problems impacting IT Infrastructure.
Work with the global IT team to undertake maintenance activities to ensure that the servers (both Cloud and on-premise) are secure to make sure IT infrastructure remains available and ‘fit for purpose’
Perform L2 and L3 incident management for Desktop and Server Infrastructure Technologies Supporting the systems administrator(s) with BAU support, providing an escalation point for high-level users and issues
Infrastructure innovation, in line with business plans and software development
Develop an understanding of ISO 27001 and assist with audits, compliance, and policy development
Perform root-cause analysis on cyber and compliance risks
Out-of-hours work to support global teams when required
Takes a lead role in developing documentation for the more complex technical areas. Mentor less experienced team members in the execution of their duties
Ensure security compliance of the IT infrastructure by carrying out remedial actions as required
What we are looking for
Excellent working knowledge of The Microsoft Cloud services and experience of building solutions around the,
Solid technical experience in supporting Microsoft server infrastructure (hardware and software)
Team Leader experience, generally focused around mentoring junior members of the team
Experienced engineer with an excellent record of server infrastructure, medium and large schedule rolls of Cloud first infrastructures
Experience working with MS Windows Server 2012/R2, ADFS, AD MS SharePoint, Exchange, PowerShell, Skype for business, Teams, O365, and Intune.
Working knowledge and experience of Hyper-V is essential
Experience of SQL server management
Technical experience Office 365 and administration of MS Azure
Be able to demonstrate advanced networking skills
Working knowledge of Microsoft Teams and Microsoft PowerApps and power platform builds
Knowledge of Microsoft Dynamics 360 or equivalent
Experience supporting Azure DevOP’s platforms, Maintain Blob Storage as well as other Microsoft cloud technologies
Have a positive ‘can do’ attitude, be willing to go the extra mile and suggest improvements to departmental processes
IT Project Management (Technical side) desirable
Excellent communication skills at all levels, be able to provide updates to the relevant individuals / teams as and when necessary
Solid understanding of General IT equipment e.g., Switch, routers, SaaS etc.
Experience in cybersecurity is desirable
Experience of 27001 is desirable (not audit level)
Experience designing and implementing CRM Systems is desirable
NB: The successful candidate will be required to pass our security screening procedures.
Apr 16, 2024
Full time
About the role
The primary purpose of this role is to develop, maintain, continuously improve, and support both internal and client-facing IT infrastructure, including servers, storage, networks, and telecoms systems. The successful candidate will report directly to our Global Infrastructure Lead, providing expert Infrastructure oversight, while working with the wider IT department to ensure the successful delivery and performance of our IT services the fulfillment of our obligations, and Service Level Targets.
What you will do
Takes a lead role in completing more complex project tasks to enable the on-time, within-budget, and scope delivery of IT Infrastructure projects.
Takes a lead role in conducting more complex root cause analysis to identify and resolve complex problems impacting IT Infrastructure.
Work with the global IT team to undertake maintenance activities to ensure that the servers (both Cloud and on-premise) are secure to make sure IT infrastructure remains available and ‘fit for purpose’
Perform L2 and L3 incident management for Desktop and Server Infrastructure Technologies Supporting the systems administrator(s) with BAU support, providing an escalation point for high-level users and issues
Infrastructure innovation, in line with business plans and software development
Develop an understanding of ISO 27001 and assist with audits, compliance, and policy development
Perform root-cause analysis on cyber and compliance risks
Out-of-hours work to support global teams when required
Takes a lead role in developing documentation for the more complex technical areas. Mentor less experienced team members in the execution of their duties
Ensure security compliance of the IT infrastructure by carrying out remedial actions as required
What we are looking for
Excellent working knowledge of The Microsoft Cloud services and experience of building solutions around the,
Solid technical experience in supporting Microsoft server infrastructure (hardware and software)
Team Leader experience, generally focused around mentoring junior members of the team
Experienced engineer with an excellent record of server infrastructure, medium and large schedule rolls of Cloud first infrastructures
Experience working with MS Windows Server 2012/R2, ADFS, AD MS SharePoint, Exchange, PowerShell, Skype for business, Teams, O365, and Intune.
Working knowledge and experience of Hyper-V is essential
Experience of SQL server management
Technical experience Office 365 and administration of MS Azure
Be able to demonstrate advanced networking skills
Working knowledge of Microsoft Teams and Microsoft PowerApps and power platform builds
Knowledge of Microsoft Dynamics 360 or equivalent
Experience supporting Azure DevOP’s platforms, Maintain Blob Storage as well as other Microsoft cloud technologies
Have a positive ‘can do’ attitude, be willing to go the extra mile and suggest improvements to departmental processes
IT Project Management (Technical side) desirable
Excellent communication skills at all levels, be able to provide updates to the relevant individuals / teams as and when necessary
Solid understanding of General IT equipment e.g., Switch, routers, SaaS etc.
Experience in cybersecurity is desirable
Experience of 27001 is desirable (not audit level)
Experience designing and implementing CRM Systems is desirable
NB: The successful candidate will be required to pass our security screening procedures.
About us Hello, we are Red Engine, the team behind the award-winning global brands Flight Club and Electric Shuffle. We're obsessed with disrupting the hospitality industry by creating and delivering the best possible experience - across all venues, products and brands. Our central team covers the full spectrum of skills needed to bring each concept to life – from design to marketing, sales to interior design, people and training, to finance, gaming and HR and everything in between. We’re not just a team of people, we are dreamers, artists, rocket scientists, content curators, forward thinkers and the industry’s finest.
With a total of 15 incredible venues throughout the UK, we have ambitious plans, never standing still, we are passionate about developing new and exciting products, which means we’re always growing and looking for passionate people to join the family.
The Role
As an IT Manager, you will be working in the Red Engine Technology team, managing the supply and support of infrastructure services and IT support to our UK and International Flight Club and Electric Shuffle venues and Head offices.
Our technology is pivotal to the success of the business. The role requires a positive, dedicated individual who will be a proud ambassador of the Red Engine, Flight Club and Electric Shuffle brands.
Reporting to the Head of IT, and working alongside the Technical Support Manager, Integration Manager, and our Technology partners, this is an exciting opportunity in a fast paced rapidly growing business.
An important part of our work is carried out in venue in a live social environment. This requires effective communication and social skills to manage and communicate with both technical and non-technical staff.
Key Responsibilities
Ensure the provision of day to day IT support to both Head Office and our Venue teams
Provide technical IT support for projects across the business
Prioritise, manage and delegate IT support desk tickets
Maintain the relationship with our IT and technology suppliers
Manage the procurement, configuration and installation of Infrastructure and IT equipment for new venues and office locations
Own the new starter and leaver process, managing hardware and software supply and provisioning
Work with our IT partners to ensure IT Security and disaster recovery best practices are implemented and maintained, minimising the risk to the business of IT failure or compromise
Install, maintain and troubleshoot software systems required to manage and monitor our environments, alongside our IT partners.
Skills and Qualifications
Essential
At least 3 years hands-on experience implementing, administering and supporting Windows Server 2016 - 2022 environments/ Active Directory / Microsoft 365 suite / Azure / SharePoint / Microsoft Teams in a 3rd line capacity.
At least 5 years experience supporting Windows and Mac end user devices, both deskside and remotely.
At least 3 years configuring switching, Firewalls and WiFi with a strong understanding of Internet Connectivity, VLANS, routing, DNS, DHCP and VPNs
Experience implenting and maintaining Cyber Security best practices, including MFA, Endpoint Protection and email security
Preferred
JIRA Administration and Ticket management
Experience of Macrium Site manager, and supporting Adobe Creative Suite, Sketchup, Vectorworks and other design packages.
Experience supporting Hospitality specific IT platforms such as Zonal, Fourth and Flow.
Values
To succeed, the role holder will demonstrate our values in everything they do:
Innovative: Our edge is our innovation – we stay one step ahead because we are always looking to invent and improve. We are bold, creative, pioneering and fearless. Got an idea? Share it!
Passionate: We’re not like other workplaces – there’s no need to hold back here. We’re a full throttle, high energy, total commitment bunch, and we throw everything we’ve got into giving our customers the best time possible.
Warm: We’re all about people. A fundamental part of our customer's having fun is us being welcoming, hospitable and attentive. We hold the key to their experience!
Together: We are a family. We work with each other, and we support each other; we win together, and we lose together. That means honesty, commitment and responsibility, from all of us.
Jan 23, 2024
Full time
About us Hello, we are Red Engine, the team behind the award-winning global brands Flight Club and Electric Shuffle. We're obsessed with disrupting the hospitality industry by creating and delivering the best possible experience - across all venues, products and brands. Our central team covers the full spectrum of skills needed to bring each concept to life – from design to marketing, sales to interior design, people and training, to finance, gaming and HR and everything in between. We’re not just a team of people, we are dreamers, artists, rocket scientists, content curators, forward thinkers and the industry’s finest.
With a total of 15 incredible venues throughout the UK, we have ambitious plans, never standing still, we are passionate about developing new and exciting products, which means we’re always growing and looking for passionate people to join the family.
The Role
As an IT Manager, you will be working in the Red Engine Technology team, managing the supply and support of infrastructure services and IT support to our UK and International Flight Club and Electric Shuffle venues and Head offices.
Our technology is pivotal to the success of the business. The role requires a positive, dedicated individual who will be a proud ambassador of the Red Engine, Flight Club and Electric Shuffle brands.
Reporting to the Head of IT, and working alongside the Technical Support Manager, Integration Manager, and our Technology partners, this is an exciting opportunity in a fast paced rapidly growing business.
An important part of our work is carried out in venue in a live social environment. This requires effective communication and social skills to manage and communicate with both technical and non-technical staff.
Key Responsibilities
Ensure the provision of day to day IT support to both Head Office and our Venue teams
Provide technical IT support for projects across the business
Prioritise, manage and delegate IT support desk tickets
Maintain the relationship with our IT and technology suppliers
Manage the procurement, configuration and installation of Infrastructure and IT equipment for new venues and office locations
Own the new starter and leaver process, managing hardware and software supply and provisioning
Work with our IT partners to ensure IT Security and disaster recovery best practices are implemented and maintained, minimising the risk to the business of IT failure or compromise
Install, maintain and troubleshoot software systems required to manage and monitor our environments, alongside our IT partners.
Skills and Qualifications
Essential
At least 3 years hands-on experience implementing, administering and supporting Windows Server 2016 - 2022 environments/ Active Directory / Microsoft 365 suite / Azure / SharePoint / Microsoft Teams in a 3rd line capacity.
At least 5 years experience supporting Windows and Mac end user devices, both deskside and remotely.
At least 3 years configuring switching, Firewalls and WiFi with a strong understanding of Internet Connectivity, VLANS, routing, DNS, DHCP and VPNs
Experience implenting and maintaining Cyber Security best practices, including MFA, Endpoint Protection and email security
Preferred
JIRA Administration and Ticket management
Experience of Macrium Site manager, and supporting Adobe Creative Suite, Sketchup, Vectorworks and other design packages.
Experience supporting Hospitality specific IT platforms such as Zonal, Fourth and Flow.
Values
To succeed, the role holder will demonstrate our values in everything they do:
Innovative: Our edge is our innovation – we stay one step ahead because we are always looking to invent and improve. We are bold, creative, pioneering and fearless. Got an idea? Share it!
Passionate: We’re not like other workplaces – there’s no need to hold back here. We’re a full throttle, high energy, total commitment bunch, and we throw everything we’ve got into giving our customers the best time possible.
Warm: We’re all about people. A fundamental part of our customer's having fun is us being welcoming, hospitable and attentive. We hold the key to their experience!
Together: We are a family. We work with each other, and we support each other; we win together, and we lose together. That means honesty, commitment and responsibility, from all of us.
Role Summary
Be at the forefront of ICT improvements and transformation within the Fire & Rescue Service (AF&RS). We are seeking a visionary leader to shape our future ICT and digital strategy, make further improvements to our infrastructure and ensure our ICT systems are resilient, reliable, and accessible to all staff 24/7.
This is a new role leading the development of an integrated ICT strategy and technology roadmap and overseeing the delivery of technology initiatives. This business-critical position will require you to work effectively with key stakeholders to create and implement an ICT strategy which aligns with our organisational goals and ambitions, ensures the integration and enhancement of our systems and improved user experience.
This role will require an ambitious, forward-thinking individual who has the technical knowledge, drive and passion to make a big difference. You will have a unique opportunity to make the role your own and bring your experience, ideas, influencing skills and technical expertise to our organisation. With challenging budgets, a creative and innovative approach is key, as is the exploration of potential funding sources.
Some of the things you’ll be doing
Strategic Leadership : Drive continuous improvement, culture change, and effective performance management. Act as the advocate for AF&RS’s digital vision, engaging leadership and representing AF&RS in local and national digital forums.
Expert Consultation : Offer expert guidance on ICT matters to senior stakeholders and the Fire Authority, enabling discussions on modern ICT and digital technology.
System Management : Ensure the efficiency, reliability, security, and cost-effectiveness of ICT systems and technology. Oversee external IT helpdesk providers and business continuity plans.
Infrastructure Enhancement : Drive continual improvements to the ICT infrastructure to ensure a solid foundation and enhanced user experience. Collaborate with stakeholders to define and implement improvements, presenting robust business cases for investment.
Digital Horizon-Scanning : Stay updated on digital developments and evaluate new technologies potential benefits, risks, and affordability aligned with the ICT strategy.
Strategy Development : Lead the creation and implementation of AF&RS’s cohesive ICT and Digital Strategy, fostering innovative and integrated improvements.
Project Oversight : Oversee the successful delivery of all ICT, digital, and systems projects. Establish governance structures, aligning with the ICT strategy and legal compliance.
Change Management : Implement efficient change processes, improving service quality and business continuity while minimising disruption.
Risk Management: Proactively assess and monitor ICT-related risks across AF&RS, implementing effective controls and mitigations.
Resource Optimisation : Develop an appropriate ICT organisational structure, optimising internal and external resources to ensure delivery and an integrated approach.
Team Leadership : Provide training and mentoring to internal ICT staff, fostering a responsive and agile cross-functional team.
Stakeholder Engagement: Liaise with stakeholders across AF&RS, building strong internal networks to maximise technology benefits.
Policy Implementation : Develop and implement up-to-date ICT policies ensuring robust controls across AF&RS. Liaise with internal data protection teams, ensuring ICT developments are compliant with relevant information legislation. Act as the Deputy Senior Risk Owner ensuring high-quality governance standards and compliance.
Training Alignment : Identify and evaluate ICT training aligned with the ICT strategy and budget requirements.
Budget Management : Manage ICT budgets aligned with the ICT strategy, forecasting and reviewing budgetary arrangements and exploring potential funding opportunities.
What we’ll need from you:
Essential:
Proven experience in senior ICT leadership role, driving digital transformation and strategy (ideally within the emergency services or public sector – but not essential).
Demonstrable experience in design, sourcing, transition, delivery and implementation of new technology and data capabilities.
Excellent up-to-date technical knowledge of ICT and the technology landscape.
Extensive knowledge of digital, data and technology regulations and best practice methodologies (e.g. ITIL, ISO) and performance benchmarking. You will also maintain up-to-date technical knowledge of ICT and the technology landscape.
Significant experience of leading and managing high performing teams (via direct or matrix management).
Proven experience of strategic service planning, business processes, developing, leading, and implementing IT/ICT strategies and change programs.
Experience of successfully managing high quality business-as-usual (BAU) ICT, while also inspiring, leading, and driving innovative solutions.
Proven experience of proactively managing business continuity and cyber security arrangements.
Significant experience of dealing with vendors and third parties including experience of procuring, negotiating, and robustly managing business-critical service contractors.
Degree level education, or equivalent, in business, computer science or a related field of study, or proven relevant business experience.
Professional ICT qualifications (such as ITIL or accredited status such as Chartered IT Professional CITP), or equivalent through a combination of proven relevant training, experience and evidenced continuing professional development.
Highly effective communication and influencing skills across the full breadth of written, verbal, presentation, and digital media. You will be able to engage, advise and explain technical matters in a non-technical way.
Adaptable, inclusive, and values-based leadership and people management skills.
Relationship building and collaboration skills with the ability to influence strategic thinking and approaches to complex service issues.
Strong analytical, research, numerical and decision-making skills, to deal with complex service delivery.
Ability to manage and prioritise high workloads, with pressing and conflicting deadlines.
Desirable:
Comprehensive budget-creation and budget-management experience including identifying and evaluating opportunities, negotiation, and delivering efficiencies.
Experience of working in a climate of transformation and/or continuous improvement and supporting others in uncertain times.
Experience of working for an emergency service or local authority.
Experience of Information and Data Governance and/or of being a Senior Risk Information Officer (SIRO) or Deputy SIRO.
Experience of portfolio and project management methodologies and tailoring these for significant ICT projects and organisational context.
Proven ICT risk management experience.
High level of political awareness and acuity to interact with senior stakeholders and elected Members.
Foundation or Practitioner level qualification in programme or project management.
What you can expect in return
27 days annual holiday (plus public holidays) rising to 31 days after 5 years, and 32 after 10 years of service
Local Government Pension - Defined Benefit Scheme
Flexible and hybrid working
Electric Vehicle Salary Sacrifice Scheme
Cycle to Work scheme
Welfare and Wellbeing services
Staff Engagement Groups
Access to a Medical Intervention Scheme which can support staff to access private medical assessments and treatments
Access to Blue Light card with offers online and high street discounts
Use of the multi-gym, sports hall, restaurant, free parking, and beautiful open surroundings at our Headquarters in Portishead
Please note - as this post is based at our Headquarters which we share with Avon & Somerset Police, the successful applicant will be required to undergo a security clearance check & DBS check.
Further Information
If you would like to have an informal conversation with the hiring manager for this role please contact recruitment@avonfire.gov.uk to request this.
How to apply: The full job description can be found on our careers pages: Head of ICT | Yes You Can! The Avon Fire & Rescue Service Job . Once you have read the job description please submit a tailored CV demonstrating how your skills and experience match the requirements of the role.
Late applications will not be accepted. Please quote job reference number 1023 [JD number] on any communications. Thank you.
Avon Fire & Rescue Service is committed to securing equality of opportunity. W e welcome applications from all members of our community who are currently under-represented at Avon Fire & Rescue Service, particularly women, Disabled people and members of ethnic minority communities.
Dec 20, 2023
Full time
Role Summary
Be at the forefront of ICT improvements and transformation within the Fire & Rescue Service (AF&RS). We are seeking a visionary leader to shape our future ICT and digital strategy, make further improvements to our infrastructure and ensure our ICT systems are resilient, reliable, and accessible to all staff 24/7.
This is a new role leading the development of an integrated ICT strategy and technology roadmap and overseeing the delivery of technology initiatives. This business-critical position will require you to work effectively with key stakeholders to create and implement an ICT strategy which aligns with our organisational goals and ambitions, ensures the integration and enhancement of our systems and improved user experience.
This role will require an ambitious, forward-thinking individual who has the technical knowledge, drive and passion to make a big difference. You will have a unique opportunity to make the role your own and bring your experience, ideas, influencing skills and technical expertise to our organisation. With challenging budgets, a creative and innovative approach is key, as is the exploration of potential funding sources.
Some of the things you’ll be doing
Strategic Leadership : Drive continuous improvement, culture change, and effective performance management. Act as the advocate for AF&RS’s digital vision, engaging leadership and representing AF&RS in local and national digital forums.
Expert Consultation : Offer expert guidance on ICT matters to senior stakeholders and the Fire Authority, enabling discussions on modern ICT and digital technology.
System Management : Ensure the efficiency, reliability, security, and cost-effectiveness of ICT systems and technology. Oversee external IT helpdesk providers and business continuity plans.
Infrastructure Enhancement : Drive continual improvements to the ICT infrastructure to ensure a solid foundation and enhanced user experience. Collaborate with stakeholders to define and implement improvements, presenting robust business cases for investment.
Digital Horizon-Scanning : Stay updated on digital developments and evaluate new technologies potential benefits, risks, and affordability aligned with the ICT strategy.
Strategy Development : Lead the creation and implementation of AF&RS’s cohesive ICT and Digital Strategy, fostering innovative and integrated improvements.
Project Oversight : Oversee the successful delivery of all ICT, digital, and systems projects. Establish governance structures, aligning with the ICT strategy and legal compliance.
Change Management : Implement efficient change processes, improving service quality and business continuity while minimising disruption.
Risk Management: Proactively assess and monitor ICT-related risks across AF&RS, implementing effective controls and mitigations.
Resource Optimisation : Develop an appropriate ICT organisational structure, optimising internal and external resources to ensure delivery and an integrated approach.
Team Leadership : Provide training and mentoring to internal ICT staff, fostering a responsive and agile cross-functional team.
Stakeholder Engagement: Liaise with stakeholders across AF&RS, building strong internal networks to maximise technology benefits.
Policy Implementation : Develop and implement up-to-date ICT policies ensuring robust controls across AF&RS. Liaise with internal data protection teams, ensuring ICT developments are compliant with relevant information legislation. Act as the Deputy Senior Risk Owner ensuring high-quality governance standards and compliance.
Training Alignment : Identify and evaluate ICT training aligned with the ICT strategy and budget requirements.
Budget Management : Manage ICT budgets aligned with the ICT strategy, forecasting and reviewing budgetary arrangements and exploring potential funding opportunities.
What we’ll need from you:
Essential:
Proven experience in senior ICT leadership role, driving digital transformation and strategy (ideally within the emergency services or public sector – but not essential).
Demonstrable experience in design, sourcing, transition, delivery and implementation of new technology and data capabilities.
Excellent up-to-date technical knowledge of ICT and the technology landscape.
Extensive knowledge of digital, data and technology regulations and best practice methodologies (e.g. ITIL, ISO) and performance benchmarking. You will also maintain up-to-date technical knowledge of ICT and the technology landscape.
Significant experience of leading and managing high performing teams (via direct or matrix management).
Proven experience of strategic service planning, business processes, developing, leading, and implementing IT/ICT strategies and change programs.
Experience of successfully managing high quality business-as-usual (BAU) ICT, while also inspiring, leading, and driving innovative solutions.
Proven experience of proactively managing business continuity and cyber security arrangements.
Significant experience of dealing with vendors and third parties including experience of procuring, negotiating, and robustly managing business-critical service contractors.
Degree level education, or equivalent, in business, computer science or a related field of study, or proven relevant business experience.
Professional ICT qualifications (such as ITIL or accredited status such as Chartered IT Professional CITP), or equivalent through a combination of proven relevant training, experience and evidenced continuing professional development.
Highly effective communication and influencing skills across the full breadth of written, verbal, presentation, and digital media. You will be able to engage, advise and explain technical matters in a non-technical way.
Adaptable, inclusive, and values-based leadership and people management skills.
Relationship building and collaboration skills with the ability to influence strategic thinking and approaches to complex service issues.
Strong analytical, research, numerical and decision-making skills, to deal with complex service delivery.
Ability to manage and prioritise high workloads, with pressing and conflicting deadlines.
Desirable:
Comprehensive budget-creation and budget-management experience including identifying and evaluating opportunities, negotiation, and delivering efficiencies.
Experience of working in a climate of transformation and/or continuous improvement and supporting others in uncertain times.
Experience of working for an emergency service or local authority.
Experience of Information and Data Governance and/or of being a Senior Risk Information Officer (SIRO) or Deputy SIRO.
Experience of portfolio and project management methodologies and tailoring these for significant ICT projects and organisational context.
Proven ICT risk management experience.
High level of political awareness and acuity to interact with senior stakeholders and elected Members.
Foundation or Practitioner level qualification in programme or project management.
What you can expect in return
27 days annual holiday (plus public holidays) rising to 31 days after 5 years, and 32 after 10 years of service
Local Government Pension - Defined Benefit Scheme
Flexible and hybrid working
Electric Vehicle Salary Sacrifice Scheme
Cycle to Work scheme
Welfare and Wellbeing services
Staff Engagement Groups
Access to a Medical Intervention Scheme which can support staff to access private medical assessments and treatments
Access to Blue Light card with offers online and high street discounts
Use of the multi-gym, sports hall, restaurant, free parking, and beautiful open surroundings at our Headquarters in Portishead
Please note - as this post is based at our Headquarters which we share with Avon & Somerset Police, the successful applicant will be required to undergo a security clearance check & DBS check.
Further Information
If you would like to have an informal conversation with the hiring manager for this role please contact recruitment@avonfire.gov.uk to request this.
How to apply: The full job description can be found on our careers pages: Head of ICT | Yes You Can! The Avon Fire & Rescue Service Job . Once you have read the job description please submit a tailored CV demonstrating how your skills and experience match the requirements of the role.
Late applications will not be accepted. Please quote job reference number 1023 [JD number] on any communications. Thank you.
Avon Fire & Rescue Service is committed to securing equality of opportunity. W e welcome applications from all members of our community who are currently under-represented at Avon Fire & Rescue Service, particularly women, Disabled people and members of ethnic minority communities.
The Schools of King Edward VI in Birmingham
Birmingham, UK
The mission of the King Edward VI Foundation (the “Foundation”) is to make Birmingham the best place to be educated in the UK. A progressive, influential educational charity, King Edward VI Foundation’s reputation is underpinned by a long and distinguished history. King Edward’s School was established in 1552 by King Edward VI, part of the early growth of secular education in England. In the late 19th century, our five grammar schools and King Edward VI High School for Girls were an early step in extending secondary education for girls and boys.
The 21st century has brought the formation of the King Edward VI Academy Trust, a means of expanding from our original five grammar schools to a current family of eleven academies and two independent schools. Six of the academies are selective; five are comprehensive, some serving Birmingham’s most deprived communities. To serve the city’s children, we recognise that we need to provide a diverse range of schools: independent as well as Academies, selective and also comprehensive. And we believe that those schools need to be accessible to all, regardless of ethnic, religious and social background.
The further development of digital practices and use of technology is integral to the above, and the purpose of this role is to nurture and support this development via the organisation’s Single Central Enterprise Platform (SCEP), among other priorities. The SCEP, running on Microsoft 365, provides a solution to the organisation for collaboration and communication.
We are looking to appoint a well-qualified, experienced and highly motivated individual to join the central Digital and Technology team and fulfil this critical position to manage the organisation’s Single Central Enterprise Platform (SCEP), running on Microsoft 365.
Our schools have achieved great things by managing their individual digital initiatives, particularly during the pandemic. Now it is time for all parts of the organisation to work collectively in advancing and joining up its digital infrastructure and thereby contributing to the Foundation’s work towards achieving its objectives and realising its mission.
The person appointed will have extensive knowledge of using and configuring the latest M365 technologies in addition to managing, configuring and administrating a shared tenancy for a complex organisation, InTune, Sharepoint, Teams, OneDrive, Outlook and more. Experience of working in an educational environment is desirable. The person appointed must be committed to promoting and safeguarding the welfare of the students at the school.
As a central support service, our working model must be driven by the needs of our schools. Therefore, please be aware that staff are required to take the majority of annual leave during non-term time.
We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible.
Principal responsibilities and duties
Be the central point of contact for all matters relating the Microsoft 365 Single Central Enterprise Platform (SCEP).
Be responsible for Exchange, End point manager, SharePoint online, Power Apps, Power Automate, Intune, O365 security compliance, DLP.
Monitor M365 and react accordingly to any data or cyber-security concerns.
Be responsible for ensuring that administrative rights of users are monitored and controlled appropriately.
Ensure effective change controls are implemented to allow the multiple organisations of the organisation to co-exist within a shared environment.
Responsibility for ensuring that the organisation’s email protection solutions are monitored and that any held/delayed emails are released within a timely manner.
The backup of M365 is automated using an external solution, however the post holder will be responsible for monitoring this service to assure compliance and disaster recovery readiness in the event of a critical incident.
Create policy documents for consumption across the organisation.
Ensure that the M365 SCEP meets and maintains compliance with the DfE’s Digital and Technology standards for schools and colleges.
Work closely and collaboratively with our schools, in particular the school-based technical leads to ensure the M365 SCEP meets operational needs.
Provide additional capacity to the Digital and Technology team with migrating schools to the M365 SCEP on an ad-hoc basis to
Work or support any work undertaken with any third-parties as required to deliver the responsibilities listed above.
As a central support service, our working model must be driven by the needs of our schools. Therefore, please be aware that staff are required to take the majority of annual leave during non-term time.
General responsibilities and duties
To develop a clear understanding of the Foundation’s vision, mission and strategic aims and to actively support these.
To remain up to date with the Foundation’s policies, procedures and code of conduct and always uphold these.
To remain committed to the safeguarding of all of our students.
To identify and undertake relevant training to enable continuing professional development, where resources allow.
To prepare for and proactively engage in the performance review cycle with your line manager.
To attend appropriate internal and external meetings, as directed by your line manager.
To undertake such other duties as are agreed as being in keeping with the general nature of the job and its grade.
The successful candidate will be required to fulfil an enhanced DBS check.
This job description reflects the current requirements of the post. As duties and responsibilities change and develop due to changes in organisational and other circumstances, so the actual duties and responsibilities will vary from the particulars of this job description. Job descriptions will be updated or amended from time to time to reflect such changes.
Person Specification
Knowledge and experience
Essential
Extensive knowledge of using and configuring latest M365 technologies
Experience and knowledge of managing, configuring and administrating a shared tenancy for a complex organisation, InTune, Sharepoint, Teams, OneDrive, Outlook
Experience of managing organisation wide IT projects and engaging with key stakeholders with the aim of standardisation, unification and simplification
Experience of contributing to a process improvement or change project
Experience of managing contracts with suppliers
Knowledge of infrastructure, software solutions, Microsoft Server technologies, networking, security and storage systems
Demonstrable experience of working in an IT /technical management environment within an educational organisational setting
Desirable
Education sector experience
Prior experience of working within a similar role
Practical experience of cloud migrations
Experience with wider infrastructure technologies
Skilled at providing training and support
Qualifications
Essential
University degree in computing or related or equivalent work experience
Desirable
Current and relevant Microsoft Certification
Competencies & Skills
Essential
Demonstrable experience of supporting a shared M365 environment
Technical IT skills
Strong communication skills
Strong attention to detail
Demonstrates a strong commitment to providing excellent customer service
Task delivery, accuracy, detail and completion
Good project management skills; systematic approach to problem solving
Demonstrable good written and verbal communication skills
Ability to work well under pressure
Strong ability to work as a part of a team
Aptitude and attitude appropriate for development within the role.
Ability to deliver quality support and to deliver at pace
Flexible and proactive (ability to drive change)
Ability to influence and persuade others
Training & presenting skills
Ability to work flexible hours
Experience using Microsoft Learn to assimilate required knowledge
Desirable
Training & presenting skills
Ability to work flexible hours
Experience using Microsoft Learn to assimilate required knowledge
A full job description and an application pack for this post, can be found at: https://www.schoolsofkingedwardvi.co.uk/foundation/job-opportunities/
Jun 23, 2023
Full time
The mission of the King Edward VI Foundation (the “Foundation”) is to make Birmingham the best place to be educated in the UK. A progressive, influential educational charity, King Edward VI Foundation’s reputation is underpinned by a long and distinguished history. King Edward’s School was established in 1552 by King Edward VI, part of the early growth of secular education in England. In the late 19th century, our five grammar schools and King Edward VI High School for Girls were an early step in extending secondary education for girls and boys.
The 21st century has brought the formation of the King Edward VI Academy Trust, a means of expanding from our original five grammar schools to a current family of eleven academies and two independent schools. Six of the academies are selective; five are comprehensive, some serving Birmingham’s most deprived communities. To serve the city’s children, we recognise that we need to provide a diverse range of schools: independent as well as Academies, selective and also comprehensive. And we believe that those schools need to be accessible to all, regardless of ethnic, religious and social background.
The further development of digital practices and use of technology is integral to the above, and the purpose of this role is to nurture and support this development via the organisation’s Single Central Enterprise Platform (SCEP), among other priorities. The SCEP, running on Microsoft 365, provides a solution to the organisation for collaboration and communication.
We are looking to appoint a well-qualified, experienced and highly motivated individual to join the central Digital and Technology team and fulfil this critical position to manage the organisation’s Single Central Enterprise Platform (SCEP), running on Microsoft 365.
Our schools have achieved great things by managing their individual digital initiatives, particularly during the pandemic. Now it is time for all parts of the organisation to work collectively in advancing and joining up its digital infrastructure and thereby contributing to the Foundation’s work towards achieving its objectives and realising its mission.
The person appointed will have extensive knowledge of using and configuring the latest M365 technologies in addition to managing, configuring and administrating a shared tenancy for a complex organisation, InTune, Sharepoint, Teams, OneDrive, Outlook and more. Experience of working in an educational environment is desirable. The person appointed must be committed to promoting and safeguarding the welfare of the students at the school.
As a central support service, our working model must be driven by the needs of our schools. Therefore, please be aware that staff are required to take the majority of annual leave during non-term time.
We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible.
Principal responsibilities and duties
Be the central point of contact for all matters relating the Microsoft 365 Single Central Enterprise Platform (SCEP).
Be responsible for Exchange, End point manager, SharePoint online, Power Apps, Power Automate, Intune, O365 security compliance, DLP.
Monitor M365 and react accordingly to any data or cyber-security concerns.
Be responsible for ensuring that administrative rights of users are monitored and controlled appropriately.
Ensure effective change controls are implemented to allow the multiple organisations of the organisation to co-exist within a shared environment.
Responsibility for ensuring that the organisation’s email protection solutions are monitored and that any held/delayed emails are released within a timely manner.
The backup of M365 is automated using an external solution, however the post holder will be responsible for monitoring this service to assure compliance and disaster recovery readiness in the event of a critical incident.
Create policy documents for consumption across the organisation.
Ensure that the M365 SCEP meets and maintains compliance with the DfE’s Digital and Technology standards for schools and colleges.
Work closely and collaboratively with our schools, in particular the school-based technical leads to ensure the M365 SCEP meets operational needs.
Provide additional capacity to the Digital and Technology team with migrating schools to the M365 SCEP on an ad-hoc basis to
Work or support any work undertaken with any third-parties as required to deliver the responsibilities listed above.
As a central support service, our working model must be driven by the needs of our schools. Therefore, please be aware that staff are required to take the majority of annual leave during non-term time.
General responsibilities and duties
To develop a clear understanding of the Foundation’s vision, mission and strategic aims and to actively support these.
To remain up to date with the Foundation’s policies, procedures and code of conduct and always uphold these.
To remain committed to the safeguarding of all of our students.
To identify and undertake relevant training to enable continuing professional development, where resources allow.
To prepare for and proactively engage in the performance review cycle with your line manager.
To attend appropriate internal and external meetings, as directed by your line manager.
To undertake such other duties as are agreed as being in keeping with the general nature of the job and its grade.
The successful candidate will be required to fulfil an enhanced DBS check.
This job description reflects the current requirements of the post. As duties and responsibilities change and develop due to changes in organisational and other circumstances, so the actual duties and responsibilities will vary from the particulars of this job description. Job descriptions will be updated or amended from time to time to reflect such changes.
Person Specification
Knowledge and experience
Essential
Extensive knowledge of using and configuring latest M365 technologies
Experience and knowledge of managing, configuring and administrating a shared tenancy for a complex organisation, InTune, Sharepoint, Teams, OneDrive, Outlook
Experience of managing organisation wide IT projects and engaging with key stakeholders with the aim of standardisation, unification and simplification
Experience of contributing to a process improvement or change project
Experience of managing contracts with suppliers
Knowledge of infrastructure, software solutions, Microsoft Server technologies, networking, security and storage systems
Demonstrable experience of working in an IT /technical management environment within an educational organisational setting
Desirable
Education sector experience
Prior experience of working within a similar role
Practical experience of cloud migrations
Experience with wider infrastructure technologies
Skilled at providing training and support
Qualifications
Essential
University degree in computing or related or equivalent work experience
Desirable
Current and relevant Microsoft Certification
Competencies & Skills
Essential
Demonstrable experience of supporting a shared M365 environment
Technical IT skills
Strong communication skills
Strong attention to detail
Demonstrates a strong commitment to providing excellent customer service
Task delivery, accuracy, detail and completion
Good project management skills; systematic approach to problem solving
Demonstrable good written and verbal communication skills
Ability to work well under pressure
Strong ability to work as a part of a team
Aptitude and attitude appropriate for development within the role.
Ability to deliver quality support and to deliver at pace
Flexible and proactive (ability to drive change)
Ability to influence and persuade others
Training & presenting skills
Ability to work flexible hours
Experience using Microsoft Learn to assimilate required knowledge
Desirable
Training & presenting skills
Ability to work flexible hours
Experience using Microsoft Learn to assimilate required knowledge
A full job description and an application pack for this post, can be found at: https://www.schoolsofkingedwardvi.co.uk/foundation/job-opportunities/
ABOUT THE ROLE
Are you passionate about protecting Cyber Security?
Do you want to make a real difference in the fight against cybercrime in local government?
Are you passionate about making a difference in your community?
If so, we want you to join our team!
We seek a highly motivated and experienced Cyber Security & Networks Manager to join our team. Stevenage Borough Council are a leading local authority in Cyber Security in the UK and pilot cyber security standards for The Department for Levelling Up, Housing and Communities (DLUHC). This is an exciting opportunity to be at the forefront of Cyber Security in the public sector. The ideal candidate will have a strong understanding of cyber security principles and associated technology risk management. They will also have experience in managing and leading a team of IT professionals.
Accountable for Cyber security, you will identify and ensure the security of the council’s IT Applications and Digital Solutions. You will lead in evaluating new and existing projects, software and hardware products, and vendors, including examining vendor contracts and terms of service. You will support teams across the council to develop their understanding of security cyber risks. You will manage a small team of two Senior Network and Security Engineers
You will take the lead on cyber security and network for the Shared IT service, which supports over 1,000 users across Stevenage Borough Council and East Herts District Council and will put in place controls over security systems, such as firewalls, data protection controls, patching, encryption, vulnerability scanning and penetration testing.
You will be responsible for achieving compliance with Cyber Essentials Plus, Cyber Assessment Framework (CAF) and Public Sector Network (PSN) and related government frameworks, including those of the National Cyber Security Centre, the Information Commissioners Office (ICO)
ABOUT YOU
The successful candidate will have
Ability to work in a high-pressure environment and make sound decisions in emergency situations while empathising with customers and responding sympathetically to
Extensive knowledge of all IT security aspects, including audit response, oversight, and scrutiny, ICO responses, Information Governance, Information Assurance, IT Asset Management policies, Quality Assurance, Test Strategies, PSN and PCI and other relevant compliance frameworks, Disaster recovery and Business continuity
Extensive experience working as part of a multidiscipline ICT team in a complex organisation, ideally a local authority.
OUR BENEFITS
Pension Scheme: We offer a career average pension scheme, providing generous benefits upon retirement, as well as a lump sum and pensions for dependants
Flexible working: available upon request, subject to operational requirements
Part-time and job share opportunities - all our full time vacancies are open to job share unless otherwise stated
A variety of different types of paid leave covering emergency and planned leave, maternity, paternity, adoption and parental leave
25 days holiday rising to 31 days (depending on Local Government service)
An extensive range of learning and development opportunities
Employee Assistance Programme – 24/7 Confidential advice and support on personal, work, family, and relationship issues
Discounted health and fitness membership
Trade Unions: For a small fee, all employees have the opportunity to join a Trade Union
HOW TO APPLY
All applications must be made on online - please visit https://bit.ly/45Yo0Ke
For an informal discussion about this role please contact
Name Matt Canterford
Job Title Assistant Director and Chief Technology Officer
Phone Number 07706 349657
Email matt.canterford@stevenage.gov.uk
Closing date for receipt of applications : 26 June 2023
Interviews will be held the week commencing: 3 July 2023
Please note that if we receive a large volume of applications for this role, we reserve the right to close this vacancy ahead of the published closing date
Stevenage Borough Council (SBC) is committed to safeguarding and promoting the welfare of children, young people and vulnerable adults and expects all staff, volunteers and recruitment candidates to share this commitment. SBC shall take all reasonable steps to employ staff who are safe to work with children, young people and vulnerable adults. For posts identified with regular contact with these groups applicants will be required to undertake a Value Based Interview. The council supports the legislative requirements for employing and maintaining safer staff and the guidance specified by Hertfordshire Safeguarding Adults Board
Stevenage Borough Council is committed to Equal Opportunities for All. For further information please click https://www.stevenage.gov.uk/about-the-council/jobs-and-careers/equal-opportunities
Jun 05, 2023
Full time
ABOUT THE ROLE
Are you passionate about protecting Cyber Security?
Do you want to make a real difference in the fight against cybercrime in local government?
Are you passionate about making a difference in your community?
If so, we want you to join our team!
We seek a highly motivated and experienced Cyber Security & Networks Manager to join our team. Stevenage Borough Council are a leading local authority in Cyber Security in the UK and pilot cyber security standards for The Department for Levelling Up, Housing and Communities (DLUHC). This is an exciting opportunity to be at the forefront of Cyber Security in the public sector. The ideal candidate will have a strong understanding of cyber security principles and associated technology risk management. They will also have experience in managing and leading a team of IT professionals.
Accountable for Cyber security, you will identify and ensure the security of the council’s IT Applications and Digital Solutions. You will lead in evaluating new and existing projects, software and hardware products, and vendors, including examining vendor contracts and terms of service. You will support teams across the council to develop their understanding of security cyber risks. You will manage a small team of two Senior Network and Security Engineers
You will take the lead on cyber security and network for the Shared IT service, which supports over 1,000 users across Stevenage Borough Council and East Herts District Council and will put in place controls over security systems, such as firewalls, data protection controls, patching, encryption, vulnerability scanning and penetration testing.
You will be responsible for achieving compliance with Cyber Essentials Plus, Cyber Assessment Framework (CAF) and Public Sector Network (PSN) and related government frameworks, including those of the National Cyber Security Centre, the Information Commissioners Office (ICO)
ABOUT YOU
The successful candidate will have
Ability to work in a high-pressure environment and make sound decisions in emergency situations while empathising with customers and responding sympathetically to
Extensive knowledge of all IT security aspects, including audit response, oversight, and scrutiny, ICO responses, Information Governance, Information Assurance, IT Asset Management policies, Quality Assurance, Test Strategies, PSN and PCI and other relevant compliance frameworks, Disaster recovery and Business continuity
Extensive experience working as part of a multidiscipline ICT team in a complex organisation, ideally a local authority.
OUR BENEFITS
Pension Scheme: We offer a career average pension scheme, providing generous benefits upon retirement, as well as a lump sum and pensions for dependants
Flexible working: available upon request, subject to operational requirements
Part-time and job share opportunities - all our full time vacancies are open to job share unless otherwise stated
A variety of different types of paid leave covering emergency and planned leave, maternity, paternity, adoption and parental leave
25 days holiday rising to 31 days (depending on Local Government service)
An extensive range of learning and development opportunities
Employee Assistance Programme – 24/7 Confidential advice and support on personal, work, family, and relationship issues
Discounted health and fitness membership
Trade Unions: For a small fee, all employees have the opportunity to join a Trade Union
HOW TO APPLY
All applications must be made on online - please visit https://bit.ly/45Yo0Ke
For an informal discussion about this role please contact
Name Matt Canterford
Job Title Assistant Director and Chief Technology Officer
Phone Number 07706 349657
Email matt.canterford@stevenage.gov.uk
Closing date for receipt of applications : 26 June 2023
Interviews will be held the week commencing: 3 July 2023
Please note that if we receive a large volume of applications for this role, we reserve the right to close this vacancy ahead of the published closing date
Stevenage Borough Council (SBC) is committed to safeguarding and promoting the welfare of children, young people and vulnerable adults and expects all staff, volunteers and recruitment candidates to share this commitment. SBC shall take all reasonable steps to employ staff who are safe to work with children, young people and vulnerable adults. For posts identified with regular contact with these groups applicants will be required to undertake a Value Based Interview. The council supports the legislative requirements for employing and maintaining safer staff and the guidance specified by Hertfordshire Safeguarding Adults Board
Stevenage Borough Council is committed to Equal Opportunities for All. For further information please click https://www.stevenage.gov.uk/about-the-council/jobs-and-careers/equal-opportunities
Our client is looking for an IT support analyst to join their small London based team.
This is a full-time permanent role that is predominantly based in the London office in the West End. It is a varied role that spreads across all Level 1 and Level 2 support and extends into Level 3 support for some systems.
The role involves:
IT systems administration and maintenance
Troubleshooting IT problems
IT security investigations
Data Backups
Generation of regular IT system performance and activity reports
Device management and operating system rebuilds
IT Change management
Documentation
Training of staff in the use of IT systems
General IT support and advice/sounding board for management
Desired competencies for candidates are:
- A very high level of discipline and trustworthiness - Tertiary qualification in IT systems administration and/or networking - Minimum of 2-3 years of experience in previous IT roles - Strong analytical skills. Driven by process and identifying opportunities for process improvement - Strong interpersonal skills and an excellent standard of both written and spoken English - A deep understanding of cyber security issues - Familiarity with Microsoft Active Directory environment. Detailed knowledge of Windows 10 administration - Experience installing operating systems on laptops/desktops - A detailed understanding of TCP/IP networking. Familiarity with Cisco networking to CCNA level or higher - Proficient use of Excel, Word - SQL, HTML or C# (.Net) skills are an advantage - Familiarity with Cisco security products such as Stealthwatch, ESA, WSA, ISE is an advantage - Familiarity with collaboration software such as Microsoft SharePoint, Cisco Unified Communications Manager or Cisco Meeting Server is an advantage - Familiarity with mobile device management is an advantage - Ability to work flexible hours
Mar 27, 2023
Full time
Our client is looking for an IT support analyst to join their small London based team.
This is a full-time permanent role that is predominantly based in the London office in the West End. It is a varied role that spreads across all Level 1 and Level 2 support and extends into Level 3 support for some systems.
The role involves:
IT systems administration and maintenance
Troubleshooting IT problems
IT security investigations
Data Backups
Generation of regular IT system performance and activity reports
Device management and operating system rebuilds
IT Change management
Documentation
Training of staff in the use of IT systems
General IT support and advice/sounding board for management
Desired competencies for candidates are:
- A very high level of discipline and trustworthiness - Tertiary qualification in IT systems administration and/or networking - Minimum of 2-3 years of experience in previous IT roles - Strong analytical skills. Driven by process and identifying opportunities for process improvement - Strong interpersonal skills and an excellent standard of both written and spoken English - A deep understanding of cyber security issues - Familiarity with Microsoft Active Directory environment. Detailed knowledge of Windows 10 administration - Experience installing operating systems on laptops/desktops - A detailed understanding of TCP/IP networking. Familiarity with Cisco networking to CCNA level or higher - Proficient use of Excel, Word - SQL, HTML or C# (.Net) skills are an advantage - Familiarity with Cisco security products such as Stealthwatch, ESA, WSA, ISE is an advantage - Familiarity with collaboration software such as Microsoft SharePoint, Cisco Unified Communications Manager or Cisco Meeting Server is an advantage - Familiarity with mobile device management is an advantage - Ability to work flexible hours
WHAT YOU'LL DO We are seeking a strong candidate to fill the IT Network Security Solutions Architect position in the Secure Networking squad at BCG. You will be working in a Security Engineering, Architecture, and Automation capacity across BCG's global network to drive and support improvements based on new and emerging trends. Areas of focus will include implementing ZeroTrust solutions with Zscaler across Cloud providers and datacenters, applying advanced threat protection and improving compliance through network security policy management, to name a few. You Will: Utilize knowledge of security design principles to design, implement, and manage end-to-end security solutions for BCG with a focus on Zscaler and SASE technologies Apply continuous improvement by assessing BCG's security needs and provide recommendations to enhance our overall security posture Collaborate with cross-functional teams to integrate Zscaler solutions into existing IT infrastructure Conduct thorough analysis of security requirements, architecture, and policies Develop and maintain documentation for security configurations, guidelines, and best practices Stay updated on industry trends, emerging threats, and Zscaler platform updates to ensure proactive security measures Provide technical expertise creating security roadmaps to include presentations to leadership Troubleshoot and resolve complex security issues related to Zscaler Offer training and guidance to internal teams on Zscaler security solutions Support vendor assessments, including proof of concepts and research into new security technologies Prepare and review monthly status reports and statistics Work in Agile framework YOU'RE GOOD AT Securing global networks and/or large enterprise environments preferably with automation tools and practices to ensure consistency and repeatability Engineering and implementation of Zero Trust solutions Maintain knowledge base and 'as built' documentation for network security services High degree of comfort with changing and maintaining connectivity for Cloud Computing environments Successfully interfacing and connecting with skilled technologists and non-technical stakeholders Ability to work in an Agile environment leveraging strong work management, organizational and planning skills Negotiating and consensus building between stakeholders where competing priorities exist, providing well-honed influencing skills You're able to effectively handle difficult and stressful situations with poise, tact and patience, while demonstrating a sense of urgency YOU BRING (EXPERIENCE & QUALIFICATIONS) Minimum 7+ years of network security engineering experience with large scale implementations distributed globally Proven experience as a Security Solutions Architect, with a focus on Zscaler technologies In-depth knowledge of network security, cloud security, and cyber threats Strong understanding of Zscaler's platform, features, and capabilities Demonstrated ability to design and implement security solutions for diverse environments Excellent communication skills for user and leadership interactions and team collaboration Relevant certifications such as Zscaler Certified Architect (ZCA) or equivalent Familiarity with industry compliance standards and regulations Problem-solving skills and the ability to thrive in a dynamic, fast-paced environment BA degree in computer or information sciences or similar field preferred Desirable DevOps experience with automation and scripting development tools Cloud security across AWS, Azure, GCP Next Generation Firewalls DNS Security expertise Related security certifications (e.g. CISSP, CCSP, SABSA, ITIL etc.) YOU'LL WORK WITH BCG's information technology group collaboratively delivers the latest digital technologies that enable our consultants to lead and our business to grow. For our IT jobs, we seek individuals with expertise in the areas of IT infrastructure, application development, business systems, collaborative and social technologies, information security, and project leadership.
Apr 19, 2024
Full time
WHAT YOU'LL DO We are seeking a strong candidate to fill the IT Network Security Solutions Architect position in the Secure Networking squad at BCG. You will be working in a Security Engineering, Architecture, and Automation capacity across BCG's global network to drive and support improvements based on new and emerging trends. Areas of focus will include implementing ZeroTrust solutions with Zscaler across Cloud providers and datacenters, applying advanced threat protection and improving compliance through network security policy management, to name a few. You Will: Utilize knowledge of security design principles to design, implement, and manage end-to-end security solutions for BCG with a focus on Zscaler and SASE technologies Apply continuous improvement by assessing BCG's security needs and provide recommendations to enhance our overall security posture Collaborate with cross-functional teams to integrate Zscaler solutions into existing IT infrastructure Conduct thorough analysis of security requirements, architecture, and policies Develop and maintain documentation for security configurations, guidelines, and best practices Stay updated on industry trends, emerging threats, and Zscaler platform updates to ensure proactive security measures Provide technical expertise creating security roadmaps to include presentations to leadership Troubleshoot and resolve complex security issues related to Zscaler Offer training and guidance to internal teams on Zscaler security solutions Support vendor assessments, including proof of concepts and research into new security technologies Prepare and review monthly status reports and statistics Work in Agile framework YOU'RE GOOD AT Securing global networks and/or large enterprise environments preferably with automation tools and practices to ensure consistency and repeatability Engineering and implementation of Zero Trust solutions Maintain knowledge base and 'as built' documentation for network security services High degree of comfort with changing and maintaining connectivity for Cloud Computing environments Successfully interfacing and connecting with skilled technologists and non-technical stakeholders Ability to work in an Agile environment leveraging strong work management, organizational and planning skills Negotiating and consensus building between stakeholders where competing priorities exist, providing well-honed influencing skills You're able to effectively handle difficult and stressful situations with poise, tact and patience, while demonstrating a sense of urgency YOU BRING (EXPERIENCE & QUALIFICATIONS) Minimum 7+ years of network security engineering experience with large scale implementations distributed globally Proven experience as a Security Solutions Architect, with a focus on Zscaler technologies In-depth knowledge of network security, cloud security, and cyber threats Strong understanding of Zscaler's platform, features, and capabilities Demonstrated ability to design and implement security solutions for diverse environments Excellent communication skills for user and leadership interactions and team collaboration Relevant certifications such as Zscaler Certified Architect (ZCA) or equivalent Familiarity with industry compliance standards and regulations Problem-solving skills and the ability to thrive in a dynamic, fast-paced environment BA degree in computer or information sciences or similar field preferred Desirable DevOps experience with automation and scripting development tools Cloud security across AWS, Azure, GCP Next Generation Firewalls DNS Security expertise Related security certifications (e.g. CISSP, CCSP, SABSA, ITIL etc.) YOU'LL WORK WITH BCG's information technology group collaboratively delivers the latest digital technologies that enable our consultants to lead and our business to grow. For our IT jobs, we seek individuals with expertise in the areas of IT infrastructure, application development, business systems, collaborative and social technologies, information security, and project leadership.
Position: Information Security Lead Salary: £59k Location: Oxford ( Hybrid ) Responsibilities: Develop and maintain an Information Security improvement plan for the group. Work with IT staff within the group to build on an existing information security program and ongoing security projects that address information security risks and compliance requirements. Recommend, coordinate and where appropriate, implement agreed technical controls. Be responsible for decisions regarding operational activities in relation to Information Security improvement within the group. Work with the Head of IT and College governance structures to create and maintain security policies. Monitor and report on compliance with security policies, as well as the enforcement of policies. Plan and prioritise own work ensuring effective support to the group and delivery of key Cyber Security improvement objectives. Research, evaluate, design, test, recommend and plan the implementation of new or updated information security hardware or software, and analyse its impact on the existing environment; provide technical and managerial expertise for the administration of security tools. Develop strong working relationships with the Head of IT, Technical Services Manager, and IT Managers to develop and implement controls and configurations aligned with security policies and legal, regulatory and audit requirements. Ensure all IT staff have access to IT systems limited by need and role. Research/evaluate emerging information security threats and ways to manage them. Assist Colleges with maintaining suitable TPSA templates and maintaining a list of assessed third parties. Monitor and test vulnerabilities in technological infrastructure, managed services, and devices. Use influencing skills to ensure collaborative working to engender a level of quality improvement across the group. Consult with IT colleagues to ensure that security is factored into the evaluation, selection, installation and configuration of hardware, applications, and software as part of Privacy by Design and Default. Manage and coordinate operational components of security incident management, including detection response and reporting. Manage the day-to-day activities of threat and vulnerability management, identify risk tolerances, recommend treatment plans, and communicate information about residual risk. Manage security projects, provide expert guidance on security matters for other IT projects and work with suppliers to obtain best value. Evaluate requests for exceptions to policies, ensuring sufficient mitigating controls are in place. Ensure audit trails, system logs and other monitoring data sources are reviewed periodically and are following policies and audit requirements. Review, escalate and action any unusual event behaviour identified through the groups information security systems. Create standards in system hardening, change management, documentation. Perform periodic firewall Ensure disaster recovery and data restoration processes work. Ensure appropriate Corrective and Preventative Actions are implemented in line with best practice guidance. Essential: A record of accomplishment in and experience of introducing Information Security Improvement through successfully designing, implementing, and improving IT security architecture and controls. Working technical knowledge in broad domains of IT infrastructure such as data networks, server and desktop hardware and operating systems, storage and backups, and related monitoring and management systems. Demonstrable experience of applying security controls in one or more of the following areas: Unix/Linux Servers, Windows servers, firewalls, IDS/IPS, vulnerability management, WAF, Wi-Fi, mobile security, Data Loss Prevention, digital certificates, encryption and authentication techniques, forensics, and LAN / WANs. Solid understanding of security protocols, cryptography, authentication, authorisation, and security. Able to manage own workload, resolve competing demands, and cope with changing priorities in a flexible and proactive way. High level of personal integrity, as well as the ability to handle confidential matters and show an appropriate level of judgment and maturity. Excellent written and oral communication skills, interpersonal and collaborative skills, and the ability to communicate information security and risk-related concepts to technical and non-technical audiences. INDIT Planet Recruitment acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers. Planet Recruitment is an Equal Opportunities Employer.By applying for this role your details will be submitted to Planet Recruitment. Our Candidate Privacy Information Statement explains how we will use your information. Only candidates with the relevant skills and experience will be contacted after application, if you do not hear back from us within 7 days you have unfortunately been unsuccessful in your application. Please note that no terminology in this advert is intended to discriminate on the grounds of a person's gender, marital status, race, religion, colour, age, disability or sexual orientation. Every candidate will be assessed only in accordance with their merits, qualifications and abilities to perform the duties of the position.
Apr 18, 2024
Full time
Position: Information Security Lead Salary: £59k Location: Oxford ( Hybrid ) Responsibilities: Develop and maintain an Information Security improvement plan for the group. Work with IT staff within the group to build on an existing information security program and ongoing security projects that address information security risks and compliance requirements. Recommend, coordinate and where appropriate, implement agreed technical controls. Be responsible for decisions regarding operational activities in relation to Information Security improvement within the group. Work with the Head of IT and College governance structures to create and maintain security policies. Monitor and report on compliance with security policies, as well as the enforcement of policies. Plan and prioritise own work ensuring effective support to the group and delivery of key Cyber Security improvement objectives. Research, evaluate, design, test, recommend and plan the implementation of new or updated information security hardware or software, and analyse its impact on the existing environment; provide technical and managerial expertise for the administration of security tools. Develop strong working relationships with the Head of IT, Technical Services Manager, and IT Managers to develop and implement controls and configurations aligned with security policies and legal, regulatory and audit requirements. Ensure all IT staff have access to IT systems limited by need and role. Research/evaluate emerging information security threats and ways to manage them. Assist Colleges with maintaining suitable TPSA templates and maintaining a list of assessed third parties. Monitor and test vulnerabilities in technological infrastructure, managed services, and devices. Use influencing skills to ensure collaborative working to engender a level of quality improvement across the group. Consult with IT colleagues to ensure that security is factored into the evaluation, selection, installation and configuration of hardware, applications, and software as part of Privacy by Design and Default. Manage and coordinate operational components of security incident management, including detection response and reporting. Manage the day-to-day activities of threat and vulnerability management, identify risk tolerances, recommend treatment plans, and communicate information about residual risk. Manage security projects, provide expert guidance on security matters for other IT projects and work with suppliers to obtain best value. Evaluate requests for exceptions to policies, ensuring sufficient mitigating controls are in place. Ensure audit trails, system logs and other monitoring data sources are reviewed periodically and are following policies and audit requirements. Review, escalate and action any unusual event behaviour identified through the groups information security systems. Create standards in system hardening, change management, documentation. Perform periodic firewall Ensure disaster recovery and data restoration processes work. Ensure appropriate Corrective and Preventative Actions are implemented in line with best practice guidance. Essential: A record of accomplishment in and experience of introducing Information Security Improvement through successfully designing, implementing, and improving IT security architecture and controls. Working technical knowledge in broad domains of IT infrastructure such as data networks, server and desktop hardware and operating systems, storage and backups, and related monitoring and management systems. Demonstrable experience of applying security controls in one or more of the following areas: Unix/Linux Servers, Windows servers, firewalls, IDS/IPS, vulnerability management, WAF, Wi-Fi, mobile security, Data Loss Prevention, digital certificates, encryption and authentication techniques, forensics, and LAN / WANs. Solid understanding of security protocols, cryptography, authentication, authorisation, and security. Able to manage own workload, resolve competing demands, and cope with changing priorities in a flexible and proactive way. High level of personal integrity, as well as the ability to handle confidential matters and show an appropriate level of judgment and maturity. Excellent written and oral communication skills, interpersonal and collaborative skills, and the ability to communicate information security and risk-related concepts to technical and non-technical audiences. INDIT Planet Recruitment acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers. Planet Recruitment is an Equal Opportunities Employer.By applying for this role your details will be submitted to Planet Recruitment. Our Candidate Privacy Information Statement explains how we will use your information. Only candidates with the relevant skills and experience will be contacted after application, if you do not hear back from us within 7 days you have unfortunately been unsuccessful in your application. Please note that no terminology in this advert is intended to discriminate on the grounds of a person's gender, marital status, race, religion, colour, age, disability or sexual orientation. Every candidate will be assessed only in accordance with their merits, qualifications and abilities to perform the duties of the position.
Excited to grow your career? Our purpose is to make it easy for people to save and invest for a better future. We are looking for great people to join us, so please come and invest in YOUR future at HL. We know that sometimes people can be put off applying for a job if they don't tick every box. If you're excited about working for us and have most of the skills or experience we're looking for, please go ahead and apply. We'd love to hear from you! About the role Hargreaves Lansdown is seeking a talented and experienced Cyber Threat Intelligence Lead to join our dynamic Cyber Defence team. As our CTI Lead, you will play a critical role in protecting our organisation from cyber threats by proactively identifying, analysing, contextualising, and escalating potential risks. We operate a threat-centric cyber defence posture and CTI is at the heart of this. If you are passionate about cyber security, have a keen eye for detail, and thrive in a challenging and rewarding environment, we encourage you to apply for this position. What you'll be doing Responsible for the strategic direction and day-to-day running of the Cyber Threat Intelligence (CTI) function Build strong working relationships with key stakeholders, such as Cyber Defence Management, CISO 'Heads of' and Digital/Technology risk management, to ensure owners are aware of managed and unmanaged threats Act as a direct line manager for members of the CTI function Leading HL's threat intelligence programme, co-ordinating resource to drive improvements, maturity, and data sources Regularly brief senior business stakeholders on the landscape that HL is operating within Creation and management of HL's industry leading Cyber Threat Intelligence Framework Act as an escalation point for security incidents Drive the onboarding and management of toolsets to monitor and manage HL's External Attack Surface Lead the engagement with sector peers and organisations to ensure that we are contributors to the security community Manage relationship and renewals with key security vendors, ensuring that they continue to deliver a high-quality service Develop and maintain a robust Threat Hunting programme About you Experience within a CTI focused team, ideally in a Cyber Security Management or Leadership role. Proven track record building and growing high-performing Cyber Defence operational teams. Previous experience scoping and onboarding relevant technologies. Experience embedding intelligence lifecycles and managing stakeholders across different teams. Created intelligence products, based on industry best practice, embedding these into the function and reporting to key stakeholders. Experience creating advanced trend analytics and other key MI, based on specific requirements of key stakeholders. Track record of managing BAU and change portfolios to a high standard, ensuring that SLAs and deadlines are achieved, escalating challenges to senior management. Training/Qualifications (desirable) Cyber Security Leadership Qualification (GIAC GSTRT, CISM) Bachelors degree or higher in Computer Science or related field Technical CTI Qualification, e.g. GIAC CTI, CEH Cloud (AWS/Azure) Certification, such as AWS GCP, AZ-900 Interview process This role will be a two-stage interview process, consisting of a competency/behavioural based interview and a technical assessment. Working Schedule We are based in Bristol, BS1 5HL. This role is permanent, full time, 37.5 hours per week, Monday to Friday. We have returned to the office, however for this role we offer a hybrid flexible working pattern to enable you the option of working from home. Why us? Here at HL, we're the UK's number 1 investment platform for private investors, based in Bristol. For more than 40 years we've helped investors save time, tax and money on their investments. To achieve our mission, we believe we have a workplace like no other, with constant learning, dynamic teams, and a great ethos. We're steered by core values that promote service, quality, innovation, and opportunity in everything we do. What's on offer? Discretionary annual bonus & annual pay review 25 days holiday plus bank holidays and 1-day additional Christmas closure time Option to purchase an additional 5 days holiday (during annual enrolment window, if eligible depending on start date) Flexible working options available, including hybrid working Enhanced parental leave Pension scheme up to 11% employer contribution Sharesave scheme - have a real stake in HL's future Income Protection & Life insurance (4 x salary core level of cover) Private medical insurance Health care cash plans - including optical, dental, and out patientcare and an Employee Assistance Programme Gympass - gym memberships and wellbeing apps available Variety of travel to work schemes with free bike storage and shower facilities Inhouse barista & deli serving subsidised coffee and sandwiches Join HL's sports, I&D networks and volunteering groups (two paid volunteering days per year) LifeWorks Discounts on services, restaurants and retailers dependant on role level Hargreaves Lansdown is an inclusive employer that values diversity in its workforce. We encourage applications from all individuals without regard to race, religion, gender, sexual orientation, national origin, disability or age. This role may also be available on a flexible working or part time basis - please ask the Recruitment & Onboarding team for more information. Please note, we are unable to provide employment sponsorship to candidates.
Apr 18, 2024
Full time
Excited to grow your career? Our purpose is to make it easy for people to save and invest for a better future. We are looking for great people to join us, so please come and invest in YOUR future at HL. We know that sometimes people can be put off applying for a job if they don't tick every box. If you're excited about working for us and have most of the skills or experience we're looking for, please go ahead and apply. We'd love to hear from you! About the role Hargreaves Lansdown is seeking a talented and experienced Cyber Threat Intelligence Lead to join our dynamic Cyber Defence team. As our CTI Lead, you will play a critical role in protecting our organisation from cyber threats by proactively identifying, analysing, contextualising, and escalating potential risks. We operate a threat-centric cyber defence posture and CTI is at the heart of this. If you are passionate about cyber security, have a keen eye for detail, and thrive in a challenging and rewarding environment, we encourage you to apply for this position. What you'll be doing Responsible for the strategic direction and day-to-day running of the Cyber Threat Intelligence (CTI) function Build strong working relationships with key stakeholders, such as Cyber Defence Management, CISO 'Heads of' and Digital/Technology risk management, to ensure owners are aware of managed and unmanaged threats Act as a direct line manager for members of the CTI function Leading HL's threat intelligence programme, co-ordinating resource to drive improvements, maturity, and data sources Regularly brief senior business stakeholders on the landscape that HL is operating within Creation and management of HL's industry leading Cyber Threat Intelligence Framework Act as an escalation point for security incidents Drive the onboarding and management of toolsets to monitor and manage HL's External Attack Surface Lead the engagement with sector peers and organisations to ensure that we are contributors to the security community Manage relationship and renewals with key security vendors, ensuring that they continue to deliver a high-quality service Develop and maintain a robust Threat Hunting programme About you Experience within a CTI focused team, ideally in a Cyber Security Management or Leadership role. Proven track record building and growing high-performing Cyber Defence operational teams. Previous experience scoping and onboarding relevant technologies. Experience embedding intelligence lifecycles and managing stakeholders across different teams. Created intelligence products, based on industry best practice, embedding these into the function and reporting to key stakeholders. Experience creating advanced trend analytics and other key MI, based on specific requirements of key stakeholders. Track record of managing BAU and change portfolios to a high standard, ensuring that SLAs and deadlines are achieved, escalating challenges to senior management. Training/Qualifications (desirable) Cyber Security Leadership Qualification (GIAC GSTRT, CISM) Bachelors degree or higher in Computer Science or related field Technical CTI Qualification, e.g. GIAC CTI, CEH Cloud (AWS/Azure) Certification, such as AWS GCP, AZ-900 Interview process This role will be a two-stage interview process, consisting of a competency/behavioural based interview and a technical assessment. Working Schedule We are based in Bristol, BS1 5HL. This role is permanent, full time, 37.5 hours per week, Monday to Friday. We have returned to the office, however for this role we offer a hybrid flexible working pattern to enable you the option of working from home. Why us? Here at HL, we're the UK's number 1 investment platform for private investors, based in Bristol. For more than 40 years we've helped investors save time, tax and money on their investments. To achieve our mission, we believe we have a workplace like no other, with constant learning, dynamic teams, and a great ethos. We're steered by core values that promote service, quality, innovation, and opportunity in everything we do. What's on offer? Discretionary annual bonus & annual pay review 25 days holiday plus bank holidays and 1-day additional Christmas closure time Option to purchase an additional 5 days holiday (during annual enrolment window, if eligible depending on start date) Flexible working options available, including hybrid working Enhanced parental leave Pension scheme up to 11% employer contribution Sharesave scheme - have a real stake in HL's future Income Protection & Life insurance (4 x salary core level of cover) Private medical insurance Health care cash plans - including optical, dental, and out patientcare and an Employee Assistance Programme Gympass - gym memberships and wellbeing apps available Variety of travel to work schemes with free bike storage and shower facilities Inhouse barista & deli serving subsidised coffee and sandwiches Join HL's sports, I&D networks and volunteering groups (two paid volunteering days per year) LifeWorks Discounts on services, restaurants and retailers dependant on role level Hargreaves Lansdown is an inclusive employer that values diversity in its workforce. We encourage applications from all individuals without regard to race, religion, gender, sexual orientation, national origin, disability or age. This role may also be available on a flexible working or part time basis - please ask the Recruitment & Onboarding team for more information. Please note, we are unable to provide employment sponsorship to candidates.
Information Security Officer £65,000 Emersons Green, Bristol We are excited to be recruiting an Information Security Officer to be based in our Bristol office. This is a newly created position as part of our continued investment in technology and provides the opportunity to grow and lead the information security capability, for Ian Willaims. This will enable us to continue to innovate within our sector and support our mission to provide high quality services to our customers and improve the communities in which we operate. Autonomy, the buy in from board level to evolve the information security capability and the investment in a modern tech stack and are all reasons to join Ian Williams. The Information Security Officer will be responsible for: Working with the IT manager to define and implement an Information Security strategy and Information Security Management System. Work closely with the Ian Williams Cyber Security Operations Centre (CSOC) to review the current cyber security posture and prioritise areas for improvement. Proactively managing and developing Ian Williams ongoing annual adherence to current Cyber Essentials standards and annual audit and accreditation Management of ongoing penetration testing and vulnerability checks, taking ownership of the programme of work to resolve any weakness identified Development and implementation of a Data Loss Prevention strategy, working closely with key stakeholders to drive adoption and compliance within the wider business. Enforcing suitable and relevant information security policies, ensuring that these are compliant with the Data Protection Act 2018 and other legislation and regulations related to information security. Building and implementing an information security awareness training programme and providing ongoing evaluation of that. Providing stakeholder support to technology projects, to advise on security considerations Providing regular reporting on key management information and progress reports What will you bring as an Information Security Officer? A team player, with a strong work ethic who strives to provide the best level of customer satisfaction. A strong technical aptitude and in-depth knowledge of information security. Attention to detail with a logical approach to problems and projects, drawing relevant information from all parties and solving problems efficiently. Working in a structured manner with excellent organisational skills, prioritising own workload and meeting agreed timescales. The ability to communicates and document complex technical concepts clearly to a non-technical audience. A self-motivated individual, demonstrating a "cando" attitude. Clearly identifying opportunities for improvement in information security and IT process. The ability to build strong relationships with peers and key stakeholders. Treating information relating to Ian William's and its employees in confidence and in line with Data Protection legislation. Benefits: Be part of our company profit share scheme. Let us help you prepare for your future with an employer pension contribution. 23 days annual leave, (25 days after 5 years) buy up to 5 days or sell up to 3 days per year. Life Insurance. Enhanced maternity/ paternity pay. We want our employees to have a well-balanced work/ life balance, therefore flexible working patterns would be considered. Access to an employee assistance programme to support employee's health and wellbeing. Annual pay reviews. Training and development opportunities. Trade discounts from our preferred suppliers for you and your friends and family. Specsavers vouchers. About Ian Williams Limited Ian Williams are one of the UK's largest privately owned property services companies, at the forefront of delivering innovative planned and responsive maintenance services to homes and buildings. We are on an ambitious, exciting and sustainable growth journey, already supported by a record level secured orderbook. 80% of our work takes place in the social housing and public sectors- empowering our teams to apply their skills for technology for good. IT at Ian Williams We recently launched a new IT Vision and 5-year Strategy focussed on digital and technology transformation. Our vision is to enable secure and consistent growth through trusted business partnerships, value-add digitisation, optimisation, and delighting customers. Discover more from our website, LinkedIn, Indeed and Glassdoor pages. Ian Williams is committed to creating a diverse environment and is proud to be an equal opportunity employer. Diversity is more than a commitment at Ian Williams-it is the foundation of what we do. We are fully focused on equality and believe deeply in diversity of race, gender, sexual orientation, religion, ethnicity and all other characteristics that make us different. We reserve the right to shortlist prior to the closing date based on application volumes. Ian Williams Limited will use applicants' details for recruitment purposes only. For more information please read our Candidate Privacy Notice located on our website.
Apr 18, 2024
Full time
Information Security Officer £65,000 Emersons Green, Bristol We are excited to be recruiting an Information Security Officer to be based in our Bristol office. This is a newly created position as part of our continued investment in technology and provides the opportunity to grow and lead the information security capability, for Ian Willaims. This will enable us to continue to innovate within our sector and support our mission to provide high quality services to our customers and improve the communities in which we operate. Autonomy, the buy in from board level to evolve the information security capability and the investment in a modern tech stack and are all reasons to join Ian Williams. The Information Security Officer will be responsible for: Working with the IT manager to define and implement an Information Security strategy and Information Security Management System. Work closely with the Ian Williams Cyber Security Operations Centre (CSOC) to review the current cyber security posture and prioritise areas for improvement. Proactively managing and developing Ian Williams ongoing annual adherence to current Cyber Essentials standards and annual audit and accreditation Management of ongoing penetration testing and vulnerability checks, taking ownership of the programme of work to resolve any weakness identified Development and implementation of a Data Loss Prevention strategy, working closely with key stakeholders to drive adoption and compliance within the wider business. Enforcing suitable and relevant information security policies, ensuring that these are compliant with the Data Protection Act 2018 and other legislation and regulations related to information security. Building and implementing an information security awareness training programme and providing ongoing evaluation of that. Providing stakeholder support to technology projects, to advise on security considerations Providing regular reporting on key management information and progress reports What will you bring as an Information Security Officer? A team player, with a strong work ethic who strives to provide the best level of customer satisfaction. A strong technical aptitude and in-depth knowledge of information security. Attention to detail with a logical approach to problems and projects, drawing relevant information from all parties and solving problems efficiently. Working in a structured manner with excellent organisational skills, prioritising own workload and meeting agreed timescales. The ability to communicates and document complex technical concepts clearly to a non-technical audience. A self-motivated individual, demonstrating a "cando" attitude. Clearly identifying opportunities for improvement in information security and IT process. The ability to build strong relationships with peers and key stakeholders. Treating information relating to Ian William's and its employees in confidence and in line with Data Protection legislation. Benefits: Be part of our company profit share scheme. Let us help you prepare for your future with an employer pension contribution. 23 days annual leave, (25 days after 5 years) buy up to 5 days or sell up to 3 days per year. Life Insurance. Enhanced maternity/ paternity pay. We want our employees to have a well-balanced work/ life balance, therefore flexible working patterns would be considered. Access to an employee assistance programme to support employee's health and wellbeing. Annual pay reviews. Training and development opportunities. Trade discounts from our preferred suppliers for you and your friends and family. Specsavers vouchers. About Ian Williams Limited Ian Williams are one of the UK's largest privately owned property services companies, at the forefront of delivering innovative planned and responsive maintenance services to homes and buildings. We are on an ambitious, exciting and sustainable growth journey, already supported by a record level secured orderbook. 80% of our work takes place in the social housing and public sectors- empowering our teams to apply their skills for technology for good. IT at Ian Williams We recently launched a new IT Vision and 5-year Strategy focussed on digital and technology transformation. Our vision is to enable secure and consistent growth through trusted business partnerships, value-add digitisation, optimisation, and delighting customers. Discover more from our website, LinkedIn, Indeed and Glassdoor pages. Ian Williams is committed to creating a diverse environment and is proud to be an equal opportunity employer. Diversity is more than a commitment at Ian Williams-it is the foundation of what we do. We are fully focused on equality and believe deeply in diversity of race, gender, sexual orientation, religion, ethnicity and all other characteristics that make us different. We reserve the right to shortlist prior to the closing date based on application volumes. Ian Williams Limited will use applicants' details for recruitment purposes only. For more information please read our Candidate Privacy Notice located on our website.
At Clarion, our people are at the absolute heart of what we do. We're proud that our core values of PASSION , CARE , IMAGINATION , and TRUST define the way we carry out our work across all of our exhibitions and conferences. If you share our values and want to be a part of a successful, dynamic, and creative global business then we want to hear from you. The Opportunity: We have an exciting new role for an Information Security Manager who will be responsible for implementing operational cyber security throughout a dynamic, global, commercial organisation. The role will involve collaboration with numerous internal departments and businesses across the Group organisation. We are looking for a highly experienced Information Security Manager with extensive technical security knowledge and expertise. Key Responsibilities: Lead a team monitoring and responding to cyber incidents. Being a subject matter expert on all aspects of operational information security and cyber risk. Define, develop, and implement operational information security processes. Identify, assess, and make recommendations on emerging security threats and vulnerabilities. Develop and oversee Security Operations Centre (SOC) activities, SIEM, IDS/IPS, threat and incident responses. Manage the cyber security vulnerability programme. Manage and oversee security penetration testing activities. Implement information security policies, processes, governance standards and frameworks. Advise departments on security requirements and controls, providing information security guidance across IT operations and new projects. Coordinate and manage information security activities, implementing solutions to improve information security, IT infrastructure and cyber security. Identify breaches in information security architecture, standards, and best practice. Manage and complete information security reviews, including due diligence of third parties. Monitor the development of relevant industry standards and best practices (NIST CSF, CIS, ISO etc.), assess and advise on compliance with these standards. Knowledge, Skills & Behaviours: Expertise and proficiency on information security management. A degree in cyber risk would be advantageous. Recognised security qualifications such as CISSP/CISM are desirable. Track record of achievement and delivery within various operational information security roles. Previous experience of SOC operations and management. Extensive knowledge of technical security issues and solutions. Extensive knowledge of cyber threats, penetration testing and vulnerability assessments. Experience of Cyber Essentials, ISO27001 compliance and leveraging NIST CSF and CIS benchmarks. Excellent communication skills both verbal and written, articulate, organised and diligent. Willing to join a shift-based call-out rota (this will incur an additional bonus payment). About Clarion Events Clarion Events is one of the world's leading event organisers, producing and delivering innovative and market-leading events since 1947. ( ) Clarion Events embrace diversity and equal opportunities in all that we do. We are committed to building a team that represents a variety of backgrounds, perspectives, and skills. The more inclusive we are, the better our work will be. Clarion is private equity backed and owned by Blackstone. Blackstone is one of the world's leading global investment funds, investing capital for the long term in order to build successful, resilient businesses. ( ) Our purpose is to deliver exceptional customer outcomes and experiences, by making every connection count. Our vision is we want every one of our products to be a market leader in customer satisfaction and delight. 25 days' holiday plus bank holidays End of year wellbeing shutdown (closed for the last week of the year) Celebration day off (e.g. birthday, Diwali, Eid, etc) Summer Hours in August (3pm finish on Fridays) Helping Our World (HOW) Days - one paid day per quarter to carry out charity work Pension Scheme Private Medical Insurance Health Cash Plan Employee Assistance Programme (EAP) - a 24/7, 365-day confidential helpline Subsidised Café Season Ticket Loan Cycle to Work Schemes Free on-site gym and shower facilities Free eyesight tests Free flu vaccination - offered on site once a year for all employees
Apr 18, 2024
Full time
At Clarion, our people are at the absolute heart of what we do. We're proud that our core values of PASSION , CARE , IMAGINATION , and TRUST define the way we carry out our work across all of our exhibitions and conferences. If you share our values and want to be a part of a successful, dynamic, and creative global business then we want to hear from you. The Opportunity: We have an exciting new role for an Information Security Manager who will be responsible for implementing operational cyber security throughout a dynamic, global, commercial organisation. The role will involve collaboration with numerous internal departments and businesses across the Group organisation. We are looking for a highly experienced Information Security Manager with extensive technical security knowledge and expertise. Key Responsibilities: Lead a team monitoring and responding to cyber incidents. Being a subject matter expert on all aspects of operational information security and cyber risk. Define, develop, and implement operational information security processes. Identify, assess, and make recommendations on emerging security threats and vulnerabilities. Develop and oversee Security Operations Centre (SOC) activities, SIEM, IDS/IPS, threat and incident responses. Manage the cyber security vulnerability programme. Manage and oversee security penetration testing activities. Implement information security policies, processes, governance standards and frameworks. Advise departments on security requirements and controls, providing information security guidance across IT operations and new projects. Coordinate and manage information security activities, implementing solutions to improve information security, IT infrastructure and cyber security. Identify breaches in information security architecture, standards, and best practice. Manage and complete information security reviews, including due diligence of third parties. Monitor the development of relevant industry standards and best practices (NIST CSF, CIS, ISO etc.), assess and advise on compliance with these standards. Knowledge, Skills & Behaviours: Expertise and proficiency on information security management. A degree in cyber risk would be advantageous. Recognised security qualifications such as CISSP/CISM are desirable. Track record of achievement and delivery within various operational information security roles. Previous experience of SOC operations and management. Extensive knowledge of technical security issues and solutions. Extensive knowledge of cyber threats, penetration testing and vulnerability assessments. Experience of Cyber Essentials, ISO27001 compliance and leveraging NIST CSF and CIS benchmarks. Excellent communication skills both verbal and written, articulate, organised and diligent. Willing to join a shift-based call-out rota (this will incur an additional bonus payment). About Clarion Events Clarion Events is one of the world's leading event organisers, producing and delivering innovative and market-leading events since 1947. ( ) Clarion Events embrace diversity and equal opportunities in all that we do. We are committed to building a team that represents a variety of backgrounds, perspectives, and skills. The more inclusive we are, the better our work will be. Clarion is private equity backed and owned by Blackstone. Blackstone is one of the world's leading global investment funds, investing capital for the long term in order to build successful, resilient businesses. ( ) Our purpose is to deliver exceptional customer outcomes and experiences, by making every connection count. Our vision is we want every one of our products to be a market leader in customer satisfaction and delight. 25 days' holiday plus bank holidays End of year wellbeing shutdown (closed for the last week of the year) Celebration day off (e.g. birthday, Diwali, Eid, etc) Summer Hours in August (3pm finish on Fridays) Helping Our World (HOW) Days - one paid day per quarter to carry out charity work Pension Scheme Private Medical Insurance Health Cash Plan Employee Assistance Programme (EAP) - a 24/7, 365-day confidential helpline Subsidised Café Season Ticket Loan Cycle to Work Schemes Free on-site gym and shower facilities Free eyesight tests Free flu vaccination - offered on site once a year for all employees
Position: Information Security Lead Salary: 59k Location: Oxford ( Hybrid ) Responsibilities: Develop and maintain an Information Security improvement plan for the group. Work with IT staff within the group to build on an existing information security program and ongoing security projects that address information security risks and compliance requirements. Recommend, coordinate and where appropriate, implement agreed technical controls. Be responsible for decisions regarding operational activities in relation to Information Security improvement within the group. Work with the Head of IT and College governance structures to create and maintain security policies. Monitor and report on compliance with security policies, as well as the enforcement of policies. Plan and prioritise own work ensuring effective support to the group and delivery of key Cyber Security improvement objectives. Research, evaluate, design, test, recommend and plan the implementation of new or updated information security hardware or software, and analyse its impact on the existing environment; provide technical and managerial expertise for the administration of security tools. Develop strong working relationships with the Head of IT, Technical Services Manager, and IT Managers to develop and implement controls and configurations aligned with security policies and legal, regulatory and audit requirements. Ensure all IT staff have access to IT systems limited by need and role. Research/evaluate emerging information security threats and ways to manage them. Assist Colleges with maintaining suitable TPSA templates and maintaining a list of assessed third parties. Monitor and test vulnerabilities in technological infrastructure, managed services, and devices. Use influencing skills to ensure collaborative working to engender a level of quality improvement across the group. Consult with IT colleagues to ensure that security is factored into the evaluation, selection, installation and configuration of hardware, applications, and software as part of Privacy by Design and Default. Manage and coordinate operational components of security incident management, including detection response and reporting. Manage the day-to-day activities of threat and vulnerability management, identify risk tolerances, recommend treatment plans, and communicate information about residual risk. Manage security projects, provide expert guidance on security matters for other IT projects and work with suppliers to obtain best value. Evaluate requests for exceptions to policies, ensuring sufficient mitigating controls are in place. Ensure audit trails, system logs and other monitoring data sources are reviewed periodically and are following policies and audit requirements. Review, escalate and action any unusual event behaviour identified through the groups information security systems. Create standards in system hardening, change management, documentation. Perform periodic firewall Ensure disaster recovery and data restoration processes work. Ensure appropriate Corrective and Preventative Actions are implemented in line with best practice guidance. Essential: A record of accomplishment in and experience of introducing Information Security Improvement through successfully designing, implementing, and improving IT security architecture and controls. Working technical knowledge in broad domains of IT infrastructure such as data networks, server and desktop hardware and operating systems, storage and backups, and related monitoring and management systems. Demonstrable experience of applying security controls in one or more of the following areas: Unix/Linux Servers, Windows servers, firewalls, IDS/IPS, vulnerability management, WAF, Wi-Fi, mobile security, Data Loss Prevention, digital certificates, encryption and authentication techniques, forensics, and LAN / WANs. Solid understanding of security protocols, cryptography, authentication, authorisation, and security. Able to manage own workload, resolve competing demands, and cope with changing priorities in a flexible and proactive way. High level of personal integrity, as well as the ability to handle confidential matters and show an appropriate level of judgment and maturity. Excellent written and oral communication skills, interpersonal and collaborative skills, and the ability to communicate information security and risk-related concepts to technical and non-technical audiences. INDIT Planet Recruitment acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers. Planet Recruitment is an Equal Opportunities Employer. By applying for this role your details will be submitted to Planet Recruitment. Our Candidate Privacy Information Statement explains how we will use your information. Only candidates with the relevant skills and experience will be contacted after application, if you do not hear back from us within 7 days you have unfortunately been unsuccessful in your application. Please note that no terminology in this advert is intended to discriminate on the grounds of a person's gender, marital status, race, religion, colour, age, disability or sexual orientation. Every candidate will be assessed only in accordance with their merits, qualifications and abilities to perform the duties of the position.
Apr 18, 2024
Full time
Position: Information Security Lead Salary: 59k Location: Oxford ( Hybrid ) Responsibilities: Develop and maintain an Information Security improvement plan for the group. Work with IT staff within the group to build on an existing information security program and ongoing security projects that address information security risks and compliance requirements. Recommend, coordinate and where appropriate, implement agreed technical controls. Be responsible for decisions regarding operational activities in relation to Information Security improvement within the group. Work with the Head of IT and College governance structures to create and maintain security policies. Monitor and report on compliance with security policies, as well as the enforcement of policies. Plan and prioritise own work ensuring effective support to the group and delivery of key Cyber Security improvement objectives. Research, evaluate, design, test, recommend and plan the implementation of new or updated information security hardware or software, and analyse its impact on the existing environment; provide technical and managerial expertise for the administration of security tools. Develop strong working relationships with the Head of IT, Technical Services Manager, and IT Managers to develop and implement controls and configurations aligned with security policies and legal, regulatory and audit requirements. Ensure all IT staff have access to IT systems limited by need and role. Research/evaluate emerging information security threats and ways to manage them. Assist Colleges with maintaining suitable TPSA templates and maintaining a list of assessed third parties. Monitor and test vulnerabilities in technological infrastructure, managed services, and devices. Use influencing skills to ensure collaborative working to engender a level of quality improvement across the group. Consult with IT colleagues to ensure that security is factored into the evaluation, selection, installation and configuration of hardware, applications, and software as part of Privacy by Design and Default. Manage and coordinate operational components of security incident management, including detection response and reporting. Manage the day-to-day activities of threat and vulnerability management, identify risk tolerances, recommend treatment plans, and communicate information about residual risk. Manage security projects, provide expert guidance on security matters for other IT projects and work with suppliers to obtain best value. Evaluate requests for exceptions to policies, ensuring sufficient mitigating controls are in place. Ensure audit trails, system logs and other monitoring data sources are reviewed periodically and are following policies and audit requirements. Review, escalate and action any unusual event behaviour identified through the groups information security systems. Create standards in system hardening, change management, documentation. Perform periodic firewall Ensure disaster recovery and data restoration processes work. Ensure appropriate Corrective and Preventative Actions are implemented in line with best practice guidance. Essential: A record of accomplishment in and experience of introducing Information Security Improvement through successfully designing, implementing, and improving IT security architecture and controls. Working technical knowledge in broad domains of IT infrastructure such as data networks, server and desktop hardware and operating systems, storage and backups, and related monitoring and management systems. Demonstrable experience of applying security controls in one or more of the following areas: Unix/Linux Servers, Windows servers, firewalls, IDS/IPS, vulnerability management, WAF, Wi-Fi, mobile security, Data Loss Prevention, digital certificates, encryption and authentication techniques, forensics, and LAN / WANs. Solid understanding of security protocols, cryptography, authentication, authorisation, and security. Able to manage own workload, resolve competing demands, and cope with changing priorities in a flexible and proactive way. High level of personal integrity, as well as the ability to handle confidential matters and show an appropriate level of judgment and maturity. Excellent written and oral communication skills, interpersonal and collaborative skills, and the ability to communicate information security and risk-related concepts to technical and non-technical audiences. INDIT Planet Recruitment acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers. Planet Recruitment is an Equal Opportunities Employer. By applying for this role your details will be submitted to Planet Recruitment. Our Candidate Privacy Information Statement explains how we will use your information. Only candidates with the relevant skills and experience will be contacted after application, if you do not hear back from us within 7 days you have unfortunately been unsuccessful in your application. Please note that no terminology in this advert is intended to discriminate on the grounds of a person's gender, marital status, race, religion, colour, age, disability or sexual orientation. Every candidate will be assessed only in accordance with their merits, qualifications and abilities to perform the duties of the position.
Armstrong Knight is delighted to be recruiting on behalf of large retail business specialising in the distribution of machinery and powertools, with over 65 stores across the UK. Our client is now seeking an Infrastructure Manager to join the business, situated in the Nottingham Head Office. Position: Network / Infrastructure Manager Responsible to: IT & Systems Manager Responsible for: Maintain, develop, optimise, audit and safeguard the Group IT Network and Infrastructure Principle responsibilities and duties: o Management - Proactive management of the Network team to: o Provide effective support and maintenance of existing network o Maintain the integrity of the Group IT Network & Infrastructure requirements o Facilitate site-specific installations for both replacement PCs and new store systems o Mentor or provide guidance to junior members of the team. Produce annual risk assessments and work with business insurers and auditors to maintain the integrity of group Information Systems. Design and implement short- and long-term strategic plans to ensure infrastructure capacity meets existing and future requirements. Participate in the development of IT strategies in collaboration with the Senior Management team. Interact, negotiate and manage relationships with vendors, outsourcers, and contractors to secure infrastructure products and services. Assisting in providing hands-on Infrastructure support when required Manage & facilitate the PCI compliance across the Group, together with any required questionnaires/audits with third part suppliers. Proactive management of Telecoms / Security / alarm providers, auditing of service levels, negotiating contracts for discussion / approval by the Senior Management Team Development - To maintain and improve the Group wide network and associated servers and the development of new procedures and work practices along with the Group Management. Proactive management of all ongoing IT projects Direct the development and oversee the implementation of business processes, company policies (Information Security, Network Security, Business Continuity Management etc) and controls so that all relevant legislative and compliance requirements (PCI, GDPR, Licensing agreements) are fulfilled. Implement a 'bestpractise', Service Desk Management function for the group. Create and maintain written documentation for user / system manuals, license agreements and documentation relating to modifications and upgrades. Develop SOP's (Standard Operating Procedures) for best practice Service Delivery and ensure written protocols and guidelines are provided for all staff across the group. Create budgets for cap ex projects for management to discuss and manage the op ex budgets for the IT department and the group. Housekeeping - Documentation, risk assessments, policies, procedures and business process mapping, disaster recovery plans, information security and compliance, archiving, monitoring of usages, software upgrades, web usage, licenses, penetration and cybercrime and insurance Troubleshooting system and network problems Installing and configuring computer hardware, operating systems and applications and specific site installations for replacement PC's, Laptops, Tablets and new store systems Teamwork and Communication - Proactive communication and liaison with external contractors and suppliers such as Polestar (where necessary) to ensure that external support is carried out in a timely manner in line with Group purchasing guidelines Effective communication and liaison with all internal departments including internal audit, stores and external suppliers to provide first line and second line IT response regarding: o Hardware and Software support o Hardware Repairs o Replenishment of consumables Security and Back Ups - Ensure all systems are backed up and disks are taken off site where required Ensure security levels are sufficient to avoid risk of cybercrime or attacks Business Support - 1st and 2nd line support, diagnosing hardware and software faults and solve technical and applications problems. Helpdesk activities on back- office applications Monitor the system downtime performance and work with Polestar to ensure that the systems are operating at maximum performance Management Information - To provide information and reports to the management and other departments as required Other: Maintain Group confidentiality at all times Working out of hours as required to maintain systems and business requirements Occasional travel and overnight stays will be required Promote and maintain safe working practices in all areas Report to senior personnel any breach of security or any act of dishonesty by a member of the public, visitor or member of staff Any other reasonable duties as required Limits to Authority: • Comply with operational practice as determined by the Director • Comply with accounting/administration practices as determined by the Management Accountant • Comply with HR and Payroll working practices as determined by HR Manager • Comply with Health & Safety Regulations as determined by the Health & Safety Manager • Comply with Fleet policy as determined by Aftersales & Fleet Manager
Apr 18, 2024
Full time
Armstrong Knight is delighted to be recruiting on behalf of large retail business specialising in the distribution of machinery and powertools, with over 65 stores across the UK. Our client is now seeking an Infrastructure Manager to join the business, situated in the Nottingham Head Office. Position: Network / Infrastructure Manager Responsible to: IT & Systems Manager Responsible for: Maintain, develop, optimise, audit and safeguard the Group IT Network and Infrastructure Principle responsibilities and duties: o Management - Proactive management of the Network team to: o Provide effective support and maintenance of existing network o Maintain the integrity of the Group IT Network & Infrastructure requirements o Facilitate site-specific installations for both replacement PCs and new store systems o Mentor or provide guidance to junior members of the team. Produce annual risk assessments and work with business insurers and auditors to maintain the integrity of group Information Systems. Design and implement short- and long-term strategic plans to ensure infrastructure capacity meets existing and future requirements. Participate in the development of IT strategies in collaboration with the Senior Management team. Interact, negotiate and manage relationships with vendors, outsourcers, and contractors to secure infrastructure products and services. Assisting in providing hands-on Infrastructure support when required Manage & facilitate the PCI compliance across the Group, together with any required questionnaires/audits with third part suppliers. Proactive management of Telecoms / Security / alarm providers, auditing of service levels, negotiating contracts for discussion / approval by the Senior Management Team Development - To maintain and improve the Group wide network and associated servers and the development of new procedures and work practices along with the Group Management. Proactive management of all ongoing IT projects Direct the development and oversee the implementation of business processes, company policies (Information Security, Network Security, Business Continuity Management etc) and controls so that all relevant legislative and compliance requirements (PCI, GDPR, Licensing agreements) are fulfilled. Implement a 'bestpractise', Service Desk Management function for the group. Create and maintain written documentation for user / system manuals, license agreements and documentation relating to modifications and upgrades. Develop SOP's (Standard Operating Procedures) for best practice Service Delivery and ensure written protocols and guidelines are provided for all staff across the group. Create budgets for cap ex projects for management to discuss and manage the op ex budgets for the IT department and the group. Housekeeping - Documentation, risk assessments, policies, procedures and business process mapping, disaster recovery plans, information security and compliance, archiving, monitoring of usages, software upgrades, web usage, licenses, penetration and cybercrime and insurance Troubleshooting system and network problems Installing and configuring computer hardware, operating systems and applications and specific site installations for replacement PC's, Laptops, Tablets and new store systems Teamwork and Communication - Proactive communication and liaison with external contractors and suppliers such as Polestar (where necessary) to ensure that external support is carried out in a timely manner in line with Group purchasing guidelines Effective communication and liaison with all internal departments including internal audit, stores and external suppliers to provide first line and second line IT response regarding: o Hardware and Software support o Hardware Repairs o Replenishment of consumables Security and Back Ups - Ensure all systems are backed up and disks are taken off site where required Ensure security levels are sufficient to avoid risk of cybercrime or attacks Business Support - 1st and 2nd line support, diagnosing hardware and software faults and solve technical and applications problems. Helpdesk activities on back- office applications Monitor the system downtime performance and work with Polestar to ensure that the systems are operating at maximum performance Management Information - To provide information and reports to the management and other departments as required Other: Maintain Group confidentiality at all times Working out of hours as required to maintain systems and business requirements Occasional travel and overnight stays will be required Promote and maintain safe working practices in all areas Report to senior personnel any breach of security or any act of dishonesty by a member of the public, visitor or member of staff Any other reasonable duties as required Limits to Authority: • Comply with operational practice as determined by the Director • Comply with accounting/administration practices as determined by the Management Accountant • Comply with HR and Payroll working practices as determined by HR Manager • Comply with Health & Safety Regulations as determined by the Health & Safety Manager • Comply with Fleet policy as determined by Aftersales & Fleet Manager
Job Title: IT Infrastructure Engineer Location: Remote with travel throughout the UK Salary: Up to £60,000 About Our Client: Our client is a business-to-business services start-up, they are private equity backed and are growing rapidly. Their approach centers around people, environment, service, and technology, driving them towards their vision of becoming a leading international platform. They value teamwork, innovation, and sustainability, ensuring the safety and wellbeing of their colleagues and communities.Role Overview: They are seeking an IT Infrastructure Engineer responsible for designing, implementing, and maintaining their IT infrastructure, including cloud services, network devices, servers, and security systems. Working closely with the Integration Manager and third-party IT Managed Service Provider, you'll ensure the availability, performance, and security of their IT systems and services. Responsibilities: Analyse current IT infrastructure, applications, and data of acquired businesses, developing strategic plans for enhancing security measures and migration. Plan and execute data and email migrations for acquired businesses, implementing Microsoft 365 services and applications. Implement and enforce security policies for Microsoft 365 environment. Maintain secure backup solutions for all company data. Monitor, troubleshoot, and resolve issues related to Microsoft 365 services. Provide technical support and guidance to end-users. Document and maintain IT infrastructure architecture and procedures. Configure and manage Microsoft 365 environment. Provide training and support for Microsoft 365 users and administrators. Monitor and evaluate performance, availability, and security of migrated infrastructure and applications. Support selection and implementation of an ERP system across sites. Requirements: Experience in IT integration within business acquisition context. At least 3 years of experience as IT Infrastructure Engineer or similar role. Minimum 2 years of experience in administering Microsoft 365 services and applications. Experience with Cyber Essentials and Cyber Essentials Plus is desirable. Strong knowledge of Microsoft 365 architecture and best practices. Strong knowledge of cloud computing, networking, security, and backup technologies. Strong troubleshooting and problem-solving skills. Excellent communication and collaboration skills. Certification in Microsoft 365 or related technologies is a plus. Other Details: Role based from home and field. Regular travel throughout the UK required. Clean driving license and access to a vehicle essential. Business travel expenses reimbursed.
Apr 18, 2024
Full time
Job Title: IT Infrastructure Engineer Location: Remote with travel throughout the UK Salary: Up to £60,000 About Our Client: Our client is a business-to-business services start-up, they are private equity backed and are growing rapidly. Their approach centers around people, environment, service, and technology, driving them towards their vision of becoming a leading international platform. They value teamwork, innovation, and sustainability, ensuring the safety and wellbeing of their colleagues and communities.Role Overview: They are seeking an IT Infrastructure Engineer responsible for designing, implementing, and maintaining their IT infrastructure, including cloud services, network devices, servers, and security systems. Working closely with the Integration Manager and third-party IT Managed Service Provider, you'll ensure the availability, performance, and security of their IT systems and services. Responsibilities: Analyse current IT infrastructure, applications, and data of acquired businesses, developing strategic plans for enhancing security measures and migration. Plan and execute data and email migrations for acquired businesses, implementing Microsoft 365 services and applications. Implement and enforce security policies for Microsoft 365 environment. Maintain secure backup solutions for all company data. Monitor, troubleshoot, and resolve issues related to Microsoft 365 services. Provide technical support and guidance to end-users. Document and maintain IT infrastructure architecture and procedures. Configure and manage Microsoft 365 environment. Provide training and support for Microsoft 365 users and administrators. Monitor and evaluate performance, availability, and security of migrated infrastructure and applications. Support selection and implementation of an ERP system across sites. Requirements: Experience in IT integration within business acquisition context. At least 3 years of experience as IT Infrastructure Engineer or similar role. Minimum 2 years of experience in administering Microsoft 365 services and applications. Experience with Cyber Essentials and Cyber Essentials Plus is desirable. Strong knowledge of Microsoft 365 architecture and best practices. Strong knowledge of cloud computing, networking, security, and backup technologies. Strong troubleshooting and problem-solving skills. Excellent communication and collaboration skills. Certification in Microsoft 365 or related technologies is a plus. Other Details: Role based from home and field. Regular travel throughout the UK required. Clean driving license and access to a vehicle essential. Business travel expenses reimbursed.
Technology Services Group
Newcastle Upon Tyne, Tyne And Wear
Job Title: IT Services Manager Location: Newcastle Upon Tyne Salary: Up To 40k Per Annum Job type: Full Time, Permanent Who are we? TSG (Technology Services Group) are a Managed IT Services provider servicing businesses UK Wide. At TSG our people have a passion for delivering exceptional customer service, something which is proven in our consistent world class NPS score of . Our values are Team TSG, Service Excellence and Shared Growth, these sit at the core of our business helping us to achieve our mission. Why should I work for TSG? It is our people that make TSG what it is and a great place to work. We put a lot of work in to creating a trusted, open, fair culture and as a result, we have been named as one of the ' UKs Top 50 Best Large Companies ' and one of the ' Top 15 Technology Companies ' to work for. In addition, we have been awarded a 2-star accreditation for ' Outstanding ' employee engagement. Here's why; Our open and honest culture where feedback is taken on-board and acted upon The monthly wellbeing check-ins we complete with all staff and the support provided off the back of those where needed Our social events. In addition to regular virtual quizzes and other ad hoc team building events, we launched the very first 'TSG Festival' in 2021, Team TSG's feedback was so positive that we have decided to make it a yearly event Two paid CSR days per annum that you can use towards giving something back Our charity fundraising - TSG have raised over 20,000 in the last 2 years for our current chosen charity Mental Health UK. We have also recently launched our very own 'TSG Foundation' Our responsibility as a business to the environment as we are working towards becoming a net carbon zero business Flexible working policy Relaxed dress policy Excellent progression opportunities, training and support, including recognised qualifications Job responsibilities will include, but are not limited to; Measure and monitor service management delivery against established key performance indicators. Manage Incident and Request Management ensuing correct categorisation, prioritisation, investigation, and resolution of incidents. Manage Change Management processes to ensure coordinated changes release are performed as well as retrospective reviews and improvements. Manage Asset Management processes ensuring inventory is kept up to date. Assist with the completion of internal IT tickets. Assist with Problem Management analysis of tickets looking for trends and root causes of incidents. Deploy and develop technical solutions using Security-by-design principles. Work in partnership with Information Security function to maintain IT risk register and governing process. Assist with Business Continuity ensuring recovery plans are maintained for all systems hosting critical processes. Play a technical role in tabletop exercises and assist the business when responding to Security incidents Develop maintenance schedules to ensure that the infrastructure is fit for purpose, and to reduce risks of system outage. Identify potential areas of weakness in Infrastructure and implementing strategies to address risks. Ensure that TSG are appropriately and legally licensed for all software applications in use. Work in partnership with Information Security function to maintain TSGs Information Asset Register. Knowledge, Skills & Experience; Understanding Cyber Security and Security principles. Excellent communication style, able to keep calm under pressure and defuse difficult customer situations. An inquisitive individual, keen to investigate the root cause of issues and use their understanding of software systems to methodically work through problems. Minimum 3 years' experience in Infrastructure roles. Strong understanding of core Microsoft technologies such as Active Directory, Office 365, MDM, Azure. Experience of PowerShell to manage Azure/ 365. Strong understanding of Security and best practices. Experience of networking systems, including switching, VOIP, wireless, firewall and WAN technologies. Familiarisation working in GDPR, ISO27001 and NIST-based environments. Benefits; Company bonus scheme 25 days annual leave + public holidays Life assurance 4 x Salary Contributory pension scheme at 4% matched Electric Vehicle Salary Sacrifice Perk box discounts Paid CSR Days Company sick pay Income protection cover Enhanced Maternity and Paternity pay Home-based and hybrid opportunities Long service benefits including increased annual leave accrued with service Cycle to work scheme Please click on the APPLY button to send your CV and Cover Letter for this role. Candidates with the relevant experience or job titles of: IT Helpdesk, IT Support Manager, IT Support, IT Support Technician, ICT IT Service Desk Manager, IT Systems Manager, ICT Technician, IT Systems Support, IT Technician, Information Technology may also be considered for this role.
Apr 18, 2024
Full time
Job Title: IT Services Manager Location: Newcastle Upon Tyne Salary: Up To 40k Per Annum Job type: Full Time, Permanent Who are we? TSG (Technology Services Group) are a Managed IT Services provider servicing businesses UK Wide. At TSG our people have a passion for delivering exceptional customer service, something which is proven in our consistent world class NPS score of . Our values are Team TSG, Service Excellence and Shared Growth, these sit at the core of our business helping us to achieve our mission. Why should I work for TSG? It is our people that make TSG what it is and a great place to work. We put a lot of work in to creating a trusted, open, fair culture and as a result, we have been named as one of the ' UKs Top 50 Best Large Companies ' and one of the ' Top 15 Technology Companies ' to work for. In addition, we have been awarded a 2-star accreditation for ' Outstanding ' employee engagement. Here's why; Our open and honest culture where feedback is taken on-board and acted upon The monthly wellbeing check-ins we complete with all staff and the support provided off the back of those where needed Our social events. In addition to regular virtual quizzes and other ad hoc team building events, we launched the very first 'TSG Festival' in 2021, Team TSG's feedback was so positive that we have decided to make it a yearly event Two paid CSR days per annum that you can use towards giving something back Our charity fundraising - TSG have raised over 20,000 in the last 2 years for our current chosen charity Mental Health UK. We have also recently launched our very own 'TSG Foundation' Our responsibility as a business to the environment as we are working towards becoming a net carbon zero business Flexible working policy Relaxed dress policy Excellent progression opportunities, training and support, including recognised qualifications Job responsibilities will include, but are not limited to; Measure and monitor service management delivery against established key performance indicators. Manage Incident and Request Management ensuing correct categorisation, prioritisation, investigation, and resolution of incidents. Manage Change Management processes to ensure coordinated changes release are performed as well as retrospective reviews and improvements. Manage Asset Management processes ensuring inventory is kept up to date. Assist with the completion of internal IT tickets. Assist with Problem Management analysis of tickets looking for trends and root causes of incidents. Deploy and develop technical solutions using Security-by-design principles. Work in partnership with Information Security function to maintain IT risk register and governing process. Assist with Business Continuity ensuring recovery plans are maintained for all systems hosting critical processes. Play a technical role in tabletop exercises and assist the business when responding to Security incidents Develop maintenance schedules to ensure that the infrastructure is fit for purpose, and to reduce risks of system outage. Identify potential areas of weakness in Infrastructure and implementing strategies to address risks. Ensure that TSG are appropriately and legally licensed for all software applications in use. Work in partnership with Information Security function to maintain TSGs Information Asset Register. Knowledge, Skills & Experience; Understanding Cyber Security and Security principles. Excellent communication style, able to keep calm under pressure and defuse difficult customer situations. An inquisitive individual, keen to investigate the root cause of issues and use their understanding of software systems to methodically work through problems. Minimum 3 years' experience in Infrastructure roles. Strong understanding of core Microsoft technologies such as Active Directory, Office 365, MDM, Azure. Experience of PowerShell to manage Azure/ 365. Strong understanding of Security and best practices. Experience of networking systems, including switching, VOIP, wireless, firewall and WAN technologies. Familiarisation working in GDPR, ISO27001 and NIST-based environments. Benefits; Company bonus scheme 25 days annual leave + public holidays Life assurance 4 x Salary Contributory pension scheme at 4% matched Electric Vehicle Salary Sacrifice Perk box discounts Paid CSR Days Company sick pay Income protection cover Enhanced Maternity and Paternity pay Home-based and hybrid opportunities Long service benefits including increased annual leave accrued with service Cycle to work scheme Please click on the APPLY button to send your CV and Cover Letter for this role. Candidates with the relevant experience or job titles of: IT Helpdesk, IT Support Manager, IT Support, IT Support Technician, ICT IT Service Desk Manager, IT Systems Manager, ICT Technician, IT Systems Support, IT Technician, Information Technology may also be considered for this role.
Head of IT London Up to £100,000 Permanent Our client is looking for an elite IT professional, who has strong technical expertise and enjoys solving problems. The role will be based in central London with travel around the south of the UK to other sites. This is a great opportunity to be in a very hands-on role, as part of a small and friendly team. Key Responsibilities Head of IT You will be responsible for the day-to-day running of many disparate networks and platforms, across a group of businesses. These include but are not limited to Microsoft-based Systems, Cloud-based Platforms, Virtualised Infrastructure, Inter-Business / Office Networks, Remote Networks (including employees and clients home offices), Secure Remote Access Technologies and Virtual Private Networks. You will be responsible the distribution, maintenance, and upkeep of connected, independent network and systems, alongside the security and applications thereof. You will be responsible for building up a team of support and infrastructure engineers and the day-to-day management. Qualifications & Requirements Head of IT A sound knowledge of Microsoft and Mac based systems / architectures is essential, along with a drive towards security and efficiency. Deep knowledge in the following is essential: Microsoft Systems at Enterprise and Workstation Levels Virtualisation Technologies, especially VMware Network infrastructure at LAN, WAN and Multi-Site Internet / Intranet levels. Security of Connected Services, Cloud Based Services and Remote Services Cybersecurity prevention methodologies at desktop, server and mobile level Secure and efficient management of users; remote and on-site Setup, Maintenance and Distribution of secured Wireless and Wired technologies Management of AWS and other Cloud Services for Users and Services The ideal candidate will: Have worked in a fast-paced SME or start-up environments, adapting to the business needs Hold a Bachelor s degree (or equivalent) in a tech-related field Have prior experience in Unix Based Architectures, scripts, deployment, and maintenance Understand the software development lifecycle from conception to distribution Understand the role of DevOps and Infrastructure as Code For more information on this role, please contact Zoey Bunn on (phone number removed) or send a copy of your CV to (url removed) Omega Resource Group is acting as an Employment Agency in relation to this vacancy. Omega Resource Group is an employment agency specialising in opportunities at all levels within the Engineering, Aerospace, Automotive, Electronics, Defence, Scientific, Oil & Gas, Construction and Manufacturing sectors. Candidates who are currently a Head of IT, IT Director, IT Manager, Senior IT engineer may be suitable for this position For details of other opportunities available within your chosen field please visit our website (url removed) Omega Resource Group is acting as an Employment Agency in relation to this vacancy.
Apr 18, 2024
Full time
Head of IT London Up to £100,000 Permanent Our client is looking for an elite IT professional, who has strong technical expertise and enjoys solving problems. The role will be based in central London with travel around the south of the UK to other sites. This is a great opportunity to be in a very hands-on role, as part of a small and friendly team. Key Responsibilities Head of IT You will be responsible for the day-to-day running of many disparate networks and platforms, across a group of businesses. These include but are not limited to Microsoft-based Systems, Cloud-based Platforms, Virtualised Infrastructure, Inter-Business / Office Networks, Remote Networks (including employees and clients home offices), Secure Remote Access Technologies and Virtual Private Networks. You will be responsible the distribution, maintenance, and upkeep of connected, independent network and systems, alongside the security and applications thereof. You will be responsible for building up a team of support and infrastructure engineers and the day-to-day management. Qualifications & Requirements Head of IT A sound knowledge of Microsoft and Mac based systems / architectures is essential, along with a drive towards security and efficiency. Deep knowledge in the following is essential: Microsoft Systems at Enterprise and Workstation Levels Virtualisation Technologies, especially VMware Network infrastructure at LAN, WAN and Multi-Site Internet / Intranet levels. Security of Connected Services, Cloud Based Services and Remote Services Cybersecurity prevention methodologies at desktop, server and mobile level Secure and efficient management of users; remote and on-site Setup, Maintenance and Distribution of secured Wireless and Wired technologies Management of AWS and other Cloud Services for Users and Services The ideal candidate will: Have worked in a fast-paced SME or start-up environments, adapting to the business needs Hold a Bachelor s degree (or equivalent) in a tech-related field Have prior experience in Unix Based Architectures, scripts, deployment, and maintenance Understand the software development lifecycle from conception to distribution Understand the role of DevOps and Infrastructure as Code For more information on this role, please contact Zoey Bunn on (phone number removed) or send a copy of your CV to (url removed) Omega Resource Group is acting as an Employment Agency in relation to this vacancy. Omega Resource Group is an employment agency specialising in opportunities at all levels within the Engineering, Aerospace, Automotive, Electronics, Defence, Scientific, Oil & Gas, Construction and Manufacturing sectors. Candidates who are currently a Head of IT, IT Director, IT Manager, Senior IT engineer may be suitable for this position For details of other opportunities available within your chosen field please visit our website (url removed) Omega Resource Group is acting as an Employment Agency in relation to this vacancy.
Hays Specialist Recruitment Limited
Cardiff, South Glamorgan
Your new role The Cybersecurity Engineer within the ICT domain is accountable for overseeing and providing updates on an organization's array of ICT security solutions. Their responsibilities extend to crafting comprehensive security strategies, which encompass the formulation of internal policies, the establishment of training programs, and adherence to industry regulations. Additionally, the Cybersecurity Engineer's role may encompass operations in other areas of the organisation. What you'll need to succeed Work with the ICT Manager, ICT team and wider business, on the specification, design, development and implementation of security strategies based on existing best practice frameworks and regulatory standards Proven track record and experience in a similar cybersecurity role. Experience of working with cyber defence vulnerability management/threat detection platforms. Experience/understanding of how technology can be leveraged to support data management practices. Broad understanding of ICT infrastructure including Microsoft Azure cloud services, hybrid cloud environments, LAN/WAN networking and BCP/DR. Solid understanding of security, risk, compliance, and data management frameworks such as ISO27001, Cyber Essentials, NIST, TOGAF, COBIT, MITRE ATT&CK. Understanding of secure by design principles. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion on your career. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk
Apr 18, 2024
Full time
Your new role The Cybersecurity Engineer within the ICT domain is accountable for overseeing and providing updates on an organization's array of ICT security solutions. Their responsibilities extend to crafting comprehensive security strategies, which encompass the formulation of internal policies, the establishment of training programs, and adherence to industry regulations. Additionally, the Cybersecurity Engineer's role may encompass operations in other areas of the organisation. What you'll need to succeed Work with the ICT Manager, ICT team and wider business, on the specification, design, development and implementation of security strategies based on existing best practice frameworks and regulatory standards Proven track record and experience in a similar cybersecurity role. Experience of working with cyber defence vulnerability management/threat detection platforms. Experience/understanding of how technology can be leveraged to support data management practices. Broad understanding of ICT infrastructure including Microsoft Azure cloud services, hybrid cloud environments, LAN/WAN networking and BCP/DR. Solid understanding of security, risk, compliance, and data management frameworks such as ISO27001, Cyber Essentials, NIST, TOGAF, COBIT, MITRE ATT&CK. Understanding of secure by design principles. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion on your career. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk
Security Engineering Lead London up to £100K 3 days per week in the office This household name are undertaking a huge technology transformation in the MS Azure space and are looking to hire a hand's on Security Engineering Lead as part of this change. They have made an impressive dent in the E-commerce market of the past 10 years and are continuing to dominate this space. Security Engineering Lead: The Role As a Security Engineering Lead you will be the first hire into this growing team so your role will involve a mixture of hands-on security engineering including python Scripting as well as hiring and supporting a team. Some of your duties will include: Developing and implementing an overarching security technology strategy aligned with business objectives, industry best practices, and regulatory requirements. Collaborating with cross-functional teams, including information security, architecture, platform engineering, network engineering, and software development, to integrate security technologies into organisational systems and applications. Ensuring the proper planning, execution, and completion of security technology projects, ensuring that these are delivered on time and on budget Performing risk assessments and vulnerability assessments to identify potential security gaps or weaknesses in existing technologies and recommending appropriate remediations. Monitoring security technology function and respond to any errors and failures which may occur. Security Engineering Lead: Your profile Proven experience in security technology management, with at least 5 years in a technical leadership or managerial capacity. Strong technical background in security technologies, including Firewalls, IDS/IPS, SIEM, access control systems, DLP, encryption, etc. In-depth knowledge of security frameworks, standards, and best practices (eg, ISO 27001, NIST Cybersecurity Framework). Demonstrable experience in managing security technology projects, from initiation to completion, ensuring adherence to timelines. Professional certifications such as CISSP, CISM, CISA, or other relevant certifications. Experience working with Microsoft cloud security technologies, especially Sentinel, Defender and Purview Python programming knowledge - able to write scripts etc REST/Graph API experience Azure Kubernetes Service experience
Apr 18, 2024
Full time
Security Engineering Lead London up to £100K 3 days per week in the office This household name are undertaking a huge technology transformation in the MS Azure space and are looking to hire a hand's on Security Engineering Lead as part of this change. They have made an impressive dent in the E-commerce market of the past 10 years and are continuing to dominate this space. Security Engineering Lead: The Role As a Security Engineering Lead you will be the first hire into this growing team so your role will involve a mixture of hands-on security engineering including python Scripting as well as hiring and supporting a team. Some of your duties will include: Developing and implementing an overarching security technology strategy aligned with business objectives, industry best practices, and regulatory requirements. Collaborating with cross-functional teams, including information security, architecture, platform engineering, network engineering, and software development, to integrate security technologies into organisational systems and applications. Ensuring the proper planning, execution, and completion of security technology projects, ensuring that these are delivered on time and on budget Performing risk assessments and vulnerability assessments to identify potential security gaps or weaknesses in existing technologies and recommending appropriate remediations. Monitoring security technology function and respond to any errors and failures which may occur. Security Engineering Lead: Your profile Proven experience in security technology management, with at least 5 years in a technical leadership or managerial capacity. Strong technical background in security technologies, including Firewalls, IDS/IPS, SIEM, access control systems, DLP, encryption, etc. In-depth knowledge of security frameworks, standards, and best practices (eg, ISO 27001, NIST Cybersecurity Framework). Demonstrable experience in managing security technology projects, from initiation to completion, ensuring adherence to timelines. Professional certifications such as CISSP, CISM, CISA, or other relevant certifications. Experience working with Microsoft cloud security technologies, especially Sentinel, Defender and Purview Python programming knowledge - able to write scripts etc REST/Graph API experience Azure Kubernetes Service experience
Information Security Manager 70,000 - 80,000 per annum Full time - Watford - Hybrid Sponsorship is not available for this opportunity. Is this the Information Security Manager role for you? Crone Corkill are partnered with a well-recognised organisation in the Watford area as they look to add a new member to their Information Security team. You'll manage a small team as you assist in their development, act as an escalation point and ensure they're following the correct path. As well as this, you'll work closely with the CISO and Head of InfoSec in providing a deep understanding of ISO27001 and NIST, oversee their Cyber programme and provide sound knowledge of Cloud Security principles & controls. What will you do as an Information Security Manager? Act as one of the leading figures within the Information Security team Assess and improve the Security risk posture in line with ISO27001 & NIST Apply Cloud Security principles and work with Cloud Security tooling Work with tech & non-tech teams to ensure Security best practice is followed and compliance is met Push Security framework maturity Deliver projects to improve Security compliance Conduct vulnerability scans/reviews and schedule pen tests Provide an understanding of Security tools (SIEM, EDR, IAM, Network devices etc) Handle and investigate incidents Conduct internal & external Security assurance reviews What skills do you need as an Information Security Manager? People management ISO27001 NIST Cloud Security principles, controls and tools experience Vulnerability management expertise Experience with Security tooling Managing, implementing and reporting on Security frameworks Security related degree or relevant certifications Experience with the Microsoft E5 license (desirable) What's in it for you? In return, you'll join an organisation at a very interesting time in their recent history. There's a number of upcoming and current Security & Cloud related projects for you to be deeply involved in, whilst you can also help grow and develop a team still going through Information Security maturity, giving you an opportunity to explore areas you may not be able to in other businesses.
Apr 18, 2024
Full time
Information Security Manager 70,000 - 80,000 per annum Full time - Watford - Hybrid Sponsorship is not available for this opportunity. Is this the Information Security Manager role for you? Crone Corkill are partnered with a well-recognised organisation in the Watford area as they look to add a new member to their Information Security team. You'll manage a small team as you assist in their development, act as an escalation point and ensure they're following the correct path. As well as this, you'll work closely with the CISO and Head of InfoSec in providing a deep understanding of ISO27001 and NIST, oversee their Cyber programme and provide sound knowledge of Cloud Security principles & controls. What will you do as an Information Security Manager? Act as one of the leading figures within the Information Security team Assess and improve the Security risk posture in line with ISO27001 & NIST Apply Cloud Security principles and work with Cloud Security tooling Work with tech & non-tech teams to ensure Security best practice is followed and compliance is met Push Security framework maturity Deliver projects to improve Security compliance Conduct vulnerability scans/reviews and schedule pen tests Provide an understanding of Security tools (SIEM, EDR, IAM, Network devices etc) Handle and investigate incidents Conduct internal & external Security assurance reviews What skills do you need as an Information Security Manager? People management ISO27001 NIST Cloud Security principles, controls and tools experience Vulnerability management expertise Experience with Security tooling Managing, implementing and reporting on Security frameworks Security related degree or relevant certifications Experience with the Microsoft E5 license (desirable) What's in it for you? In return, you'll join an organisation at a very interesting time in their recent history. There's a number of upcoming and current Security & Cloud related projects for you to be deeply involved in, whilst you can also help grow and develop a team still going through Information Security maturity, giving you an opportunity to explore areas you may not be able to in other businesses.
The purpose of this post is to lead the Security Risk Team to ensure that cyber & physical risks facing the business are assessed and data is available to inform business-level and Exec decision-making. The scope includes (but is not limited to), Operational Technology (OT) and associated IT environments comprising of Control centres Optel Network & Services Critical data centres Substations. The focus being on critical systems that support the operation of the essential service to deliver electricity transmission across England and Wales and that form the scope of NIS Critical Systems. Responsible for setting the strategy and leading the formation of a consistent cyber risk management framework. The framework will ensure risks are understood by stakeholders, are documented, assessed and appropriate risk mitigation strategies are in place. The role will lead the engagement on the Cyber Risk Framework with senior leadership, group security and external bodies including Ofgem, DESNZ and NCSC. You will lead a team of specialists, collaborate with cross-functional teams, and implement risk management strategies tailored to the unique cyber challenges. Key stakeholders will include: Control & Cyber Strategy NIS system leads. ET Asset Operations (AO) Global Strategic Risk group who provides a risk framework for high level risks This role will: Ensure a regular cadence for OT Cyber risk capture, appraisal, and assessment for NIS critical systems. Ensure there is consistent document and justification of NIST CSF controls process maturity and coverage of these systems. Ensure Improvement plans are underpinned by comprehensive risk registers that quantify gaps in our controls that support our NIS critical environment. Take a lead in ensuring our regulatory submissions have strong risk-based justifications in order to ensure our Improvement plans financed. Key Accountabilities include: Defining the OT Cyber Risk Framework Driving a consistent approach to the capturing, recording and management of OT Cyber Security risks across the business Take a lead in OT Cyber Risk Management Governance Forums Collaborate with Group security to ensure OT Risk Framework aligns to and support group strategic risk assessments. Leading the business to deliver frequent risk assessments for approval by supported business functions and the Control & Cyber Strategy Manager, ensuring registers are maintained/amended as required. Leading and managing a team of Operational Technology Cyber risk specialists who will conduct risk assessments of NIS Critical systems. Ensuring risk assessments are resourced appropriately. Leads the development of risk assessment processes for ET NIS critical system level risks. Ensuring risk assessments are completed according to agreed processes and the timescales demanded by the risk assessment programme and supporting group security's strategic risk assessment processes. Directly supporting selected risk assessments as required. Ensuring data resulting from risk assessments is shared with the Control & Cyber Strategy team, Cyber risk governance forums and senior managers as required in accordance with agreed processes. Work closely with leadership to report on risk posture, metrics, mitigation strategies and investment priorities. Experience Demonstrable experience utilising risk assessment methodologies (e.g., NIST 800-30, ISO27005, IEC 62443, FAIR). Demonstrable experience working with industry best practices and security control frameworks (e.g., NIST , ISO 27001, IEC 62443, NIST CSF, NCSC CAF). Demonstrable experience implementing security risk management frameworks (e.g., NIST 800-39, 800-37) Ability to communicate complex messages both orally & in writing using quantitative & qualitative measures to senior leaders across the business. Confidence to challenge, take ownership of complex challenges, lead risk assessments, agree and build future improvement plans. Moderate understanding of ICS/SCADA (e.g., IEC 62443 framework). Understanding of UK Network & Information Systems (NIS) Regulations desirable. Communicating complex messages both orally & in writing using quantitative & qualitative measures. Experience with MITRE ATT&CK desirable Able to operate as a highly independent motivated worker and as part of a strong team with a collaborative approach, delivering high-quality outputs. Previous experience of risk management within an Operational Technology environment
Apr 18, 2024
Full time
The purpose of this post is to lead the Security Risk Team to ensure that cyber & physical risks facing the business are assessed and data is available to inform business-level and Exec decision-making. The scope includes (but is not limited to), Operational Technology (OT) and associated IT environments comprising of Control centres Optel Network & Services Critical data centres Substations. The focus being on critical systems that support the operation of the essential service to deliver electricity transmission across England and Wales and that form the scope of NIS Critical Systems. Responsible for setting the strategy and leading the formation of a consistent cyber risk management framework. The framework will ensure risks are understood by stakeholders, are documented, assessed and appropriate risk mitigation strategies are in place. The role will lead the engagement on the Cyber Risk Framework with senior leadership, group security and external bodies including Ofgem, DESNZ and NCSC. You will lead a team of specialists, collaborate with cross-functional teams, and implement risk management strategies tailored to the unique cyber challenges. Key stakeholders will include: Control & Cyber Strategy NIS system leads. ET Asset Operations (AO) Global Strategic Risk group who provides a risk framework for high level risks This role will: Ensure a regular cadence for OT Cyber risk capture, appraisal, and assessment for NIS critical systems. Ensure there is consistent document and justification of NIST CSF controls process maturity and coverage of these systems. Ensure Improvement plans are underpinned by comprehensive risk registers that quantify gaps in our controls that support our NIS critical environment. Take a lead in ensuring our regulatory submissions have strong risk-based justifications in order to ensure our Improvement plans financed. Key Accountabilities include: Defining the OT Cyber Risk Framework Driving a consistent approach to the capturing, recording and management of OT Cyber Security risks across the business Take a lead in OT Cyber Risk Management Governance Forums Collaborate with Group security to ensure OT Risk Framework aligns to and support group strategic risk assessments. Leading the business to deliver frequent risk assessments for approval by supported business functions and the Control & Cyber Strategy Manager, ensuring registers are maintained/amended as required. Leading and managing a team of Operational Technology Cyber risk specialists who will conduct risk assessments of NIS Critical systems. Ensuring risk assessments are resourced appropriately. Leads the development of risk assessment processes for ET NIS critical system level risks. Ensuring risk assessments are completed according to agreed processes and the timescales demanded by the risk assessment programme and supporting group security's strategic risk assessment processes. Directly supporting selected risk assessments as required. Ensuring data resulting from risk assessments is shared with the Control & Cyber Strategy team, Cyber risk governance forums and senior managers as required in accordance with agreed processes. Work closely with leadership to report on risk posture, metrics, mitigation strategies and investment priorities. Experience Demonstrable experience utilising risk assessment methodologies (e.g., NIST 800-30, ISO27005, IEC 62443, FAIR). Demonstrable experience working with industry best practices and security control frameworks (e.g., NIST , ISO 27001, IEC 62443, NIST CSF, NCSC CAF). Demonstrable experience implementing security risk management frameworks (e.g., NIST 800-39, 800-37) Ability to communicate complex messages both orally & in writing using quantitative & qualitative measures to senior leaders across the business. Confidence to challenge, take ownership of complex challenges, lead risk assessments, agree and build future improvement plans. Moderate understanding of ICS/SCADA (e.g., IEC 62443 framework). Understanding of UK Network & Information Systems (NIS) Regulations desirable. Communicating complex messages both orally & in writing using quantitative & qualitative measures. Experience with MITRE ATT&CK desirable Able to operate as a highly independent motivated worker and as part of a strong team with a collaborative approach, delivering high-quality outputs. Previous experience of risk management within an Operational Technology environment