My client, an International law firm based in London, are looking for an information security operational analyst to join their growing team. This role would require you to be in the office 3 days per week (2 from home). The hiring manager would also like someone from a legal or Financial Services/Banking background and a CISSP and/or MSC in Information Security is a MUST. Role and Responsibilities (this is a broad but not exhaustive list): Monitor computer networks for security issues Investigate security breaches and other cybersecurity incidents Install security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs Document security breaches and assess the damage they cause / Policy reviews Work with the security team and the wider IT team and external security partners to perform tests and uncover network vulnerabilities Fix detected vulnerabilities to maintain a high-security standard Stay current on IT security trends and news / Vendor security assessments Develop company-wide best practices for security / Network / Software / WIFI / Cloud / Messaging etc Assist in performing penetration testing / Monitoring and recording Risk and assessment Help colleagues install security software and understand information security best practice. Research security enhancements and make recommendations to management Stay up to date on information technology trends and security standards Qualifications and Experience: About the Information Security Operational Analyst role: The role of the Security Analyst will implement information security related tasks and focused on support and delivery, as advised and requested by the Head of Information Security (CISO). There are two streams of the organisational structure, Policy & Compliance and Operations. The skill set required for each is somewhat similar. However, will depend on what the candidate's experience preference and aptitude, aligned to educational and professional qualifications. Bachelor's degree in computer science or related field Certified Information Systems Security Professional (CISSP) or a MSC in Information Security is a must Certified Information Systems Auditor (CISA), or ISO Lead Auditor or Implementer qualification would be desirable for the role Experience in information security or related field Experience with computer network penetration testing and techniques Understanding of firewalls, proxies, SIEM, antivirus, and IDPS concepts Ability to identify and mitigate network vulnerabilities and explain how to avoid them Understanding of patch management with the ability to deploy patches in a timely manner while understanding business impact A general background in working within IT, preferably within an Infrastructure or Application support/management role. Demonstrable experience facilitating IT Control audit activities. With Relevant IT Security or Information Risk Management qualifications (Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA , or ISO Lead Auditor or Implementer qualification, would be advantages for the role and desirable. Experience working with large and extended Operational and Engineering teams Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates
Apr 17, 2024
Full time
My client, an International law firm based in London, are looking for an information security operational analyst to join their growing team. This role would require you to be in the office 3 days per week (2 from home). The hiring manager would also like someone from a legal or Financial Services/Banking background and a CISSP and/or MSC in Information Security is a MUST. Role and Responsibilities (this is a broad but not exhaustive list): Monitor computer networks for security issues Investigate security breaches and other cybersecurity incidents Install security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs Document security breaches and assess the damage they cause / Policy reviews Work with the security team and the wider IT team and external security partners to perform tests and uncover network vulnerabilities Fix detected vulnerabilities to maintain a high-security standard Stay current on IT security trends and news / Vendor security assessments Develop company-wide best practices for security / Network / Software / WIFI / Cloud / Messaging etc Assist in performing penetration testing / Monitoring and recording Risk and assessment Help colleagues install security software and understand information security best practice. Research security enhancements and make recommendations to management Stay up to date on information technology trends and security standards Qualifications and Experience: About the Information Security Operational Analyst role: The role of the Security Analyst will implement information security related tasks and focused on support and delivery, as advised and requested by the Head of Information Security (CISO). There are two streams of the organisational structure, Policy & Compliance and Operations. The skill set required for each is somewhat similar. However, will depend on what the candidate's experience preference and aptitude, aligned to educational and professional qualifications. Bachelor's degree in computer science or related field Certified Information Systems Security Professional (CISSP) or a MSC in Information Security is a must Certified Information Systems Auditor (CISA), or ISO Lead Auditor or Implementer qualification would be desirable for the role Experience in information security or related field Experience with computer network penetration testing and techniques Understanding of firewalls, proxies, SIEM, antivirus, and IDPS concepts Ability to identify and mitigate network vulnerabilities and explain how to avoid them Understanding of patch management with the ability to deploy patches in a timely manner while understanding business impact A general background in working within IT, preferably within an Infrastructure or Application support/management role. Demonstrable experience facilitating IT Control audit activities. With Relevant IT Security or Information Risk Management qualifications (Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA , or ISO Lead Auditor or Implementer qualification, would be advantages for the role and desirable. Experience working with large and extended Operational and Engineering teams Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates
Oliver James Group is partnered with a global cyber security business that is considered a leader in defending organisations from real-world attacks alongside building clients' resilience, advanced managed detection & response services, risk solutions and client asset protection solutions. Oliver James Group is partnered with a global cyber security business that is considered a leader in defending organisations from real-world attacks alongside building clients' resilience, advanced managed detection & response services, risk solutions and client asset protection solutions. Our client seeks a Cyber Security Product & Portfolio Leader to play a critical role in shaping a key moment in their current transformation. The role can pay up to c£120,000 basic salary plus bonuses and broad benefits - and can be based remotely / hybrid basis with flexibility to travel to London offices. Candidates must be able to demonstrate as many of the below desirables as possibles:- Seasoned Senior Product and/or Portfolio candidate (i.e. already acting as Senior Management or Lead) An understanding of technology services & products as a minimum - but if possible - a broad modern-day corporate cyber security function Typical Product / Portfolio responsibilities - i.e. full lifecycle management, design, implementation, direction, sales training Ideally, coming from a professional services environment - i.e. sales, vendor, B2B, consulting A background with working with sales teams; understanding their challenges and have empathy with hurdles they face. Understand the position of a client - i.e. why would they use your products, why would a client CISO engage, what does it take to be credible in front of a client. The ability to work across different teams, countries and cultures; understanding different views, taking onboard ways of working - but equally - having the style to influence and suggest new ideas and approaches. Develop and deliver sales and marketing materials, such as presentations, brochures, and webinars, that showcase the value proposition and benefits of our portfolio. Provide regular reports and insights on the portfolio performance, customer feedback, and market trends, using data and analytics tools. Collaborate with the sales, marketing, and delivery teams to ensure a smooth and consistent customer experience across the portfolio. Strong communication, presentation, and interpersonal skills, with the ability to influence and persuade various stakeholders. Ability to work independently and as part of a cross-functional team, managing multiple projects and priorities. Creative and analytical mindset, with a passion for innovation and customer satisfaction.
Apr 17, 2024
Full time
Oliver James Group is partnered with a global cyber security business that is considered a leader in defending organisations from real-world attacks alongside building clients' resilience, advanced managed detection & response services, risk solutions and client asset protection solutions. Oliver James Group is partnered with a global cyber security business that is considered a leader in defending organisations from real-world attacks alongside building clients' resilience, advanced managed detection & response services, risk solutions and client asset protection solutions. Our client seeks a Cyber Security Product & Portfolio Leader to play a critical role in shaping a key moment in their current transformation. The role can pay up to c£120,000 basic salary plus bonuses and broad benefits - and can be based remotely / hybrid basis with flexibility to travel to London offices. Candidates must be able to demonstrate as many of the below desirables as possibles:- Seasoned Senior Product and/or Portfolio candidate (i.e. already acting as Senior Management or Lead) An understanding of technology services & products as a minimum - but if possible - a broad modern-day corporate cyber security function Typical Product / Portfolio responsibilities - i.e. full lifecycle management, design, implementation, direction, sales training Ideally, coming from a professional services environment - i.e. sales, vendor, B2B, consulting A background with working with sales teams; understanding their challenges and have empathy with hurdles they face. Understand the position of a client - i.e. why would they use your products, why would a client CISO engage, what does it take to be credible in front of a client. The ability to work across different teams, countries and cultures; understanding different views, taking onboard ways of working - but equally - having the style to influence and suggest new ideas and approaches. Develop and deliver sales and marketing materials, such as presentations, brochures, and webinars, that showcase the value proposition and benefits of our portfolio. Provide regular reports and insights on the portfolio performance, customer feedback, and market trends, using data and analytics tools. Collaborate with the sales, marketing, and delivery teams to ensure a smooth and consistent customer experience across the portfolio. Strong communication, presentation, and interpersonal skills, with the ability to influence and persuade various stakeholders. Ability to work independently and as part of a cross-functional team, managing multiple projects and priorities. Creative and analytical mindset, with a passion for innovation and customer satisfaction.
At Direct Line Group, insurance is just the start. Combining decades of industry experience with talented people in every field from data, technology, customer care and auto repair, to HR, finance and procurement , we're a customer-obsessed market powerhouse. And we all work together to be brilliant for customers, every single day. We're evolving, to be a more digitally-focused data-driven insurance company of the future - and your unique talent, skills and ideas can drive our success. Like us, you thrive on collaboration, exploration and innovation. And like you, we take tech seriously. That's why we're embracing the move to a more digital, flexible world. With constant investment in the newest tools, programmes and equipment for our teams, it all adds up to creating the best possible user experience for customers. And a great career for you. Join us. Own the evolution. We have an exciting opportunity for a Senior Security Operations Analyst to join our re-energised Cyber Defence team! Reporting into the Cyber Defence Security Operations Lead, you will act as the as a secondary contact and escalation point for the team. You'll manage a team of Security Analysts to oversee the day-to-day operational delivery of services provided by our third party 24x7 Security Operations Centre, and will take ownership of our security presence and identify any gaps by working with various stakeholders across the business. What else you'll be doing: Maintaining security oversight of the technical infrastructure delivered by third party suppliers and raising concerns/issues that pose a security risk to the organisation accordingly. You will also manage any operational risk remediation to conclusion and take ownership within the team. Managing development and improvements required for detection engineering and associated technologies. Responsible for the operational and threat malware analysis for the group. Providing security input and for maintaining relationships with the Service Management function in relation to change management, problem management and incident management. Responsible for the level 2 / 3 operational Cyber incident response. Escalating in a timely manner any incidents and anomalies that are detected within DLG and providing subject matter expertise and guidance for operational challenges. Monitoring and responding to emerging threat patterns, vulnerabilities and anomalies and providing escalations of any unknown threats to relevant areas within the company. Collating metrics on the status of technical information security controls across the DLG estate, highlighting risk areas and working to develop and manage remediation plans as required. Collaborating with all CISO teams to report appropriate operational issues that may be resolved at an architecture level Operational On-Call Requirement This role has a shared, rotational 24/7 on-call requirement and forms part of information security incident response capability. You will act as the single point of contact for all security related response actions and decisions, including management of each incident from a security perspective, interaction with IM/MIM teams (where required) and recording of all key security decisions. What you'll need: Knowledge and operational experience in firewalls, intrusion detection and prevention systems, anti-virus and content filtering, URL filtering, authentication solutions, switches, routers, Voice over IP (VoIP), firewall zoning. Ability to read and understand system data including security event logs, system logs, application logs, and device logs, etc. Knowledge and experience of enterprise grade technologies including operating systems, databases, and web applications. Knowledge and experience of performing network traffic analysis for identifying any developing patterns. Ability to assist with knowledge transfer and mentoring/up skilling of junior team members Security Analysis for CompTIA CySA+ or similar level of certification It would be beneficial if you have: Experience with any of the following technologies: Data Loss Prevention, Intrusion Prevention/Detection Systems, Firewalls, SIEM. Knowledge of reporting suites such as Power BI Good understanding of Microsoft security suites and associated qualifications Threat identification. Security certifications such as CISM, CISSP, M.Inst.ISP, CISA by a recognised professional body Technical certifications by a recognised professional body in network or systems engineering Fundamental Cloud Concepts for AWS. OWASP Top 10: API Security Playbook. Ways of Working This role is based out of our London Bridge office. Our hybrid model way of working offers a 'best of both worlds' approach combining the best parts of home and office-working, offering flexibility for everyone. When you'll be in the office depends on your role, but most colleagues are in 2 days a week, and we'll consider the flexible working options that work best for you. Read our flexible working approach here Benefits We wouldn't be where we are today without our people and the wide variety of perspectives and life experiences they bring. That's why we offer excellent benefits to suit your lifestyle and a flexible working model combining the best parts of home and office-working, varying with the nature of your role. Our core benefits include: 9% employer contributed pension Up to 10% bonus 50% off home, motor and pet insurance plus free travel insurance and Green Flag breakdown cover Additional optional Health and Dental insurance EV car scheme which allows all colleagues to lease a brand new electric or plug-in hybrid car in a tax efficient way. 25 days annual leave Buy as you earn share scheme Employee discounts and cashback Plus many more!
Apr 16, 2024
Full time
At Direct Line Group, insurance is just the start. Combining decades of industry experience with talented people in every field from data, technology, customer care and auto repair, to HR, finance and procurement , we're a customer-obsessed market powerhouse. And we all work together to be brilliant for customers, every single day. We're evolving, to be a more digitally-focused data-driven insurance company of the future - and your unique talent, skills and ideas can drive our success. Like us, you thrive on collaboration, exploration and innovation. And like you, we take tech seriously. That's why we're embracing the move to a more digital, flexible world. With constant investment in the newest tools, programmes and equipment for our teams, it all adds up to creating the best possible user experience for customers. And a great career for you. Join us. Own the evolution. We have an exciting opportunity for a Senior Security Operations Analyst to join our re-energised Cyber Defence team! Reporting into the Cyber Defence Security Operations Lead, you will act as the as a secondary contact and escalation point for the team. You'll manage a team of Security Analysts to oversee the day-to-day operational delivery of services provided by our third party 24x7 Security Operations Centre, and will take ownership of our security presence and identify any gaps by working with various stakeholders across the business. What else you'll be doing: Maintaining security oversight of the technical infrastructure delivered by third party suppliers and raising concerns/issues that pose a security risk to the organisation accordingly. You will also manage any operational risk remediation to conclusion and take ownership within the team. Managing development and improvements required for detection engineering and associated technologies. Responsible for the operational and threat malware analysis for the group. Providing security input and for maintaining relationships with the Service Management function in relation to change management, problem management and incident management. Responsible for the level 2 / 3 operational Cyber incident response. Escalating in a timely manner any incidents and anomalies that are detected within DLG and providing subject matter expertise and guidance for operational challenges. Monitoring and responding to emerging threat patterns, vulnerabilities and anomalies and providing escalations of any unknown threats to relevant areas within the company. Collating metrics on the status of technical information security controls across the DLG estate, highlighting risk areas and working to develop and manage remediation plans as required. Collaborating with all CISO teams to report appropriate operational issues that may be resolved at an architecture level Operational On-Call Requirement This role has a shared, rotational 24/7 on-call requirement and forms part of information security incident response capability. You will act as the single point of contact for all security related response actions and decisions, including management of each incident from a security perspective, interaction with IM/MIM teams (where required) and recording of all key security decisions. What you'll need: Knowledge and operational experience in firewalls, intrusion detection and prevention systems, anti-virus and content filtering, URL filtering, authentication solutions, switches, routers, Voice over IP (VoIP), firewall zoning. Ability to read and understand system data including security event logs, system logs, application logs, and device logs, etc. Knowledge and experience of enterprise grade technologies including operating systems, databases, and web applications. Knowledge and experience of performing network traffic analysis for identifying any developing patterns. Ability to assist with knowledge transfer and mentoring/up skilling of junior team members Security Analysis for CompTIA CySA+ or similar level of certification It would be beneficial if you have: Experience with any of the following technologies: Data Loss Prevention, Intrusion Prevention/Detection Systems, Firewalls, SIEM. Knowledge of reporting suites such as Power BI Good understanding of Microsoft security suites and associated qualifications Threat identification. Security certifications such as CISM, CISSP, M.Inst.ISP, CISA by a recognised professional body Technical certifications by a recognised professional body in network or systems engineering Fundamental Cloud Concepts for AWS. OWASP Top 10: API Security Playbook. Ways of Working This role is based out of our London Bridge office. Our hybrid model way of working offers a 'best of both worlds' approach combining the best parts of home and office-working, offering flexibility for everyone. When you'll be in the office depends on your role, but most colleagues are in 2 days a week, and we'll consider the flexible working options that work best for you. Read our flexible working approach here Benefits We wouldn't be where we are today without our people and the wide variety of perspectives and life experiences they bring. That's why we offer excellent benefits to suit your lifestyle and a flexible working model combining the best parts of home and office-working, varying with the nature of your role. Our core benefits include: 9% employer contributed pension Up to 10% bonus 50% off home, motor and pet insurance plus free travel insurance and Green Flag breakdown cover Additional optional Health and Dental insurance EV car scheme which allows all colleagues to lease a brand new electric or plug-in hybrid car in a tax efficient way. 25 days annual leave Buy as you earn share scheme Employee discounts and cashback Plus many more!
Head of Cyber Security - London/Hybrid London £110,000 + bonus Head of Cyber Security - London/Hybrid - £110,000 + bonus Complete ownership of Cyber practice Build, develop and shape Security practice Define strategy aligning with business goals You will be responsible for technically leading and developing a team of Cyber Security experts. Building, maturing and providing Security services to multiple customers in multiple sectors. This is a management position but this person must also be able to lead from the front from a technical perspective. We need a "people manager" as well as someone who can drive technology, drive performance and create a collaborative environment where everyone feels valued. You'll report into board and will need to be the kind of person to "stand up and be counted". Someone who has "been there and done it" is ideal but with the same passion, energy and love for the tech and role as they've ever had. This is my clients key hire for 2024 and the whole business is excited about the value this person can add. You will provide insights and guidance to customers as a vCISO as well as vulnerability management, major incident response, and security monitoring improvements and be expected to demonstrate technical expertise in Audit, Assessments, Design, Implementation, Testing, Compliance and Reporting. Responsibilities Own the evolution and growth of the Security Service and represent the security function (including the 24/7 Incident Response capability) within the business Grow, develop and lead a team of security professionals ensuring employee engagement. Empower your staff to deliver first-class service Keep up to date with developments in the security field including significant new threats, and emerging technologies. Deliver the technical and advisory aspects of Managed Security Services across the customer base. Understand and consult with customers and internal colleagues on governance and compliance Foster a supportive, inclusive, and collaborative culture. Assess the team's capabilities and identify areas of improvement - constantly! Hold relevant certifications such as some of: CISSP, CISA, CYSA+, Security+, CISM, CEH, Microsoft Security (SC-200, AZ-500, MS-500). Technical knowledge and broad hands-on experience of working with security technologies such as the Microsoft stack, vulnerability management tools, SIEMs including Sentinel. Previous experience of delivering security projects Experience of overseeing and leading remediation of security assessments including Cyber Essentials, Cyber Essentials Plus, and NIST CSF. Experience in incident response and overseeing operational improvement actions such as development and tuning of security monitoring, alerting, and reporting. It goes without saying that this is a MASSIVE hire for the client but more importantly, a MASSIVE opportunity for you at a great business with amazing culture! For more info, please reply directly to this, or email your CV direct too - , or call me on The Cloud & IT Infrastructure space is constantly shifting. Get the latest job opportunities from top IT Solutions Providers delivered to your inbox before anyone else by registering with InfraView.
Apr 16, 2024
Full time
Head of Cyber Security - London/Hybrid London £110,000 + bonus Head of Cyber Security - London/Hybrid - £110,000 + bonus Complete ownership of Cyber practice Build, develop and shape Security practice Define strategy aligning with business goals You will be responsible for technically leading and developing a team of Cyber Security experts. Building, maturing and providing Security services to multiple customers in multiple sectors. This is a management position but this person must also be able to lead from the front from a technical perspective. We need a "people manager" as well as someone who can drive technology, drive performance and create a collaborative environment where everyone feels valued. You'll report into board and will need to be the kind of person to "stand up and be counted". Someone who has "been there and done it" is ideal but with the same passion, energy and love for the tech and role as they've ever had. This is my clients key hire for 2024 and the whole business is excited about the value this person can add. You will provide insights and guidance to customers as a vCISO as well as vulnerability management, major incident response, and security monitoring improvements and be expected to demonstrate technical expertise in Audit, Assessments, Design, Implementation, Testing, Compliance and Reporting. Responsibilities Own the evolution and growth of the Security Service and represent the security function (including the 24/7 Incident Response capability) within the business Grow, develop and lead a team of security professionals ensuring employee engagement. Empower your staff to deliver first-class service Keep up to date with developments in the security field including significant new threats, and emerging technologies. Deliver the technical and advisory aspects of Managed Security Services across the customer base. Understand and consult with customers and internal colleagues on governance and compliance Foster a supportive, inclusive, and collaborative culture. Assess the team's capabilities and identify areas of improvement - constantly! Hold relevant certifications such as some of: CISSP, CISA, CYSA+, Security+, CISM, CEH, Microsoft Security (SC-200, AZ-500, MS-500). Technical knowledge and broad hands-on experience of working with security technologies such as the Microsoft stack, vulnerability management tools, SIEMs including Sentinel. Previous experience of delivering security projects Experience of overseeing and leading remediation of security assessments including Cyber Essentials, Cyber Essentials Plus, and NIST CSF. Experience in incident response and overseeing operational improvement actions such as development and tuning of security monitoring, alerting, and reporting. It goes without saying that this is a MASSIVE hire for the client but more importantly, a MASSIVE opportunity for you at a great business with amazing culture! For more info, please reply directly to this, or email your CV direct too - , or call me on The Cloud & IT Infrastructure space is constantly shifting. Get the latest job opportunities from top IT Solutions Providers delivered to your inbox before anyone else by registering with InfraView.
Job Description: Pet Nutrition (PN) is the most vibrant category in the FMCG sector. As we work to transform this exciting category, a new program, Digital First, has been mobilized by the Mars Pet Nutrition (PN) leadership team. Digital First places pet parents at the center of all we do in Mars PN, while digitalizing a wide range of business process areas, and creating future fit capabilities to achieve ambitious targets in top line growth, earnings, and pet parent centricity. The Digital First agenda requires Digitizing at scale and requires you to demonstrate significant thought leadership, quality decision making, deep technical know-how, and an ability to navigate complex business challenges. Are you passionate about Sale, Marketing & Growth, Trade promotion and excited about how it can completely transform the way an organization efficiently and effectively prospects and improves top line growth? Do you have the strategic vision, technical expertise, and leadership skills to drive technology solutions that are cutting edge ? Do you want to work in a dynamic, fast-growing category? If so, you might be the ideal candidate for the role of TPM - Solution architect in the Enterprise Architecture function for Global Pet Nutrition (PN) at Mars. The TPM - Solution Architect is a technical leadership role that oversees delivery of digital and data capabilities that are critical to the success of our sales, marketing and growth teams. This role is responsible for the architecture, design and optimization of application & data platforms, operations, data engineering and the development of the TPM product for the multi-billion-dollar Pet Nutrition division. Reporting to the Head of Enterprise Architecture, the person in this role will be a part of the Global PN Architecture of Tomorrow team. The role operates globally and partners with PN business and digital leaders across all functions. 'This role is an incubation role (temporary) with an estimated end date of December 2026. The purpose is to fast-track and support the build of this specific product. At the completion of the product, a permanent BAU role will open to maintain and support the product: the role will be permanent and will have a different job description more suited to the need of the organisation at end state. If you are unable to secure the role by December 2026 you will be eligible for a separation package.' What are we looking for? Bachelor's degree or Equivalent (IT Degree preferred in particular computer science, data science or related field) Industry-leading expertise in building and delivering RBS solutions. Experience in the delivery of analytical products in the RBS space, including deep knowledge of identifying, extracting, and integrating data from various internal and external sources relevant to RBS, is essential. Prior experience on conducting price, promotion, category & search analysis in digital retailor space and/or exposure to statistical modelling methods is a plus. Lead the definition and establishment of technical principles and framework for the RBS transformation and support the design of scalable, robust, and flexible technical solutions aligned with RBS best practices. Established and deep understanding of a range of technology solutions & business process, across Sales & Marketing domains. Proven track record of delivering value through data products in a fast-paced, agile environment. Extensive knowledge of data principles, architecture/modeling, ingestion, ETL, visualisation Extensive knowledge of Azure based big data platform & exposure to other clouds such as GCP is desirable. Prior experience of successfully leading large-scale data initiatives to support analytics, BI & AI use cases. Extensive knowledge of data sharing with retailors, retailor media. Good understanding of media, content, consumer journey, funnel tactics Proven track record of presenting solution options to design authorities and governance forums Proven track record to master new and emerging technologies Successful experience, established over several years, to perform architecture leadership within a Technology environment A strong customer centric mindset especially within an internal customer base with the purpose of driving adoption and use Strategic thinking, problem solving and innovation, with the ability to anticipate and navigate challenges and opportunities. Excellent in engaging with technical and functional leadership in a matrix organization. Ability to navigate complex matrix organisation Motivational and thought-leading Ability to adapt to a fast-paced, dynamic work environment and manage multiple priorities Experience working in a multi-region business team with potentially conflicting needs/views and the ability to navigate a complex organizational landscape Must be customer-focused with demonstrated ability to form productive relationships including business & DT leaders Learning agility and desire to learn new technology and business. What will be your key responsibilities? Mars Principles: Live and exemplify the Five Principles of Mars, Inc. within self and team. Strategy and Thought Leadership: Work with PN Digital Leadership & TPM product leadership to create and execute the TPM strategy and roadmap for the Pet Nutrition segment, in alignment with the Pet Nutrition's business strategic priorities and goals. Bring the "outside-In" by maintaining an external network of digital professionals to deliver value faster and build our capabilities of the future. Stakeholder Engagement: Collaborate with PN brand, marketing/sales/Growth, CMI, Digital Leadership & TPM product team. You align with and support Enterprise architecture efforts in Mars Petcare, corporate Enterprise architecture(EA), Global delivery organisation (GDO), CISO teams. Architectural governance, review and assurance: you are accountable for effective and proportionate governance to approve or reject high level solution designs, solution architectures, other Technology services, including granting waivers where justified. You ensure that critical TPM design decisions and issues escalated by delivery teams across PN Digital technology(DT) & business are reviewed and resolved promptly. You ensure that the governance, review and assurance processes provide insight and information to drive future revisions of the strategy and roadmap. You drive architectural governance, review and assurance in partnership with the Technology Leadership Team, PN/Petcare/Corporate EAs and colleagues in the wider Mars PN. Roadmap to achieve the target architecture: you are accountable for setting out a roadmap to move from the current state architecture to the target architecture for TPM product, taking account of the change portfolio and expected future change plans. You ensure that the roadmap is maintained to account for evolving requirements. You will also consider Market Archetypes where appropriate to ensure relevant solutions are proposed and implemented. Work with development team: you are expected to work with development teams/Sis to guide and offer expert advice to ensure the application is built the highest standards and is in line with Mars PN EA architecture principles and above all, the solutions meet business requirements. Ensure comprehensive documentation, including solution architecture diagrams, technical specifications, and user guides are produced. What can you expect from Mars? Work with over 130,000 diverse and talented Associates, all guided by the Five Principles. Join a purpose-driven company where we're striving to build the world we want tomorrow, today. Best-in-class learning and development support from day one, including access to our in-house Mars University. An industry-competitive salary and benefits package, including company bonus. Mars is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law. If you need assistance or an accommodation during the application process because of a disability, it is available upon request. The company is pleased to provide such assistance, and no applicant will be penalized as a result of such a request.
Apr 16, 2024
Full time
Job Description: Pet Nutrition (PN) is the most vibrant category in the FMCG sector. As we work to transform this exciting category, a new program, Digital First, has been mobilized by the Mars Pet Nutrition (PN) leadership team. Digital First places pet parents at the center of all we do in Mars PN, while digitalizing a wide range of business process areas, and creating future fit capabilities to achieve ambitious targets in top line growth, earnings, and pet parent centricity. The Digital First agenda requires Digitizing at scale and requires you to demonstrate significant thought leadership, quality decision making, deep technical know-how, and an ability to navigate complex business challenges. Are you passionate about Sale, Marketing & Growth, Trade promotion and excited about how it can completely transform the way an organization efficiently and effectively prospects and improves top line growth? Do you have the strategic vision, technical expertise, and leadership skills to drive technology solutions that are cutting edge ? Do you want to work in a dynamic, fast-growing category? If so, you might be the ideal candidate for the role of TPM - Solution architect in the Enterprise Architecture function for Global Pet Nutrition (PN) at Mars. The TPM - Solution Architect is a technical leadership role that oversees delivery of digital and data capabilities that are critical to the success of our sales, marketing and growth teams. This role is responsible for the architecture, design and optimization of application & data platforms, operations, data engineering and the development of the TPM product for the multi-billion-dollar Pet Nutrition division. Reporting to the Head of Enterprise Architecture, the person in this role will be a part of the Global PN Architecture of Tomorrow team. The role operates globally and partners with PN business and digital leaders across all functions. 'This role is an incubation role (temporary) with an estimated end date of December 2026. The purpose is to fast-track and support the build of this specific product. At the completion of the product, a permanent BAU role will open to maintain and support the product: the role will be permanent and will have a different job description more suited to the need of the organisation at end state. If you are unable to secure the role by December 2026 you will be eligible for a separation package.' What are we looking for? Bachelor's degree or Equivalent (IT Degree preferred in particular computer science, data science or related field) Industry-leading expertise in building and delivering RBS solutions. Experience in the delivery of analytical products in the RBS space, including deep knowledge of identifying, extracting, and integrating data from various internal and external sources relevant to RBS, is essential. Prior experience on conducting price, promotion, category & search analysis in digital retailor space and/or exposure to statistical modelling methods is a plus. Lead the definition and establishment of technical principles and framework for the RBS transformation and support the design of scalable, robust, and flexible technical solutions aligned with RBS best practices. Established and deep understanding of a range of technology solutions & business process, across Sales & Marketing domains. Proven track record of delivering value through data products in a fast-paced, agile environment. Extensive knowledge of data principles, architecture/modeling, ingestion, ETL, visualisation Extensive knowledge of Azure based big data platform & exposure to other clouds such as GCP is desirable. Prior experience of successfully leading large-scale data initiatives to support analytics, BI & AI use cases. Extensive knowledge of data sharing with retailors, retailor media. Good understanding of media, content, consumer journey, funnel tactics Proven track record of presenting solution options to design authorities and governance forums Proven track record to master new and emerging technologies Successful experience, established over several years, to perform architecture leadership within a Technology environment A strong customer centric mindset especially within an internal customer base with the purpose of driving adoption and use Strategic thinking, problem solving and innovation, with the ability to anticipate and navigate challenges and opportunities. Excellent in engaging with technical and functional leadership in a matrix organization. Ability to navigate complex matrix organisation Motivational and thought-leading Ability to adapt to a fast-paced, dynamic work environment and manage multiple priorities Experience working in a multi-region business team with potentially conflicting needs/views and the ability to navigate a complex organizational landscape Must be customer-focused with demonstrated ability to form productive relationships including business & DT leaders Learning agility and desire to learn new technology and business. What will be your key responsibilities? Mars Principles: Live and exemplify the Five Principles of Mars, Inc. within self and team. Strategy and Thought Leadership: Work with PN Digital Leadership & TPM product leadership to create and execute the TPM strategy and roadmap for the Pet Nutrition segment, in alignment with the Pet Nutrition's business strategic priorities and goals. Bring the "outside-In" by maintaining an external network of digital professionals to deliver value faster and build our capabilities of the future. Stakeholder Engagement: Collaborate with PN brand, marketing/sales/Growth, CMI, Digital Leadership & TPM product team. You align with and support Enterprise architecture efforts in Mars Petcare, corporate Enterprise architecture(EA), Global delivery organisation (GDO), CISO teams. Architectural governance, review and assurance: you are accountable for effective and proportionate governance to approve or reject high level solution designs, solution architectures, other Technology services, including granting waivers where justified. You ensure that critical TPM design decisions and issues escalated by delivery teams across PN Digital technology(DT) & business are reviewed and resolved promptly. You ensure that the governance, review and assurance processes provide insight and information to drive future revisions of the strategy and roadmap. You drive architectural governance, review and assurance in partnership with the Technology Leadership Team, PN/Petcare/Corporate EAs and colleagues in the wider Mars PN. Roadmap to achieve the target architecture: you are accountable for setting out a roadmap to move from the current state architecture to the target architecture for TPM product, taking account of the change portfolio and expected future change plans. You ensure that the roadmap is maintained to account for evolving requirements. You will also consider Market Archetypes where appropriate to ensure relevant solutions are proposed and implemented. Work with development team: you are expected to work with development teams/Sis to guide and offer expert advice to ensure the application is built the highest standards and is in line with Mars PN EA architecture principles and above all, the solutions meet business requirements. Ensure comprehensive documentation, including solution architecture diagrams, technical specifications, and user guides are produced. What can you expect from Mars? Work with over 130,000 diverse and talented Associates, all guided by the Five Principles. Join a purpose-driven company where we're striving to build the world we want tomorrow, today. Best-in-class learning and development support from day one, including access to our in-house Mars University. An industry-competitive salary and benefits package, including company bonus. Mars is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law. If you need assistance or an accommodation during the application process because of a disability, it is available upon request. The company is pleased to provide such assistance, and no applicant will be penalized as a result of such a request.
Job Description: Pet Nutrition (PN) is the most vibrant category in the FMCG sector. As we work to transform this exciting category, a new program, Digital First, has been mobilized by the Mars Pet Nutrition (PN) leadership team. Digital First places pet parents at the center of all we do in Mars PN, while digitalizing a wide range of business process areas, and creating future fit capabilities to achieve ambitious targets in top line growth, earnings, and pet parent centricity. The Digital First agenda requires Digitizing at scale and requires you to demonstrate significant thought leadership, quality decision making, deep technical know-how, and an ability to navigate complex business challenges. Are you passionate about increasing sales, revenue, price the products effectively, saving cost via Digital, Analytics and excited about how it can completely transform the way an organization efficiently and effectively manage its longer-term financial health? Do you have the strategic vision, technical expertise, and leadership skills to drive digital & data-driven solutions? Do you want to work in a dynamic, fast-growing category? If so, you might be the ideal candidate for the role of Integrated SRM - Solution architect in the Enterprise Architecture function for Global Pet Nutrition (PN) at Mars. The Integrated SRM - Solution Architect is a technical leadership role that oversees delivery of digital and data capabilities that are critical to the success of our Enterprise. This role is responsible for the architecture, design and optimization of digital and data platforms, data engineering and the development of the Integrated SRM product for the multi-billion-dollar Pet Nutrition division. Reporting to the Head of Enterprise Architecture, the person in this role will be a part of the Global PN Architecture of Tomorrow team. The role operates globally and partners with PN business and digital leaders across all functions. 'This role is an incubation role (temporary) with an estimated end date of December 2026. The purpose is to fast-track and support the build of this specific product. At the completion of the product, a permanent BAU role will open to maintain and support the product: the role will be permanent and will have a different job description more suited to the need of the organisation at end state. If you are unable to secure the role by December 2026 you will be eligible for a separation package.' What are we looking for? Bachelor's degree or Equivalent (IT Degree preferred in particular computer science, data science or related field) Industry-leading expertise in building and delivering Integrated SRM solutions. Understanding of revenue management principles and levers such as pricing, promo, mix or PPA. Experienced on delivery of analytical products on the SRM space including deep knowledge on identifying, extracting, and integrating data from various internal and external sources relevant to revenue management is essential. Prior experience on conducting price elasticity and sensitivity analysis and/or exposure to statistical modelling methods is a plus. Lead the definition and establishment of technical principles and framework for the SRM transformation and support the design scalable, robust, and flexible technical solutions aligned with SRM best practices Established and deep understanding of a range of technology solutions & business process, across Sales/Marketing/Finance domain. Proven track record of delivering value through data products in a fast-paced, agile environment. Extensive knowledge of data principles, architecture/modelling, ingestion, ETL, visualisation Extensive knowledge of Azure based big data platform & exposure to other clouds such as GCP is desirable. Prior experience of successfully leading large-scale data initiatives to support analytics, BI & AI use cases. Proven track record of presenting solution options to design authorities and governance forums Proven track record to master new and emerging technologies Successful experience, established over several years, to perform architecture leadership within a Technology environment A strong customer centric mindset especially within an internal customer base with the purpose of driving adoption and use Strategic thinking, problem solving and innovation, with the ability to anticipate and navigate challenges and opportunities. Excellent in engaging with technical and functional leadership in a matrix organization. Ability to navigate complex matrix organisation Motivational and thought leading Ability to adapt to a fast-paced, dynamic work environment and manage multiple priorities Experience working in a multi-region business team with potentially conflicting needs/views and ability to navigate a complex organizational landscape Must be customer focused with demonstrated ability to form productive relationship including business & DT leaders Learning agility and desire to learn new technology and business What will be your key responsibilities? M ars Principles: Live and exemplify the Five Principles of Mars, Inc. within self and team. Strategy and Thought Leadership: Work with PN Digital Leadership & Integrated SRM product leadership to create and execute the Integrated SRM strategy and roadmap for the Pet Nutrition segment, in alignment with the Pet Nutrition's business strategic priorities and goals. Bring the "outside-In" by maintaining an external network of digital professionals to deliver value faster and build our capabilities of the future. Stakeholder Engagement: Collaborate with PN brand, Sales, Marketing, Finance, CMI, Digital Leadership & Integrated SRM product team. You align with and support Enterprise architecture efforts in Mars Petcare, Enterprise architecture (EA), Global delivery organisation(GDO), CISO teams. Architectural governance, review and assurance: you are accountable for effective and proportionate governance to approve or reject high level solution designs, solution architectures, other Technology services including granting waivers where justified. You ensure that critical Integrated SRM design decisions and issues escalated by delivery teams across PN DT & business are reviewed and resolved promptly. You drive architectural governance, review and assurance in partnership with the Technology Leadership Team, PN/Petcare/Corporate EAs and colleagues in the wider Mars PN. Roadmap to achieve the target architecture: you are accountable for setting out a roadmap to move from the current state architecture to the target architecture for Integrated SRM product, taking account of the change portfolio and expected future change plans. You will also consider Market Archetypes where appropriate to ensure relevant solutions are proposed and implemented. Work with development team: you are expected to work with development teams/Sis to guide and offer expert advice to ensure the application is built the highest standards and is in line with Mars PN EA architecture principles and above all, the solutions meet business requirements. Ensure comprehensive documentation, including solution architecture diagrams, technical specifications, and user guides are produced. What can you expect from Mars? Work with over 130,000 diverse and talented Associates, all guided by the Five Principles. Join a purpose-driven company where we're striving to build the world we want tomorrow, today. Best-in-class learning and development support from day one, including access to our in-house Mars University. An industry-competitive salary and benefits package, including company bonus. Mars is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law. If you need assistance or an accommodation during the application process because of a disability, it is available upon request. The company is pleased to provide such assistance, and no applicant will be penalized as a result of such a request.
Apr 16, 2024
Full time
Job Description: Pet Nutrition (PN) is the most vibrant category in the FMCG sector. As we work to transform this exciting category, a new program, Digital First, has been mobilized by the Mars Pet Nutrition (PN) leadership team. Digital First places pet parents at the center of all we do in Mars PN, while digitalizing a wide range of business process areas, and creating future fit capabilities to achieve ambitious targets in top line growth, earnings, and pet parent centricity. The Digital First agenda requires Digitizing at scale and requires you to demonstrate significant thought leadership, quality decision making, deep technical know-how, and an ability to navigate complex business challenges. Are you passionate about increasing sales, revenue, price the products effectively, saving cost via Digital, Analytics and excited about how it can completely transform the way an organization efficiently and effectively manage its longer-term financial health? Do you have the strategic vision, technical expertise, and leadership skills to drive digital & data-driven solutions? Do you want to work in a dynamic, fast-growing category? If so, you might be the ideal candidate for the role of Integrated SRM - Solution architect in the Enterprise Architecture function for Global Pet Nutrition (PN) at Mars. The Integrated SRM - Solution Architect is a technical leadership role that oversees delivery of digital and data capabilities that are critical to the success of our Enterprise. This role is responsible for the architecture, design and optimization of digital and data platforms, data engineering and the development of the Integrated SRM product for the multi-billion-dollar Pet Nutrition division. Reporting to the Head of Enterprise Architecture, the person in this role will be a part of the Global PN Architecture of Tomorrow team. The role operates globally and partners with PN business and digital leaders across all functions. 'This role is an incubation role (temporary) with an estimated end date of December 2026. The purpose is to fast-track and support the build of this specific product. At the completion of the product, a permanent BAU role will open to maintain and support the product: the role will be permanent and will have a different job description more suited to the need of the organisation at end state. If you are unable to secure the role by December 2026 you will be eligible for a separation package.' What are we looking for? Bachelor's degree or Equivalent (IT Degree preferred in particular computer science, data science or related field) Industry-leading expertise in building and delivering Integrated SRM solutions. Understanding of revenue management principles and levers such as pricing, promo, mix or PPA. Experienced on delivery of analytical products on the SRM space including deep knowledge on identifying, extracting, and integrating data from various internal and external sources relevant to revenue management is essential. Prior experience on conducting price elasticity and sensitivity analysis and/or exposure to statistical modelling methods is a plus. Lead the definition and establishment of technical principles and framework for the SRM transformation and support the design scalable, robust, and flexible technical solutions aligned with SRM best practices Established and deep understanding of a range of technology solutions & business process, across Sales/Marketing/Finance domain. Proven track record of delivering value through data products in a fast-paced, agile environment. Extensive knowledge of data principles, architecture/modelling, ingestion, ETL, visualisation Extensive knowledge of Azure based big data platform & exposure to other clouds such as GCP is desirable. Prior experience of successfully leading large-scale data initiatives to support analytics, BI & AI use cases. Proven track record of presenting solution options to design authorities and governance forums Proven track record to master new and emerging technologies Successful experience, established over several years, to perform architecture leadership within a Technology environment A strong customer centric mindset especially within an internal customer base with the purpose of driving adoption and use Strategic thinking, problem solving and innovation, with the ability to anticipate and navigate challenges and opportunities. Excellent in engaging with technical and functional leadership in a matrix organization. Ability to navigate complex matrix organisation Motivational and thought leading Ability to adapt to a fast-paced, dynamic work environment and manage multiple priorities Experience working in a multi-region business team with potentially conflicting needs/views and ability to navigate a complex organizational landscape Must be customer focused with demonstrated ability to form productive relationship including business & DT leaders Learning agility and desire to learn new technology and business What will be your key responsibilities? M ars Principles: Live and exemplify the Five Principles of Mars, Inc. within self and team. Strategy and Thought Leadership: Work with PN Digital Leadership & Integrated SRM product leadership to create and execute the Integrated SRM strategy and roadmap for the Pet Nutrition segment, in alignment with the Pet Nutrition's business strategic priorities and goals. Bring the "outside-In" by maintaining an external network of digital professionals to deliver value faster and build our capabilities of the future. Stakeholder Engagement: Collaborate with PN brand, Sales, Marketing, Finance, CMI, Digital Leadership & Integrated SRM product team. You align with and support Enterprise architecture efforts in Mars Petcare, Enterprise architecture (EA), Global delivery organisation(GDO), CISO teams. Architectural governance, review and assurance: you are accountable for effective and proportionate governance to approve or reject high level solution designs, solution architectures, other Technology services including granting waivers where justified. You ensure that critical Integrated SRM design decisions and issues escalated by delivery teams across PN DT & business are reviewed and resolved promptly. You drive architectural governance, review and assurance in partnership with the Technology Leadership Team, PN/Petcare/Corporate EAs and colleagues in the wider Mars PN. Roadmap to achieve the target architecture: you are accountable for setting out a roadmap to move from the current state architecture to the target architecture for Integrated SRM product, taking account of the change portfolio and expected future change plans. You will also consider Market Archetypes where appropriate to ensure relevant solutions are proposed and implemented. Work with development team: you are expected to work with development teams/Sis to guide and offer expert advice to ensure the application is built the highest standards and is in line with Mars PN EA architecture principles and above all, the solutions meet business requirements. Ensure comprehensive documentation, including solution architecture diagrams, technical specifications, and user guides are produced. What can you expect from Mars? Work with over 130,000 diverse and talented Associates, all guided by the Five Principles. Join a purpose-driven company where we're striving to build the world we want tomorrow, today. Best-in-class learning and development support from day one, including access to our in-house Mars University. An industry-competitive salary and benefits package, including company bonus. Mars is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law. If you need assistance or an accommodation during the application process because of a disability, it is available upon request. The company is pleased to provide such assistance, and no applicant will be penalized as a result of such a request.
Information Security Analyst Location: Manchester Salary: £40,000-£45,000 Summary: Our client requires an experienced Information Security Analyst to oversee and bolster their European Information and Cyber Security protocols across multiple countries, including the UK, Germany, Poland, Netherlands, Italy, and Belgium. Reporting directly to the CISO and Head of IT, this role demands a deep understanding of Information Security, technology architecture, and business security. It presents an excellent opportunity for individuals seeking to advance their IT Security expertise within an environment that fosters both autonomy and support. Key Responsibilities Develop, implement, and maintain security policies aligned with ISO27001, CIS, and NIST standards, including Incident Response Plans and Business Continuity strategies, with tabletop exercises for evaluation. Plan and implement disaster recovery measures for security breaches. Act as a DPO Ambassador, liaising with stakeholders, aiding in ROPA development, and collaborating within the privacy network group. Coordinate vulnerability analysis and patch management with a risk-based approach. Investigate security alerts and execute incident response procedures. Manage identity and access systems. Engage stakeholders, including C-level executives, for cyber security recommendations. Maintain an information security risk register and support audits. Develop and deliver cyber security awareness training. Ensure regulatory compliance through collaboration with teams. Stay updated on security and tech developments. May involve travel within Europe. Skills & Experience 1-2 years implementing ISMS and cyber security standards (ISO27001, Cyber Essentials, NIST, CIS, PCI). Awareness of GDPR framework. Understanding of cybersecurity threats and emerging technologies. Knowledge of physical, virtual, and cloud architectures (IaaS, SaaS, PaaS). Proficiency in ITIL service management. Experience with Qualys Vulnerability Scanning. Possess recognised Information Security certification (Security+, CISSP, or similar). Diverse tech background including Private/Public cloud Infrastructure, Networking (Cisco, Fortinet), Microsoft, Linux, etc.Top of Form Processing Your Data Bis Henderson Recruitment is a leading provider of recruitment, interim management and consultancy services to the supply chain and logistics industry. Should you respond to this advertisement we may store your CV and contact details and will process this data for recruitment purposes only. Should we process your data, then we will always tell you that we are doing so. Please visit our website to read our Privacy Policy in full, in this Policy you will find information about our compliance with the UK General Data Protection Regulations. All applicants must have an unrestricted right to work in the UK as our client will not support visa sponsorship for this role.
Apr 16, 2024
Full time
Information Security Analyst Location: Manchester Salary: £40,000-£45,000 Summary: Our client requires an experienced Information Security Analyst to oversee and bolster their European Information and Cyber Security protocols across multiple countries, including the UK, Germany, Poland, Netherlands, Italy, and Belgium. Reporting directly to the CISO and Head of IT, this role demands a deep understanding of Information Security, technology architecture, and business security. It presents an excellent opportunity for individuals seeking to advance their IT Security expertise within an environment that fosters both autonomy and support. Key Responsibilities Develop, implement, and maintain security policies aligned with ISO27001, CIS, and NIST standards, including Incident Response Plans and Business Continuity strategies, with tabletop exercises for evaluation. Plan and implement disaster recovery measures for security breaches. Act as a DPO Ambassador, liaising with stakeholders, aiding in ROPA development, and collaborating within the privacy network group. Coordinate vulnerability analysis and patch management with a risk-based approach. Investigate security alerts and execute incident response procedures. Manage identity and access systems. Engage stakeholders, including C-level executives, for cyber security recommendations. Maintain an information security risk register and support audits. Develop and deliver cyber security awareness training. Ensure regulatory compliance through collaboration with teams. Stay updated on security and tech developments. May involve travel within Europe. Skills & Experience 1-2 years implementing ISMS and cyber security standards (ISO27001, Cyber Essentials, NIST, CIS, PCI). Awareness of GDPR framework. Understanding of cybersecurity threats and emerging technologies. Knowledge of physical, virtual, and cloud architectures (IaaS, SaaS, PaaS). Proficiency in ITIL service management. Experience with Qualys Vulnerability Scanning. Possess recognised Information Security certification (Security+, CISSP, or similar). Diverse tech background including Private/Public cloud Infrastructure, Networking (Cisco, Fortinet), Microsoft, Linux, etc.Top of Form Processing Your Data Bis Henderson Recruitment is a leading provider of recruitment, interim management and consultancy services to the supply chain and logistics industry. Should you respond to this advertisement we may store your CV and contact details and will process this data for recruitment purposes only. Should we process your data, then we will always tell you that we are doing so. Please visit our website to read our Privacy Policy in full, in this Policy you will find information about our compliance with the UK General Data Protection Regulations. All applicants must have an unrestricted right to work in the UK as our client will not support visa sponsorship for this role.
Information Security Analyst Location: Manchester Salary: 40,000- 45,000 Summary: Our client requires an experienced Information Security Analyst to oversee and bolster their European Information and Cyber Security protocols across multiple countries, including the UK, Germany, Poland, Netherlands, Italy, and Belgium. Reporting directly to the CISO and Head of IT, this role demands a deep understanding of Information Security, technology architecture, and business security. It presents an excellent opportunity for individuals seeking to advance their IT Security expertise within an environment that fosters both autonomy and support. Key Responsibilities Develop, implement, and maintain security policies aligned with ISO27001, CIS, and NIST standards, including Incident Response Plans and Business Continuity strategies, with tabletop exercises for evaluation. Plan and implement disaster recovery measures for security breaches. Act as a DPO Ambassador, liaising with stakeholders, aiding in ROPA development, and collaborating within the privacy network group. Coordinate vulnerability analysis and patch management with a risk-based approach. Investigate security alerts and execute incident response procedures. Manage identity and access systems. Engage stakeholders, including C-level executives, for cyber security recommendations. Maintain an information security risk register and support audits. Develop and deliver cyber security awareness training. Ensure regulatory compliance through collaboration with teams. Stay updated on security and tech developments. May involve travel within Europe. Skills & Experience 1-2 years implementing ISMS and cyber security standards (ISO27001, Cyber Essentials, NIST, CIS, PCI). Awareness of GDPR framework. Understanding of cybersecurity threats and emerging technologies. Knowledge of physical, virtual, and cloud architectures (IaaS, SaaS, PaaS). Proficiency in ITIL service management. Experience with Qualys Vulnerability Scanning. Possess recognised Information Security certification (Security+, CISSP, or similar). Diverse tech background including Private/Public cloud Infrastructure, Networking (Cisco, Fortinet), Microsoft, Linux, etc.Top of Form Processing Your Data Bis Henderson Recruitment is a leading provider of recruitment, interim management and consultancy services to the supply chain and logistics industry. Should you respond to this advertisement we may store your CV and contact details and will process this data for recruitment purposes only. Should we process your data, then we will always tell you that we are doing so. Please visit our website to read our Privacy Policy in full, in this Policy you will find information about our compliance with the UK General Data Protection Regulations. All applicants must have an unrestricted right to work in the UK as our client will not support visa sponsorship for this role.
Apr 16, 2024
Full time
Information Security Analyst Location: Manchester Salary: 40,000- 45,000 Summary: Our client requires an experienced Information Security Analyst to oversee and bolster their European Information and Cyber Security protocols across multiple countries, including the UK, Germany, Poland, Netherlands, Italy, and Belgium. Reporting directly to the CISO and Head of IT, this role demands a deep understanding of Information Security, technology architecture, and business security. It presents an excellent opportunity for individuals seeking to advance their IT Security expertise within an environment that fosters both autonomy and support. Key Responsibilities Develop, implement, and maintain security policies aligned with ISO27001, CIS, and NIST standards, including Incident Response Plans and Business Continuity strategies, with tabletop exercises for evaluation. Plan and implement disaster recovery measures for security breaches. Act as a DPO Ambassador, liaising with stakeholders, aiding in ROPA development, and collaborating within the privacy network group. Coordinate vulnerability analysis and patch management with a risk-based approach. Investigate security alerts and execute incident response procedures. Manage identity and access systems. Engage stakeholders, including C-level executives, for cyber security recommendations. Maintain an information security risk register and support audits. Develop and deliver cyber security awareness training. Ensure regulatory compliance through collaboration with teams. Stay updated on security and tech developments. May involve travel within Europe. Skills & Experience 1-2 years implementing ISMS and cyber security standards (ISO27001, Cyber Essentials, NIST, CIS, PCI). Awareness of GDPR framework. Understanding of cybersecurity threats and emerging technologies. Knowledge of physical, virtual, and cloud architectures (IaaS, SaaS, PaaS). Proficiency in ITIL service management. Experience with Qualys Vulnerability Scanning. Possess recognised Information Security certification (Security+, CISSP, or similar). Diverse tech background including Private/Public cloud Infrastructure, Networking (Cisco, Fortinet), Microsoft, Linux, etc.Top of Form Processing Your Data Bis Henderson Recruitment is a leading provider of recruitment, interim management and consultancy services to the supply chain and logistics industry. Should you respond to this advertisement we may store your CV and contact details and will process this data for recruitment purposes only. Should we process your data, then we will always tell you that we are doing so. Please visit our website to read our Privacy Policy in full, in this Policy you will find information about our compliance with the UK General Data Protection Regulations. All applicants must have an unrestricted right to work in the UK as our client will not support visa sponsorship for this role.
Senior IAM Analyst: Remote (UK) Would shaping the security frameworks and practices of a company with a presence in over 100 counties appeal to you? If so please read on! I have partnered with one of the worlds leading manufacturing organisations who are looking to grow out their Cyber and IAM function rapidly. They have a number of high profile projects and implementations that are key to the company this year and need the best Analysts to come on board for the journey. Such is the importance of the role you will report to the Global CISO. What will you be responsible for? You will manage the product life cycle (provision/ securing and prevention of access) using recognised IAM tools and practices Accurately detail and document all life-cycle changes Identity issues and liaise with development and management teams to collaboratively overcome both workflow and security issues Continuing the collaboration theme IAM design/ implementation and support (IGA/ PAM etc) will be a key aspect of the role Provide in-depth analysis to improve IAM processes and standards Keep a key eye out for anomalies/ unauthorised access/ alert notifications and other SecOps red flags Preparation of detailed and analytical reports and observations Be the champion for company wide access compliance and cybersecurity standards What will you need for this position? CISSP certification is a must have for this role Demonstrable hands on experience using SailPoint/ Okta SSO are essential If you have used other security related tech such as EntraID/ Saviynt/ ForgeRock/ Oracle IDM that would be another great addition A minimum of 4 years working within IAM and related projects Advanced knowledge of security best practices Knowledge of compliance mechanisms IAM technologies Being highly organised and with the ability to communicate (both written and verbally) clearly and efficiently If this role sounds like your next opportunity then please do apply right away!
Apr 16, 2024
Full time
Senior IAM Analyst: Remote (UK) Would shaping the security frameworks and practices of a company with a presence in over 100 counties appeal to you? If so please read on! I have partnered with one of the worlds leading manufacturing organisations who are looking to grow out their Cyber and IAM function rapidly. They have a number of high profile projects and implementations that are key to the company this year and need the best Analysts to come on board for the journey. Such is the importance of the role you will report to the Global CISO. What will you be responsible for? You will manage the product life cycle (provision/ securing and prevention of access) using recognised IAM tools and practices Accurately detail and document all life-cycle changes Identity issues and liaise with development and management teams to collaboratively overcome both workflow and security issues Continuing the collaboration theme IAM design/ implementation and support (IGA/ PAM etc) will be a key aspect of the role Provide in-depth analysis to improve IAM processes and standards Keep a key eye out for anomalies/ unauthorised access/ alert notifications and other SecOps red flags Preparation of detailed and analytical reports and observations Be the champion for company wide access compliance and cybersecurity standards What will you need for this position? CISSP certification is a must have for this role Demonstrable hands on experience using SailPoint/ Okta SSO are essential If you have used other security related tech such as EntraID/ Saviynt/ ForgeRock/ Oracle IDM that would be another great addition A minimum of 4 years working within IAM and related projects Advanced knowledge of security best practices Knowledge of compliance mechanisms IAM technologies Being highly organised and with the ability to communicate (both written and verbally) clearly and efficiently If this role sounds like your next opportunity then please do apply right away!
At Direct Line Group, insurance is just the start. Combining decades of industry experience with talented people in every field from data, technology, customer care and auto repair, to HR, finance and procurement , we're a customer-obsessed market powerhouse. And we all work together to be brilliant for customers, every single day. We're evolving, to be a more digitally-focused data-driven insurance company of the future - and your unique talent, skills and ideas can drive our success. Like us, you thrive on collaboration, exploration and innovation. And like you, we take tech seriously. That's why we're embracing the move to a more digital, flexible world. With constant investment in the newest tools, programmes and equipment for our teams, it all adds up to creating the best possible user experience for customers. And a great career for you. Join us. Own the evolution. We have an exciting opportunity for a Senior Security Operations Analyst to join our re-energised Cyber Defence team! Reporting into the Cyber Defence Security Operations Lead, you will act as the as a secondary contact and escalation point for the team. You'll manage a team of Security Analysts to oversee the day-to-day operational delivery of services provided by our third party 24x7 Security Operations Centre, and will take ownership of our security presence and identify any gaps by working with various stakeholders across the business. What else you'll be doing: Maintaining security oversight of the technical infrastructure delivered by third party suppliers and raising concerns/issues that pose a security risk to the organisation accordingly. You will also manage any operational risk remediation to conclusion and take ownership within the team. Managing development and improvements required for detection engineering and associated technologies. Responsible for the operational and threat malware analysis for the group. Providing security input and for maintaining relationships with the Service Management function in relation to change management, problem management and incident management. Responsible for the level 2 / 3 operational Cyber incident response. Escalating in a timely manner any incidents and anomalies that are detected within DLG and providing subject matter expertise and guidance for operational challenges. Monitoring and responding to emerging threat patterns, vulnerabilities and anomalies and providing escalations of any unknown threats to relevant areas within the company. Collating metrics on the status of technical information security controls across the DLG estate, highlighting risk areas and working to develop and manage remediation plans as required. Collaborating with all CISO teams to report appropriate operational issues that may be resolved at an architecture level Operational On-Call Requirement This role has a shared, rotational 24/7 on-call requirement and forms part of information security incident response capability. You will act as the single point of contact for all security related response actions and decisions, including management of each incident from a security perspective, interaction with IM/MIM teams (where required) and recording of all key security decisions. What you'll need: Knowledge and operational experience in firewalls, intrusion detection and prevention systems, anti-virus and content filtering, URL filtering, authentication solutions, switches, routers, Voice over IP (VoIP), firewall zoning. Ability to read and understand system data including security event logs, system logs, application logs, and device logs, etc. Knowledge and experience of enterprise grade technologies including operating systems, databases, and web applications. Knowledge and experience of performing network traffic analysis for identifying any developing patterns. Ability to assist with knowledge transfer and mentoring/up skilling of junior team members Security Analysis for CompTIA CySA+ or similar level of certification It would be beneficial if you have: Experience with any of the following technologies: Data Loss Prevention, Intrusion Prevention/Detection Systems, Firewalls, SIEM. Knowledge of reporting suites such as Power BI Good understanding of Microsoft security suites and associated qualifications Threat identification. Security certifications such as CISM, CISSP, M.Inst.ISP, CISA by a recognised professional body Technical certifications by a recognised professional body in network or systems engineering Fundamental Cloud Concepts for AWS. OWASP Top 10: API Security Playbook. Ways of Working This role is based out of our London Bridge office. Our hybrid model way of working offers a 'best of both worlds' approach combining the best parts of home and office-working, offering flexibility for everyone. When you'll be in the office depends on your role, but most colleagues are in 2 days a week, and we'll consider the flexible working options that work best for you. Read our flexible working approach here Benefits We wouldn't be where we are today without our people and the wide variety of perspectives and life experiences they bring. That's why we offer excellent benefits to suit your lifestyle and a flexible working model combining the best parts of home and office-working, varying with the nature of your role. Our core benefits include: 9% employer contributed pension Up to 10% bonus 50% off home, motor and pet insurance plus free travel insurance and Green Flag breakdown cover Additional optional Health and Dental insurance EV car scheme which allows all colleagues to lease a brand new electric or plug-in hybrid car in a tax efficient way. 25 days annual leave Buy as you earn share scheme Employee discounts and cashback Plus many more! Being yourself Difference makes us who we are. We believe everyone should feel comfortable to bring their whole selves to work - that's why we champion diverse voices, build workplaces that work for people, and invest in the things that matter. From senior leadership to inclusivity networks, adaptive working to inclusion training, we've made it our mission to give you everything you need to be authentically you. Discover more at Together we're one of a kind.
Apr 16, 2024
Full time
At Direct Line Group, insurance is just the start. Combining decades of industry experience with talented people in every field from data, technology, customer care and auto repair, to HR, finance and procurement , we're a customer-obsessed market powerhouse. And we all work together to be brilliant for customers, every single day. We're evolving, to be a more digitally-focused data-driven insurance company of the future - and your unique talent, skills and ideas can drive our success. Like us, you thrive on collaboration, exploration and innovation. And like you, we take tech seriously. That's why we're embracing the move to a more digital, flexible world. With constant investment in the newest tools, programmes and equipment for our teams, it all adds up to creating the best possible user experience for customers. And a great career for you. Join us. Own the evolution. We have an exciting opportunity for a Senior Security Operations Analyst to join our re-energised Cyber Defence team! Reporting into the Cyber Defence Security Operations Lead, you will act as the as a secondary contact and escalation point for the team. You'll manage a team of Security Analysts to oversee the day-to-day operational delivery of services provided by our third party 24x7 Security Operations Centre, and will take ownership of our security presence and identify any gaps by working with various stakeholders across the business. What else you'll be doing: Maintaining security oversight of the technical infrastructure delivered by third party suppliers and raising concerns/issues that pose a security risk to the organisation accordingly. You will also manage any operational risk remediation to conclusion and take ownership within the team. Managing development and improvements required for detection engineering and associated technologies. Responsible for the operational and threat malware analysis for the group. Providing security input and for maintaining relationships with the Service Management function in relation to change management, problem management and incident management. Responsible for the level 2 / 3 operational Cyber incident response. Escalating in a timely manner any incidents and anomalies that are detected within DLG and providing subject matter expertise and guidance for operational challenges. Monitoring and responding to emerging threat patterns, vulnerabilities and anomalies and providing escalations of any unknown threats to relevant areas within the company. Collating metrics on the status of technical information security controls across the DLG estate, highlighting risk areas and working to develop and manage remediation plans as required. Collaborating with all CISO teams to report appropriate operational issues that may be resolved at an architecture level Operational On-Call Requirement This role has a shared, rotational 24/7 on-call requirement and forms part of information security incident response capability. You will act as the single point of contact for all security related response actions and decisions, including management of each incident from a security perspective, interaction with IM/MIM teams (where required) and recording of all key security decisions. What you'll need: Knowledge and operational experience in firewalls, intrusion detection and prevention systems, anti-virus and content filtering, URL filtering, authentication solutions, switches, routers, Voice over IP (VoIP), firewall zoning. Ability to read and understand system data including security event logs, system logs, application logs, and device logs, etc. Knowledge and experience of enterprise grade technologies including operating systems, databases, and web applications. Knowledge and experience of performing network traffic analysis for identifying any developing patterns. Ability to assist with knowledge transfer and mentoring/up skilling of junior team members Security Analysis for CompTIA CySA+ or similar level of certification It would be beneficial if you have: Experience with any of the following technologies: Data Loss Prevention, Intrusion Prevention/Detection Systems, Firewalls, SIEM. Knowledge of reporting suites such as Power BI Good understanding of Microsoft security suites and associated qualifications Threat identification. Security certifications such as CISM, CISSP, M.Inst.ISP, CISA by a recognised professional body Technical certifications by a recognised professional body in network or systems engineering Fundamental Cloud Concepts for AWS. OWASP Top 10: API Security Playbook. Ways of Working This role is based out of our London Bridge office. Our hybrid model way of working offers a 'best of both worlds' approach combining the best parts of home and office-working, offering flexibility for everyone. When you'll be in the office depends on your role, but most colleagues are in 2 days a week, and we'll consider the flexible working options that work best for you. Read our flexible working approach here Benefits We wouldn't be where we are today without our people and the wide variety of perspectives and life experiences they bring. That's why we offer excellent benefits to suit your lifestyle and a flexible working model combining the best parts of home and office-working, varying with the nature of your role. Our core benefits include: 9% employer contributed pension Up to 10% bonus 50% off home, motor and pet insurance plus free travel insurance and Green Flag breakdown cover Additional optional Health and Dental insurance EV car scheme which allows all colleagues to lease a brand new electric or plug-in hybrid car in a tax efficient way. 25 days annual leave Buy as you earn share scheme Employee discounts and cashback Plus many more! Being yourself Difference makes us who we are. We believe everyone should feel comfortable to bring their whole selves to work - that's why we champion diverse voices, build workplaces that work for people, and invest in the things that matter. From senior leadership to inclusivity networks, adaptive working to inclusion training, we've made it our mission to give you everything you need to be authentically you. Discover more at Together we're one of a kind.
We are recruiting for a CISO to support our client alongside their current CISO with delivering critial programmes across their global business. They are looking for someone 4 days per week with 1 day on site at their HQ near Cardiff. Experience of project delivery for Cyber departments, particularly within Cyber Security Operations Centre (CSOC) functions - essential. Experience of SIEM delivery, new platform or convergence - essential. Other security tool delivery e.g. CyberArk, EDR, Threat Intelligence - desirable. Experience delivering global projects with 3rd parties Experience within the Pharma sector would be beneficial This contract sits Outside of IR35 and is paying up to £800 per day.4 days per week with 1 day on site near Cardiff8 month initial duration
Apr 15, 2024
Full time
We are recruiting for a CISO to support our client alongside their current CISO with delivering critial programmes across their global business. They are looking for someone 4 days per week with 1 day on site at their HQ near Cardiff. Experience of project delivery for Cyber departments, particularly within Cyber Security Operations Centre (CSOC) functions - essential. Experience of SIEM delivery, new platform or convergence - essential. Other security tool delivery e.g. CyberArk, EDR, Threat Intelligence - desirable. Experience delivering global projects with 3rd parties Experience within the Pharma sector would be beneficial This contract sits Outside of IR35 and is paying up to £800 per day.4 days per week with 1 day on site near Cardiff8 month initial duration
We are recruiting for a CISO to support our client alongside their current CISO with delivering critial programmes across their global business. They are looking for someone 4 days per week with 1 day on site at their HQ near Cardiff. Experience of project delivery for Cyber departments, particularly within Cyber Security Operations Centre (CSOC) functions essential. Experience of SIEM delivery, new platform or convergence essential. Other security tool delivery e.g. CyberArk, EDR, Threat Intelligence desirable. Experience delivering global projects with 3rd parties Experience within the Pharma sector would be beneficial This contract sits Outside of IR35 and is paying up to £800 per day. 4 days per week with 1 day on site near Cardiff 8 month initial duration
Apr 15, 2024
Contractor
We are recruiting for a CISO to support our client alongside their current CISO with delivering critial programmes across their global business. They are looking for someone 4 days per week with 1 day on site at their HQ near Cardiff. Experience of project delivery for Cyber departments, particularly within Cyber Security Operations Centre (CSOC) functions essential. Experience of SIEM delivery, new platform or convergence essential. Other security tool delivery e.g. CyberArk, EDR, Threat Intelligence desirable. Experience delivering global projects with 3rd parties Experience within the Pharma sector would be beneficial This contract sits Outside of IR35 and is paying up to £800 per day. 4 days per week with 1 day on site near Cardiff 8 month initial duration
Information Security Analyst Permanent Oldham, Greater Manchester (Hybrid) £40k - £45k + Excellent Benefits We have a very exciting opportunity for an Information Security Analyst based at our client site in Oldham, Greater Manchester. This is a fantastic role managing our client's Information and Cyber Security Controls and procedures across Europe. Reporting to the CISO & Head of IT, the role will require in-depth understanding of Information Security, technology architecture and business security. This is a great opportunity for someone looking to further establish their IT Security knowledge and skills in an environment that provides autonomy and support in equal measure. Role To create, administer & maintain policies, standards and templates, following ISO27001, CIS and NIST best practises; creation and upkeep of Incident Response Plans, Disaster Recovery, Business Continuity, along with the planning and execution of tabletop exercises to test the robustness of these policies. Plan for disaster recovery and create contingency plans in the event of any security breaches. Act as DPO Ambassador for the group DPO; liaising with stakeholders across the business, aiding in the creation ROPAs and engaging with the Bpost privacy network group. Coordinated analysis of identified vulnerabilities and patch releases to ensure a risk-based approach is taken for remediation. Investigate security alerts and provide incident response. Monitor and maintain identity and access management. Liaise with stakeholders, up to C-level in relation to cyber security issues and provide future recommendations. Experience 1-2yrs experience of implementing ISMS and cybersecurity best practises and certifications such as ISO27001, Cyber Essentials, NIST, CIS or PCI. Awareness of GDPR (General Data Protection Regulation) framework and best practises. A broad understanding of the current cybersecurity threat landscape, existing and emerging technologies. An understanding of the principles of physical, virtual and cloud architectures (IaaS, SaaS, PaaS) for systems and networks. Good knowledge of ITIL service management processes. Qualys Vulnerability Scanning. Recognised Information Security qualification (Security+, CISSP or similar). A broad range of technology experience (Private and Public cloud Infrastructure, Networking (Cisco, Fortinet), Microsoft, Linux etc).
Apr 15, 2024
Full time
Information Security Analyst Permanent Oldham, Greater Manchester (Hybrid) £40k - £45k + Excellent Benefits We have a very exciting opportunity for an Information Security Analyst based at our client site in Oldham, Greater Manchester. This is a fantastic role managing our client's Information and Cyber Security Controls and procedures across Europe. Reporting to the CISO & Head of IT, the role will require in-depth understanding of Information Security, technology architecture and business security. This is a great opportunity for someone looking to further establish their IT Security knowledge and skills in an environment that provides autonomy and support in equal measure. Role To create, administer & maintain policies, standards and templates, following ISO27001, CIS and NIST best practises; creation and upkeep of Incident Response Plans, Disaster Recovery, Business Continuity, along with the planning and execution of tabletop exercises to test the robustness of these policies. Plan for disaster recovery and create contingency plans in the event of any security breaches. Act as DPO Ambassador for the group DPO; liaising with stakeholders across the business, aiding in the creation ROPAs and engaging with the Bpost privacy network group. Coordinated analysis of identified vulnerabilities and patch releases to ensure a risk-based approach is taken for remediation. Investigate security alerts and provide incident response. Monitor and maintain identity and access management. Liaise with stakeholders, up to C-level in relation to cyber security issues and provide future recommendations. Experience 1-2yrs experience of implementing ISMS and cybersecurity best practises and certifications such as ISO27001, Cyber Essentials, NIST, CIS or PCI. Awareness of GDPR (General Data Protection Regulation) framework and best practises. A broad understanding of the current cybersecurity threat landscape, existing and emerging technologies. An understanding of the principles of physical, virtual and cloud architectures (IaaS, SaaS, PaaS) for systems and networks. Good knowledge of ITIL service management processes. Qualys Vulnerability Scanning. Recognised Information Security qualification (Security+, CISSP or similar). A broad range of technology experience (Private and Public cloud Infrastructure, Networking (Cisco, Fortinet), Microsoft, Linux etc).
IT Risk and Compliance Manager We are looking for an experienced risk and compliance specialist to work alongside the CISO to lead the overall management of IT compliance and audit, continuity plans/documents and to ensure systems are in line with regulations and guidelines. There will be a big focus on Auditing and Assessment, Risk Management so will need to possess a strong understanding of standards such as ISO27001. Required Skills and Experience: Strong background in Compliance and Risk, understanding the needs of IT systems to ensure compliance to industry standards. Experience of ISO27001, Cyber Essentials including audit assessment to ensure accreditations are maintained. Technical knowledge across cloud services, Azure and M365 as well as more general MS technologies, such as Windows Server. Certifications such as CISSP, CISM, CRISC are a plus.
Apr 15, 2024
Full time
IT Risk and Compliance Manager We are looking for an experienced risk and compliance specialist to work alongside the CISO to lead the overall management of IT compliance and audit, continuity plans/documents and to ensure systems are in line with regulations and guidelines. There will be a big focus on Auditing and Assessment, Risk Management so will need to possess a strong understanding of standards such as ISO27001. Required Skills and Experience: Strong background in Compliance and Risk, understanding the needs of IT systems to ensure compliance to industry standards. Experience of ISO27001, Cyber Essentials including audit assessment to ensure accreditations are maintained. Technical knowledge across cloud services, Azure and M365 as well as more general MS technologies, such as Windows Server. Certifications such as CISSP, CISM, CRISC are a plus.
I nformation Security Analyst (GRC) Are you passionate about driving information security to new heights?We are seeking an Information Security Analyst (GRC) to join a leading law firm in London. In this role, you will implement crucial information security tasks, supporting the Head of Information Security (CISO) navigating two key streams in the organisational structure: Policy & Compliance and Operations. The role offers hybrid working, 3 days a week in the London office. Roles and Responsibilities: Assess vendor security aligned with ISO27001, NIST, CIS, and Cyber Essentials. Manage policy updates, risk tracking, and certification programs. Maintain information security tools and reporting activities. Support internal and external audits. Collaborate for tests, vulnerability uncovering, and audit trail. Drive security-by-design and incident management. Qualifications and Experience: CISA, ISO/IEC 27001 Lead Auditor, or Implementer qualification. Experience in Audit, Risk programs coordination. CISSP, CISM, CISA or ISO certifications advantageous. Strong background in information security and risk. Proficiency in network testing, firewalls, SIEM, etc. Ability to mitigate vulnerabilities, manage patches. GRC experience in Infrastructure or Audit roles. If you are ready to elevate your career in Information Security with a dynamic and forward-thinking firm, we invite you to click 'apply' now.
Apr 15, 2024
Full time
I nformation Security Analyst (GRC) Are you passionate about driving information security to new heights?We are seeking an Information Security Analyst (GRC) to join a leading law firm in London. In this role, you will implement crucial information security tasks, supporting the Head of Information Security (CISO) navigating two key streams in the organisational structure: Policy & Compliance and Operations. The role offers hybrid working, 3 days a week in the London office. Roles and Responsibilities: Assess vendor security aligned with ISO27001, NIST, CIS, and Cyber Essentials. Manage policy updates, risk tracking, and certification programs. Maintain information security tools and reporting activities. Support internal and external audits. Collaborate for tests, vulnerability uncovering, and audit trail. Drive security-by-design and incident management. Qualifications and Experience: CISA, ISO/IEC 27001 Lead Auditor, or Implementer qualification. Experience in Audit, Risk programs coordination. CISSP, CISM, CISA or ISO certifications advantageous. Strong background in information security and risk. Proficiency in network testing, firewalls, SIEM, etc. Ability to mitigate vulnerabilities, manage patches. GRC experience in Infrastructure or Audit roles. If you are ready to elevate your career in Information Security with a dynamic and forward-thinking firm, we invite you to click 'apply' now.
Contract - Banking Security Transformation Lead - Remote/ London/Edinburgh - 6 months - Outside IR35 Gibbs Hybrid require an experienced and dynamic Banking Security Transformation Lead will be at the forefront of driving our client's cyber-security strategy and implementation across the organisation. This role requires a professional with a well-rounded knowledge in all aspects of CISO cyber-security domains, including tooling, applications, and more. The ideal candidate will possess strong leadership and delivery skills, capable of driving transformation projects and executing them effectively. Role: Banking Security Transformation Lead Location: Remote/London/Edinburgh (with occasional travel when required) Job type: Contract Duration: 6 months initial - Outside IR35 Proven experience in a similar role within the Banking and Financial Services industry, demonstrating a track record of successful security transformation projects. Expertise across CISO cyber-security subject domains, including tooling, applications, and technologies. Strong leadership and project delivery skills, with the ability to drive change and achieve results in complex environments. Excellent stakeholder management and communication skills, with the capacity to engage effectively at all levels and build trust. A strategic thinker with the ability to translate complex cyber-security challenges into actionable plans and solutions. Relevant certifications in cyber-security (e.g., CISSP, CISM, CCSP) would be advantageous. Please feel free to contact myself - Daisy Nguyen at Gibbs Hybrid for a confidential chat to know more details about the role. Please also note: Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted.
Apr 15, 2024
Full time
Contract - Banking Security Transformation Lead - Remote/ London/Edinburgh - 6 months - Outside IR35 Gibbs Hybrid require an experienced and dynamic Banking Security Transformation Lead will be at the forefront of driving our client's cyber-security strategy and implementation across the organisation. This role requires a professional with a well-rounded knowledge in all aspects of CISO cyber-security domains, including tooling, applications, and more. The ideal candidate will possess strong leadership and delivery skills, capable of driving transformation projects and executing them effectively. Role: Banking Security Transformation Lead Location: Remote/London/Edinburgh (with occasional travel when required) Job type: Contract Duration: 6 months initial - Outside IR35 Proven experience in a similar role within the Banking and Financial Services industry, demonstrating a track record of successful security transformation projects. Expertise across CISO cyber-security subject domains, including tooling, applications, and technologies. Strong leadership and project delivery skills, with the ability to drive change and achieve results in complex environments. Excellent stakeholder management and communication skills, with the capacity to engage effectively at all levels and build trust. A strategic thinker with the ability to translate complex cyber-security challenges into actionable plans and solutions. Relevant certifications in cyber-security (e.g., CISSP, CISM, CCSP) would be advantageous. Please feel free to contact myself - Daisy Nguyen at Gibbs Hybrid for a confidential chat to know more details about the role. Please also note: Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted.
Lead Principal Security Consultant Salary: £100,000 to £120,000 DOE I'm partnered with a dedicated Cyber Security Management and Consultancy business based in London. They have doubled in size since becoming established, and are looking at consistently adding to their team. Reporting directly to the CISO, you will be a crucial part of the team and receive support to develop a strong understanding on the clients and developing strategic attacks. I am looking for candidates from a consultancy backgrounds, who is a strong communicator, self-sufficient and have the ability to lead the red teaming capabilities. SKILLS: 5 years+ commercial experience in Red Team. Ability to work independently. Penetration testing experience. Regulatory Red Teaming Experience. Developing custom tools. Endpoint protection experience. Stakeholder experience. Strategic mentality. CREST: Certified Simulated Attack Specialist or similar Interview process: Initial Teams call > Technical Task > Final meet up in London. This is a remote role with monthly visits to the office in London. Please apply directly, or to find out more information, give me a call on or email
Apr 15, 2024
Full time
Lead Principal Security Consultant Salary: £100,000 to £120,000 DOE I'm partnered with a dedicated Cyber Security Management and Consultancy business based in London. They have doubled in size since becoming established, and are looking at consistently adding to their team. Reporting directly to the CISO, you will be a crucial part of the team and receive support to develop a strong understanding on the clients and developing strategic attacks. I am looking for candidates from a consultancy backgrounds, who is a strong communicator, self-sufficient and have the ability to lead the red teaming capabilities. SKILLS: 5 years+ commercial experience in Red Team. Ability to work independently. Penetration testing experience. Regulatory Red Teaming Experience. Developing custom tools. Endpoint protection experience. Stakeholder experience. Strategic mentality. CREST: Certified Simulated Attack Specialist or similar Interview process: Initial Teams call > Technical Task > Final meet up in London. This is a remote role with monthly visits to the office in London. Please apply directly, or to find out more information, give me a call on or email
Title: Head of Operational Security Reference No: 2181 Company: Online Location: London, UK Reports to CISO Day Rate: TBC Duration 5 months The Role This role reports to the CISO and is part of the security leadership team. The Person: An analytical problem solver with demonstrable long-term experience leading and improving operational security functions who enjoys working as part of a team in a rapidly evolving environment. Experience of securing a large-scale DevOps and Cloud environment is a must. Secure handling of large volumes of customer data is vital. As the Head of Operational Security, you will be responsible for leading and driving improvement within SOC activities (Tier 1 & 2), Incident Response, SecOps Automation, Threat Intelligence and Security Posture Management. Reporting to the CISO (who is responsible for Cyber Security, Physical Security and Fraud Prevention), this role is a member of the security leadership team. Partnership with the Infrastructure and Operations team, particularly for incident management, is essential, so you'll need to be collaborative and good at transparent communications. We're quite passionate about protecting our colleagues and the brand, so we would love someone who can thrive and develop on an ever growing and changing security landscape. Responsibilities: • Develop an operational security strategy to create a step change improvement in capabilities. Build and deliver the services in the strategy. • Ensure incident identification, assessment, quantification, reporting, communication, mitigation and monitoring. • Revise and develop processes and automation to strengthen the current security operations framework, drive efficiencies and reduce time to respond. • Perform threat management, threat modelling, identify threat vectors and develop use cases for security monitoring. • Deliver improvements to the internal incident reporting process. • Responsible for team & vendor management, overall use of resources and initiation of corrective action where required. • Responsible for managing the completeness and cost of data ingestion into security tooling. • Creation of reports, dashboards and metrics for operational security and their presentation to senior management. • Co-ordination with stakeholders, build and maintain positive working relationships with them. • Develop crisis simulation exercises to meet regulatory requirements and to enhance the response capability. • Build relationships with other relevant organisations and industry bodies to bring in best practice. Qualifications/Experience/Skills: • The successful candidate will demonstrate competency in cyber security by having either the relevant work experience, completed a degree or obtained industry relevant certifications (e.g., CISSP, CISM, CISA, CRISC) • Significant experience in operational security, especially managing a Computer Incident Response Team (CIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Centre (CSIRC) or a Security Operations Centre (SOC) • Experience in industry standards and frameworks, such as ISO 27001, PCI DSS and NIST CSF • Relevant experience of working an operational security capacity • Experience in security device management and SIEM • Proven experience of Incident Management and Response • In depth knowledge of security concepts such as TTPs, threat vectors, risk management, incident management etc. • Experience in threat management • Proficient in preparation of reports, dashboards, presentations and documentation • Excellent communication and leadership skills • Experience in getting the best from vendors • Ability to handle high pressure situations with key stakeholders • Good Analytical skills, Problem solving and Interpersonal skills • Ability to react quickly, decisively, calmly and deliberately in high-stress, high-impact situations • Motivated, self-starter who can create a pragmatic plan to deliver from a blank page • Data driven with an innate curiosity and drive for transparency through rigorous measurement • Sense of urgency to resolve security incidents and risks • A team focused mentality with excellent relationship management skills • Fast learner who can assimilate information quickly • Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one • An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business • An understanding of organizational mission, values, and goals and consistent application of this knowledge 21 Church Road, Poole, BH14 8UF, United Kingdom
Apr 14, 2024
Full time
Title: Head of Operational Security Reference No: 2181 Company: Online Location: London, UK Reports to CISO Day Rate: TBC Duration 5 months The Role This role reports to the CISO and is part of the security leadership team. The Person: An analytical problem solver with demonstrable long-term experience leading and improving operational security functions who enjoys working as part of a team in a rapidly evolving environment. Experience of securing a large-scale DevOps and Cloud environment is a must. Secure handling of large volumes of customer data is vital. As the Head of Operational Security, you will be responsible for leading and driving improvement within SOC activities (Tier 1 & 2), Incident Response, SecOps Automation, Threat Intelligence and Security Posture Management. Reporting to the CISO (who is responsible for Cyber Security, Physical Security and Fraud Prevention), this role is a member of the security leadership team. Partnership with the Infrastructure and Operations team, particularly for incident management, is essential, so you'll need to be collaborative and good at transparent communications. We're quite passionate about protecting our colleagues and the brand, so we would love someone who can thrive and develop on an ever growing and changing security landscape. Responsibilities: • Develop an operational security strategy to create a step change improvement in capabilities. Build and deliver the services in the strategy. • Ensure incident identification, assessment, quantification, reporting, communication, mitigation and monitoring. • Revise and develop processes and automation to strengthen the current security operations framework, drive efficiencies and reduce time to respond. • Perform threat management, threat modelling, identify threat vectors and develop use cases for security monitoring. • Deliver improvements to the internal incident reporting process. • Responsible for team & vendor management, overall use of resources and initiation of corrective action where required. • Responsible for managing the completeness and cost of data ingestion into security tooling. • Creation of reports, dashboards and metrics for operational security and their presentation to senior management. • Co-ordination with stakeholders, build and maintain positive working relationships with them. • Develop crisis simulation exercises to meet regulatory requirements and to enhance the response capability. • Build relationships with other relevant organisations and industry bodies to bring in best practice. Qualifications/Experience/Skills: • The successful candidate will demonstrate competency in cyber security by having either the relevant work experience, completed a degree or obtained industry relevant certifications (e.g., CISSP, CISM, CISA, CRISC) • Significant experience in operational security, especially managing a Computer Incident Response Team (CIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Centre (CSIRC) or a Security Operations Centre (SOC) • Experience in industry standards and frameworks, such as ISO 27001, PCI DSS and NIST CSF • Relevant experience of working an operational security capacity • Experience in security device management and SIEM • Proven experience of Incident Management and Response • In depth knowledge of security concepts such as TTPs, threat vectors, risk management, incident management etc. • Experience in threat management • Proficient in preparation of reports, dashboards, presentations and documentation • Excellent communication and leadership skills • Experience in getting the best from vendors • Ability to handle high pressure situations with key stakeholders • Good Analytical skills, Problem solving and Interpersonal skills • Ability to react quickly, decisively, calmly and deliberately in high-stress, high-impact situations • Motivated, self-starter who can create a pragmatic plan to deliver from a blank page • Data driven with an innate curiosity and drive for transparency through rigorous measurement • Sense of urgency to resolve security incidents and risks • A team focused mentality with excellent relationship management skills • Fast learner who can assimilate information quickly • Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one • An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business • An understanding of organizational mission, values, and goals and consistent application of this knowledge 21 Church Road, Poole, BH14 8UF, United Kingdom
CISO - Chief Information Security Officer Key words - PCI DSS, SOC2, NIST, ISO, CISSP This is a brand new and greenfield role for a CISO - Chief Information Security Officer to join a global multi-billion-pound turnover business. The role of CISO - Chief Information Security Officer involves overseeing security measures across the business. You'll handle everything related to security within your designated area, documenting and raising any potential risks, you'll work on enforcing security measures and boosting their overall security stance. You'll play a key role in helping senior management set up security protocols, ensure everyone follows them, and adopt the best security practices and processes. You'll also weigh up the costs and benefits of different security solutions to meet both current and future needs. You'll manage the lifecycle of vulnerabilities and keep all security policies, standards, and procedures up to date to make sure they meet all legal and contractual requirements. And, as part of the gig, you'll annually acknowledge your security responsibilities and commit to keeping sensitive information safe. Supervise and offer direction regarding the strategic course and security measures of the company's system and networking infrastructure. We are looking for a person with managerial experience, as you'll be responsible for a small team and their work load, and ideally have exposure to: PCI DSS, SOC2, NIST and ISO 27001. CISSP would also be preferred. The role is hybrid and the candidate can be based pretty much anywhere in the UK as they have a number of offices from Scotland down to London. For further more detailed information please press apply now or drop me a message CISO - Chief Information Security Officer - PCI DSS, SOC2, NIST, ISO, CISSP Circle Recruitment is acting as an Employment Agency in relation to this vacancy. Earn yourself a referral bonus if you refer somebody else who fills the role! We also offer an iPad if you refer a new client to us and we recruit for them. Follow us on Facebook - Circle Recruitment , Twitter and LinkedIn - Circle Recruitment.
Apr 13, 2024
Full time
CISO - Chief Information Security Officer Key words - PCI DSS, SOC2, NIST, ISO, CISSP This is a brand new and greenfield role for a CISO - Chief Information Security Officer to join a global multi-billion-pound turnover business. The role of CISO - Chief Information Security Officer involves overseeing security measures across the business. You'll handle everything related to security within your designated area, documenting and raising any potential risks, you'll work on enforcing security measures and boosting their overall security stance. You'll play a key role in helping senior management set up security protocols, ensure everyone follows them, and adopt the best security practices and processes. You'll also weigh up the costs and benefits of different security solutions to meet both current and future needs. You'll manage the lifecycle of vulnerabilities and keep all security policies, standards, and procedures up to date to make sure they meet all legal and contractual requirements. And, as part of the gig, you'll annually acknowledge your security responsibilities and commit to keeping sensitive information safe. Supervise and offer direction regarding the strategic course and security measures of the company's system and networking infrastructure. We are looking for a person with managerial experience, as you'll be responsible for a small team and their work load, and ideally have exposure to: PCI DSS, SOC2, NIST and ISO 27001. CISSP would also be preferred. The role is hybrid and the candidate can be based pretty much anywhere in the UK as they have a number of offices from Scotland down to London. For further more detailed information please press apply now or drop me a message CISO - Chief Information Security Officer - PCI DSS, SOC2, NIST, ISO, CISSP Circle Recruitment is acting as an Employment Agency in relation to this vacancy. Earn yourself a referral bonus if you refer somebody else who fills the role! We also offer an iPad if you refer a new client to us and we recruit for them. Follow us on Facebook - Circle Recruitment , Twitter and LinkedIn - Circle Recruitment.
CISO - Chief Information Security Officer Key words - PCI DSS, SOC2, NIST, ISO, CISSP This is a brand new and greenfield role for a CISO - Chief Information Security Officer to join a global multi-billion-pound turnover business. The role of CISO - Chief Information Security Officer involves overseeing security measures across the business. You'll handle everything related to security within your designated area, documenting and raising any potential risks, you'll work on enforcing security measures and boosting their overall security stance. You'll play a key role in helping senior management set up security protocols, ensure everyone follows them, and adopt the best security practices and processes. You'll also weigh up the costs and benefits of different security solutions to meet both current and future needs. You'll manage the lifecycle of vulnerabilities and keep all security policies, standards, and procedures up to date to make sure they meet all legal and contractual requirements. And, as part of the gig, you'll annually acknowledge your security responsibilities and commit to keeping sensitive information safe. Supervise and offer direction regarding the strategic course and security measures of the company's system and networking infrastructure. We are looking for a person with managerial experience, as you'll be responsible for a small team and their work load, and ideally have exposure to: PCI DSS, SOC2, NIST and ISO 27001. CISSP would also be preferred. The role is hybrid and the candidate can be based pretty much anywhere in the UK as they have a number of offices from Scotland down to London. For further more detailed information please press apply now or drop me a message CISO - Chief Information Security Officer - PCI DSS, SOC2, NIST, ISO, CISSP Circle Recruitment is acting as an Employment Agency in relation to this vacancy. Earn yourself a referral bonus if you refer somebody else who fills the role! We also offer an iPad if you refer a new client to us and we recruit for them. Follow us on Facebook - Circle Recruitment , Twitter and LinkedIn - Circle Recruitment.
Apr 13, 2024
Full time
CISO - Chief Information Security Officer Key words - PCI DSS, SOC2, NIST, ISO, CISSP This is a brand new and greenfield role for a CISO - Chief Information Security Officer to join a global multi-billion-pound turnover business. The role of CISO - Chief Information Security Officer involves overseeing security measures across the business. You'll handle everything related to security within your designated area, documenting and raising any potential risks, you'll work on enforcing security measures and boosting their overall security stance. You'll play a key role in helping senior management set up security protocols, ensure everyone follows them, and adopt the best security practices and processes. You'll also weigh up the costs and benefits of different security solutions to meet both current and future needs. You'll manage the lifecycle of vulnerabilities and keep all security policies, standards, and procedures up to date to make sure they meet all legal and contractual requirements. And, as part of the gig, you'll annually acknowledge your security responsibilities and commit to keeping sensitive information safe. Supervise and offer direction regarding the strategic course and security measures of the company's system and networking infrastructure. We are looking for a person with managerial experience, as you'll be responsible for a small team and their work load, and ideally have exposure to: PCI DSS, SOC2, NIST and ISO 27001. CISSP would also be preferred. The role is hybrid and the candidate can be based pretty much anywhere in the UK as they have a number of offices from Scotland down to London. For further more detailed information please press apply now or drop me a message CISO - Chief Information Security Officer - PCI DSS, SOC2, NIST, ISO, CISSP Circle Recruitment is acting as an Employment Agency in relation to this vacancy. Earn yourself a referral bonus if you refer somebody else who fills the role! We also offer an iPad if you refer a new client to us and we recruit for them. Follow us on Facebook - Circle Recruitment , Twitter and LinkedIn - Circle Recruitment.