About us Hello, we are Red Engine, the team behind the award-winning global brands Flight Club and Electric Shuffle. We're obsessed with disrupting the hospitality industry by creating and delivering the best possible experience - across all venues, products and brands. Our central team covers the full spectrum of skills needed to bring each concept to life – from design to marketing, sales to interior design, people and training, to finance, gaming and HR and everything in between. We’re not just a team of people, we are dreamers, artists, rocket scientists, content curators, forward thinkers and the industry’s finest.
With a total of 15 incredible venues throughout the UK, we have ambitious plans, never standing still, we are passionate about developing new and exciting products, which means we’re always growing and looking for passionate people to join the family.
The Role
As an IT Manager, you will be working in the Red Engine Technology team, managing the supply and support of infrastructure services and IT support to our UK and International Flight Club and Electric Shuffle venues and Head offices.
Our technology is pivotal to the success of the business. The role requires a positive, dedicated individual who will be a proud ambassador of the Red Engine, Flight Club and Electric Shuffle brands.
Reporting to the Head of IT, and working alongside the Technical Support Manager, Integration Manager, and our Technology partners, this is an exciting opportunity in a fast paced rapidly growing business.
An important part of our work is carried out in venue in a live social environment. This requires effective communication and social skills to manage and communicate with both technical and non-technical staff.
Key Responsibilities
Ensure the provision of day to day IT support to both Head Office and our Venue teams
Provide technical IT support for projects across the business
Prioritise, manage and delegate IT support desk tickets
Maintain the relationship with our IT and technology suppliers
Manage the procurement, configuration and installation of Infrastructure and IT equipment for new venues and office locations
Own the new starter and leaver process, managing hardware and software supply and provisioning
Work with our IT partners to ensure IT Security and disaster recovery best practices are implemented and maintained, minimising the risk to the business of IT failure or compromise
Install, maintain and troubleshoot software systems required to manage and monitor our environments, alongside our IT partners.
Skills and Qualifications
Essential
At least 3 years hands-on experience implementing, administering and supporting Windows Server 2016 - 2022 environments/ Active Directory / Microsoft 365 suite / Azure / SharePoint / Microsoft Teams in a 3rd line capacity.
At least 5 years experience supporting Windows and Mac end user devices, both deskside and remotely.
At least 3 years configuring switching, Firewalls and WiFi with a strong understanding of Internet Connectivity, VLANS, routing, DNS, DHCP and VPNs
Experience implenting and maintaining Cyber Security best practices, including MFA, Endpoint Protection and email security
Preferred
JIRA Administration and Ticket management
Experience of Macrium Site manager, and supporting Adobe Creative Suite, Sketchup, Vectorworks and other design packages.
Experience supporting Hospitality specific IT platforms such as Zonal, Fourth and Flow.
Values
To succeed, the role holder will demonstrate our values in everything they do:
Innovative: Our edge is our innovation – we stay one step ahead because we are always looking to invent and improve. We are bold, creative, pioneering and fearless. Got an idea? Share it!
Passionate: We’re not like other workplaces – there’s no need to hold back here. We’re a full throttle, high energy, total commitment bunch, and we throw everything we’ve got into giving our customers the best time possible.
Warm: We’re all about people. A fundamental part of our customer's having fun is us being welcoming, hospitable and attentive. We hold the key to their experience!
Together: We are a family. We work with each other, and we support each other; we win together, and we lose together. That means honesty, commitment and responsibility, from all of us.
Jan 23, 2024
Full time
About us Hello, we are Red Engine, the team behind the award-winning global brands Flight Club and Electric Shuffle. We're obsessed with disrupting the hospitality industry by creating and delivering the best possible experience - across all venues, products and brands. Our central team covers the full spectrum of skills needed to bring each concept to life – from design to marketing, sales to interior design, people and training, to finance, gaming and HR and everything in between. We’re not just a team of people, we are dreamers, artists, rocket scientists, content curators, forward thinkers and the industry’s finest.
With a total of 15 incredible venues throughout the UK, we have ambitious plans, never standing still, we are passionate about developing new and exciting products, which means we’re always growing and looking for passionate people to join the family.
The Role
As an IT Manager, you will be working in the Red Engine Technology team, managing the supply and support of infrastructure services and IT support to our UK and International Flight Club and Electric Shuffle venues and Head offices.
Our technology is pivotal to the success of the business. The role requires a positive, dedicated individual who will be a proud ambassador of the Red Engine, Flight Club and Electric Shuffle brands.
Reporting to the Head of IT, and working alongside the Technical Support Manager, Integration Manager, and our Technology partners, this is an exciting opportunity in a fast paced rapidly growing business.
An important part of our work is carried out in venue in a live social environment. This requires effective communication and social skills to manage and communicate with both technical and non-technical staff.
Key Responsibilities
Ensure the provision of day to day IT support to both Head Office and our Venue teams
Provide technical IT support for projects across the business
Prioritise, manage and delegate IT support desk tickets
Maintain the relationship with our IT and technology suppliers
Manage the procurement, configuration and installation of Infrastructure and IT equipment for new venues and office locations
Own the new starter and leaver process, managing hardware and software supply and provisioning
Work with our IT partners to ensure IT Security and disaster recovery best practices are implemented and maintained, minimising the risk to the business of IT failure or compromise
Install, maintain and troubleshoot software systems required to manage and monitor our environments, alongside our IT partners.
Skills and Qualifications
Essential
At least 3 years hands-on experience implementing, administering and supporting Windows Server 2016 - 2022 environments/ Active Directory / Microsoft 365 suite / Azure / SharePoint / Microsoft Teams in a 3rd line capacity.
At least 5 years experience supporting Windows and Mac end user devices, both deskside and remotely.
At least 3 years configuring switching, Firewalls and WiFi with a strong understanding of Internet Connectivity, VLANS, routing, DNS, DHCP and VPNs
Experience implenting and maintaining Cyber Security best practices, including MFA, Endpoint Protection and email security
Preferred
JIRA Administration and Ticket management
Experience of Macrium Site manager, and supporting Adobe Creative Suite, Sketchup, Vectorworks and other design packages.
Experience supporting Hospitality specific IT platforms such as Zonal, Fourth and Flow.
Values
To succeed, the role holder will demonstrate our values in everything they do:
Innovative: Our edge is our innovation – we stay one step ahead because we are always looking to invent and improve. We are bold, creative, pioneering and fearless. Got an idea? Share it!
Passionate: We’re not like other workplaces – there’s no need to hold back here. We’re a full throttle, high energy, total commitment bunch, and we throw everything we’ve got into giving our customers the best time possible.
Warm: We’re all about people. A fundamental part of our customer's having fun is us being welcoming, hospitable and attentive. We hold the key to their experience!
Together: We are a family. We work with each other, and we support each other; we win together, and we lose together. That means honesty, commitment and responsibility, from all of us.
Role Summary
Be at the forefront of ICT improvements and transformation within the Fire & Rescue Service (AF&RS). We are seeking a visionary leader to shape our future ICT and digital strategy, make further improvements to our infrastructure and ensure our ICT systems are resilient, reliable, and accessible to all staff 24/7.
This is a new role leading the development of an integrated ICT strategy and technology roadmap and overseeing the delivery of technology initiatives. This business-critical position will require you to work effectively with key stakeholders to create and implement an ICT strategy which aligns with our organisational goals and ambitions, ensures the integration and enhancement of our systems and improved user experience.
This role will require an ambitious, forward-thinking individual who has the technical knowledge, drive and passion to make a big difference. You will have a unique opportunity to make the role your own and bring your experience, ideas, influencing skills and technical expertise to our organisation. With challenging budgets, a creative and innovative approach is key, as is the exploration of potential funding sources.
Some of the things you’ll be doing
Strategic Leadership : Drive continuous improvement, culture change, and effective performance management. Act as the advocate for AF&RS’s digital vision, engaging leadership and representing AF&RS in local and national digital forums.
Expert Consultation : Offer expert guidance on ICT matters to senior stakeholders and the Fire Authority, enabling discussions on modern ICT and digital technology.
System Management : Ensure the efficiency, reliability, security, and cost-effectiveness of ICT systems and technology. Oversee external IT helpdesk providers and business continuity plans.
Infrastructure Enhancement : Drive continual improvements to the ICT infrastructure to ensure a solid foundation and enhanced user experience. Collaborate with stakeholders to define and implement improvements, presenting robust business cases for investment.
Digital Horizon-Scanning : Stay updated on digital developments and evaluate new technologies potential benefits, risks, and affordability aligned with the ICT strategy.
Strategy Development : Lead the creation and implementation of AF&RS’s cohesive ICT and Digital Strategy, fostering innovative and integrated improvements.
Project Oversight : Oversee the successful delivery of all ICT, digital, and systems projects. Establish governance structures, aligning with the ICT strategy and legal compliance.
Change Management : Implement efficient change processes, improving service quality and business continuity while minimising disruption.
Risk Management: Proactively assess and monitor ICT-related risks across AF&RS, implementing effective controls and mitigations.
Resource Optimisation : Develop an appropriate ICT organisational structure, optimising internal and external resources to ensure delivery and an integrated approach.
Team Leadership : Provide training and mentoring to internal ICT staff, fostering a responsive and agile cross-functional team.
Stakeholder Engagement: Liaise with stakeholders across AF&RS, building strong internal networks to maximise technology benefits.
Policy Implementation : Develop and implement up-to-date ICT policies ensuring robust controls across AF&RS. Liaise with internal data protection teams, ensuring ICT developments are compliant with relevant information legislation. Act as the Deputy Senior Risk Owner ensuring high-quality governance standards and compliance.
Training Alignment : Identify and evaluate ICT training aligned with the ICT strategy and budget requirements.
Budget Management : Manage ICT budgets aligned with the ICT strategy, forecasting and reviewing budgetary arrangements and exploring potential funding opportunities.
What we’ll need from you:
Essential:
Proven experience in senior ICT leadership role, driving digital transformation and strategy (ideally within the emergency services or public sector – but not essential).
Demonstrable experience in design, sourcing, transition, delivery and implementation of new technology and data capabilities.
Excellent up-to-date technical knowledge of ICT and the technology landscape.
Extensive knowledge of digital, data and technology regulations and best practice methodologies (e.g. ITIL, ISO) and performance benchmarking. You will also maintain up-to-date technical knowledge of ICT and the technology landscape.
Significant experience of leading and managing high performing teams (via direct or matrix management).
Proven experience of strategic service planning, business processes, developing, leading, and implementing IT/ICT strategies and change programs.
Experience of successfully managing high quality business-as-usual (BAU) ICT, while also inspiring, leading, and driving innovative solutions.
Proven experience of proactively managing business continuity and cyber security arrangements.
Significant experience of dealing with vendors and third parties including experience of procuring, negotiating, and robustly managing business-critical service contractors.
Degree level education, or equivalent, in business, computer science or a related field of study, or proven relevant business experience.
Professional ICT qualifications (such as ITIL or accredited status such as Chartered IT Professional CITP), or equivalent through a combination of proven relevant training, experience and evidenced continuing professional development.
Highly effective communication and influencing skills across the full breadth of written, verbal, presentation, and digital media. You will be able to engage, advise and explain technical matters in a non-technical way.
Adaptable, inclusive, and values-based leadership and people management skills.
Relationship building and collaboration skills with the ability to influence strategic thinking and approaches to complex service issues.
Strong analytical, research, numerical and decision-making skills, to deal with complex service delivery.
Ability to manage and prioritise high workloads, with pressing and conflicting deadlines.
Desirable:
Comprehensive budget-creation and budget-management experience including identifying and evaluating opportunities, negotiation, and delivering efficiencies.
Experience of working in a climate of transformation and/or continuous improvement and supporting others in uncertain times.
Experience of working for an emergency service or local authority.
Experience of Information and Data Governance and/or of being a Senior Risk Information Officer (SIRO) or Deputy SIRO.
Experience of portfolio and project management methodologies and tailoring these for significant ICT projects and organisational context.
Proven ICT risk management experience.
High level of political awareness and acuity to interact with senior stakeholders and elected Members.
Foundation or Practitioner level qualification in programme or project management.
What you can expect in return
27 days annual holiday (plus public holidays) rising to 31 days after 5 years, and 32 after 10 years of service
Local Government Pension - Defined Benefit Scheme
Flexible and hybrid working
Electric Vehicle Salary Sacrifice Scheme
Cycle to Work scheme
Welfare and Wellbeing services
Staff Engagement Groups
Access to a Medical Intervention Scheme which can support staff to access private medical assessments and treatments
Access to Blue Light card with offers online and high street discounts
Use of the multi-gym, sports hall, restaurant, free parking, and beautiful open surroundings at our Headquarters in Portishead
Please note - as this post is based at our Headquarters which we share with Avon & Somerset Police, the successful applicant will be required to undergo a security clearance check & DBS check.
Further Information
If you would like to have an informal conversation with the hiring manager for this role please contact recruitment@avonfire.gov.uk to request this.
How to apply: The full job description can be found on our careers pages: Head of ICT | Yes You Can! The Avon Fire & Rescue Service Job . Once you have read the job description please submit a tailored CV demonstrating how your skills and experience match the requirements of the role.
Late applications will not be accepted. Please quote job reference number 1023 [JD number] on any communications. Thank you.
Avon Fire & Rescue Service is committed to securing equality of opportunity. W e welcome applications from all members of our community who are currently under-represented at Avon Fire & Rescue Service, particularly women, Disabled people and members of ethnic minority communities.
Dec 20, 2023
Full time
Role Summary
Be at the forefront of ICT improvements and transformation within the Fire & Rescue Service (AF&RS). We are seeking a visionary leader to shape our future ICT and digital strategy, make further improvements to our infrastructure and ensure our ICT systems are resilient, reliable, and accessible to all staff 24/7.
This is a new role leading the development of an integrated ICT strategy and technology roadmap and overseeing the delivery of technology initiatives. This business-critical position will require you to work effectively with key stakeholders to create and implement an ICT strategy which aligns with our organisational goals and ambitions, ensures the integration and enhancement of our systems and improved user experience.
This role will require an ambitious, forward-thinking individual who has the technical knowledge, drive and passion to make a big difference. You will have a unique opportunity to make the role your own and bring your experience, ideas, influencing skills and technical expertise to our organisation. With challenging budgets, a creative and innovative approach is key, as is the exploration of potential funding sources.
Some of the things you’ll be doing
Strategic Leadership : Drive continuous improvement, culture change, and effective performance management. Act as the advocate for AF&RS’s digital vision, engaging leadership and representing AF&RS in local and national digital forums.
Expert Consultation : Offer expert guidance on ICT matters to senior stakeholders and the Fire Authority, enabling discussions on modern ICT and digital technology.
System Management : Ensure the efficiency, reliability, security, and cost-effectiveness of ICT systems and technology. Oversee external IT helpdesk providers and business continuity plans.
Infrastructure Enhancement : Drive continual improvements to the ICT infrastructure to ensure a solid foundation and enhanced user experience. Collaborate with stakeholders to define and implement improvements, presenting robust business cases for investment.
Digital Horizon-Scanning : Stay updated on digital developments and evaluate new technologies potential benefits, risks, and affordability aligned with the ICT strategy.
Strategy Development : Lead the creation and implementation of AF&RS’s cohesive ICT and Digital Strategy, fostering innovative and integrated improvements.
Project Oversight : Oversee the successful delivery of all ICT, digital, and systems projects. Establish governance structures, aligning with the ICT strategy and legal compliance.
Change Management : Implement efficient change processes, improving service quality and business continuity while minimising disruption.
Risk Management: Proactively assess and monitor ICT-related risks across AF&RS, implementing effective controls and mitigations.
Resource Optimisation : Develop an appropriate ICT organisational structure, optimising internal and external resources to ensure delivery and an integrated approach.
Team Leadership : Provide training and mentoring to internal ICT staff, fostering a responsive and agile cross-functional team.
Stakeholder Engagement: Liaise with stakeholders across AF&RS, building strong internal networks to maximise technology benefits.
Policy Implementation : Develop and implement up-to-date ICT policies ensuring robust controls across AF&RS. Liaise with internal data protection teams, ensuring ICT developments are compliant with relevant information legislation. Act as the Deputy Senior Risk Owner ensuring high-quality governance standards and compliance.
Training Alignment : Identify and evaluate ICT training aligned with the ICT strategy and budget requirements.
Budget Management : Manage ICT budgets aligned with the ICT strategy, forecasting and reviewing budgetary arrangements and exploring potential funding opportunities.
What we’ll need from you:
Essential:
Proven experience in senior ICT leadership role, driving digital transformation and strategy (ideally within the emergency services or public sector – but not essential).
Demonstrable experience in design, sourcing, transition, delivery and implementation of new technology and data capabilities.
Excellent up-to-date technical knowledge of ICT and the technology landscape.
Extensive knowledge of digital, data and technology regulations and best practice methodologies (e.g. ITIL, ISO) and performance benchmarking. You will also maintain up-to-date technical knowledge of ICT and the technology landscape.
Significant experience of leading and managing high performing teams (via direct or matrix management).
Proven experience of strategic service planning, business processes, developing, leading, and implementing IT/ICT strategies and change programs.
Experience of successfully managing high quality business-as-usual (BAU) ICT, while also inspiring, leading, and driving innovative solutions.
Proven experience of proactively managing business continuity and cyber security arrangements.
Significant experience of dealing with vendors and third parties including experience of procuring, negotiating, and robustly managing business-critical service contractors.
Degree level education, or equivalent, in business, computer science or a related field of study, or proven relevant business experience.
Professional ICT qualifications (such as ITIL or accredited status such as Chartered IT Professional CITP), or equivalent through a combination of proven relevant training, experience and evidenced continuing professional development.
Highly effective communication and influencing skills across the full breadth of written, verbal, presentation, and digital media. You will be able to engage, advise and explain technical matters in a non-technical way.
Adaptable, inclusive, and values-based leadership and people management skills.
Relationship building and collaboration skills with the ability to influence strategic thinking and approaches to complex service issues.
Strong analytical, research, numerical and decision-making skills, to deal with complex service delivery.
Ability to manage and prioritise high workloads, with pressing and conflicting deadlines.
Desirable:
Comprehensive budget-creation and budget-management experience including identifying and evaluating opportunities, negotiation, and delivering efficiencies.
Experience of working in a climate of transformation and/or continuous improvement and supporting others in uncertain times.
Experience of working for an emergency service or local authority.
Experience of Information and Data Governance and/or of being a Senior Risk Information Officer (SIRO) or Deputy SIRO.
Experience of portfolio and project management methodologies and tailoring these for significant ICT projects and organisational context.
Proven ICT risk management experience.
High level of political awareness and acuity to interact with senior stakeholders and elected Members.
Foundation or Practitioner level qualification in programme or project management.
What you can expect in return
27 days annual holiday (plus public holidays) rising to 31 days after 5 years, and 32 after 10 years of service
Local Government Pension - Defined Benefit Scheme
Flexible and hybrid working
Electric Vehicle Salary Sacrifice Scheme
Cycle to Work scheme
Welfare and Wellbeing services
Staff Engagement Groups
Access to a Medical Intervention Scheme which can support staff to access private medical assessments and treatments
Access to Blue Light card with offers online and high street discounts
Use of the multi-gym, sports hall, restaurant, free parking, and beautiful open surroundings at our Headquarters in Portishead
Please note - as this post is based at our Headquarters which we share with Avon & Somerset Police, the successful applicant will be required to undergo a security clearance check & DBS check.
Further Information
If you would like to have an informal conversation with the hiring manager for this role please contact recruitment@avonfire.gov.uk to request this.
How to apply: The full job description can be found on our careers pages: Head of ICT | Yes You Can! The Avon Fire & Rescue Service Job . Once you have read the job description please submit a tailored CV demonstrating how your skills and experience match the requirements of the role.
Late applications will not be accepted. Please quote job reference number 1023 [JD number] on any communications. Thank you.
Avon Fire & Rescue Service is committed to securing equality of opportunity. W e welcome applications from all members of our community who are currently under-represented at Avon Fire & Rescue Service, particularly women, Disabled people and members of ethnic minority communities.
ABOUT THE ROLE
Are you passionate about protecting Cyber Security?
Do you want to make a real difference in the fight against cybercrime in local government?
Are you passionate about making a difference in your community?
If so, we want you to join our team!
We seek a highly motivated and experienced Cyber Security & Networks Manager to join our team. Stevenage Borough Council are a leading local authority in Cyber Security in the UK and pilot cyber security standards for The Department for Levelling Up, Housing and Communities (DLUHC). This is an exciting opportunity to be at the forefront of Cyber Security in the public sector. The ideal candidate will have a strong understanding of cyber security principles and associated technology risk management. They will also have experience in managing and leading a team of IT professionals.
Accountable for Cyber security, you will identify and ensure the security of the council’s IT Applications and Digital Solutions. You will lead in evaluating new and existing projects, software and hardware products, and vendors, including examining vendor contracts and terms of service. You will support teams across the council to develop their understanding of security cyber risks. You will manage a small team of two Senior Network and Security Engineers
You will take the lead on cyber security and network for the Shared IT service, which supports over 1,000 users across Stevenage Borough Council and East Herts District Council and will put in place controls over security systems, such as firewalls, data protection controls, patching, encryption, vulnerability scanning and penetration testing.
You will be responsible for achieving compliance with Cyber Essentials Plus, Cyber Assessment Framework (CAF) and Public Sector Network (PSN) and related government frameworks, including those of the National Cyber Security Centre, the Information Commissioners Office (ICO)
ABOUT YOU
The successful candidate will have
Ability to work in a high-pressure environment and make sound decisions in emergency situations while empathising with customers and responding sympathetically to
Extensive knowledge of all IT security aspects, including audit response, oversight, and scrutiny, ICO responses, Information Governance, Information Assurance, IT Asset Management policies, Quality Assurance, Test Strategies, PSN and PCI and other relevant compliance frameworks, Disaster recovery and Business continuity
Extensive experience working as part of a multidiscipline ICT team in a complex organisation, ideally a local authority.
OUR BENEFITS
Pension Scheme: We offer a career average pension scheme, providing generous benefits upon retirement, as well as a lump sum and pensions for dependants
Flexible working: available upon request, subject to operational requirements
Part-time and job share opportunities - all our full time vacancies are open to job share unless otherwise stated
A variety of different types of paid leave covering emergency and planned leave, maternity, paternity, adoption and parental leave
25 days holiday rising to 31 days (depending on Local Government service)
An extensive range of learning and development opportunities
Employee Assistance Programme – 24/7 Confidential advice and support on personal, work, family, and relationship issues
Discounted health and fitness membership
Trade Unions: For a small fee, all employees have the opportunity to join a Trade Union
HOW TO APPLY
All applications must be made on online - please visit https://bit.ly/45Yo0Ke
For an informal discussion about this role please contact
Name Matt Canterford
Job Title Assistant Director and Chief Technology Officer
Phone Number 07706 349657
Email matt.canterford@stevenage.gov.uk
Closing date for receipt of applications : 26 June 2023
Interviews will be held the week commencing: 3 July 2023
Please note that if we receive a large volume of applications for this role, we reserve the right to close this vacancy ahead of the published closing date
Stevenage Borough Council (SBC) is committed to safeguarding and promoting the welfare of children, young people and vulnerable adults and expects all staff, volunteers and recruitment candidates to share this commitment. SBC shall take all reasonable steps to employ staff who are safe to work with children, young people and vulnerable adults. For posts identified with regular contact with these groups applicants will be required to undertake a Value Based Interview. The council supports the legislative requirements for employing and maintaining safer staff and the guidance specified by Hertfordshire Safeguarding Adults Board
Stevenage Borough Council is committed to Equal Opportunities for All. For further information please click https://www.stevenage.gov.uk/about-the-council/jobs-and-careers/equal-opportunities
Jun 05, 2023
Full time
ABOUT THE ROLE
Are you passionate about protecting Cyber Security?
Do you want to make a real difference in the fight against cybercrime in local government?
Are you passionate about making a difference in your community?
If so, we want you to join our team!
We seek a highly motivated and experienced Cyber Security & Networks Manager to join our team. Stevenage Borough Council are a leading local authority in Cyber Security in the UK and pilot cyber security standards for The Department for Levelling Up, Housing and Communities (DLUHC). This is an exciting opportunity to be at the forefront of Cyber Security in the public sector. The ideal candidate will have a strong understanding of cyber security principles and associated technology risk management. They will also have experience in managing and leading a team of IT professionals.
Accountable for Cyber security, you will identify and ensure the security of the council’s IT Applications and Digital Solutions. You will lead in evaluating new and existing projects, software and hardware products, and vendors, including examining vendor contracts and terms of service. You will support teams across the council to develop their understanding of security cyber risks. You will manage a small team of two Senior Network and Security Engineers
You will take the lead on cyber security and network for the Shared IT service, which supports over 1,000 users across Stevenage Borough Council and East Herts District Council and will put in place controls over security systems, such as firewalls, data protection controls, patching, encryption, vulnerability scanning and penetration testing.
You will be responsible for achieving compliance with Cyber Essentials Plus, Cyber Assessment Framework (CAF) and Public Sector Network (PSN) and related government frameworks, including those of the National Cyber Security Centre, the Information Commissioners Office (ICO)
ABOUT YOU
The successful candidate will have
Ability to work in a high-pressure environment and make sound decisions in emergency situations while empathising with customers and responding sympathetically to
Extensive knowledge of all IT security aspects, including audit response, oversight, and scrutiny, ICO responses, Information Governance, Information Assurance, IT Asset Management policies, Quality Assurance, Test Strategies, PSN and PCI and other relevant compliance frameworks, Disaster recovery and Business continuity
Extensive experience working as part of a multidiscipline ICT team in a complex organisation, ideally a local authority.
OUR BENEFITS
Pension Scheme: We offer a career average pension scheme, providing generous benefits upon retirement, as well as a lump sum and pensions for dependants
Flexible working: available upon request, subject to operational requirements
Part-time and job share opportunities - all our full time vacancies are open to job share unless otherwise stated
A variety of different types of paid leave covering emergency and planned leave, maternity, paternity, adoption and parental leave
25 days holiday rising to 31 days (depending on Local Government service)
An extensive range of learning and development opportunities
Employee Assistance Programme – 24/7 Confidential advice and support on personal, work, family, and relationship issues
Discounted health and fitness membership
Trade Unions: For a small fee, all employees have the opportunity to join a Trade Union
HOW TO APPLY
All applications must be made on online - please visit https://bit.ly/45Yo0Ke
For an informal discussion about this role please contact
Name Matt Canterford
Job Title Assistant Director and Chief Technology Officer
Phone Number 07706 349657
Email matt.canterford@stevenage.gov.uk
Closing date for receipt of applications : 26 June 2023
Interviews will be held the week commencing: 3 July 2023
Please note that if we receive a large volume of applications for this role, we reserve the right to close this vacancy ahead of the published closing date
Stevenage Borough Council (SBC) is committed to safeguarding and promoting the welfare of children, young people and vulnerable adults and expects all staff, volunteers and recruitment candidates to share this commitment. SBC shall take all reasonable steps to employ staff who are safe to work with children, young people and vulnerable adults. For posts identified with regular contact with these groups applicants will be required to undertake a Value Based Interview. The council supports the legislative requirements for employing and maintaining safer staff and the guidance specified by Hertfordshire Safeguarding Adults Board
Stevenage Borough Council is committed to Equal Opportunities for All. For further information please click https://www.stevenage.gov.uk/about-the-council/jobs-and-careers/equal-opportunities
AEJ Consulting Ltd
Letchworth Garden City, Hertfordshire
My client is a growing technology organisation which focuses on providing innovative software solutions to streamline complexities, automate repetitive tasks, and enhances productivity. They are seeking an experience IT manager who specialize in Microsoft and third party systems to oversee the management of their IT systems. You will also be leading a team of IT professionals, managing vendor relationships, as well as ensuring the efficient and secure operation of their technology infrastructure. Responsibilities: Microsoft Systems Administration: Overseeing the administration of Microsoft technologies, such as Windows Server, Active Directory, Exchange Server, SQL Server and Sharepoint, ensuring the stability, security and performance of these systems through proactive monitoring, maintenance and troubleshooting. Third Party System Administration: Managing the administration of third-party applications and systems, which are critical to their business operations (e.g. ERP and CRM systems, collaboration tools, cybersecurity solutions etc.). You will also be collaborating with vendors and internal stakeholders to ensure system configuration is fully optimized as much as possible, as well as resolving issues and implementing upgrades. Vendor Management: Developing and maintaining strong relationships with technology vendors and service providers. You will also be negotiating contracts, SLA's, as well as pricing, to ensure cost-effective solutions that meet their needs, and monitoring vendor performance, resolving disputes, as well as driving continuous improvement throughout service delivery. Team leadership: Leading and mentoring a team of IT professionals, including system administrators, network engineers and support staff. You will also be providing guidance, training and professional development opportunities to enhance team capabilities, as well as creating a culture of collaboration and accountability. Strategic planning: Working closely with senior management in developing IT strategies, roadmaps and budgets that are aligned to business objectives, alongside identifying opportunities to leverage technology for competitive advantage, improving operational efficiency, as well as mitigating cybersecurity risks. Security and Compliance: Implementing and enforcing IT security policies, procedures, and controls to protect data and systems from cyber threats and regulatory compliance requirements. Also staying updated on industry best practices and emerging threats to keep enhancing security posture. Project management: Overseeing IT projects from inception to completion, ensuring they are delivered on time, within budget, as well as according to specifications. Also coordinating resources, managing risks, and communicate progress/updates to stakeholders, to thoroughly ensure successful project outcomes. Technical support: Being a point of escalation for complex technical issues, as well as providing hands-on-support whenever needed. Collaborating extensively with the IT support team to ensure timely resolution of user requests and incidents, whilst also maintaining high levels of customer satisfaction. Qualifications and experience At least five years of proven experience in IT management roles, with a primary focus on Microsoft systems administration, third party application support and administration, alongside vendor management. Be very technically proficient in Microsoft technologies, such as Windows Server, Active Directory, Exchange Server, SQL Server, and SharePoint. Have experience managing third party applications, such as ERP and CRM systems, alongside cybersecurity solutions. Demonstrated success in negotiating vendor contracts, managing vendor relationships, as well as optimizing vendor performance. Possessing excellent leadership and team building skills, having the ability to motivate and develop high performing teams. Have a solid understanding of IT security principles, complains requirements, and risk management practices. Have project management experience, including planning, execution and stakeholder communication. Be an excellent communicator, both written and verbal, having the ability to convey technical concepts to non-technical stakeholders as effectively as possible. Possess relevant certifications, such as Azure Administration Associate, Azure Solutions Architect, or ITIL certifications (desirable but not essential). Have a bachelor's degree in information technology (IT), Computer Science, or similar field.
Mar 29, 2024
Full time
My client is a growing technology organisation which focuses on providing innovative software solutions to streamline complexities, automate repetitive tasks, and enhances productivity. They are seeking an experience IT manager who specialize in Microsoft and third party systems to oversee the management of their IT systems. You will also be leading a team of IT professionals, managing vendor relationships, as well as ensuring the efficient and secure operation of their technology infrastructure. Responsibilities: Microsoft Systems Administration: Overseeing the administration of Microsoft technologies, such as Windows Server, Active Directory, Exchange Server, SQL Server and Sharepoint, ensuring the stability, security and performance of these systems through proactive monitoring, maintenance and troubleshooting. Third Party System Administration: Managing the administration of third-party applications and systems, which are critical to their business operations (e.g. ERP and CRM systems, collaboration tools, cybersecurity solutions etc.). You will also be collaborating with vendors and internal stakeholders to ensure system configuration is fully optimized as much as possible, as well as resolving issues and implementing upgrades. Vendor Management: Developing and maintaining strong relationships with technology vendors and service providers. You will also be negotiating contracts, SLA's, as well as pricing, to ensure cost-effective solutions that meet their needs, and monitoring vendor performance, resolving disputes, as well as driving continuous improvement throughout service delivery. Team leadership: Leading and mentoring a team of IT professionals, including system administrators, network engineers and support staff. You will also be providing guidance, training and professional development opportunities to enhance team capabilities, as well as creating a culture of collaboration and accountability. Strategic planning: Working closely with senior management in developing IT strategies, roadmaps and budgets that are aligned to business objectives, alongside identifying opportunities to leverage technology for competitive advantage, improving operational efficiency, as well as mitigating cybersecurity risks. Security and Compliance: Implementing and enforcing IT security policies, procedures, and controls to protect data and systems from cyber threats and regulatory compliance requirements. Also staying updated on industry best practices and emerging threats to keep enhancing security posture. Project management: Overseeing IT projects from inception to completion, ensuring they are delivered on time, within budget, as well as according to specifications. Also coordinating resources, managing risks, and communicate progress/updates to stakeholders, to thoroughly ensure successful project outcomes. Technical support: Being a point of escalation for complex technical issues, as well as providing hands-on-support whenever needed. Collaborating extensively with the IT support team to ensure timely resolution of user requests and incidents, whilst also maintaining high levels of customer satisfaction. Qualifications and experience At least five years of proven experience in IT management roles, with a primary focus on Microsoft systems administration, third party application support and administration, alongside vendor management. Be very technically proficient in Microsoft technologies, such as Windows Server, Active Directory, Exchange Server, SQL Server, and SharePoint. Have experience managing third party applications, such as ERP and CRM systems, alongside cybersecurity solutions. Demonstrated success in negotiating vendor contracts, managing vendor relationships, as well as optimizing vendor performance. Possessing excellent leadership and team building skills, having the ability to motivate and develop high performing teams. Have a solid understanding of IT security principles, complains requirements, and risk management practices. Have project management experience, including planning, execution and stakeholder communication. Be an excellent communicator, both written and verbal, having the ability to convey technical concepts to non-technical stakeholders as effectively as possible. Possess relevant certifications, such as Azure Administration Associate, Azure Solutions Architect, or ITIL certifications (desirable but not essential). Have a bachelor's degree in information technology (IT), Computer Science, or similar field.
About The Role Reporting into the Head of IT Architecture, the Enterprise Security Architect is responsible for providing cyber risk expertise that will shape the future control environment. The key objectives of the role are: • Strengthening the link between business and technology through early engagement in the strategy process; business case development; and delivery lifecycle to ensure that security risks are considered and addressed through the roadmap • Developing a Security Architecture that enables Client to explore and implement security solutions and capabilities that are clearly aligned with business, technology, and threat drivers • Providing an independent source of technical expertise to work with the Cyber Security Team and ensure that controls are effective, proportionate, consistent, and deliverable Working closely with technical and business colleagues you will: • Develop and maintain a security architecture process that enables Client to develop and implement security solutions and capabilities that are clearly aligned with business, technology and threat drivers • Develop security strategy plans and roadmaps based on sound enterprise architecture practices • Develop and maintain security architecture artefacts (e.g., models, templates, standards, and procedures) that can be used to leverage security capabilities in projects and operations • Participate in application and infrastructure projects to provide security-planning advice • Track developments and changes in the digital business and threat environments to ensure that they're adequately addressed in security strategy plans and architecture artefacts • Review security technologies, tools, and services, and make recommendations to the broader security team for their use, based on security, financial, and operational metrics • Validate reference architectures for security best practices and recommend changes to enhance security and reduce risks, where applicable About You • You have experience of communicating technical concepts and the risks posed by cyber threats effectively to a non-technical audience • You will demonstrate the skills; experience; and gravitas to effectively interact with and challenge technical teams • You have a deep understanding of the evolving internal and external cyber risks faced • You are self-motivated and able to work on your own initiative and within a team environment • You will have the desire to collaborate to deliver results, and to resolve conflicts expediently with an independent and objective approach • You'll have a good understanding of the issues involved in project development, the language of project managers and, therefore, the ability to engage with the project managers in the deployment of the architecture in a pragmatic way • You will have an interest in analysing complex problems and identifying appropriate solutions and options to address them As a minimum for this role, you will need to have: • Demonstrable experience in a role of similar responsibility and scale • A graduate level qualification in IT or technical subject • Relevant professional certification to CISSP, CISM, CISA, CRISC, ISO 27001 Lead Implementer / Auditor etc • Proven track record of leadership, preferably with a history of involvement in cyber related transformation projects and the effective development and implementation of new systems and control processes • Experience working in collaboration with third party vendors and external cloud service providers • Understanding of cyber security incident procedures and security incident management frameworks, processes, and associated response measures • Understanding and knowledge of infrastructure; application; and security technologies Client Benefits: • Competitive reward package including an annual discretionary bonus • 15% non-contributory pension (9% non-contributory pension during probation period) • 28 days annual leave with option to purchase and sell days • Free fresh fruit and snacks in the office • 1 day for volunteering • Funded Private Medical Insurance cover • Electric/Hybrid Car Salary Sacrifice Scheme and Cycle to Work Scheme • Life assurance at 4 times your basic salary to give you a peace of mind that your loved ones will receive some financial help • Funded health screening for over 50s • Voluntary benefits: charitable giving, critical illness insurance, dental insurance, health and cancer screenings for you and your partner, discounted gym memberships and season ticket loans • Employee Discount Scheme with an app to save on the go • Free access to healthcare apps such as Peppy, Unmind, Aviva Digital GP and volunteering app on Hand for all employees • Generous family leave policies
Mar 29, 2024
Full time
About The Role Reporting into the Head of IT Architecture, the Enterprise Security Architect is responsible for providing cyber risk expertise that will shape the future control environment. The key objectives of the role are: • Strengthening the link between business and technology through early engagement in the strategy process; business case development; and delivery lifecycle to ensure that security risks are considered and addressed through the roadmap • Developing a Security Architecture that enables Client to explore and implement security solutions and capabilities that are clearly aligned with business, technology, and threat drivers • Providing an independent source of technical expertise to work with the Cyber Security Team and ensure that controls are effective, proportionate, consistent, and deliverable Working closely with technical and business colleagues you will: • Develop and maintain a security architecture process that enables Client to develop and implement security solutions and capabilities that are clearly aligned with business, technology and threat drivers • Develop security strategy plans and roadmaps based on sound enterprise architecture practices • Develop and maintain security architecture artefacts (e.g., models, templates, standards, and procedures) that can be used to leverage security capabilities in projects and operations • Participate in application and infrastructure projects to provide security-planning advice • Track developments and changes in the digital business and threat environments to ensure that they're adequately addressed in security strategy plans and architecture artefacts • Review security technologies, tools, and services, and make recommendations to the broader security team for their use, based on security, financial, and operational metrics • Validate reference architectures for security best practices and recommend changes to enhance security and reduce risks, where applicable About You • You have experience of communicating technical concepts and the risks posed by cyber threats effectively to a non-technical audience • You will demonstrate the skills; experience; and gravitas to effectively interact with and challenge technical teams • You have a deep understanding of the evolving internal and external cyber risks faced • You are self-motivated and able to work on your own initiative and within a team environment • You will have the desire to collaborate to deliver results, and to resolve conflicts expediently with an independent and objective approach • You'll have a good understanding of the issues involved in project development, the language of project managers and, therefore, the ability to engage with the project managers in the deployment of the architecture in a pragmatic way • You will have an interest in analysing complex problems and identifying appropriate solutions and options to address them As a minimum for this role, you will need to have: • Demonstrable experience in a role of similar responsibility and scale • A graduate level qualification in IT or technical subject • Relevant professional certification to CISSP, CISM, CISA, CRISC, ISO 27001 Lead Implementer / Auditor etc • Proven track record of leadership, preferably with a history of involvement in cyber related transformation projects and the effective development and implementation of new systems and control processes • Experience working in collaboration with third party vendors and external cloud service providers • Understanding of cyber security incident procedures and security incident management frameworks, processes, and associated response measures • Understanding and knowledge of infrastructure; application; and security technologies Client Benefits: • Competitive reward package including an annual discretionary bonus • 15% non-contributory pension (9% non-contributory pension during probation period) • 28 days annual leave with option to purchase and sell days • Free fresh fruit and snacks in the office • 1 day for volunteering • Funded Private Medical Insurance cover • Electric/Hybrid Car Salary Sacrifice Scheme and Cycle to Work Scheme • Life assurance at 4 times your basic salary to give you a peace of mind that your loved ones will receive some financial help • Funded health screening for over 50s • Voluntary benefits: charitable giving, critical illness insurance, dental insurance, health and cancer screenings for you and your partner, discounted gym memberships and season ticket loans • Employee Discount Scheme with an app to save on the go • Free access to healthcare apps such as Peppy, Unmind, Aviva Digital GP and volunteering app on Hand for all employees • Generous family leave policies
Job title: DV Cleared Information Assurance and Cyber Risk Location: Farnborough Duration: 12 months Rate: Up to 850 per day My client is looking for a DV Cleared Information Assurance and Cyber Risk consultant to join their team. Responsibilities: Provide security subject matter expertise to the TSM Programme Manager, technical security advice to the TSM Programme and provide support to the clients Security Assurance Co-ordinator. Provide security subject matter expertise on the security implications of System Change Requests (SCRs). Maintain knowledge of current client security requirements and provide advice to the TSM Security Manager (SyM) on security requirements. Identify and assess the potential impact of amendments to the clients policy on the Programme. Maintain accreditation or Secure by Design (SbD) of TSM systems in accordance with the security requirements in contract with the client, including liaison as tasked by the TSM SyM with the client (e.g. CyDR) and other (e.g. NCSC) security stakeholders. Maintain RMADS (or similar SbD artefacts) and security risk assessments for TSM systems to support accreditation. Maintain formal certification of the TSMF facility in support of the accreditation / SbD of TSM systems. Maintain relevant Codes of Connection (CoCo) and ensure continued approval for such connections. Review and update security operating procedures, as tasked by the TSM SyM. Report on security for agreed meetings, for example regular Team Leaders' meetings or Monthly or Quarterly Progress Meetings as tasked by the TSM Programme Manager. On behalf of the TSM SyM manage the quarterly Security Working Groups (SWG) ensuring that calling notices, agendas, minutes etc. are produced and distributed within agreed timescales. Produce a draft Security Report prior to the Quarterly SWGs and presenting this report at the SWG; updating and issuing this report after the SWG. Manage assurance activities to be completed by the TSM Security Team. Support compliance checking activities to be completed by the TSM Security Team. Provide advice on the patching of TSM systems including monitoring MODCERTS and other sources of patching and vulnerability information. Develop and deliver security training to the TSM Programme. Required Skills: Experience in offering advice on Security requirements. 5-10 years Cyber Risk experience. Understanding codes of Connection. Understanding of Secure by Design and how this is replacing formal accreditation of client systems. Comfortable working in a multi-disciplinary team, and able to work with others. Able to manage own tasks and time liaising with the TSM System Security Officer to agree tasks to be delivered and time to be worked on programme. Good communication skills. If this is the role for you please submit your CV at your earliest convenience. If you have not been contacted within 2 weeks of application please consider you have not been successful for this opportunity.
Mar 28, 2024
Contractor
Job title: DV Cleared Information Assurance and Cyber Risk Location: Farnborough Duration: 12 months Rate: Up to 850 per day My client is looking for a DV Cleared Information Assurance and Cyber Risk consultant to join their team. Responsibilities: Provide security subject matter expertise to the TSM Programme Manager, technical security advice to the TSM Programme and provide support to the clients Security Assurance Co-ordinator. Provide security subject matter expertise on the security implications of System Change Requests (SCRs). Maintain knowledge of current client security requirements and provide advice to the TSM Security Manager (SyM) on security requirements. Identify and assess the potential impact of amendments to the clients policy on the Programme. Maintain accreditation or Secure by Design (SbD) of TSM systems in accordance with the security requirements in contract with the client, including liaison as tasked by the TSM SyM with the client (e.g. CyDR) and other (e.g. NCSC) security stakeholders. Maintain RMADS (or similar SbD artefacts) and security risk assessments for TSM systems to support accreditation. Maintain formal certification of the TSMF facility in support of the accreditation / SbD of TSM systems. Maintain relevant Codes of Connection (CoCo) and ensure continued approval for such connections. Review and update security operating procedures, as tasked by the TSM SyM. Report on security for agreed meetings, for example regular Team Leaders' meetings or Monthly or Quarterly Progress Meetings as tasked by the TSM Programme Manager. On behalf of the TSM SyM manage the quarterly Security Working Groups (SWG) ensuring that calling notices, agendas, minutes etc. are produced and distributed within agreed timescales. Produce a draft Security Report prior to the Quarterly SWGs and presenting this report at the SWG; updating and issuing this report after the SWG. Manage assurance activities to be completed by the TSM Security Team. Support compliance checking activities to be completed by the TSM Security Team. Provide advice on the patching of TSM systems including monitoring MODCERTS and other sources of patching and vulnerability information. Develop and deliver security training to the TSM Programme. Required Skills: Experience in offering advice on Security requirements. 5-10 years Cyber Risk experience. Understanding codes of Connection. Understanding of Secure by Design and how this is replacing formal accreditation of client systems. Comfortable working in a multi-disciplinary team, and able to work with others. Able to manage own tasks and time liaising with the TSM System Security Officer to agree tasks to be delivered and time to be worked on programme. Good communication skills. If this is the role for you please submit your CV at your earliest convenience. If you have not been contacted within 2 weeks of application please consider you have not been successful for this opportunity.
Our client are seeking a Solutions Consultant to join their Transformation Department working with a variety of Enterprise, SME and Public Sector clients on critical Digital Transformation Projects. The Solutions Consultant plays a critical role within the sales cycle from intial engagement through to the proposed technical solution. You will work closely with stakeholders on supporting them to bring their digital transformation strategy into reality. Your responsibilities as a Solutions Consultant will be: Present across our products and services portfolio to a variety of client stakeholders. Perform Discovery Workshops with client stakeholders to help them better understand Digital Transformation, and learn about their business goals, operating models and digital strategy, and to give them an appetite for Cloud and Modern Workplace. Define and present the vision and roadmaps for cloud-based and hybrid-cloud solutions for our clients. Execute workshops to collect requirements, understand the problem and explore solutions. Provide strategic consultancy to design and define Cloud and Modern Workplace architectural solutions. Translate client requirements into high-level designs, statements of work, and cost models. Provide presales consultancy to support sales in winning new business opportunities. Perform Technical Account Management to help clients realise the potential of their existing investment in technology and co-create future IT strategy. Engage with senior leadership and project stakeholders to articulate opportunities, costs, and risks associated with decisions made around the platform architecture and implementation. Promote an environment that encourages collaboration, team working and innovation within the Consulting Services team. About you You will have experience in consulting and designing solutions for a for a variety of customers, and you will possess expertise in Microsoft Cloud and Modern Workplace technologies, as well as traditional data centre solutions. Have a proven track record in successful design of industry standard IT solutions. Be self-motivated with the ability to identify priorities and manage multiple workloads. Attention to detail is a must with a methodical and professional approach to solution design. Required technical skills: Microsoft 365 Exchange Online SharePoint Online OneDrive Teams Intune / Microsoft Endpoint Manager Entra ID Conditional Access Microsoft Azure IaaS and PaaS Services Azure Virtual Desktop Microsoft Defender for Server/Endpoint Server Technologies SAN Technologies Hypervisor technologies (VMware / Hyper-V) Microsoft Exchange (on-premises) Wired and Wireless Networking Windows Client / Server Operating Systems Active Directory / Group Policy Backup and DR Technologies Web and E-mail Security Firewall Solutions Cybersecurity Solutions What will you get in return? Basic salary of up to £80,000 per annum + bonus Company Car / Car Allowance Hybrid working environment Professional certifications Significant career progression opportunities If you feel you match the above click 'apply now' with an up to date version of your CV. This position will require travel to customer sites so you must have a full UK Drivers Licence.
Mar 28, 2024
Full time
Our client are seeking a Solutions Consultant to join their Transformation Department working with a variety of Enterprise, SME and Public Sector clients on critical Digital Transformation Projects. The Solutions Consultant plays a critical role within the sales cycle from intial engagement through to the proposed technical solution. You will work closely with stakeholders on supporting them to bring their digital transformation strategy into reality. Your responsibilities as a Solutions Consultant will be: Present across our products and services portfolio to a variety of client stakeholders. Perform Discovery Workshops with client stakeholders to help them better understand Digital Transformation, and learn about their business goals, operating models and digital strategy, and to give them an appetite for Cloud and Modern Workplace. Define and present the vision and roadmaps for cloud-based and hybrid-cloud solutions for our clients. Execute workshops to collect requirements, understand the problem and explore solutions. Provide strategic consultancy to design and define Cloud and Modern Workplace architectural solutions. Translate client requirements into high-level designs, statements of work, and cost models. Provide presales consultancy to support sales in winning new business opportunities. Perform Technical Account Management to help clients realise the potential of their existing investment in technology and co-create future IT strategy. Engage with senior leadership and project stakeholders to articulate opportunities, costs, and risks associated with decisions made around the platform architecture and implementation. Promote an environment that encourages collaboration, team working and innovation within the Consulting Services team. About you You will have experience in consulting and designing solutions for a for a variety of customers, and you will possess expertise in Microsoft Cloud and Modern Workplace technologies, as well as traditional data centre solutions. Have a proven track record in successful design of industry standard IT solutions. Be self-motivated with the ability to identify priorities and manage multiple workloads. Attention to detail is a must with a methodical and professional approach to solution design. Required technical skills: Microsoft 365 Exchange Online SharePoint Online OneDrive Teams Intune / Microsoft Endpoint Manager Entra ID Conditional Access Microsoft Azure IaaS and PaaS Services Azure Virtual Desktop Microsoft Defender for Server/Endpoint Server Technologies SAN Technologies Hypervisor technologies (VMware / Hyper-V) Microsoft Exchange (on-premises) Wired and Wireless Networking Windows Client / Server Operating Systems Active Directory / Group Policy Backup and DR Technologies Web and E-mail Security Firewall Solutions Cybersecurity Solutions What will you get in return? Basic salary of up to £80,000 per annum + bonus Company Car / Car Allowance Hybrid working environment Professional certifications Significant career progression opportunities If you feel you match the above click 'apply now' with an up to date version of your CV. This position will require travel to customer sites so you must have a full UK Drivers Licence.
Cyber Security Manager My client is on the market looking to hire an experienced Cyber Security Manager. This is a unique & exciting opportunity to provide strategic leadership in the vital area of Cyber Security. This role is of strategic importance, and they are looking for a CSM who will be responsible for guiding the organisation through the complex, ever changing and ever-growing cyber threat landscape. They are investing heavily in the Cyber resilience and as such they are looking for an experienced, dynamic, knowledgeable and forward-thinking individual to lead their strategic, comprehensive and enterprise-wide programme of cyber security improvements as well as manage their cyber security team. The successful individual will both develop and drive forward strategy for achieving and maintaining cyber resilience as well as ensuring that the organisation has the fundamental tools, processes and procedures for defending the Institution and minimising the impact from cyber threats. One of the key responsibilities of this role is to develop and provide a knowledgeable future vision for the organisations risk-based approach to the strategically important, complex and continually changing area of cyber security and resilience. As well as to develop, lead the implementation of, and effectively monitor a strategic, comprehensive enterprise-wide cyber security improvement programmes. Essential: A suitable degree (or equivalent experience) most likely in a numeric, scientific, or computing related field. Experience in developing and implementing cyber security policies. Experience of gaining and maintaining cyber security certifications/standards such as ISO27000 family, Cyber Essentials, CPNI Critical Security Controls and PCI-DSS standards. Experience in the management of cyber incidents & threats facing large organisations and implementing solutions and measures to deal with them. Knowledge of industry standard and best practice technologies and processes involved in maintaining cyber resilience. Evidence of continuous professional development and the ability to stay up to date with the latest developments in cyber security Project and/or Programme Management experience. Extensive experience in providing cyber security leadership to organisations Extensive experience in working in a large and complex organisation with a diverse IT environment Specialist qualifications relevant to cyber security. Experience of Risk management. Cyber Security Manager
Mar 28, 2024
Full time
Cyber Security Manager My client is on the market looking to hire an experienced Cyber Security Manager. This is a unique & exciting opportunity to provide strategic leadership in the vital area of Cyber Security. This role is of strategic importance, and they are looking for a CSM who will be responsible for guiding the organisation through the complex, ever changing and ever-growing cyber threat landscape. They are investing heavily in the Cyber resilience and as such they are looking for an experienced, dynamic, knowledgeable and forward-thinking individual to lead their strategic, comprehensive and enterprise-wide programme of cyber security improvements as well as manage their cyber security team. The successful individual will both develop and drive forward strategy for achieving and maintaining cyber resilience as well as ensuring that the organisation has the fundamental tools, processes and procedures for defending the Institution and minimising the impact from cyber threats. One of the key responsibilities of this role is to develop and provide a knowledgeable future vision for the organisations risk-based approach to the strategically important, complex and continually changing area of cyber security and resilience. As well as to develop, lead the implementation of, and effectively monitor a strategic, comprehensive enterprise-wide cyber security improvement programmes. Essential: A suitable degree (or equivalent experience) most likely in a numeric, scientific, or computing related field. Experience in developing and implementing cyber security policies. Experience of gaining and maintaining cyber security certifications/standards such as ISO27000 family, Cyber Essentials, CPNI Critical Security Controls and PCI-DSS standards. Experience in the management of cyber incidents & threats facing large organisations and implementing solutions and measures to deal with them. Knowledge of industry standard and best practice technologies and processes involved in maintaining cyber resilience. Evidence of continuous professional development and the ability to stay up to date with the latest developments in cyber security Project and/or Programme Management experience. Extensive experience in providing cyber security leadership to organisations Extensive experience in working in a large and complex organisation with a diverse IT environment Specialist qualifications relevant to cyber security. Experience of Risk management. Cyber Security Manager
Technical QSA / Technical GRC Consultant - Cloud implementation background required. Permanent: Up to 70K without QSA cert - Up to 85K if QSA certified Location: Hybrid - Multiple offices across the UK, including London, Bristol, Birmingham, Glasgow and Manchester Your new company: Due to continued organisational growth, this multinational telecom company is looking to add a technical QSA or technical GRC Consultant to their ranks. The role will include these responsibilities: Primarily to support the tasks and process within the ISSCA (Industry Security Standards Certification Assurance) team for the preservation of PCI compliance and supporting other compliance frameworks such as ISO27001, Cyber Essentials. Provide in-depth detailed knowledge and expertise relating to compliance with internal business processes (including suppliers) where the company is the Merchant or Service Provider To provide support for customer contracts where the company has compliance obligations, such that account managers/BID teams can make informed risk and cost decisions. Maintain awareness of forthcoming compliance framework changes to enable the company to maintain its compliance to the latest standards - highlighting as appropriate to any person's changes requiring investment. Mentor ISSCA team members. There will be the need for occasional travel, including abroad. You will need: Experience in and implementation/support of environments within Enterprise, Hybrid and Cloud environments. Cloud certifications (i.e. AWS) highly desirable. To be familiar with web/mobile application security and be able to articulate to a wide audience how best practice should be implemented. Understanding of current web/mobile application development, management and environmental methods and solutions, such as DevOps/DevSecOps/GitOps, microservices, orchestration, CI/CD, Infrastructure as Code etc. Proficiency in the understanding and reading of fundamental programming languages (i.e. JavaScript, Python etc.) API's and SDKs are desirable. What you'll get in return: A salary of up to 85K if you have the QSA certificate. Salary up to 70K for the right technical GRC Consultant. 10% on target bonus Strong pension scheme, 5% employee contribution, client contribution 10% 25 days annual leave (not including bank holidays), increasing with service. A huge range of flexible benefits including cycle to work, healthcare, season ticket loan. World-class training and development opportunities Option to join Shares Saving schemes. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now. If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
Mar 28, 2024
Full time
Technical QSA / Technical GRC Consultant - Cloud implementation background required. Permanent: Up to 70K without QSA cert - Up to 85K if QSA certified Location: Hybrid - Multiple offices across the UK, including London, Bristol, Birmingham, Glasgow and Manchester Your new company: Due to continued organisational growth, this multinational telecom company is looking to add a technical QSA or technical GRC Consultant to their ranks. The role will include these responsibilities: Primarily to support the tasks and process within the ISSCA (Industry Security Standards Certification Assurance) team for the preservation of PCI compliance and supporting other compliance frameworks such as ISO27001, Cyber Essentials. Provide in-depth detailed knowledge and expertise relating to compliance with internal business processes (including suppliers) where the company is the Merchant or Service Provider To provide support for customer contracts where the company has compliance obligations, such that account managers/BID teams can make informed risk and cost decisions. Maintain awareness of forthcoming compliance framework changes to enable the company to maintain its compliance to the latest standards - highlighting as appropriate to any person's changes requiring investment. Mentor ISSCA team members. There will be the need for occasional travel, including abroad. You will need: Experience in and implementation/support of environments within Enterprise, Hybrid and Cloud environments. Cloud certifications (i.e. AWS) highly desirable. To be familiar with web/mobile application security and be able to articulate to a wide audience how best practice should be implemented. Understanding of current web/mobile application development, management and environmental methods and solutions, such as DevOps/DevSecOps/GitOps, microservices, orchestration, CI/CD, Infrastructure as Code etc. Proficiency in the understanding and reading of fundamental programming languages (i.e. JavaScript, Python etc.) API's and SDKs are desirable. What you'll get in return: A salary of up to 85K if you have the QSA certificate. Salary up to 70K for the right technical GRC Consultant. 10% on target bonus Strong pension scheme, 5% employee contribution, client contribution 10% 25 days annual leave (not including bank holidays), increasing with service. A huge range of flexible benefits including cycle to work, healthcare, season ticket loan. World-class training and development opportunities Option to join Shares Saving schemes. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now. If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
IT Service Desk Supervisor Company Overview: My client is a dynamic and forward-thinking organisation at the forefront of technological innovation within the legal, conveyancing, and banking sectors. Their commitment to excellence in customer service and cutting-edge IT solutions drives their success. To further enhance our operations, they are seeking a proactive and experienced IT Service Desk Supervisor to join our team. About the Role: As the IT Service Desk Supervisor, you will play a pivotal role in ensuring the effective operation of our IT Service Desk with a primary focus on customer service and communication. You will oversee the day-to-day operations of our IT Service Desk, ensuring the maintenance of their IT infrastructure in alignment with ITIL best practices. Your responsibilities will include managing incidents and major incidents, providing clear and concise communication to their business units, and supporting the implementation of our IT strategy alongside the Lead IT Support Technician. Additionally, you will collaborate with the Information Security Manager to remediate risks and vulnerabilities, ensuring the security and reliability of our end-user computing and telephony facilities. Key Responsibilities: Manage incidents and major incidents, ensuring effective communication with business units. Support the implementation of the IT strategy and contribute to future roadmap definition. Collaborate with the Information Security Manager to remediate risks and vulnerabilities. Ensure adequate cover for core business hours and maintain secure and reliable end-user computing and telephony facilities. Secure and recover business information held in IT systems, including disaster recovery tasks. Provide technical expertise for projects and ensure smooth service transitions. Maintain high standards of performance and security in IT infrastructure. Assist with patching, anti-virus updates, and other technical tasks across the IT infrastructure. Demonstrate technical expertise across various disciplines including Microsoft Operating Systems, Networking, Telephony, Databases, and Virtualized Infrastructure. Ensure systems are well-documented and contribute to Service Improvement Plans. Act as an ambassador for IT, fostering effective communication and relationships across departments. Requirements: Strong technical background in IT infrastructure and applications. Excellent communication skills and experience working in customer-facing roles. Previous experience in legal, conveyancing, or banking sectors preferred. Logical and analytical mindset with strong attention to detail. Ability to work to strict deadlines and prioritize workload effectively. Experience working in an ISO27001 accredited environment. Excellent root cause analysis and troubleshooting skills. Desired Qualifications: Experience with cyber issues or information security preferred. What They Offer: Competitive salary commensurate with experience. Opportunities for professional growth and development. Collaborative and supportive work environment. Benefits package including health insurance and retirement plans. Please apply online if this sounds of interest. Rullion celebrates and supports diversity and is committed to ensuring equal opportunities for both employees and applicants.
Mar 28, 2024
Full time
IT Service Desk Supervisor Company Overview: My client is a dynamic and forward-thinking organisation at the forefront of technological innovation within the legal, conveyancing, and banking sectors. Their commitment to excellence in customer service and cutting-edge IT solutions drives their success. To further enhance our operations, they are seeking a proactive and experienced IT Service Desk Supervisor to join our team. About the Role: As the IT Service Desk Supervisor, you will play a pivotal role in ensuring the effective operation of our IT Service Desk with a primary focus on customer service and communication. You will oversee the day-to-day operations of our IT Service Desk, ensuring the maintenance of their IT infrastructure in alignment with ITIL best practices. Your responsibilities will include managing incidents and major incidents, providing clear and concise communication to their business units, and supporting the implementation of our IT strategy alongside the Lead IT Support Technician. Additionally, you will collaborate with the Information Security Manager to remediate risks and vulnerabilities, ensuring the security and reliability of our end-user computing and telephony facilities. Key Responsibilities: Manage incidents and major incidents, ensuring effective communication with business units. Support the implementation of the IT strategy and contribute to future roadmap definition. Collaborate with the Information Security Manager to remediate risks and vulnerabilities. Ensure adequate cover for core business hours and maintain secure and reliable end-user computing and telephony facilities. Secure and recover business information held in IT systems, including disaster recovery tasks. Provide technical expertise for projects and ensure smooth service transitions. Maintain high standards of performance and security in IT infrastructure. Assist with patching, anti-virus updates, and other technical tasks across the IT infrastructure. Demonstrate technical expertise across various disciplines including Microsoft Operating Systems, Networking, Telephony, Databases, and Virtualized Infrastructure. Ensure systems are well-documented and contribute to Service Improvement Plans. Act as an ambassador for IT, fostering effective communication and relationships across departments. Requirements: Strong technical background in IT infrastructure and applications. Excellent communication skills and experience working in customer-facing roles. Previous experience in legal, conveyancing, or banking sectors preferred. Logical and analytical mindset with strong attention to detail. Ability to work to strict deadlines and prioritize workload effectively. Experience working in an ISO27001 accredited environment. Excellent root cause analysis and troubleshooting skills. Desired Qualifications: Experience with cyber issues or information security preferred. What They Offer: Competitive salary commensurate with experience. Opportunities for professional growth and development. Collaborative and supportive work environment. Benefits package including health insurance and retirement plans. Please apply online if this sounds of interest. Rullion celebrates and supports diversity and is committed to ensuring equal opportunities for both employees and applicants.
Our client is seeking a dedicated Information Security Manager to manage IT risk & compliance, accreditation, data protection, business continuity projects and activities. Client Details Our client is a Manchester based small but fast growing technology business. Description Continue review and improve the security policies Implement and maintain ISMS Ensure compliance with relevant security standards and regulations (ISO 27001, Cyber Essentials, etc.) Review and implement business continuity plan and policy Manage technical and business stakeholders Perform proactive risk assessments Work with external auditor for the regular auditing activities Profile Strong knowledge of information security protocols and procedures Knowledge and experience in different security standards and frameworks with track record in leading ISO 27001 accreditation / re-accreditation projects Proficiency in information risk assessment and compliance Experience in Business Continuity is desirable but not essential Job Offer Hybrid working arrangement Opportunity to lead the information security of a fast growing business
Mar 28, 2024
Full time
Our client is seeking a dedicated Information Security Manager to manage IT risk & compliance, accreditation, data protection, business continuity projects and activities. Client Details Our client is a Manchester based small but fast growing technology business. Description Continue review and improve the security policies Implement and maintain ISMS Ensure compliance with relevant security standards and regulations (ISO 27001, Cyber Essentials, etc.) Review and implement business continuity plan and policy Manage technical and business stakeholders Perform proactive risk assessments Work with external auditor for the regular auditing activities Profile Strong knowledge of information security protocols and procedures Knowledge and experience in different security standards and frameworks with track record in leading ISO 27001 accreditation / re-accreditation projects Proficiency in information risk assessment and compliance Experience in Business Continuity is desirable but not essential Job Offer Hybrid working arrangement Opportunity to lead the information security of a fast growing business
Atlas Recruitment Group Limited
Portsmouth, Hampshire
Cyber Security Assurance Manager Aerospace & Defence Portsmouth Hybrid - 2 days on site per week 50-69,000 + 10% Bonus Candidates must be eligible for Security Clearance Atlas Recruitment Group are currently searching for a Cyber Security Assurance Manager to join one of the world's largest players in the Aerospace & Defence industry. This role will be based out of their Maritime services department, working on multi-billion-pound programmes of work that contribute towards strengthening the security posture of the UK. The focus of this position will be building and managing the Cyber Assurance function within their Maritime services. You will also be involved in the following: Plan, Manage and Deliver cyber assurance services to the MS, covering Customer Premises Equipment and cloud based systems Identification of risk and appropriate mitigation requirements, development & analysis of secure solutions (covering technical / physical / procedural / personnel controls) and assessment of compliance with internal and external standards and regulations Manage the delivery of documentation to demonstrate compliance to internal and external stakeholders Manage and conduct the assessment and provision of control effectiveness in managing information security risk Act as a subject matter expert regarding assurance activities for the wider business unit If you feel you have the relevant background, please apply for immediate consideration.
Mar 28, 2024
Full time
Cyber Security Assurance Manager Aerospace & Defence Portsmouth Hybrid - 2 days on site per week 50-69,000 + 10% Bonus Candidates must be eligible for Security Clearance Atlas Recruitment Group are currently searching for a Cyber Security Assurance Manager to join one of the world's largest players in the Aerospace & Defence industry. This role will be based out of their Maritime services department, working on multi-billion-pound programmes of work that contribute towards strengthening the security posture of the UK. The focus of this position will be building and managing the Cyber Assurance function within their Maritime services. You will also be involved in the following: Plan, Manage and Deliver cyber assurance services to the MS, covering Customer Premises Equipment and cloud based systems Identification of risk and appropriate mitigation requirements, development & analysis of secure solutions (covering technical / physical / procedural / personnel controls) and assessment of compliance with internal and external standards and regulations Manage the delivery of documentation to demonstrate compliance to internal and external stakeholders Manage and conduct the assessment and provision of control effectiveness in managing information security risk Act as a subject matter expert regarding assurance activities for the wider business unit If you feel you have the relevant background, please apply for immediate consideration.
Information Security Manager, 80K, Mon-Fri onsite, Watford, Hertfordshire In the role of Information Security Manager, you will collaborate closely with the CISO to implement the IT Security Framework and maintain adherence to security governance, risk, and compliance standards. Your responsibilities will include leading a small team of two to achieve these objectives. As an expert in the field, you will facilitate various business operations by leveraging your extensive knowledge in Security domains, which encompasses: - Adherence to leading security standards/frameworks such as ISO27001:2022, NIST CSF, NIST SP 800-53, Zero Trust, Secure by Design, and Cloud Security models. - Execution of Vulnerability Management processes. - Implementation of Malware Protection strategies. - Oversight of Third-Party Security measures. - Deployment of robust Authentication Mechanisms. - Management and Governance of Cybersecurity protocols. - Handling of Security Incidents effectively. - Ensuring Business Continuity and adept Crisis Management. - Integration of Cybersecurity measures into projects and applications. - Effective Asset management. - Protection against DDoS attacks. - Enhancement of Logging/detection systems. - Management of Identity and Access (including Privileged Account Management). - Fortification of Network Security measures. Core Duties Oversee the security team (x2) daily to achieve; Handle, evolve, apply, observe, and communicate on security architecture and cyber enhancement project actions. Conduct evaluations of IT security maturity and monitor security status. Continuous enhancement and execution of the Cyber Security Strategy, aligning with IT & Cyber risk reduction goals. Contribute insights to CISO, broader Security divisions, and collaborators when needed. Collaborate with SMEs throughout the security and IT domains to guide and realize projects that adhere to and elevate global security compliance in the company. Detect, evaluate, and document cyber security threats, including communication with pertinent parties. Recommend comprehensive strategies for cyber security threat response, oversee progress tracking, and consistently refresh the status of each cyber threat in relevant records. Execute internal and external security assurance evaluations against standards-based compliance criteria referencing top Security and Governance frameworks. Plan and Manage Penetration tests. Oversee Vulnerability Management including scope review and validation, performing vulnerability assessments, and leading remediation activities. Monitor infrastructure (including Compliance). Analyse and handle security incidents. Direct security suggestions. Coordinate and direct various IT Security committees. Create and maintain IT Security documents (procedures, reports, analyses). Engage in or lead both internal and external audits and evaluations. Develop and deliver security education and awareness initiatives. Support and counsel the broader enterprise on security-related subjects. Benefits Pension 5% Employer 3% Employee Private Healthcare 24 days holiday pa plus your birthday off Life Insurance x4
Mar 28, 2024
Full time
Information Security Manager, 80K, Mon-Fri onsite, Watford, Hertfordshire In the role of Information Security Manager, you will collaborate closely with the CISO to implement the IT Security Framework and maintain adherence to security governance, risk, and compliance standards. Your responsibilities will include leading a small team of two to achieve these objectives. As an expert in the field, you will facilitate various business operations by leveraging your extensive knowledge in Security domains, which encompasses: - Adherence to leading security standards/frameworks such as ISO27001:2022, NIST CSF, NIST SP 800-53, Zero Trust, Secure by Design, and Cloud Security models. - Execution of Vulnerability Management processes. - Implementation of Malware Protection strategies. - Oversight of Third-Party Security measures. - Deployment of robust Authentication Mechanisms. - Management and Governance of Cybersecurity protocols. - Handling of Security Incidents effectively. - Ensuring Business Continuity and adept Crisis Management. - Integration of Cybersecurity measures into projects and applications. - Effective Asset management. - Protection against DDoS attacks. - Enhancement of Logging/detection systems. - Management of Identity and Access (including Privileged Account Management). - Fortification of Network Security measures. Core Duties Oversee the security team (x2) daily to achieve; Handle, evolve, apply, observe, and communicate on security architecture and cyber enhancement project actions. Conduct evaluations of IT security maturity and monitor security status. Continuous enhancement and execution of the Cyber Security Strategy, aligning with IT & Cyber risk reduction goals. Contribute insights to CISO, broader Security divisions, and collaborators when needed. Collaborate with SMEs throughout the security and IT domains to guide and realize projects that adhere to and elevate global security compliance in the company. Detect, evaluate, and document cyber security threats, including communication with pertinent parties. Recommend comprehensive strategies for cyber security threat response, oversee progress tracking, and consistently refresh the status of each cyber threat in relevant records. Execute internal and external security assurance evaluations against standards-based compliance criteria referencing top Security and Governance frameworks. Plan and Manage Penetration tests. Oversee Vulnerability Management including scope review and validation, performing vulnerability assessments, and leading remediation activities. Monitor infrastructure (including Compliance). Analyse and handle security incidents. Direct security suggestions. Coordinate and direct various IT Security committees. Create and maintain IT Security documents (procedures, reports, analyses). Engage in or lead both internal and external audits and evaluations. Develop and deliver security education and awareness initiatives. Support and counsel the broader enterprise on security-related subjects. Benefits Pension 5% Employer 3% Employee Private Healthcare 24 days holiday pa plus your birthday off Life Insurance x4
Are you ready to take your IT expertise to the next level? A London-based Company is seeking an experienced IT Consultant/ Engineer/ IT Manager to become one of the team. They are a thriving and growing business specialising in IT Management, Device and Identity Management, Cyber Security, Networks, Cloud platforms, and Connectivity. Relationships and technical excellence are the name of the game with these guys. The Perks Salary: 45,000 - 55,000 (depending on experience). Pension plan. Private health care. Staff discounts. Apple equipment provided. This hybrid role involves remote work and working in London - a good mix. Your day-to-day as an IT Consultant: In this role, you'll work alongside fellow tech experts in a supportive environment. Your responsibilities will encompass: Consultancy Services : Conduct IT audits, risk assessments, and ensure compliance (ISO27001, SOC2, Cyber Essentials+), and formulate IT policies. IT Security: Manage malware, AV, password security, MFA, SSO, vulnerability scanning, penetration testing, and encryption. Device Management: Handle Mobile Device Management (MDM) using Kandji, Apple Device Enrolment Program (DEP), and asset management. Business Continuity : Design fault-tolerant systems, ensure data protection, and create/manage business continuity plans. Technical Support : Provide end-user support, training, and documentation. Connectivity: Manage firewalls, routers, switches, wireless access points, DNS, telephony, broadband, and video conferencing. Servers & Storage: Handle NAS, DAS, VMWare, Windows Server, and Active Directory. Cloud: Administer Microsoft 365, Google Workspace, Egnyte, and JumpCloud. Your Responsibilities as an IT Consultant : Act as the IT Manager Provide technical support to end-users. Proactively develop customer systems. Maintain regular meetings with key contacts. Take ownership of customer systems, ensuring alignment with standards and data protection. Install and implement new systems. Manage user onboarding/offboarding and licenses. Conduct IT audits and update documentation. To excel in this IT Consultant role, you need: Strong communication skills, written and verbal. A helpful, supportive, and empathetic approach. A desire to expand your technical knowledge. Professionalism, attention to detail, and the ability to work under pressure. Integrity, honesty, and discretion. Essential Technical Skills : Circa 6 years of experience supporting and managing macOS devices. Circa 4 years of experience supporting and managing MDM & IAM in an Apple environment. Working knowledge of DNS, ABM, DEP, Windows, Windows Server, Active Directory, network appliances, Google Workspace, and Microsoft 365. Excellent analytical and problem-solving skills. Bash scripting experience. Experience building and managing networks. Ready to join a team that values technical excellence and exceptional service? Apply today and let's elevate your IT career together!
Mar 28, 2024
Full time
Are you ready to take your IT expertise to the next level? A London-based Company is seeking an experienced IT Consultant/ Engineer/ IT Manager to become one of the team. They are a thriving and growing business specialising in IT Management, Device and Identity Management, Cyber Security, Networks, Cloud platforms, and Connectivity. Relationships and technical excellence are the name of the game with these guys. The Perks Salary: 45,000 - 55,000 (depending on experience). Pension plan. Private health care. Staff discounts. Apple equipment provided. This hybrid role involves remote work and working in London - a good mix. Your day-to-day as an IT Consultant: In this role, you'll work alongside fellow tech experts in a supportive environment. Your responsibilities will encompass: Consultancy Services : Conduct IT audits, risk assessments, and ensure compliance (ISO27001, SOC2, Cyber Essentials+), and formulate IT policies. IT Security: Manage malware, AV, password security, MFA, SSO, vulnerability scanning, penetration testing, and encryption. Device Management: Handle Mobile Device Management (MDM) using Kandji, Apple Device Enrolment Program (DEP), and asset management. Business Continuity : Design fault-tolerant systems, ensure data protection, and create/manage business continuity plans. Technical Support : Provide end-user support, training, and documentation. Connectivity: Manage firewalls, routers, switches, wireless access points, DNS, telephony, broadband, and video conferencing. Servers & Storage: Handle NAS, DAS, VMWare, Windows Server, and Active Directory. Cloud: Administer Microsoft 365, Google Workspace, Egnyte, and JumpCloud. Your Responsibilities as an IT Consultant : Act as the IT Manager Provide technical support to end-users. Proactively develop customer systems. Maintain regular meetings with key contacts. Take ownership of customer systems, ensuring alignment with standards and data protection. Install and implement new systems. Manage user onboarding/offboarding and licenses. Conduct IT audits and update documentation. To excel in this IT Consultant role, you need: Strong communication skills, written and verbal. A helpful, supportive, and empathetic approach. A desire to expand your technical knowledge. Professionalism, attention to detail, and the ability to work under pressure. Integrity, honesty, and discretion. Essential Technical Skills : Circa 6 years of experience supporting and managing macOS devices. Circa 4 years of experience supporting and managing MDM & IAM in an Apple environment. Working knowledge of DNS, ABM, DEP, Windows, Windows Server, Active Directory, network appliances, Google Workspace, and Microsoft 365. Excellent analytical and problem-solving skills. Bash scripting experience. Experience building and managing networks. Ready to join a team that values technical excellence and exceptional service? Apply today and let's elevate your IT career together!
IT Project Manager - Fixed term contract 29 months My client is delivering key strategic improvements and significant investment across its IT infrastructure. The IT portfolio is delivering projects across cyber security, major software systems upgrades and implementations and upgrades to hardware infrastructure Responsibilities: Managed end to end IT software projects - broader the experience the better Able to define project scope, requirements, deliverables and dependencies Ability to work in a fast-paced environment and be deadline driven Strong reporting and documentation skills required - project plans, financial management and forecasting, resource management, check point, high light reports and quality control Proven experience of delivering to time, quality and cost, as well as turning around aspects of projects that may have drifted off track Strong risk and dependency management (RAID) Experience with using MS office - Excel, Word, PowerPoint and any project management tools are of a benefit Requirements: Prince 2 qualification (or similar) Clear, organised, collaborative and open communication style required Experience of presenting and delivering messages to project boards and senior stakeholders in an effective and professional manner Excellent communication skills coupled with ability to manage and hold suppliers to account Able to manage issues effectively and be creative to find solutions
Mar 28, 2024
Contractor
IT Project Manager - Fixed term contract 29 months My client is delivering key strategic improvements and significant investment across its IT infrastructure. The IT portfolio is delivering projects across cyber security, major software systems upgrades and implementations and upgrades to hardware infrastructure Responsibilities: Managed end to end IT software projects - broader the experience the better Able to define project scope, requirements, deliverables and dependencies Ability to work in a fast-paced environment and be deadline driven Strong reporting and documentation skills required - project plans, financial management and forecasting, resource management, check point, high light reports and quality control Proven experience of delivering to time, quality and cost, as well as turning around aspects of projects that may have drifted off track Strong risk and dependency management (RAID) Experience with using MS office - Excel, Word, PowerPoint and any project management tools are of a benefit Requirements: Prince 2 qualification (or similar) Clear, organised, collaborative and open communication style required Experience of presenting and delivering messages to project boards and senior stakeholders in an effective and professional manner Excellent communication skills coupled with ability to manage and hold suppliers to account Able to manage issues effectively and be creative to find solutions
Nigel Wright Recruitment
Newcastle Upon Tyne, Tyne And Wear
The OpportunityA great opportunity for an experienced, ideally CISA qualified, IT Auditor to join this national business as it continues to invest in Tech. With the opportunity to work on a hybrid basis (2 days a week in the office), our client has an excellent reputation in developing their staff, taking a proactive approach to your learning and development in order to be the best you can be.Our client doesn't sponsor visas so applicants require indefinite leave to remain in the UK.The RoleIn this new role as part of the Internal Audit team, the IT Auditor will be the expert when it comes to considering potential IT risks, mitigations, and weaknesses to ensure the business safeguards its data. You will help to provide assurance to the Board and Audit Committee by planning and performing IT audits across the business on all IT related business processes, applications, infrastructure, and cyber security. You may also be required to conduct general audits, ad hoc investigations, and provide an independent consultancy and advisory service to stakeholders.All internal audits will be completed in line with business's strategic priorities, challenging current practice where appropriate and recommending ways where we can be more efficient and effective.Specifically you will: Assess system risks during each audit along with the existing control environment to identify weaknesses and make recommendations to mitigate risk Continuously consider wider IT risks and controls to establish if any changes are required to the audit plan. Provide assurance opinions based on your overall assessment of our systems and existing controls. Present your audit findings and opinions to senior management both verbally and in reports will allow managers to address key issues and implement changes to our systems. Participate in ad hoc investigations such as fraud You will also play a key role in presenting IT specific reports to the Audit Committee when required and further develop data analysis techniques for all relevant audits and contribute to audit policy and guidance updates.The RequirementsIdeally possessing the CISA qualification, you will be experienced in assisting with the development of an annual risk-based IT audit plan and planning IT audits. You will have proficient in carrying out IT and general audit fieldwork and testing, identifying controls, risks and weaknesses, documenting your findings and following up completed audit actions.You'll have strong report writing abilities and can deliver to a varied and demanding audience, along with brilliant communication skills whether communication with Executive, Senior Management, or frontline colleagues.With a commercial mindset, you'll assess value for money, benchmarking research and be confident sharing the findings in relation to this. In addition you must have exceptional communication skills to bridge the gap between complex audit findings and the diverse stakeholders, enabling stakeholders to make informed decisions and take necessary corrective actions promptly.
Mar 28, 2024
Full time
The OpportunityA great opportunity for an experienced, ideally CISA qualified, IT Auditor to join this national business as it continues to invest in Tech. With the opportunity to work on a hybrid basis (2 days a week in the office), our client has an excellent reputation in developing their staff, taking a proactive approach to your learning and development in order to be the best you can be.Our client doesn't sponsor visas so applicants require indefinite leave to remain in the UK.The RoleIn this new role as part of the Internal Audit team, the IT Auditor will be the expert when it comes to considering potential IT risks, mitigations, and weaknesses to ensure the business safeguards its data. You will help to provide assurance to the Board and Audit Committee by planning and performing IT audits across the business on all IT related business processes, applications, infrastructure, and cyber security. You may also be required to conduct general audits, ad hoc investigations, and provide an independent consultancy and advisory service to stakeholders.All internal audits will be completed in line with business's strategic priorities, challenging current practice where appropriate and recommending ways where we can be more efficient and effective.Specifically you will: Assess system risks during each audit along with the existing control environment to identify weaknesses and make recommendations to mitigate risk Continuously consider wider IT risks and controls to establish if any changes are required to the audit plan. Provide assurance opinions based on your overall assessment of our systems and existing controls. Present your audit findings and opinions to senior management both verbally and in reports will allow managers to address key issues and implement changes to our systems. Participate in ad hoc investigations such as fraud You will also play a key role in presenting IT specific reports to the Audit Committee when required and further develop data analysis techniques for all relevant audits and contribute to audit policy and guidance updates.The RequirementsIdeally possessing the CISA qualification, you will be experienced in assisting with the development of an annual risk-based IT audit plan and planning IT audits. You will have proficient in carrying out IT and general audit fieldwork and testing, identifying controls, risks and weaknesses, documenting your findings and following up completed audit actions.You'll have strong report writing abilities and can deliver to a varied and demanding audience, along with brilliant communication skills whether communication with Executive, Senior Management, or frontline colleagues.With a commercial mindset, you'll assess value for money, benchmarking research and be confident sharing the findings in relation to this. In addition you must have exceptional communication skills to bridge the gap between complex audit findings and the diverse stakeholders, enabling stakeholders to make informed decisions and take necessary corrective actions promptly.
Technical QSA / Technical GRC Consultant - Cloud implementation background required. Permanent: Up to £70K without QSA cert - Up to £85K if QSA certified Location: Hybrid - Multiple offices across the UK, including London, Bristol, Birmingham, Glasgow and Manchester Your new company: Due to continued organisational growth, this multinational telecom company is looking to add a technical QSA or technical GRC Consultant to their ranks. The role will include these responsibilities: Primarily to support the tasks and process within the ISSCA (Industry Security Standards Certification Assurance) team for the preservation of PCI compliance and supporting other compliance frameworks such as ISO27001, Cyber Essentials. Provide in-depth detailed knowledge and expertise relating to compliance with internal business processes (including suppliers) where the company is the Merchant or Service Provider To provide support for customer contracts where the company has compliance obligations, such that account managers/BID teams can make informed risk and cost decisions. Maintain awareness of forthcoming compliance framework changes to enable the company to maintain its compliance to the latest standards - highlighting as appropriate to any person's changes requiring investment. Mentor ISSCA team members. There will be the need for occasional travel, including abroad. You will need: Experience in and implementation/support of environments within Enterprise, Hybrid and Cloud environments. Cloud certifications (i.e. AWS) highly desirable. To be familiar with web/mobile application security and be able to articulate to a wide audience how best practice should be implemented. Understanding of current web/mobile application development, management and environmental methods and solutions, such as DevOps/DevSecOps/GitOps, microservices, orchestration, CI/CD, Infrastructure as Code etc. Proficiency in the understanding and reading of fundamental programming languages (i.e. JavaScript, Python etc.) API's and SDKs are desirable. What you'll get in return: A salary of up to £85K if you have the QSA certificate. Salary up to £70K for the right technical GRC Consultant. 10% on target bonus Strong pension scheme, 5% employee contribution, client contribution 10% 25 days annual leave (not including bank holidays), increasing with service. A huge range of flexible benefits including cycle to work, healthcare, season ticket loan. World-class training and development opportunities Option to join Shares Saving schemes. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk
Mar 28, 2024
Full time
Technical QSA / Technical GRC Consultant - Cloud implementation background required. Permanent: Up to £70K without QSA cert - Up to £85K if QSA certified Location: Hybrid - Multiple offices across the UK, including London, Bristol, Birmingham, Glasgow and Manchester Your new company: Due to continued organisational growth, this multinational telecom company is looking to add a technical QSA or technical GRC Consultant to their ranks. The role will include these responsibilities: Primarily to support the tasks and process within the ISSCA (Industry Security Standards Certification Assurance) team for the preservation of PCI compliance and supporting other compliance frameworks such as ISO27001, Cyber Essentials. Provide in-depth detailed knowledge and expertise relating to compliance with internal business processes (including suppliers) where the company is the Merchant or Service Provider To provide support for customer contracts where the company has compliance obligations, such that account managers/BID teams can make informed risk and cost decisions. Maintain awareness of forthcoming compliance framework changes to enable the company to maintain its compliance to the latest standards - highlighting as appropriate to any person's changes requiring investment. Mentor ISSCA team members. There will be the need for occasional travel, including abroad. You will need: Experience in and implementation/support of environments within Enterprise, Hybrid and Cloud environments. Cloud certifications (i.e. AWS) highly desirable. To be familiar with web/mobile application security and be able to articulate to a wide audience how best practice should be implemented. Understanding of current web/mobile application development, management and environmental methods and solutions, such as DevOps/DevSecOps/GitOps, microservices, orchestration, CI/CD, Infrastructure as Code etc. Proficiency in the understanding and reading of fundamental programming languages (i.e. JavaScript, Python etc.) API's and SDKs are desirable. What you'll get in return: A salary of up to £85K if you have the QSA certificate. Salary up to £70K for the right technical GRC Consultant. 10% on target bonus Strong pension scheme, 5% employee contribution, client contribution 10% 25 days annual leave (not including bank holidays), increasing with service. A huge range of flexible benefits including cycle to work, healthcare, season ticket loan. World-class training and development opportunities Option to join Shares Saving schemes. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk
We are recruiting for a Cyber Security Manager to join our IT Department. You will work as part of the IT Operations team to ensure the business is protected from cyber threats, is able to respond to and recover from incidents, and operates within an appropriate cyber security management framework. Take the lead and provide a focal point for all cyber security matters. Responsibilities: Supporting the IT leadership team in developing and delivering a cyber security strategy and roadmap. Developing and managing the cyber security management program closely aligned with agreed Security Standards and other industry frameworks that takes into account the Groups business objectives, technology roadmap, legal and regulatory compliance considerations. To develop, maintain and update the cyber security policies and accompanying standards, procedures and guidance. Responsible for ensuring that cyber security controls are defined and developed to operate effectively and compliantly. Responsible for the PCI DSS compliance programme and working with all parts of the business to ensure Stonegate remains compliant at all times. Carry out periodic testing of cyber security controls and processes implemented across the business to evaluate effectiveness in mitigating risks to the business within appetite levels. Development and management of Key Performance Indicators (KPIs), Management Information (MI). Responsible for managing, on behalf of any development projects, any penetration testing requirements, engaging with third parties, internal technology teams, and the business to remediate significant risks/issues identified before go-live. Responsible for the overall management and delivery of cyber security activities including oversight of outsourced Security Operations Centre and other Managed Security Services Providers. Ensure suspected and actual security incidents are detected and responded to promptly and effectively using both internal resources and specialist third parties. Ensure adopted cyber security technologies are operating as designed, remain effective, and are reviewed regularly for potential improvements. Champion new technologies to continue improving the organisation's overall cyber security posture. Sponsor, oversee and guide the delivery of cyber security projects. Custodian of the group cyber security education and awareness program. Coach and Mentor the Security Analysts with developing educational and improvement programs that meet standards and control requirements. Person Specification: Skills, Knowledge & Qualifications: Essential: Conversant in the latest developments and technologies in Cyber Security. Knowledge of cyber security standards e.g. CIS CSC, NIST CSF, CE Plus etc Working knowledge of Cloud Security best practices, frameworks and compliance. Practical experience managing security solutions and technology including the Microsoft security stack Good understanding of other technical security solution concepts Practical experience of achieving and maintaining compliance with PCI DSS Must be degree educated, ideally in an information security or IT related discipline Desirable: Good understanding of cyber risk management e.g. ISO27001 Good understanding of GDPR and it's practical implementation Preferred professional qualifications would include: ISC2 - CISSP ISACA - CISM, CRISC r CISA Experience of working in the retail or hospitality industry What's in it for you? 25 days annual leave Annual Leave Purchase Scheme Pension Vitality Healthcare Opt in dental insurance programme Annual bonus scheme The Stonegate discount card offering discounts across our managed estate Online benefits portal offering discounts across the High Street and other retailers At Stonegate Group, we're proud to be the biggest operator of pubs, bars, and late-night venues in the United Kingdom. Our leading brands are diverse and well-known, including names like Slug & Lettuce, Be At One and Popworld. Find out more about a career with Stonegate Group at . If you have a disability as outlined by the Equality Act 2010 and require reasonable adjustments to be made during the recruitment process, please let us know in advance so that any support, aids or adaptations can be put in place to assist you. You can contact us on .
Mar 28, 2024
Full time
We are recruiting for a Cyber Security Manager to join our IT Department. You will work as part of the IT Operations team to ensure the business is protected from cyber threats, is able to respond to and recover from incidents, and operates within an appropriate cyber security management framework. Take the lead and provide a focal point for all cyber security matters. Responsibilities: Supporting the IT leadership team in developing and delivering a cyber security strategy and roadmap. Developing and managing the cyber security management program closely aligned with agreed Security Standards and other industry frameworks that takes into account the Groups business objectives, technology roadmap, legal and regulatory compliance considerations. To develop, maintain and update the cyber security policies and accompanying standards, procedures and guidance. Responsible for ensuring that cyber security controls are defined and developed to operate effectively and compliantly. Responsible for the PCI DSS compliance programme and working with all parts of the business to ensure Stonegate remains compliant at all times. Carry out periodic testing of cyber security controls and processes implemented across the business to evaluate effectiveness in mitigating risks to the business within appetite levels. Development and management of Key Performance Indicators (KPIs), Management Information (MI). Responsible for managing, on behalf of any development projects, any penetration testing requirements, engaging with third parties, internal technology teams, and the business to remediate significant risks/issues identified before go-live. Responsible for the overall management and delivery of cyber security activities including oversight of outsourced Security Operations Centre and other Managed Security Services Providers. Ensure suspected and actual security incidents are detected and responded to promptly and effectively using both internal resources and specialist third parties. Ensure adopted cyber security technologies are operating as designed, remain effective, and are reviewed regularly for potential improvements. Champion new technologies to continue improving the organisation's overall cyber security posture. Sponsor, oversee and guide the delivery of cyber security projects. Custodian of the group cyber security education and awareness program. Coach and Mentor the Security Analysts with developing educational and improvement programs that meet standards and control requirements. Person Specification: Skills, Knowledge & Qualifications: Essential: Conversant in the latest developments and technologies in Cyber Security. Knowledge of cyber security standards e.g. CIS CSC, NIST CSF, CE Plus etc Working knowledge of Cloud Security best practices, frameworks and compliance. Practical experience managing security solutions and technology including the Microsoft security stack Good understanding of other technical security solution concepts Practical experience of achieving and maintaining compliance with PCI DSS Must be degree educated, ideally in an information security or IT related discipline Desirable: Good understanding of cyber risk management e.g. ISO27001 Good understanding of GDPR and it's practical implementation Preferred professional qualifications would include: ISC2 - CISSP ISACA - CISM, CRISC r CISA Experience of working in the retail or hospitality industry What's in it for you? 25 days annual leave Annual Leave Purchase Scheme Pension Vitality Healthcare Opt in dental insurance programme Annual bonus scheme The Stonegate discount card offering discounts across our managed estate Online benefits portal offering discounts across the High Street and other retailers At Stonegate Group, we're proud to be the biggest operator of pubs, bars, and late-night venues in the United Kingdom. Our leading brands are diverse and well-known, including names like Slug & Lettuce, Be At One and Popworld. Find out more about a career with Stonegate Group at . If you have a disability as outlined by the Equality Act 2010 and require reasonable adjustments to be made during the recruitment process, please let us know in advance so that any support, aids or adaptations can be put in place to assist you. You can contact us on .
Information Services and Security have a vital role to play in a crucial national mission. We're here to enable the organisation to deliver through the use of technology. As AWE transforms itself to meet the needs of the UK's next-generation nuclear deterrent, we need to adapt to deliver data-driven decision making, flexible and future-proofed IT services, adaptable cyber security, support to a multi-billion Pound building programme, and many more. The scale might be daunting to some, but you'll find it stimulating. We've got a long journey that we've only just started and we're looking for motivated people who can take us in the right direction. Your role will contribute directly to that shared mission. We won't deceive you, in some areas we're starting from a low base, but within ten years this organisation will look very different, and you can help make that happen. This is a role where you'll contribute to a legacy of national security for decades to come. So come and join us.We are recruiting for a Head of Information Assurance, Governance, Risk & Compliance to manage all areas of Information Assurance activity and policy across AWE. To manage appropriate and adequate levels of Cyber Defence. To assist the CISO in ensuring that AWE manages Technical Information Risk within the boundaries set by the risk appetite. To provide expert advice on Technical Information Security to senior leaders, managers, and staff. Location - Reading areaSalary - £58,640 - £85,000 per annum AWE (one of the best 25 big companies to work for in the UK) offers an attractive array of benefits which include:Market leading contributory pension schemeGenerous holiday entitlement (270 hours a year including bank holidays, plus every other Friday off)Flexible working hoursSalary sacrifice schemeConsideration for either full time or part time hours. Just let us know on your application if you wish to work part timeRelocation package available (terms and conditions apply) Key Accountabilities:Manage the provision and maintenance of Information Assurance Services.Management of appropriate Information Security principles, policies and resources are in place to protect information.Manage the Information Assurance Awareness and training regime at AWE.Ensure that AWE Information Assurance staff are appropriately skilled with development plans as necessary.Enable the performance and results of the team. Make sure that team members have the capabilities to get the work done now and in the future.Engage and inspire colleagues, promoting a diverse and inclusive environment that encourages them to seek opportunities for continuous improvement and personal development.Maintains and promotes high personal standards in environment, safety, health, security and quality and be a great team player. Key Responsibilities:Management of continual assurance (Secure By Design) processes when applied to AWE systems.Provide oversight of Technical Information Risk across AWE including those systems and risk that lie outside IS.Advise executive and senior management on the response to HMG policy, international standards and accepted good practice in Information Security.Provide SME input for Information Security on the development of policies and systems.Assist in the engagement with HMG and national bodies and international partners to strengthen AWE Cyber defences through collaboration.Build and lead a team of professional Information Assurance personnel of both AWE staff and contractors.Establish and meet relevant skills frameworks for information assurance staff.Manage Information Assurance activities as delegated by CISO.The Company may require you to fulfil any other reasonable duties aligned to your position from time to time in line with business needs. Although not to be considered a checklist we would like the successful candidate to be able to demonstrate: Experience delivering assurance services in a changing environment, at pace and with competing priorities.Proficiency performing risk, impact, and vulnerability assessments, and defining mitigation strategies. Experience working in a Government/ Defence/ Highly regulated/ Highly sensitive environment.Experience developing staff to keep pace with emerging technologies and assurance techniques.Project management skills, including budgeting and resource management.Experience of applying industry standards such as ISO27001, NIST 800-53, NCSC Cyber Assurance Framework (CAF), IEC 62443.Understanding of Continual Assurance (Secure by Design) principles, and their application to new and legacy IT systems and services. All Candidates must be willing and able to obtain and maintain the necessary security clearance for the role.
Mar 28, 2024
Full time
Information Services and Security have a vital role to play in a crucial national mission. We're here to enable the organisation to deliver through the use of technology. As AWE transforms itself to meet the needs of the UK's next-generation nuclear deterrent, we need to adapt to deliver data-driven decision making, flexible and future-proofed IT services, adaptable cyber security, support to a multi-billion Pound building programme, and many more. The scale might be daunting to some, but you'll find it stimulating. We've got a long journey that we've only just started and we're looking for motivated people who can take us in the right direction. Your role will contribute directly to that shared mission. We won't deceive you, in some areas we're starting from a low base, but within ten years this organisation will look very different, and you can help make that happen. This is a role where you'll contribute to a legacy of national security for decades to come. So come and join us.We are recruiting for a Head of Information Assurance, Governance, Risk & Compliance to manage all areas of Information Assurance activity and policy across AWE. To manage appropriate and adequate levels of Cyber Defence. To assist the CISO in ensuring that AWE manages Technical Information Risk within the boundaries set by the risk appetite. To provide expert advice on Technical Information Security to senior leaders, managers, and staff. Location - Reading areaSalary - £58,640 - £85,000 per annum AWE (one of the best 25 big companies to work for in the UK) offers an attractive array of benefits which include:Market leading contributory pension schemeGenerous holiday entitlement (270 hours a year including bank holidays, plus every other Friday off)Flexible working hoursSalary sacrifice schemeConsideration for either full time or part time hours. Just let us know on your application if you wish to work part timeRelocation package available (terms and conditions apply) Key Accountabilities:Manage the provision and maintenance of Information Assurance Services.Management of appropriate Information Security principles, policies and resources are in place to protect information.Manage the Information Assurance Awareness and training regime at AWE.Ensure that AWE Information Assurance staff are appropriately skilled with development plans as necessary.Enable the performance and results of the team. Make sure that team members have the capabilities to get the work done now and in the future.Engage and inspire colleagues, promoting a diverse and inclusive environment that encourages them to seek opportunities for continuous improvement and personal development.Maintains and promotes high personal standards in environment, safety, health, security and quality and be a great team player. Key Responsibilities:Management of continual assurance (Secure By Design) processes when applied to AWE systems.Provide oversight of Technical Information Risk across AWE including those systems and risk that lie outside IS.Advise executive and senior management on the response to HMG policy, international standards and accepted good practice in Information Security.Provide SME input for Information Security on the development of policies and systems.Assist in the engagement with HMG and national bodies and international partners to strengthen AWE Cyber defences through collaboration.Build and lead a team of professional Information Assurance personnel of both AWE staff and contractors.Establish and meet relevant skills frameworks for information assurance staff.Manage Information Assurance activities as delegated by CISO.The Company may require you to fulfil any other reasonable duties aligned to your position from time to time in line with business needs. Although not to be considered a checklist we would like the successful candidate to be able to demonstrate: Experience delivering assurance services in a changing environment, at pace and with competing priorities.Proficiency performing risk, impact, and vulnerability assessments, and defining mitigation strategies. Experience working in a Government/ Defence/ Highly regulated/ Highly sensitive environment.Experience developing staff to keep pace with emerging technologies and assurance techniques.Project management skills, including budgeting and resource management.Experience of applying industry standards such as ISO27001, NIST 800-53, NCSC Cyber Assurance Framework (CAF), IEC 62443.Understanding of Continual Assurance (Secure by Design) principles, and their application to new and legacy IT systems and services. All Candidates must be willing and able to obtain and maintain the necessary security clearance for the role.
Information Security Manager - (SaaS) Tech Scale Up - Central London (Hybrid Working) Robert Half have partnered with a fast-scaling global SaaS firm. Their already industry leading platform enables companies to build, manage and publish powerful marketing and rewards campaigns, leveraging its access to product, logistical superiority, and global footprint of leading retailers such as Amazon. Due to their continued successes and growth they're now looking to hire an Information Security Manager The role The successful candidate will be the single point of contact in the business for matters related to security, data, privacy, and IT procedures. The candidate will then determine whether external resource is required. The candidate will sit between their technology and development teams, and legal, assisting on client projects where required with a critical focus on improving internal policies and procedures, with certifications. The successful candidate will be a strong team player with a solid work ethic and a can-do attitude. The candidate will need to have excellent attention to detail and be able to deal with a large volume of work as well as possessing excellent communication skills. The candidate will be highly analytical and able to adapt their work and reporting dependent on the audience. You'll be a pro-active self-starter with a high attention to detail who will thrive in a start-up environment. Upcoming Projects & responsibilities ISO 27001: this is critical. They have an immediate need and requirement for certification. The candidate will lead this project, and therefore must be responsible for its delivery, maintenance, and ongoing reporting. The candidate must have experience of an ISO certification process and be comfortable to lead on the project with limited external resources. Internal policies and procedures related to IT, cyber, and data security: the candidate will be tasked with creating, implementing, and training in this respect. This will become a more day to day requirement advising on internal and external risks and threats and advising on their mitigation. Close liaison with legal and technology teams will be expected. Project management: there is often a requirement for their business to provide guidance and or replies to customers related to IT, cyber, security, data, and infrastructure. The candidate will be expected to be single point of contact for such, meeting customer timeframes and presenting to clients on the topic should the need arise. GDPR and data protection: the candidate will be reviewing current practices, procedures, and agreements with customers (new and existing) to advise on layers of compliance, and changes which might be expected or needed. An understanding of SLAs would be beneficial. Requirements High growth and/or SaaS experience considered favourably, working in a very fast-paced environment with a can do / entrepreneurial approach; Must have led on an ISO certification process before, with demonstrative experience in a leadership type capacity; Detail oriented and organised, with the ability to manage multiple deliverables and competing priorities; Commercially minded with genuine interest to be involved in a rapidly scaling early-stage technology-led (SaaS) company; Clear communicator and ability to adapt comms dependent on the audience. Time management is critical; Be keen to take on work which is not necessarily in immediate skill set but the best suited in the business to do so - an awareness of start up work ethic; Exposure to software development deployment and UAT is highly beneficial. A deep understanding of systems and software delivery is also key. Benefits Competitive Salary dependent on experience and suitability; (£60k - £85k) Flexible working Pension contributions; Bonus pool contingent on group performance assessed at FYE; Birthday day off; 25 days holiday allowance increasing with length of service; Company wellbeing initiative. Robert Half Ltd acts as an employment business for temporary positions and an employment agency for permanent positions. Robert Half is committed to equal opportunity and diversity. Suitable candidates with equivalent qualifications and more or less experience can apply. Rates of pay and salary ranges are dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data: gb/en/privacy-notice Security alert: scammers are currently targeting jobseekers. Robert Half do not ask candidates for a fee or request candidates to send applications through instant messaging services such as WhatsApp or Telegram. Learn how to protect yourself by visiting our website: gb/en/how-spot-recruitment-scams-and-protect-yourself
Mar 28, 2024
Full time
Information Security Manager - (SaaS) Tech Scale Up - Central London (Hybrid Working) Robert Half have partnered with a fast-scaling global SaaS firm. Their already industry leading platform enables companies to build, manage and publish powerful marketing and rewards campaigns, leveraging its access to product, logistical superiority, and global footprint of leading retailers such as Amazon. Due to their continued successes and growth they're now looking to hire an Information Security Manager The role The successful candidate will be the single point of contact in the business for matters related to security, data, privacy, and IT procedures. The candidate will then determine whether external resource is required. The candidate will sit between their technology and development teams, and legal, assisting on client projects where required with a critical focus on improving internal policies and procedures, with certifications. The successful candidate will be a strong team player with a solid work ethic and a can-do attitude. The candidate will need to have excellent attention to detail and be able to deal with a large volume of work as well as possessing excellent communication skills. The candidate will be highly analytical and able to adapt their work and reporting dependent on the audience. You'll be a pro-active self-starter with a high attention to detail who will thrive in a start-up environment. Upcoming Projects & responsibilities ISO 27001: this is critical. They have an immediate need and requirement for certification. The candidate will lead this project, and therefore must be responsible for its delivery, maintenance, and ongoing reporting. The candidate must have experience of an ISO certification process and be comfortable to lead on the project with limited external resources. Internal policies and procedures related to IT, cyber, and data security: the candidate will be tasked with creating, implementing, and training in this respect. This will become a more day to day requirement advising on internal and external risks and threats and advising on their mitigation. Close liaison with legal and technology teams will be expected. Project management: there is often a requirement for their business to provide guidance and or replies to customers related to IT, cyber, security, data, and infrastructure. The candidate will be expected to be single point of contact for such, meeting customer timeframes and presenting to clients on the topic should the need arise. GDPR and data protection: the candidate will be reviewing current practices, procedures, and agreements with customers (new and existing) to advise on layers of compliance, and changes which might be expected or needed. An understanding of SLAs would be beneficial. Requirements High growth and/or SaaS experience considered favourably, working in a very fast-paced environment with a can do / entrepreneurial approach; Must have led on an ISO certification process before, with demonstrative experience in a leadership type capacity; Detail oriented and organised, with the ability to manage multiple deliverables and competing priorities; Commercially minded with genuine interest to be involved in a rapidly scaling early-stage technology-led (SaaS) company; Clear communicator and ability to adapt comms dependent on the audience. Time management is critical; Be keen to take on work which is not necessarily in immediate skill set but the best suited in the business to do so - an awareness of start up work ethic; Exposure to software development deployment and UAT is highly beneficial. A deep understanding of systems and software delivery is also key. Benefits Competitive Salary dependent on experience and suitability; (£60k - £85k) Flexible working Pension contributions; Bonus pool contingent on group performance assessed at FYE; Birthday day off; 25 days holiday allowance increasing with length of service; Company wellbeing initiative. Robert Half Ltd acts as an employment business for temporary positions and an employment agency for permanent positions. Robert Half is committed to equal opportunity and diversity. Suitable candidates with equivalent qualifications and more or less experience can apply. Rates of pay and salary ranges are dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data: gb/en/privacy-notice Security alert: scammers are currently targeting jobseekers. Robert Half do not ask candidates for a fee or request candidates to send applications through instant messaging services such as WhatsApp or Telegram. Learn how to protect yourself by visiting our website: gb/en/how-spot-recruitment-scams-and-protect-yourself