Role Summary
Be at the forefront of ICT improvements and transformation within the Fire & Rescue Service (AF&RS). We are seeking a visionary leader to shape our future ICT and digital strategy, make further improvements to our infrastructure and ensure our ICT systems are resilient, reliable, and accessible to all staff 24/7.
This is a new role leading the development of an integrated ICT strategy and technology roadmap and overseeing the delivery of technology initiatives. This business-critical position will require you to work effectively with key stakeholders to create and implement an ICT strategy which aligns with our organisational goals and ambitions, ensures the integration and enhancement of our systems and improved user experience.
This role will require an ambitious, forward-thinking individual who has the technical knowledge, drive and passion to make a big difference. You will have a unique opportunity to make the role your own and bring your experience, ideas, influencing skills and technical expertise to our organisation. With challenging budgets, a creative and innovative approach is key, as is the exploration of potential funding sources.
Some of the things you’ll be doing
Strategic Leadership : Drive continuous improvement, culture change, and effective performance management. Act as the advocate for AF&RS’s digital vision, engaging leadership and representing AF&RS in local and national digital forums.
Expert Consultation : Offer expert guidance on ICT matters to senior stakeholders and the Fire Authority, enabling discussions on modern ICT and digital technology.
System Management : Ensure the efficiency, reliability, security, and cost-effectiveness of ICT systems and technology. Oversee external IT helpdesk providers and business continuity plans.
Infrastructure Enhancement : Drive continual improvements to the ICT infrastructure to ensure a solid foundation and enhanced user experience. Collaborate with stakeholders to define and implement improvements, presenting robust business cases for investment.
Digital Horizon-Scanning : Stay updated on digital developments and evaluate new technologies potential benefits, risks, and affordability aligned with the ICT strategy.
Strategy Development : Lead the creation and implementation of AF&RS’s cohesive ICT and Digital Strategy, fostering innovative and integrated improvements.
Project Oversight : Oversee the successful delivery of all ICT, digital, and systems projects. Establish governance structures, aligning with the ICT strategy and legal compliance.
Change Management : Implement efficient change processes, improving service quality and business continuity while minimising disruption.
Risk Management: Proactively assess and monitor ICT-related risks across AF&RS, implementing effective controls and mitigations.
Resource Optimisation : Develop an appropriate ICT organisational structure, optimising internal and external resources to ensure delivery and an integrated approach.
Team Leadership : Provide training and mentoring to internal ICT staff, fostering a responsive and agile cross-functional team.
Stakeholder Engagement: Liaise with stakeholders across AF&RS, building strong internal networks to maximise technology benefits.
Policy Implementation : Develop and implement up-to-date ICT policies ensuring robust controls across AF&RS. Liaise with internal data protection teams, ensuring ICT developments are compliant with relevant information legislation. Act as the Deputy Senior Risk Owner ensuring high-quality governance standards and compliance.
Training Alignment : Identify and evaluate ICT training aligned with the ICT strategy and budget requirements.
Budget Management : Manage ICT budgets aligned with the ICT strategy, forecasting and reviewing budgetary arrangements and exploring potential funding opportunities.
What we’ll need from you:
Essential:
Proven experience in senior ICT leadership role, driving digital transformation and strategy (ideally within the emergency services or public sector – but not essential).
Demonstrable experience in design, sourcing, transition, delivery and implementation of new technology and data capabilities.
Excellent up-to-date technical knowledge of ICT and the technology landscape.
Extensive knowledge of digital, data and technology regulations and best practice methodologies (e.g. ITIL, ISO) and performance benchmarking. You will also maintain up-to-date technical knowledge of ICT and the technology landscape.
Significant experience of leading and managing high performing teams (via direct or matrix management).
Proven experience of strategic service planning, business processes, developing, leading, and implementing IT/ICT strategies and change programs.
Experience of successfully managing high quality business-as-usual (BAU) ICT, while also inspiring, leading, and driving innovative solutions.
Proven experience of proactively managing business continuity and cyber security arrangements.
Significant experience of dealing with vendors and third parties including experience of procuring, negotiating, and robustly managing business-critical service contractors.
Degree level education, or equivalent, in business, computer science or a related field of study, or proven relevant business experience.
Professional ICT qualifications (such as ITIL or accredited status such as Chartered IT Professional CITP), or equivalent through a combination of proven relevant training, experience and evidenced continuing professional development.
Highly effective communication and influencing skills across the full breadth of written, verbal, presentation, and digital media. You will be able to engage, advise and explain technical matters in a non-technical way.
Adaptable, inclusive, and values-based leadership and people management skills.
Relationship building and collaboration skills with the ability to influence strategic thinking and approaches to complex service issues.
Strong analytical, research, numerical and decision-making skills, to deal with complex service delivery.
Ability to manage and prioritise high workloads, with pressing and conflicting deadlines.
Desirable:
Comprehensive budget-creation and budget-management experience including identifying and evaluating opportunities, negotiation, and delivering efficiencies.
Experience of working in a climate of transformation and/or continuous improvement and supporting others in uncertain times.
Experience of working for an emergency service or local authority.
Experience of Information and Data Governance and/or of being a Senior Risk Information Officer (SIRO) or Deputy SIRO.
Experience of portfolio and project management methodologies and tailoring these for significant ICT projects and organisational context.
Proven ICT risk management experience.
High level of political awareness and acuity to interact with senior stakeholders and elected Members.
Foundation or Practitioner level qualification in programme or project management.
What you can expect in return
27 days annual holiday (plus public holidays) rising to 31 days after 5 years, and 32 after 10 years of service
Local Government Pension - Defined Benefit Scheme
Flexible and hybrid working
Electric Vehicle Salary Sacrifice Scheme
Cycle to Work scheme
Welfare and Wellbeing services
Staff Engagement Groups
Access to a Medical Intervention Scheme which can support staff to access private medical assessments and treatments
Access to Blue Light card with offers online and high street discounts
Use of the multi-gym, sports hall, restaurant, free parking, and beautiful open surroundings at our Headquarters in Portishead
Please note - as this post is based at our Headquarters which we share with Avon & Somerset Police, the successful applicant will be required to undergo a security clearance check & DBS check.
Further Information
If you would like to have an informal conversation with the hiring manager for this role please contact recruitment@avonfire.gov.uk to request this.
How to apply: The full job description can be found on our careers pages: Head of ICT | Yes You Can! The Avon Fire & Rescue Service Job . Once you have read the job description please submit a tailored CV demonstrating how your skills and experience match the requirements of the role.
Late applications will not be accepted. Please quote job reference number 1023 [JD number] on any communications. Thank you.
Avon Fire & Rescue Service is committed to securing equality of opportunity. W e welcome applications from all members of our community who are currently under-represented at Avon Fire & Rescue Service, particularly women, Disabled people and members of ethnic minority communities.
Dec 20, 2023
Full time
Role Summary
Be at the forefront of ICT improvements and transformation within the Fire & Rescue Service (AF&RS). We are seeking a visionary leader to shape our future ICT and digital strategy, make further improvements to our infrastructure and ensure our ICT systems are resilient, reliable, and accessible to all staff 24/7.
This is a new role leading the development of an integrated ICT strategy and technology roadmap and overseeing the delivery of technology initiatives. This business-critical position will require you to work effectively with key stakeholders to create and implement an ICT strategy which aligns with our organisational goals and ambitions, ensures the integration and enhancement of our systems and improved user experience.
This role will require an ambitious, forward-thinking individual who has the technical knowledge, drive and passion to make a big difference. You will have a unique opportunity to make the role your own and bring your experience, ideas, influencing skills and technical expertise to our organisation. With challenging budgets, a creative and innovative approach is key, as is the exploration of potential funding sources.
Some of the things you’ll be doing
Strategic Leadership : Drive continuous improvement, culture change, and effective performance management. Act as the advocate for AF&RS’s digital vision, engaging leadership and representing AF&RS in local and national digital forums.
Expert Consultation : Offer expert guidance on ICT matters to senior stakeholders and the Fire Authority, enabling discussions on modern ICT and digital technology.
System Management : Ensure the efficiency, reliability, security, and cost-effectiveness of ICT systems and technology. Oversee external IT helpdesk providers and business continuity plans.
Infrastructure Enhancement : Drive continual improvements to the ICT infrastructure to ensure a solid foundation and enhanced user experience. Collaborate with stakeholders to define and implement improvements, presenting robust business cases for investment.
Digital Horizon-Scanning : Stay updated on digital developments and evaluate new technologies potential benefits, risks, and affordability aligned with the ICT strategy.
Strategy Development : Lead the creation and implementation of AF&RS’s cohesive ICT and Digital Strategy, fostering innovative and integrated improvements.
Project Oversight : Oversee the successful delivery of all ICT, digital, and systems projects. Establish governance structures, aligning with the ICT strategy and legal compliance.
Change Management : Implement efficient change processes, improving service quality and business continuity while minimising disruption.
Risk Management: Proactively assess and monitor ICT-related risks across AF&RS, implementing effective controls and mitigations.
Resource Optimisation : Develop an appropriate ICT organisational structure, optimising internal and external resources to ensure delivery and an integrated approach.
Team Leadership : Provide training and mentoring to internal ICT staff, fostering a responsive and agile cross-functional team.
Stakeholder Engagement: Liaise with stakeholders across AF&RS, building strong internal networks to maximise technology benefits.
Policy Implementation : Develop and implement up-to-date ICT policies ensuring robust controls across AF&RS. Liaise with internal data protection teams, ensuring ICT developments are compliant with relevant information legislation. Act as the Deputy Senior Risk Owner ensuring high-quality governance standards and compliance.
Training Alignment : Identify and evaluate ICT training aligned with the ICT strategy and budget requirements.
Budget Management : Manage ICT budgets aligned with the ICT strategy, forecasting and reviewing budgetary arrangements and exploring potential funding opportunities.
What we’ll need from you:
Essential:
Proven experience in senior ICT leadership role, driving digital transformation and strategy (ideally within the emergency services or public sector – but not essential).
Demonstrable experience in design, sourcing, transition, delivery and implementation of new technology and data capabilities.
Excellent up-to-date technical knowledge of ICT and the technology landscape.
Extensive knowledge of digital, data and technology regulations and best practice methodologies (e.g. ITIL, ISO) and performance benchmarking. You will also maintain up-to-date technical knowledge of ICT and the technology landscape.
Significant experience of leading and managing high performing teams (via direct or matrix management).
Proven experience of strategic service planning, business processes, developing, leading, and implementing IT/ICT strategies and change programs.
Experience of successfully managing high quality business-as-usual (BAU) ICT, while also inspiring, leading, and driving innovative solutions.
Proven experience of proactively managing business continuity and cyber security arrangements.
Significant experience of dealing with vendors and third parties including experience of procuring, negotiating, and robustly managing business-critical service contractors.
Degree level education, or equivalent, in business, computer science or a related field of study, or proven relevant business experience.
Professional ICT qualifications (such as ITIL or accredited status such as Chartered IT Professional CITP), or equivalent through a combination of proven relevant training, experience and evidenced continuing professional development.
Highly effective communication and influencing skills across the full breadth of written, verbal, presentation, and digital media. You will be able to engage, advise and explain technical matters in a non-technical way.
Adaptable, inclusive, and values-based leadership and people management skills.
Relationship building and collaboration skills with the ability to influence strategic thinking and approaches to complex service issues.
Strong analytical, research, numerical and decision-making skills, to deal with complex service delivery.
Ability to manage and prioritise high workloads, with pressing and conflicting deadlines.
Desirable:
Comprehensive budget-creation and budget-management experience including identifying and evaluating opportunities, negotiation, and delivering efficiencies.
Experience of working in a climate of transformation and/or continuous improvement and supporting others in uncertain times.
Experience of working for an emergency service or local authority.
Experience of Information and Data Governance and/or of being a Senior Risk Information Officer (SIRO) or Deputy SIRO.
Experience of portfolio and project management methodologies and tailoring these for significant ICT projects and organisational context.
Proven ICT risk management experience.
High level of political awareness and acuity to interact with senior stakeholders and elected Members.
Foundation or Practitioner level qualification in programme or project management.
What you can expect in return
27 days annual holiday (plus public holidays) rising to 31 days after 5 years, and 32 after 10 years of service
Local Government Pension - Defined Benefit Scheme
Flexible and hybrid working
Electric Vehicle Salary Sacrifice Scheme
Cycle to Work scheme
Welfare and Wellbeing services
Staff Engagement Groups
Access to a Medical Intervention Scheme which can support staff to access private medical assessments and treatments
Access to Blue Light card with offers online and high street discounts
Use of the multi-gym, sports hall, restaurant, free parking, and beautiful open surroundings at our Headquarters in Portishead
Please note - as this post is based at our Headquarters which we share with Avon & Somerset Police, the successful applicant will be required to undergo a security clearance check & DBS check.
Further Information
If you would like to have an informal conversation with the hiring manager for this role please contact recruitment@avonfire.gov.uk to request this.
How to apply: The full job description can be found on our careers pages: Head of ICT | Yes You Can! The Avon Fire & Rescue Service Job . Once you have read the job description please submit a tailored CV demonstrating how your skills and experience match the requirements of the role.
Late applications will not be accepted. Please quote job reference number 1023 [JD number] on any communications. Thank you.
Avon Fire & Rescue Service is committed to securing equality of opportunity. W e welcome applications from all members of our community who are currently under-represented at Avon Fire & Rescue Service, particularly women, Disabled people and members of ethnic minority communities.
ABOUT THE ROLE
Are you passionate about protecting Cyber Security?
Do you want to make a real difference in the fight against cybercrime in local government?
Are you passionate about making a difference in your community?
If so, we want you to join our team!
We seek a highly motivated and experienced Cyber Security & Networks Manager to join our team. Stevenage Borough Council are a leading local authority in Cyber Security in the UK and pilot cyber security standards for The Department for Levelling Up, Housing and Communities (DLUHC). This is an exciting opportunity to be at the forefront of Cyber Security in the public sector. The ideal candidate will have a strong understanding of cyber security principles and associated technology risk management. They will also have experience in managing and leading a team of IT professionals.
Accountable for Cyber security, you will identify and ensure the security of the council’s IT Applications and Digital Solutions. You will lead in evaluating new and existing projects, software and hardware products, and vendors, including examining vendor contracts and terms of service. You will support teams across the council to develop their understanding of security cyber risks. You will manage a small team of two Senior Network and Security Engineers
You will take the lead on cyber security and network for the Shared IT service, which supports over 1,000 users across Stevenage Borough Council and East Herts District Council and will put in place controls over security systems, such as firewalls, data protection controls, patching, encryption, vulnerability scanning and penetration testing.
You will be responsible for achieving compliance with Cyber Essentials Plus, Cyber Assessment Framework (CAF) and Public Sector Network (PSN) and related government frameworks, including those of the National Cyber Security Centre, the Information Commissioners Office (ICO)
ABOUT YOU
The successful candidate will have
Ability to work in a high-pressure environment and make sound decisions in emergency situations while empathising with customers and responding sympathetically to
Extensive knowledge of all IT security aspects, including audit response, oversight, and scrutiny, ICO responses, Information Governance, Information Assurance, IT Asset Management policies, Quality Assurance, Test Strategies, PSN and PCI and other relevant compliance frameworks, Disaster recovery and Business continuity
Extensive experience working as part of a multidiscipline ICT team in a complex organisation, ideally a local authority.
OUR BENEFITS
Pension Scheme: We offer a career average pension scheme, providing generous benefits upon retirement, as well as a lump sum and pensions for dependants
Flexible working: available upon request, subject to operational requirements
Part-time and job share opportunities - all our full time vacancies are open to job share unless otherwise stated
A variety of different types of paid leave covering emergency and planned leave, maternity, paternity, adoption and parental leave
25 days holiday rising to 31 days (depending on Local Government service)
An extensive range of learning and development opportunities
Employee Assistance Programme – 24/7 Confidential advice and support on personal, work, family, and relationship issues
Discounted health and fitness membership
Trade Unions: For a small fee, all employees have the opportunity to join a Trade Union
HOW TO APPLY
All applications must be made on online - please visit https://bit.ly/45Yo0Ke
For an informal discussion about this role please contact
Name Matt Canterford
Job Title Assistant Director and Chief Technology Officer
Phone Number 07706 349657
Email matt.canterford@stevenage.gov.uk
Closing date for receipt of applications : 26 June 2023
Interviews will be held the week commencing: 3 July 2023
Please note that if we receive a large volume of applications for this role, we reserve the right to close this vacancy ahead of the published closing date
Stevenage Borough Council (SBC) is committed to safeguarding and promoting the welfare of children, young people and vulnerable adults and expects all staff, volunteers and recruitment candidates to share this commitment. SBC shall take all reasonable steps to employ staff who are safe to work with children, young people and vulnerable adults. For posts identified with regular contact with these groups applicants will be required to undertake a Value Based Interview. The council supports the legislative requirements for employing and maintaining safer staff and the guidance specified by Hertfordshire Safeguarding Adults Board
Stevenage Borough Council is committed to Equal Opportunities for All. For further information please click https://www.stevenage.gov.uk/about-the-council/jobs-and-careers/equal-opportunities
Jun 05, 2023
Full time
ABOUT THE ROLE
Are you passionate about protecting Cyber Security?
Do you want to make a real difference in the fight against cybercrime in local government?
Are you passionate about making a difference in your community?
If so, we want you to join our team!
We seek a highly motivated and experienced Cyber Security & Networks Manager to join our team. Stevenage Borough Council are a leading local authority in Cyber Security in the UK and pilot cyber security standards for The Department for Levelling Up, Housing and Communities (DLUHC). This is an exciting opportunity to be at the forefront of Cyber Security in the public sector. The ideal candidate will have a strong understanding of cyber security principles and associated technology risk management. They will also have experience in managing and leading a team of IT professionals.
Accountable for Cyber security, you will identify and ensure the security of the council’s IT Applications and Digital Solutions. You will lead in evaluating new and existing projects, software and hardware products, and vendors, including examining vendor contracts and terms of service. You will support teams across the council to develop their understanding of security cyber risks. You will manage a small team of two Senior Network and Security Engineers
You will take the lead on cyber security and network for the Shared IT service, which supports over 1,000 users across Stevenage Borough Council and East Herts District Council and will put in place controls over security systems, such as firewalls, data protection controls, patching, encryption, vulnerability scanning and penetration testing.
You will be responsible for achieving compliance with Cyber Essentials Plus, Cyber Assessment Framework (CAF) and Public Sector Network (PSN) and related government frameworks, including those of the National Cyber Security Centre, the Information Commissioners Office (ICO)
ABOUT YOU
The successful candidate will have
Ability to work in a high-pressure environment and make sound decisions in emergency situations while empathising with customers and responding sympathetically to
Extensive knowledge of all IT security aspects, including audit response, oversight, and scrutiny, ICO responses, Information Governance, Information Assurance, IT Asset Management policies, Quality Assurance, Test Strategies, PSN and PCI and other relevant compliance frameworks, Disaster recovery and Business continuity
Extensive experience working as part of a multidiscipline ICT team in a complex organisation, ideally a local authority.
OUR BENEFITS
Pension Scheme: We offer a career average pension scheme, providing generous benefits upon retirement, as well as a lump sum and pensions for dependants
Flexible working: available upon request, subject to operational requirements
Part-time and job share opportunities - all our full time vacancies are open to job share unless otherwise stated
A variety of different types of paid leave covering emergency and planned leave, maternity, paternity, adoption and parental leave
25 days holiday rising to 31 days (depending on Local Government service)
An extensive range of learning and development opportunities
Employee Assistance Programme – 24/7 Confidential advice and support on personal, work, family, and relationship issues
Discounted health and fitness membership
Trade Unions: For a small fee, all employees have the opportunity to join a Trade Union
HOW TO APPLY
All applications must be made on online - please visit https://bit.ly/45Yo0Ke
For an informal discussion about this role please contact
Name Matt Canterford
Job Title Assistant Director and Chief Technology Officer
Phone Number 07706 349657
Email matt.canterford@stevenage.gov.uk
Closing date for receipt of applications : 26 June 2023
Interviews will be held the week commencing: 3 July 2023
Please note that if we receive a large volume of applications for this role, we reserve the right to close this vacancy ahead of the published closing date
Stevenage Borough Council (SBC) is committed to safeguarding and promoting the welfare of children, young people and vulnerable adults and expects all staff, volunteers and recruitment candidates to share this commitment. SBC shall take all reasonable steps to employ staff who are safe to work with children, young people and vulnerable adults. For posts identified with regular contact with these groups applicants will be required to undertake a Value Based Interview. The council supports the legislative requirements for employing and maintaining safer staff and the guidance specified by Hertfordshire Safeguarding Adults Board
Stevenage Borough Council is committed to Equal Opportunities for All. For further information please click https://www.stevenage.gov.uk/about-the-council/jobs-and-careers/equal-opportunities
CTP - Compliance & Assurance Officer
£45,192 to £49,280 plus a Location allowance of £1,721. You will receive £45,192 the band minimum. Progress to the band maximum of £49,280 will be via incremental progression.
Location: Across London
Take your place at the forefront of national security and public safety
Threats to the UK are always changing and evolving, especially when it comes to cyber security. Counter Terrorism Policing (CTP) plays a crucial role in keeping our country — and everyone in it — safe. In this role, you’ll be contributing to something that really matters as you make sure that officers and staff can continue to protect the UK.
From monitoring mailboxes to supporting accreditation and managing enquiries, you’ll be responsible for providing CT governing bodies with assurance that policies and procedures are adhered to.
It will see you supporting regions right across the CTP Network and establish local mechanisms to continually monitor and maintain compliance. This will involve IT related monitoring and audits, and it’ll also call on your ability to collate, interpret and evaluate information to produce detailed reports in a clear format. You’ll be producing high level reports for senior management on assurance activity and findings, and making recommendations for any areas that could be improved.
You’ll need initiative, drive, personal resilience and the motivation to deliver a high quality service. Your experience in the administration of security incidents will be key, as will your skills in collaboration and stakeholder engagement. Ideally, you’ll also have a background or qualification in cyber security, computing or information security.
You can be sure you’ll be among some of the best and brightest individuals around. You’ll also have the chance to learn new skills and be part of a team operating at the highest level of national responsibilities.
As well as this, you’ll enjoy benefits including substantial annual leave, Civil Service pension arrangements, interest free season ticket loans, flexible working conditions and more.
Vetting
This post requires access to the most sensitive intelligence material on a daily basis. Applicants must hold or be prepared to undergo National Security Vetting (NSV) Developed Vetting (DV) level before taking up the post.
Additionally, this material is of particular sensitivity to the UK and its distribution must be restricted to UK nationals. In approved circumstances dual nationals (of which one element is British) may also be granted access. However, in the event that potential conflicts of interest cannot be managed the post holder will not be able to see the intelligence material and will not be able to perform their duties. For the purpose of safeguarding national security and in line with Cabinet Office Policy, supported by Section 82(2) to (4) of the Police Reform Act (2002), applicants who do not hold or acquire Security Check (enhanced) (SC(e)) or Developed Vetting (DV) clearance and meet the nationality requirements cannot be offered the post.
Confidentiality Agreement
Applicants should also be aware of the need to sign a confidentiality agreement on taking up the post.
Our Employee Commitments
Counter Terrorism Policing aims to create an inclusive and welcoming atmosphere and culture and an environment where all our people feel a strong sense of belonging and are able to reach their full potential. Where any group or individual can be and feel respected, supported and valued to fully participate and contribute to our mission of “Working to keep people safe from Terrorism”.
Inclusion, diversity and equality is at the front and centre of our approach to make the composition of Counter Terrorism Policing more representative of the communities we serve. As Counter Terrorism is rooted in Local Policing, to tackle today’s complex policing challenges, applications from across all communities are therefore essential and encouraged. Counter Terrorism Policing as a network is committed to ensuring that disabled people and those with long-term health conditions have the opportunities to fulfil their potential and realise their aspirations’.
Counter Terrorism Policing is committed to creating an inclusive working environment. We welcome and encourage applications from candidates who are seeking flexible working arrangements and including part time working or job share. In addition, this role has been reviewed following learning from work during the Covid pandemic and may be done in an agile manner. In the first instance, please contact the vacancy holder to discuss how such arrangements could be accommodated (where applicable).
Counter Terrorism Policing recruitment is open to all, but we are keen to positively support those who are younger in service to join into our specialist environment.
Please click on the below link to view an online candidate information pack that will you give you an insight into the Met, the competency framework we use which shapes our daily work behaviours, the application process and a host of other information, that will help inform and support your application:
https://sscl-innovation.com/MPScandidatepack/
Click the apply now button below and start your career at the Met . Applications will be via a detailed CV and online application form.
Completed applications must be submitted by 10 January 2023.
We view diversity as fundamental to our success. To tackle today’s complex policing challenges, we need a workforce made up from all of London’s communities. Applications from across the community are therefore essential.
As a Disability Confident Committed Employer the Met have committed to ensuring that disabled people and those with long-term health conditions have the opportunities to fulfil their potential and realise their aspirations.
Dec 13, 2022
Full time
CTP - Compliance & Assurance Officer
£45,192 to £49,280 plus a Location allowance of £1,721. You will receive £45,192 the band minimum. Progress to the band maximum of £49,280 will be via incremental progression.
Location: Across London
Take your place at the forefront of national security and public safety
Threats to the UK are always changing and evolving, especially when it comes to cyber security. Counter Terrorism Policing (CTP) plays a crucial role in keeping our country — and everyone in it — safe. In this role, you’ll be contributing to something that really matters as you make sure that officers and staff can continue to protect the UK.
From monitoring mailboxes to supporting accreditation and managing enquiries, you’ll be responsible for providing CT governing bodies with assurance that policies and procedures are adhered to.
It will see you supporting regions right across the CTP Network and establish local mechanisms to continually monitor and maintain compliance. This will involve IT related monitoring and audits, and it’ll also call on your ability to collate, interpret and evaluate information to produce detailed reports in a clear format. You’ll be producing high level reports for senior management on assurance activity and findings, and making recommendations for any areas that could be improved.
You’ll need initiative, drive, personal resilience and the motivation to deliver a high quality service. Your experience in the administration of security incidents will be key, as will your skills in collaboration and stakeholder engagement. Ideally, you’ll also have a background or qualification in cyber security, computing or information security.
You can be sure you’ll be among some of the best and brightest individuals around. You’ll also have the chance to learn new skills and be part of a team operating at the highest level of national responsibilities.
As well as this, you’ll enjoy benefits including substantial annual leave, Civil Service pension arrangements, interest free season ticket loans, flexible working conditions and more.
Vetting
This post requires access to the most sensitive intelligence material on a daily basis. Applicants must hold or be prepared to undergo National Security Vetting (NSV) Developed Vetting (DV) level before taking up the post.
Additionally, this material is of particular sensitivity to the UK and its distribution must be restricted to UK nationals. In approved circumstances dual nationals (of which one element is British) may also be granted access. However, in the event that potential conflicts of interest cannot be managed the post holder will not be able to see the intelligence material and will not be able to perform their duties. For the purpose of safeguarding national security and in line with Cabinet Office Policy, supported by Section 82(2) to (4) of the Police Reform Act (2002), applicants who do not hold or acquire Security Check (enhanced) (SC(e)) or Developed Vetting (DV) clearance and meet the nationality requirements cannot be offered the post.
Confidentiality Agreement
Applicants should also be aware of the need to sign a confidentiality agreement on taking up the post.
Our Employee Commitments
Counter Terrorism Policing aims to create an inclusive and welcoming atmosphere and culture and an environment where all our people feel a strong sense of belonging and are able to reach their full potential. Where any group or individual can be and feel respected, supported and valued to fully participate and contribute to our mission of “Working to keep people safe from Terrorism”.
Inclusion, diversity and equality is at the front and centre of our approach to make the composition of Counter Terrorism Policing more representative of the communities we serve. As Counter Terrorism is rooted in Local Policing, to tackle today’s complex policing challenges, applications from across all communities are therefore essential and encouraged. Counter Terrorism Policing as a network is committed to ensuring that disabled people and those with long-term health conditions have the opportunities to fulfil their potential and realise their aspirations’.
Counter Terrorism Policing is committed to creating an inclusive working environment. We welcome and encourage applications from candidates who are seeking flexible working arrangements and including part time working or job share. In addition, this role has been reviewed following learning from work during the Covid pandemic and may be done in an agile manner. In the first instance, please contact the vacancy holder to discuss how such arrangements could be accommodated (where applicable).
Counter Terrorism Policing recruitment is open to all, but we are keen to positively support those who are younger in service to join into our specialist environment.
Please click on the below link to view an online candidate information pack that will you give you an insight into the Met, the competency framework we use which shapes our daily work behaviours, the application process and a host of other information, that will help inform and support your application:
https://sscl-innovation.com/MPScandidatepack/
Click the apply now button below and start your career at the Met . Applications will be via a detailed CV and online application form.
Completed applications must be submitted by 10 January 2023.
We view diversity as fundamental to our success. To tackle today’s complex policing challenges, we need a workforce made up from all of London’s communities. Applications from across the community are therefore essential.
As a Disability Confident Committed Employer the Met have committed to ensuring that disabled people and those with long-term health conditions have the opportunities to fulfil their potential and realise their aspirations.
An opportunity for an Application Support Specialist has arisen, to join a team of IT specialists who implement and maintain technology solutions which support the corporate and service objectives of both South Hams and West Devon Councils. Together, the team is responsible for all of the infrastructure, networking, application support and development, GIS, telephony, database administration and security.
We are looking to strengthen our team with a web developer who has php and Drupal experience to lead on a number of web related projects including rebuilding the Councils Intranet. There will also be an opportunity to develop front end forms and integrations using our Liberty Create Lo Code CRM and workflow platform. The potential also exists to develop your knowledge of .net, application support and database administration.
For an informal discussion please contact the Head of IT, Mike Ward at mike.ward@swdevon.gov.uk .
Sep 15, 2022
Full time
An opportunity for an Application Support Specialist has arisen, to join a team of IT specialists who implement and maintain technology solutions which support the corporate and service objectives of both South Hams and West Devon Councils. Together, the team is responsible for all of the infrastructure, networking, application support and development, GIS, telephony, database administration and security.
We are looking to strengthen our team with a web developer who has php and Drupal experience to lead on a number of web related projects including rebuilding the Councils Intranet. There will also be an opportunity to develop front end forms and integrations using our Liberty Create Lo Code CRM and workflow platform. The potential also exists to develop your knowledge of .net, application support and database administration.
For an informal discussion please contact the Head of IT, Mike Ward at mike.ward@swdevon.gov.uk .
A leading public sector organisation is looking for a Chief Information Security Officer to join their team. This is a great opportunity for someone looking to take the step into senior leadership. This position offers all of the responsibilities and day to day duties of a CISO, without the ultimate accountability into the board with the CIO working as a buffer between. You will be responsible for developing and implementing security policies and procedures, as well as ensuring compliance with relevant regulations and standards. You will also be responsible for managing a team of security professionals. Key Responsibilities: Develop and implement information security policies and procedures Ensure compliance with relevant regulations and standards Manage a team of security professionals Monitor and respond to security incidents Conduct regular security assessments and audits Develop and deliver security awareness training Stay up-to-date with the latest security trends and technologies Requirements: Significant experience within the information security field with relevant certification/ qualifications Experience in a leadership role Strong knowledge of security frameworks and standards (e.g., ISO 27001, NIST, Cyber Essentials, PSN) Excellent communication and interpersonal skills Ideally experience of working within or for a public sector organisation The position does offer hybrid working. Salary £65,891 per annum. Please get in touch with Kieran Fielding at Ark Search or apply if you'd like to hear more.
Mar 28, 2024
Full time
A leading public sector organisation is looking for a Chief Information Security Officer to join their team. This is a great opportunity for someone looking to take the step into senior leadership. This position offers all of the responsibilities and day to day duties of a CISO, without the ultimate accountability into the board with the CIO working as a buffer between. You will be responsible for developing and implementing security policies and procedures, as well as ensuring compliance with relevant regulations and standards. You will also be responsible for managing a team of security professionals. Key Responsibilities: Develop and implement information security policies and procedures Ensure compliance with relevant regulations and standards Manage a team of security professionals Monitor and respond to security incidents Conduct regular security assessments and audits Develop and deliver security awareness training Stay up-to-date with the latest security trends and technologies Requirements: Significant experience within the information security field with relevant certification/ qualifications Experience in a leadership role Strong knowledge of security frameworks and standards (e.g., ISO 27001, NIST, Cyber Essentials, PSN) Excellent communication and interpersonal skills Ideally experience of working within or for a public sector organisation The position does offer hybrid working. Salary £65,891 per annum. Please get in touch with Kieran Fielding at Ark Search or apply if you'd like to hear more.
Crisis24, a GardaWorld company, is widely regarded as the leading integrated risk management, crisis response, consulting, and global protective solutions firm, serving the world's most influential people, disruptive brands, and prominent organizations. Championed by our advanced Global Operation Centers and our skilled team of intelligence analysts, we offer highly specialized services, security and consulting, with the technology and AI to power it all across the globe. At Crisis24, we go beyond mere employment; we pave the way to a realm where your skills become instrumental in shaping global security, guiding clients through a multifaceted and challenging landscape. Your journey with us will be deeply fulfilling, driven by a powerful sense of purpose and accomplishment. Within our thriving environment, you'll discover abundant chances for both personal and career advancement. Seize this moment to push your limits, broaden your expertise, and elevate your professional journey to unprecedented levels. Join the Crisis24 team today and be a part of something extraordinary where growth and impact converge. Crisis24's Crisis & Security Consulting (CSC) division, specifically the All-Hazards Response team, is on the lookout for a Senior Consultant. This role is ideally suited for candidates based in the UK or in mainland Europe. As a part of our dynamic and agile Response Group, the successful applicant will have the chance to enhance their skill set and knowledge, enabling them to contribute across various teams within the organization. Candidates should possess comprehensive experience in crisis management at both tactical and strategic levels and have a wide-ranging understanding of different industries. The position involves readiness to deploy globally at short notice, often in challenging situations, requiring confidence and the ability to provide immediate support and guidance to high-level / C-Suite stakeholders. What You Will Work On Summary You will deliver All Hazards Response services, providing expert advice and guidance to clients facing crises, from threats and violence to political and cyber-related issues. This role entails global deployment, often without prior notice, creating documentation in line with CSC's methodologies, conducting sensitive investigations, and potentially training as a subject matter expert for example as a crisis communications consultant. You will also support the development of junior team members and collaborate with the global consulting team on service delivery, maintaining accurate records across platforms such as Salesforce. Specifics Provide advice and guidance to clients in response to case activations on the following peril types: Active Assailant / Workplace Violence; Political Violence & Terrorism; Cyber Extortion; and Any other crisis-level event in which All-Hazard Response are engaged. Deployment globally in support of any new case activation, often with no notice. Produce all relevant documentation in support of assigned response cases, in line with CSC's doctrine and methodology. Coordinate and conduct sensitive investigational support to clients. Train as a Crisis Communications consultant. Support the development of more junior team members and work in cooperation with the wider global consulting team on all other aspects of consulting services delivery. Keep Salesforce and any other platforms used by Crisis24 up to date and accurate in relation to relevant accounts and proposals. Obtain the skill set and knowledge to actively respond as a Special Risks Response Consultant when required. Support to Insurance Partners Deliver onboarding briefings to new policy holders. Provide capability briefings in support of marketing the wider insurance policies. Assist in the delivery of update reports to insurance underwriters during ongoing cases. Generation of new response retainers, providing services to insurance partners or private clients. Direct engagement contracts for new response cases when insurance options are not present. Assist wider CSC team members in any business development briefings and activity when required. Support the implementation of a business development plan for the region. Scope, price, manage and/or oversee the development of client proposals and responses to RFPs. Represent CSC, Crisis24 and GardaWorld in client pitches/senior-level presentations/in-person meetings. Duty officer Following training, there may be a requirement to join the Duty Officer roster for All-Hazards Response activations. Account management Client liaison and account/client relationship management of new and existing consulting clients. Other Support the wider Crisis24 and GardaWorld business as required. Who You Will Work With Under the guidance of the Associate Director for All Hazards Response, you will collaborate on a variety of response cases and projects. These initiatives are diverse in terms of geography, industry, and complexity, necessitating effective management of pressures. You will be an integral part of both the Response Group and the wider CSC team, frequently assisting other teams within Crisis24 and GardaWorld. Owing to the sensitive nature of the case activity, All Hazards personnel are often visible to the highest levels of leadership within Crisis24 and GardaWorld. What You Will Bring Summary Candidates should have at least 10 years of experience in Crisis Management, preferably within a corporate or consulting environment, and a solid background in Security Risk and Crisis Management. You should be knowledgeable about crisis response processes, the specialist insurance market, and have a track record of developing new business opportunities. The role demands extensive global travel, often to high-risk areas, and requires strong analytical, problem-solving, and communication skills. Candidates must be adaptable, motivated to work irregular hours, and committed to continuous professional development. Specifics 10+ years of experience in Crisis Management, preferably in a corporate and/or consulting setting. Strong working knowledge of Security Risk and Crisis Management. In-depth knowledge and experience of crisis response processes. An understanding of specialist insurance markets. Demonstrable commercial experience developing new business opportunities. Extensive travel experience globally, including in high-threat/hostile environments. Strong analytical and problem-solving skills; a creative thinker who can apply initiative and create solutions to solve clients' problems. Ability to manage multiple cases simultaneously with strong attention to detail. Personable and able to communicate effectively at all levels with team members and clients, with the gravitas to influence at a very senior level, including verbal communications and presentations skills. Able to relate well to others with confidence and empathy, build trust and be calm and resourceful during difficult and emotive situations. The flexibility and motivation to work irregular hours and maintain quality delivery. Invested in development; maintains a high level of industry knowledge and awareness of geopolitical and security/crisis management issues and trends. The annual leave year runs from 1 January to 31 December. Your paid annual leave entitlement will be 25 days per annum (pro rata for part time hours). Group Life Insurance effective upon commencement of employment. Death in Service pays out at 4x base salary. Employee Assistance Program effective upon commencement of employment. Full details will be provided after joining the company. A Discretionary Bonus Scheme, effective in the year following your employment, and based on company performance in the previous fiscal year. Group Pension Scheme, to which you will be automatically enrolled from the beginning of the third month following start date: We will match your contributions up to 5%. The minimum contribution you can make to the scheme is 4%. You will be entitled to opt out should you wish. Information Security Protect the data and systems of Crisis24 and its stakeholders by adhering to policies, reporting incidents and potential problems, completing regular training, and identifying opportunities for improvement. Crisis24, A GardaWorld Company is dedicated to equal opportunity in employment. We are committed to a work environment that celebrates diversity. We do not discriminate against any individual based on race, color, sex, national origin, age, religion, marital or parental status, sexual orientation, gender identity, gender expression, military or veteran status, disability, or any factors protected by applicable laws.
Mar 28, 2024
Full time
Crisis24, a GardaWorld company, is widely regarded as the leading integrated risk management, crisis response, consulting, and global protective solutions firm, serving the world's most influential people, disruptive brands, and prominent organizations. Championed by our advanced Global Operation Centers and our skilled team of intelligence analysts, we offer highly specialized services, security and consulting, with the technology and AI to power it all across the globe. At Crisis24, we go beyond mere employment; we pave the way to a realm where your skills become instrumental in shaping global security, guiding clients through a multifaceted and challenging landscape. Your journey with us will be deeply fulfilling, driven by a powerful sense of purpose and accomplishment. Within our thriving environment, you'll discover abundant chances for both personal and career advancement. Seize this moment to push your limits, broaden your expertise, and elevate your professional journey to unprecedented levels. Join the Crisis24 team today and be a part of something extraordinary where growth and impact converge. Crisis24's Crisis & Security Consulting (CSC) division, specifically the All-Hazards Response team, is on the lookout for a Senior Consultant. This role is ideally suited for candidates based in the UK or in mainland Europe. As a part of our dynamic and agile Response Group, the successful applicant will have the chance to enhance their skill set and knowledge, enabling them to contribute across various teams within the organization. Candidates should possess comprehensive experience in crisis management at both tactical and strategic levels and have a wide-ranging understanding of different industries. The position involves readiness to deploy globally at short notice, often in challenging situations, requiring confidence and the ability to provide immediate support and guidance to high-level / C-Suite stakeholders. What You Will Work On Summary You will deliver All Hazards Response services, providing expert advice and guidance to clients facing crises, from threats and violence to political and cyber-related issues. This role entails global deployment, often without prior notice, creating documentation in line with CSC's methodologies, conducting sensitive investigations, and potentially training as a subject matter expert for example as a crisis communications consultant. You will also support the development of junior team members and collaborate with the global consulting team on service delivery, maintaining accurate records across platforms such as Salesforce. Specifics Provide advice and guidance to clients in response to case activations on the following peril types: Active Assailant / Workplace Violence; Political Violence & Terrorism; Cyber Extortion; and Any other crisis-level event in which All-Hazard Response are engaged. Deployment globally in support of any new case activation, often with no notice. Produce all relevant documentation in support of assigned response cases, in line with CSC's doctrine and methodology. Coordinate and conduct sensitive investigational support to clients. Train as a Crisis Communications consultant. Support the development of more junior team members and work in cooperation with the wider global consulting team on all other aspects of consulting services delivery. Keep Salesforce and any other platforms used by Crisis24 up to date and accurate in relation to relevant accounts and proposals. Obtain the skill set and knowledge to actively respond as a Special Risks Response Consultant when required. Support to Insurance Partners Deliver onboarding briefings to new policy holders. Provide capability briefings in support of marketing the wider insurance policies. Assist in the delivery of update reports to insurance underwriters during ongoing cases. Generation of new response retainers, providing services to insurance partners or private clients. Direct engagement contracts for new response cases when insurance options are not present. Assist wider CSC team members in any business development briefings and activity when required. Support the implementation of a business development plan for the region. Scope, price, manage and/or oversee the development of client proposals and responses to RFPs. Represent CSC, Crisis24 and GardaWorld in client pitches/senior-level presentations/in-person meetings. Duty officer Following training, there may be a requirement to join the Duty Officer roster for All-Hazards Response activations. Account management Client liaison and account/client relationship management of new and existing consulting clients. Other Support the wider Crisis24 and GardaWorld business as required. Who You Will Work With Under the guidance of the Associate Director for All Hazards Response, you will collaborate on a variety of response cases and projects. These initiatives are diverse in terms of geography, industry, and complexity, necessitating effective management of pressures. You will be an integral part of both the Response Group and the wider CSC team, frequently assisting other teams within Crisis24 and GardaWorld. Owing to the sensitive nature of the case activity, All Hazards personnel are often visible to the highest levels of leadership within Crisis24 and GardaWorld. What You Will Bring Summary Candidates should have at least 10 years of experience in Crisis Management, preferably within a corporate or consulting environment, and a solid background in Security Risk and Crisis Management. You should be knowledgeable about crisis response processes, the specialist insurance market, and have a track record of developing new business opportunities. The role demands extensive global travel, often to high-risk areas, and requires strong analytical, problem-solving, and communication skills. Candidates must be adaptable, motivated to work irregular hours, and committed to continuous professional development. Specifics 10+ years of experience in Crisis Management, preferably in a corporate and/or consulting setting. Strong working knowledge of Security Risk and Crisis Management. In-depth knowledge and experience of crisis response processes. An understanding of specialist insurance markets. Demonstrable commercial experience developing new business opportunities. Extensive travel experience globally, including in high-threat/hostile environments. Strong analytical and problem-solving skills; a creative thinker who can apply initiative and create solutions to solve clients' problems. Ability to manage multiple cases simultaneously with strong attention to detail. Personable and able to communicate effectively at all levels with team members and clients, with the gravitas to influence at a very senior level, including verbal communications and presentations skills. Able to relate well to others with confidence and empathy, build trust and be calm and resourceful during difficult and emotive situations. The flexibility and motivation to work irregular hours and maintain quality delivery. Invested in development; maintains a high level of industry knowledge and awareness of geopolitical and security/crisis management issues and trends. The annual leave year runs from 1 January to 31 December. Your paid annual leave entitlement will be 25 days per annum (pro rata for part time hours). Group Life Insurance effective upon commencement of employment. Death in Service pays out at 4x base salary. Employee Assistance Program effective upon commencement of employment. Full details will be provided after joining the company. A Discretionary Bonus Scheme, effective in the year following your employment, and based on company performance in the previous fiscal year. Group Pension Scheme, to which you will be automatically enrolled from the beginning of the third month following start date: We will match your contributions up to 5%. The minimum contribution you can make to the scheme is 4%. You will be entitled to opt out should you wish. Information Security Protect the data and systems of Crisis24 and its stakeholders by adhering to policies, reporting incidents and potential problems, completing regular training, and identifying opportunities for improvement. Crisis24, A GardaWorld Company is dedicated to equal opportunity in employment. We are committed to a work environment that celebrates diversity. We do not discriminate against any individual based on race, color, sex, national origin, age, religion, marital or parental status, sexual orientation, gender identity, gender expression, military or veteran status, disability, or any factors protected by applicable laws.
We are delighted to be working with a Cambridge based organisation. They are recruiting for a Senior IT and Data Officer to join their team on a permanent bases with options of hybrid working. Key responsibilities will include: Supporting and developing the company infrastructure and Systems Working with a variety of stakeholders to resolve technical issues Managing and maintaining the organisations databases Building and deploying new laptops, desktops and mobile devices Involvement in IT procurement and supplier management Setting up and maintaining data integrations between systems Help implement IT development projects The successful candidate will have: Strong experience in similar role Knowledge of networking, virtualisation, cyber security Good server administration knowledge Experience with database management and data migrations SQL (Essential) If this role looks like your next challenge, please contact Sam ASAP or apply via this advert! We endeavour to reply to every candidate, every time but if you haven't heard back within 10 days, please understand that you have unfortunately been unsuccessful for this position, or the position has been filled. Please call the office or send an email to discuss other potential positions.
Mar 28, 2024
Full time
We are delighted to be working with a Cambridge based organisation. They are recruiting for a Senior IT and Data Officer to join their team on a permanent bases with options of hybrid working. Key responsibilities will include: Supporting and developing the company infrastructure and Systems Working with a variety of stakeholders to resolve technical issues Managing and maintaining the organisations databases Building and deploying new laptops, desktops and mobile devices Involvement in IT procurement and supplier management Setting up and maintaining data integrations between systems Help implement IT development projects The successful candidate will have: Strong experience in similar role Knowledge of networking, virtualisation, cyber security Good server administration knowledge Experience with database management and data migrations SQL (Essential) If this role looks like your next challenge, please contact Sam ASAP or apply via this advert! We endeavour to reply to every candidate, every time but if you haven't heard back within 10 days, please understand that you have unfortunately been unsuccessful for this position, or the position has been filled. Please call the office or send an email to discuss other potential positions.
Location One of UKHSA's core locations (Birmingham, Leeds, Liverpool, and London) About the job Job summary National Location: £30,473 - £37,215 Outer London Location: £32,469 - £39,532 Inner London Location: £34,463 - £41,478 This post attracts a non-pensionable Market Pay Supplement of £5,000 pro-rata, per annum, (this is in addition to basic salary) To deliver a professional and expert systems and support service in order to optimise decision making and financial management across the agency; Systems: Manage the systems controls and user support processes. Become an expert in specific E2E processes. Ensure that systems procedures and processes are fully documented. Support the development of systems including identifying requirements for external suppliers. Data Management: Review system for data specific non-compliance and monitor data quality. Intelligent Customer Function: Engage with stakeholders to identify opportunities for improvement Location The UK Health Security Agency (UKHSA) operates a hybrid working model where business needs allow. ?This provides us with greater flexibility about how and where we work, to get the best from our workforce.?As a hybrid worker, you will be expected to spend a minimum of 60% of your contractual working hours (approximately 3 days a week pro rata, (averaged over a month) working at one of UKHSA's locations (Birmingham, Leeds, Liverpool, and London). For certain roles, some additional flexibility may be possible, which will be agreed upon with the hiring manager based on?individual requirements and business needs. Please be aware that this role can only be worked from within the UK and not overseas. Relocation expenses are not available. ? Job description As Systems Reporting Officer, you will report to the Head of Reporting and Senior Systems Reporting Manager , will be part of the team responsible for delivering a professional and expert systems and support service in order to optimise decision making and financial management across UKHSA. Working within the Reporting team, the role of Systems Reporting Officer will deliver and support Real reporting tasks related to Oracle Fusion Cloud across all workstreams (Finance/Supply Chain/HCM). This will include assisting in designing and developing Dashboards/ Analytics and Insights for varied audiences. The post holder will also support the Improvement and Systems Support teams, to ensure new reports and releases are communicated to end users, training is provided where appropriate and materials updated. To be successful in this role, you will have proven experience in working with Oracle Reporting tools such OTBI, OAC and FAW. You will have excellent communication and interpersonal skills, strong problem-solving and analytical skills, and the ability to work under pressure and meet deadlines. If you are passionate about delivering high-quality reporting solutions to optimise decision-making and financial management across UKHSA, we encourage you to apply for this exciting opportunity. Please use the below link to apply!
Mar 28, 2024
Full time
Location One of UKHSA's core locations (Birmingham, Leeds, Liverpool, and London) About the job Job summary National Location: £30,473 - £37,215 Outer London Location: £32,469 - £39,532 Inner London Location: £34,463 - £41,478 This post attracts a non-pensionable Market Pay Supplement of £5,000 pro-rata, per annum, (this is in addition to basic salary) To deliver a professional and expert systems and support service in order to optimise decision making and financial management across the agency; Systems: Manage the systems controls and user support processes. Become an expert in specific E2E processes. Ensure that systems procedures and processes are fully documented. Support the development of systems including identifying requirements for external suppliers. Data Management: Review system for data specific non-compliance and monitor data quality. Intelligent Customer Function: Engage with stakeholders to identify opportunities for improvement Location The UK Health Security Agency (UKHSA) operates a hybrid working model where business needs allow. ?This provides us with greater flexibility about how and where we work, to get the best from our workforce.?As a hybrid worker, you will be expected to spend a minimum of 60% of your contractual working hours (approximately 3 days a week pro rata, (averaged over a month) working at one of UKHSA's locations (Birmingham, Leeds, Liverpool, and London). For certain roles, some additional flexibility may be possible, which will be agreed upon with the hiring manager based on?individual requirements and business needs. Please be aware that this role can only be worked from within the UK and not overseas. Relocation expenses are not available. ? Job description As Systems Reporting Officer, you will report to the Head of Reporting and Senior Systems Reporting Manager , will be part of the team responsible for delivering a professional and expert systems and support service in order to optimise decision making and financial management across UKHSA. Working within the Reporting team, the role of Systems Reporting Officer will deliver and support Real reporting tasks related to Oracle Fusion Cloud across all workstreams (Finance/Supply Chain/HCM). This will include assisting in designing and developing Dashboards/ Analytics and Insights for varied audiences. The post holder will also support the Improvement and Systems Support teams, to ensure new reports and releases are communicated to end users, training is provided where appropriate and materials updated. To be successful in this role, you will have proven experience in working with Oracle Reporting tools such OTBI, OAC and FAW. You will have excellent communication and interpersonal skills, strong problem-solving and analytical skills, and the ability to work under pressure and meet deadlines. If you are passionate about delivering high-quality reporting solutions to optimise decision-making and financial management across UKHSA, we encourage you to apply for this exciting opportunity. Please use the below link to apply!
Data Protection & Information Security Manager As a purpose-driven organisation, we're all about the 'why'. Babington is committed to developing better futures: for individuals, organisations, and society. For us that means developing skills and creating opportunity for individuals and organisations to perform at their very best. We are looking for an Data Protection & Information Security Manager who can join our Business Enablement department and work at a fast pace, overseeing all data protection and information security governance. If you have knowledge and experience with Data Protection & Information Security and the determination to be part of our journey of Developing Better Futures, then we want to hear from you! Summary of role You will be responsible for the safeguarding of personal and sensitive information handled by Babington. Devising, Implementing and Managing an Information Security Management System (ISMS) across the company, along with conducting the duties of the Data Protection Officer for the business. Brief summary of principle accountabilities Develop and maintain comprehensive Data Protection and Information Security Policies, Procedures, and guidelines. Ensure a robust and compliant strategy is in place to manage physical security - CCTV, Access Control Introduction of process, policy, and procedures to minimise unstructured data exposure risks. Ensure a robust and compliant strategy is developed and implemented to manage Data Retention and Records Management throughout the business. Monitor changes in legislation and accreditation standards that affect information security and data protection and recommend any relevant change requirements to the organisation's policies, procedures, and ways of working. Lead on the management and investigation of Data Breaches, ensuring any lessons learnt are feedback to the appropriate Senior Executive Board member(s). Advise on, and monitor the business's Data Protection Impact Assessments (DPIAs) Develop and deliver training programs to raise awareness about data protection and information security among employees. Foster a culture of security consciousness throughout the organisation. Collaborate with procurement to ensure contractual agreements include appropriate security provisions. Review and where deemed appropriate, implement/ assist in the introduction of security applications and features as required. Brief person specification Qualifications (E - Essential; D - Desirable) Grade A-C GCSE in English and Maths or equivalent ( E ) ISO27001 Lead Implementer ( D ) ISO27001 Lead Auditor ( D ) Certified Data Protection Officer (CDPO) ( E ) Certified Information Privacy Professional (CIPPE/E) ( D ) Skills and experience Experience in engaging with a range of stakeholders to deliver advice and guidance and raise awareness Experience in managing data protection processes, including responding to Subject Access Requests, Right to Erasure, Incident Management and Breach Reporting Proven experience dealing with outsourced third-party suppliers Significant demonstrable experience in a similar position and size company Ability to analyse key data, management information, systems and processes Ability to deliver to agreed targets. Ability to establish and maintain rapport with a wide variety of people. Ability to manage critical priorities effectively to ensure deadlines are met. Babington Benefits Babington Engage Bupa Healthcare - Cash plan 25 Days annual leave plus Bank holidays Additional annual leave purchase scheme Employer Pension contribution We'll be conducting interviews on a continuous basis and reserve the right to take down the advert when we have found the right candidate. Babington is committed to safeguarding and promoting the welfare of all learners and employees associated with our business. We, therefore, expect all employees to share this commitment and demonstrate our values within all aspects of their work. All offers of employment are subject to relevant vetting checks, including successful completion of an appropriate check through the Disclosure & Barring Service. We are innovators in Education so why not apply now and join us in Developing Better Futures!
Mar 28, 2024
Full time
Data Protection & Information Security Manager As a purpose-driven organisation, we're all about the 'why'. Babington is committed to developing better futures: for individuals, organisations, and society. For us that means developing skills and creating opportunity for individuals and organisations to perform at their very best. We are looking for an Data Protection & Information Security Manager who can join our Business Enablement department and work at a fast pace, overseeing all data protection and information security governance. If you have knowledge and experience with Data Protection & Information Security and the determination to be part of our journey of Developing Better Futures, then we want to hear from you! Summary of role You will be responsible for the safeguarding of personal and sensitive information handled by Babington. Devising, Implementing and Managing an Information Security Management System (ISMS) across the company, along with conducting the duties of the Data Protection Officer for the business. Brief summary of principle accountabilities Develop and maintain comprehensive Data Protection and Information Security Policies, Procedures, and guidelines. Ensure a robust and compliant strategy is in place to manage physical security - CCTV, Access Control Introduction of process, policy, and procedures to minimise unstructured data exposure risks. Ensure a robust and compliant strategy is developed and implemented to manage Data Retention and Records Management throughout the business. Monitor changes in legislation and accreditation standards that affect information security and data protection and recommend any relevant change requirements to the organisation's policies, procedures, and ways of working. Lead on the management and investigation of Data Breaches, ensuring any lessons learnt are feedback to the appropriate Senior Executive Board member(s). Advise on, and monitor the business's Data Protection Impact Assessments (DPIAs) Develop and deliver training programs to raise awareness about data protection and information security among employees. Foster a culture of security consciousness throughout the organisation. Collaborate with procurement to ensure contractual agreements include appropriate security provisions. Review and where deemed appropriate, implement/ assist in the introduction of security applications and features as required. Brief person specification Qualifications (E - Essential; D - Desirable) Grade A-C GCSE in English and Maths or equivalent ( E ) ISO27001 Lead Implementer ( D ) ISO27001 Lead Auditor ( D ) Certified Data Protection Officer (CDPO) ( E ) Certified Information Privacy Professional (CIPPE/E) ( D ) Skills and experience Experience in engaging with a range of stakeholders to deliver advice and guidance and raise awareness Experience in managing data protection processes, including responding to Subject Access Requests, Right to Erasure, Incident Management and Breach Reporting Proven experience dealing with outsourced third-party suppliers Significant demonstrable experience in a similar position and size company Ability to analyse key data, management information, systems and processes Ability to deliver to agreed targets. Ability to establish and maintain rapport with a wide variety of people. Ability to manage critical priorities effectively to ensure deadlines are met. Babington Benefits Babington Engage Bupa Healthcare - Cash plan 25 Days annual leave plus Bank holidays Additional annual leave purchase scheme Employer Pension contribution We'll be conducting interviews on a continuous basis and reserve the right to take down the advert when we have found the right candidate. Babington is committed to safeguarding and promoting the welfare of all learners and employees associated with our business. We, therefore, expect all employees to share this commitment and demonstrate our values within all aspects of their work. All offers of employment are subject to relevant vetting checks, including successful completion of an appropriate check through the Disclosure & Barring Service. We are innovators in Education so why not apply now and join us in Developing Better Futures!
Job Title: Senior/Mid-Level Penetration Tester (OSCP Qualified) Location: United Kingdom (with options for remote work and client site visits) About the Client: Our client specialises in demystifying the complexities of governance, risk, and compliance, offering real-world, practical solutions to a broad spectrum of related challenges. They are committed to working closely with their clients to develop the most effective and sustainable strategies, ensuring these solutions integrate seamlessly with the day-to-day operations of the business with minimal disruption. Their expertise encompasses: Information Security Consultancy: Providing tailored guidance to strengthen your information security posture. Penetration Testing: Conduct comprehensive assessments to identify vulnerabilities and enhance your cyber defenses. Data Privacy Consultancy: Offering expert advice to ensure your data handling practices are compliant and secure. Outsourced DPO Services: Delivering professional Data Protection Officer services to meet regulatory requirements without the need for in-house expertise. Through these services, our client aims to streamline your approach to managing and mitigating risks, ensuring compliance with relevant standards and regulations while fostering a secure and resilient organisational environment. Position Overview: On behalf of our esteemed client, we are in search of seasoned and adept Senior and Mid-Level Penetration Testers with a deep-rooted enthusiasm for cybersecurity. The ideal candidates will be professionals certified in OSCP, boasting a substantial record in penetration testing, web application, API testing, and direct client interactions. This role entails performing in-depth security assessments, pinpointing vulnerabilities, and proposing practical recommendations to improve our clients' security stance. Responsibilities: Execute penetration tests across web applications, APIs, and networks to uncover vulnerabilities and security weaknesses. Formulate and implement testing strategies for thorough security assessments. Directly collaborate with clients to define engagement scopes, including understanding their systems, pinpointing testing requirements, and managing expectations. Perform on-site security assessments and consultations at client locations as required. Facilitate Q&A sessions, mop-up sessions, and present detailed final reports to clients, highlighting findings, implications, and remediation recommendations. Prepare comprehensive reports on identified vulnerabilities, providing concise and actionable advice for clients to mitigate security issues. Keep up-to-date with the latest cybersecurity threats, trends, and testing methodologies to enhance the quality of services provided. Requirements: Must be based in the United Kingdom. Possession of OSCP certification is essential. Senior roles require at least 3 years of experience in penetration testing or a similar technical lead capacity. Mid-Level roles require a minimum of 1 year of penetration testing experience along with OSCP certification. Profound experience in testing web applications and APIs. Proven expertise in client-facing roles, including engagement scoping, site visits, leading discussions, and delivering presentations. Exceptional analytical and report writing skills, with prior experience in completing detailed vulnerability reports. Strong communication and interpersonal abilities, capable of explaining intricate security matters to a non-technical audience. A steadfast commitment to ethical hacking practices, adhering to legal and ethical guidelines in penetration testing. Benefits: Competitive salary and comprehensive benefits package. Professional development and certification opportunities. Flexible working arrangements, including the possibility of remote work. A dynamic and supportive working atmosphere among a team of dedicated cybersecurity professionals. Application Process: Candidates interested in applying for this role are invited to submit their CV and a cover letter outlining their experiences, qualifications, and reasons for being the perfect fit for the position to Musa at . Please include examples of previous penetration testing projects, particularly those involving direct client engagement and report writing.
Mar 28, 2024
Full time
Job Title: Senior/Mid-Level Penetration Tester (OSCP Qualified) Location: United Kingdom (with options for remote work and client site visits) About the Client: Our client specialises in demystifying the complexities of governance, risk, and compliance, offering real-world, practical solutions to a broad spectrum of related challenges. They are committed to working closely with their clients to develop the most effective and sustainable strategies, ensuring these solutions integrate seamlessly with the day-to-day operations of the business with minimal disruption. Their expertise encompasses: Information Security Consultancy: Providing tailored guidance to strengthen your information security posture. Penetration Testing: Conduct comprehensive assessments to identify vulnerabilities and enhance your cyber defenses. Data Privacy Consultancy: Offering expert advice to ensure your data handling practices are compliant and secure. Outsourced DPO Services: Delivering professional Data Protection Officer services to meet regulatory requirements without the need for in-house expertise. Through these services, our client aims to streamline your approach to managing and mitigating risks, ensuring compliance with relevant standards and regulations while fostering a secure and resilient organisational environment. Position Overview: On behalf of our esteemed client, we are in search of seasoned and adept Senior and Mid-Level Penetration Testers with a deep-rooted enthusiasm for cybersecurity. The ideal candidates will be professionals certified in OSCP, boasting a substantial record in penetration testing, web application, API testing, and direct client interactions. This role entails performing in-depth security assessments, pinpointing vulnerabilities, and proposing practical recommendations to improve our clients' security stance. Responsibilities: Execute penetration tests across web applications, APIs, and networks to uncover vulnerabilities and security weaknesses. Formulate and implement testing strategies for thorough security assessments. Directly collaborate with clients to define engagement scopes, including understanding their systems, pinpointing testing requirements, and managing expectations. Perform on-site security assessments and consultations at client locations as required. Facilitate Q&A sessions, mop-up sessions, and present detailed final reports to clients, highlighting findings, implications, and remediation recommendations. Prepare comprehensive reports on identified vulnerabilities, providing concise and actionable advice for clients to mitigate security issues. Keep up-to-date with the latest cybersecurity threats, trends, and testing methodologies to enhance the quality of services provided. Requirements: Must be based in the United Kingdom. Possession of OSCP certification is essential. Senior roles require at least 3 years of experience in penetration testing or a similar technical lead capacity. Mid-Level roles require a minimum of 1 year of penetration testing experience along with OSCP certification. Profound experience in testing web applications and APIs. Proven expertise in client-facing roles, including engagement scoping, site visits, leading discussions, and delivering presentations. Exceptional analytical and report writing skills, with prior experience in completing detailed vulnerability reports. Strong communication and interpersonal abilities, capable of explaining intricate security matters to a non-technical audience. A steadfast commitment to ethical hacking practices, adhering to legal and ethical guidelines in penetration testing. Benefits: Competitive salary and comprehensive benefits package. Professional development and certification opportunities. Flexible working arrangements, including the possibility of remote work. A dynamic and supportive working atmosphere among a team of dedicated cybersecurity professionals. Application Process: Candidates interested in applying for this role are invited to submit their CV and a cover letter outlining their experiences, qualifications, and reasons for being the perfect fit for the position to Musa at . Please include examples of previous penetration testing projects, particularly those involving direct client engagement and report writing.
I'm delighted to be partnering a global Insurance group to appoint a Chief Information Security Officer based in London City. This is a rare and exceptional opportunity looking for a technical and strategic CISO who has years dealing with board, risk committee, regulators and senior level business unit leaders. Someone able to provide technical InfoSec expertise across the group to deliver the right strategy and management of risk appetite. Client Details A leading global insurance group comprising distinct businesses covering various Insurance and Reinsurance service offerings across a well established international customer base. This is a highly compelling Insurance brand with a rich history and deep expertise operating across Lloyds, UK, European and global markets. This role presents a rare and exceptional opportunity looking for a technical and strategic CISO who has years dealing with board, risk committee, regulators and senior level business unit leaders. Someone able to provide technical InfoSec expertise across the group and build out the security function to deliver the right strategy and management of risk appetite. Description The Chief Information Security Officer will define the information security strategy in collaboration with the regulated entities for the UK and continental Europe and guide on cyber risk appetite. Recommend appropriate infosec investments and practices, including full support in relation to third parties data/cyber incidents and insurance services supply chain. Direct the implementation and monitoring of information security technologies, systems, standards and policies. Responsible for proactively managing all type of risks (people, processes and technology) relating to data protection (e.g. GDPR), privacy, information/cyber security, physical security, business continuity planning, crisis management and incident response, compliance and independent assurance of IT Controls. What You'll Spend Your Time Doing Define and implement enterprise security strategy and cyber risk policies and standards Co-ordinate with stakeholders to align enterprise security and risk strategies with business priorities Ensures the provision of services and capabilities for the protection of all our assets globally Oversee, manage and report any activity in relation to data protection, privacy and independent assurance of IT controls Monitor regulatory compliance and security policies to educates business unit leaders and service managers on compliance efforts Lead an experienced enterprise team that provides global coordination and oversight of business unit Information Risk Management processes and strategies Oversees development of an information security awareness program for each business unit and services group Support the implementation of operational resilience across the business Keeps abreast with evolving threats/risks, industry trends and works to implement best practices Proactively support audit and regulatory inquiries and external vendor activities. Participates in leading industry forums and consortiums (e.g. Lloyd's of London). Profile A proven Chief Information Security officer or Information Security Executive with a track record advising and delivering effective and risk balanced information security services within a global or matrix highly regulated organisation (e.g. Financial Services, Banking, Insurance). Applicants should have experience in dealing with Board, risk committee, regulators and operational leaders in complex stakeholders environment Preferably having worked in a Shared, Group or Consultancy Services organisation. A proven track record and approach to building an effective information security function including risk management, privacy and Data Protection practices Technical expertise well versed regulatory compliance frameworks such as ISO, SOX, BASEL II, EU DPD, HIPAA, and PCI DSS Adept in strategic planning, budgeting, and allocation Bachelor's or master's degree in computer science, business, finance or related discipline Job Offer Competitive Basic Salary Annual Bonus Flexible and Rewarding Pension up to 18% contribution 28 days annual leave + buy / sell option PMI, Flex Fund, Life Assurance Hybrid Working London, City Office.
Mar 28, 2024
Full time
I'm delighted to be partnering a global Insurance group to appoint a Chief Information Security Officer based in London City. This is a rare and exceptional opportunity looking for a technical and strategic CISO who has years dealing with board, risk committee, regulators and senior level business unit leaders. Someone able to provide technical InfoSec expertise across the group to deliver the right strategy and management of risk appetite. Client Details A leading global insurance group comprising distinct businesses covering various Insurance and Reinsurance service offerings across a well established international customer base. This is a highly compelling Insurance brand with a rich history and deep expertise operating across Lloyds, UK, European and global markets. This role presents a rare and exceptional opportunity looking for a technical and strategic CISO who has years dealing with board, risk committee, regulators and senior level business unit leaders. Someone able to provide technical InfoSec expertise across the group and build out the security function to deliver the right strategy and management of risk appetite. Description The Chief Information Security Officer will define the information security strategy in collaboration with the regulated entities for the UK and continental Europe and guide on cyber risk appetite. Recommend appropriate infosec investments and practices, including full support in relation to third parties data/cyber incidents and insurance services supply chain. Direct the implementation and monitoring of information security technologies, systems, standards and policies. Responsible for proactively managing all type of risks (people, processes and technology) relating to data protection (e.g. GDPR), privacy, information/cyber security, physical security, business continuity planning, crisis management and incident response, compliance and independent assurance of IT Controls. What You'll Spend Your Time Doing Define and implement enterprise security strategy and cyber risk policies and standards Co-ordinate with stakeholders to align enterprise security and risk strategies with business priorities Ensures the provision of services and capabilities for the protection of all our assets globally Oversee, manage and report any activity in relation to data protection, privacy and independent assurance of IT controls Monitor regulatory compliance and security policies to educates business unit leaders and service managers on compliance efforts Lead an experienced enterprise team that provides global coordination and oversight of business unit Information Risk Management processes and strategies Oversees development of an information security awareness program for each business unit and services group Support the implementation of operational resilience across the business Keeps abreast with evolving threats/risks, industry trends and works to implement best practices Proactively support audit and regulatory inquiries and external vendor activities. Participates in leading industry forums and consortiums (e.g. Lloyd's of London). Profile A proven Chief Information Security officer or Information Security Executive with a track record advising and delivering effective and risk balanced information security services within a global or matrix highly regulated organisation (e.g. Financial Services, Banking, Insurance). Applicants should have experience in dealing with Board, risk committee, regulators and operational leaders in complex stakeholders environment Preferably having worked in a Shared, Group or Consultancy Services organisation. A proven track record and approach to building an effective information security function including risk management, privacy and Data Protection practices Technical expertise well versed regulatory compliance frameworks such as ISO, SOX, BASEL II, EU DPD, HIPAA, and PCI DSS Adept in strategic planning, budgeting, and allocation Bachelor's or master's degree in computer science, business, finance or related discipline Job Offer Competitive Basic Salary Annual Bonus Flexible and Rewarding Pension up to 18% contribution 28 days annual leave + buy / sell option PMI, Flex Fund, Life Assurance Hybrid Working London, City Office.
Role Title: Technology Associate Department: Information Technology Team: GRSI Regulatory, Risk & Group Functions Location: London Type: Permanent About the Role: The Technology Associate Role is vital in providing the technical and architectural guidance to the Business Agility and GRSI Business Stakeholders. This role will be primarily working with the Portfolio Technical Leads and spans across a number of initiatives within the portfolio. About the Department & Team: The CIO Function reports into the Chief Information Officer, responsible for the delivery of key technical services to the Business ranging from technology to business processes. The team provides the architecture and the delivery skills and resources required to support business outcomes. Key Responsibilities: Working with the Technical Leads to provide technology and architecture support for GRSI Regulatory, Risk & Group Functions portfolio initiatives. Producing parts of and supporting the end-to-end architecture for initiatives Supporting key architecture decisions for projects and aligning stakeholders to a proposed approach Communicating the architecture, key design decisions and approaches on assigned initiatives to key stakeholders, project bodies, relevant governance/ assurance forums including the Architecture Review Board Collaborate and work with Product Owners, Product Analysts and Developers which help achieve the GRSI technology outcomes Facilitating and participating in detailed design reviews and ensuring that all components of the solution are aligned to the target state vision Contribute to Portfolio level 30/60/90-day planning sessions Adherence to all relevant regulatory requirements forms part of your role, and the demonstration of behaviours as set out in the Conduct Risk Policy, as they relate to your role, is core to our commitment to our Values, placing customers at the centre of our business and behaving with integrity. We expect you to understand your responsibilities relating to all regulatory and internal requirements, and to proactively demonstrate compliance with these requirements and behaviours at all times. These requirements include the Senior Managers and Certification Regime Conduct Rules ,Solvency II, fair treatment of customers, Financial Crime, Data Protection, Conflicts of Interest, and Whistleblowing Skills and Experience: Essential 2-5 years' experience in IT architecture, digital delivery or technology consulting Producing parts of and supporting the end-to-end architecture for a project, spanning disparate software and infrastructure components Supporting key architecture decisions for projects and aligning stakeholders to a proposed approach Modelling current and future state architecture design Good knowledge of enterprise integration patterns Excellent communication skills Experience working in an Agile environment Working closely with Product Owners and Business Analysts to help translate desired business outcomes into technology solutions Working with development teams to ensure detailed component-level design responds to high-level architecture. Working with the Technical Leads and Portfolio Architects to ensure that data and functional architectures adhere to the architecture principles ultimately supporting the target state vision for the enterprise University degree in a mathematical-scientific field, information technology, or business administration Cloud Certified or working towards it (AWS or Azure) Desirable Experience in Data Architecture concepts (management, security, governance, database, integration, quality) Experience in cloud solutions (AWS or Azure) and microservices architecture Experience leveraging emerging technologies within the insurance domain desirable Experience working in the Insurance domain with experience of working on one or multiple Insurance solutions is highly desirable. We will however also consider applications who have worked with finance clients. Carbon60, Lorien & SRG - The Impellam Group STEM Portfolio are acting as an Employment Business in relation to this vacancy.
Mar 28, 2024
Full time
Role Title: Technology Associate Department: Information Technology Team: GRSI Regulatory, Risk & Group Functions Location: London Type: Permanent About the Role: The Technology Associate Role is vital in providing the technical and architectural guidance to the Business Agility and GRSI Business Stakeholders. This role will be primarily working with the Portfolio Technical Leads and spans across a number of initiatives within the portfolio. About the Department & Team: The CIO Function reports into the Chief Information Officer, responsible for the delivery of key technical services to the Business ranging from technology to business processes. The team provides the architecture and the delivery skills and resources required to support business outcomes. Key Responsibilities: Working with the Technical Leads to provide technology and architecture support for GRSI Regulatory, Risk & Group Functions portfolio initiatives. Producing parts of and supporting the end-to-end architecture for initiatives Supporting key architecture decisions for projects and aligning stakeholders to a proposed approach Communicating the architecture, key design decisions and approaches on assigned initiatives to key stakeholders, project bodies, relevant governance/ assurance forums including the Architecture Review Board Collaborate and work with Product Owners, Product Analysts and Developers which help achieve the GRSI technology outcomes Facilitating and participating in detailed design reviews and ensuring that all components of the solution are aligned to the target state vision Contribute to Portfolio level 30/60/90-day planning sessions Adherence to all relevant regulatory requirements forms part of your role, and the demonstration of behaviours as set out in the Conduct Risk Policy, as they relate to your role, is core to our commitment to our Values, placing customers at the centre of our business and behaving with integrity. We expect you to understand your responsibilities relating to all regulatory and internal requirements, and to proactively demonstrate compliance with these requirements and behaviours at all times. These requirements include the Senior Managers and Certification Regime Conduct Rules ,Solvency II, fair treatment of customers, Financial Crime, Data Protection, Conflicts of Interest, and Whistleblowing Skills and Experience: Essential 2-5 years' experience in IT architecture, digital delivery or technology consulting Producing parts of and supporting the end-to-end architecture for a project, spanning disparate software and infrastructure components Supporting key architecture decisions for projects and aligning stakeholders to a proposed approach Modelling current and future state architecture design Good knowledge of enterprise integration patterns Excellent communication skills Experience working in an Agile environment Working closely with Product Owners and Business Analysts to help translate desired business outcomes into technology solutions Working with development teams to ensure detailed component-level design responds to high-level architecture. Working with the Technical Leads and Portfolio Architects to ensure that data and functional architectures adhere to the architecture principles ultimately supporting the target state vision for the enterprise University degree in a mathematical-scientific field, information technology, or business administration Cloud Certified or working towards it (AWS or Azure) Desirable Experience in Data Architecture concepts (management, security, governance, database, integration, quality) Experience in cloud solutions (AWS or Azure) and microservices architecture Experience leveraging emerging technologies within the insurance domain desirable Experience working in the Insurance domain with experience of working on one or multiple Insurance solutions is highly desirable. We will however also consider applications who have worked with finance clients. Carbon60, Lorien & SRG - The Impellam Group STEM Portfolio are acting as an Employment Business in relation to this vacancy.
Job Title : Data Protection Compliance Manager (0.5 FTE) Location : Norwich Salary: £18,549.50 to £22,131.50 per annum (pro rata from a full-time salary of £37,099 to £44,263 per annum) Job type: Part time - Permanent (18.5 hours per week) Closing date for applications: 25th March 2024 at 5pm Interviews will be held on: 12th April 2024 Employer - Norwich University of the Arts This is a fantastic opportunity to join a forward-looking specialist arts university which has ambitious plans. We are seeking a Data Protection Compliance Manager to manage the day-to-day operation of the University's Data Protection Policy and Freedom of Information policies and procedures. The postholder will act as the Data Protection Officer for the University, undertaking the roles and responsibilities of a Data Protection Officer as outlined by the Information Commissioner's Office. You will have experience of working with compliance procedures and audit processes and be able to design and implement policies that will ensure that staff, students, and other stakeholders are able to engage with complex legislative requirements and operate in a manner that promotes data protection and information security. You will provide regular reports on compliance to senior management and the University's Board of Governors. You will be responsible for the design, delivery of staff training materials and guidance materials and for monitoring and reporting on completion of mandatory training modules. Excellent communication skills and the ability to engage with a range of stakeholders are essential for this role. Norwich University of the Arts is committed to being an inclusive community that offers equality of opportunity and enables our staff and students to flourish and succeed, regardless of their background or personal circumstances. Our commitment to equality, diversity and inclusion is embedded in everything that we do. We celebrate the diversity of our backgrounds, cultures and actions, promoting art and design as a catalyst of social change. As such, we are champions for the creative arts; empowering all of our students to be valued and productive members of society, with ambitions to change the world. Please click APPLY to be redirected to our website to complete an application form. Candidates with the relevant experience or job title of: Data Governance Officer, Data Protection Officer, Data Governance Analyst, Data Protection Analyst, Information Security Officer, Information Security Manager, Digital Security Officer, Compliance Analyst, Compliance Assistant, Data Protection Manager, Compliance Analyst, GDPR Specialist, PECR Specialist, may also be considered for this role
Mar 27, 2024
Full time
Job Title : Data Protection Compliance Manager (0.5 FTE) Location : Norwich Salary: £18,549.50 to £22,131.50 per annum (pro rata from a full-time salary of £37,099 to £44,263 per annum) Job type: Part time - Permanent (18.5 hours per week) Closing date for applications: 25th March 2024 at 5pm Interviews will be held on: 12th April 2024 Employer - Norwich University of the Arts This is a fantastic opportunity to join a forward-looking specialist arts university which has ambitious plans. We are seeking a Data Protection Compliance Manager to manage the day-to-day operation of the University's Data Protection Policy and Freedom of Information policies and procedures. The postholder will act as the Data Protection Officer for the University, undertaking the roles and responsibilities of a Data Protection Officer as outlined by the Information Commissioner's Office. You will have experience of working with compliance procedures and audit processes and be able to design and implement policies that will ensure that staff, students, and other stakeholders are able to engage with complex legislative requirements and operate in a manner that promotes data protection and information security. You will provide regular reports on compliance to senior management and the University's Board of Governors. You will be responsible for the design, delivery of staff training materials and guidance materials and for monitoring and reporting on completion of mandatory training modules. Excellent communication skills and the ability to engage with a range of stakeholders are essential for this role. Norwich University of the Arts is committed to being an inclusive community that offers equality of opportunity and enables our staff and students to flourish and succeed, regardless of their background or personal circumstances. Our commitment to equality, diversity and inclusion is embedded in everything that we do. We celebrate the diversity of our backgrounds, cultures and actions, promoting art and design as a catalyst of social change. As such, we are champions for the creative arts; empowering all of our students to be valued and productive members of society, with ambitions to change the world. Please click APPLY to be redirected to our website to complete an application form. Candidates with the relevant experience or job title of: Data Governance Officer, Data Protection Officer, Data Governance Analyst, Data Protection Analyst, Information Security Officer, Information Security Manager, Digital Security Officer, Compliance Analyst, Compliance Assistant, Data Protection Manager, Compliance Analyst, GDPR Specialist, PECR Specialist, may also be considered for this role
Service Care Recruitment is proud to partner with Counter Terrorism Policing Headquarters (CTPHQ) in the search for a dynamic and skilled Business Design Lead. As a trusted recruitment agency, we specialise in connecting qualified professionals with esteemed organisations like CTPHQ. Candidates for this role must hold SC cleareance at the time of applying. Job Title: Business Design Lead Pay: 700 - 730 Purpose: To utilise various analytical techniques and operational knowledge to develop evidence-based solutions for complex challenges within Counter Terrorism Policing (CTP). To collaborate with stakeholders across the public sector, contributing to the evolution of CTP's strategies and approaches in counter-terrorism efforts. Key Roles and Responsibilities: Conduct detailed quantitative and qualitative analysis to identify organisational problems and design appropriate solutions. Develop operating models and manage design dependencies with other change initiatives. Translate complex organisational issues into clear, compelling narratives for broad consensus. Collaborate with multidisciplinary teams, manage senior stakeholders, and build relationships across various departments. Work closely with the Business Design Team, CTP officers and staff, programme/project teams, strategy/performance colleagues, finance/HR/communications partners, etc. Skills and Experience Required: Essential: Proficiency in quantitative and qualitative analysis for defining problems and designing solutions. Ability to communicate complex issues effectively and gain consensus. Understanding of wider strategic and socio-economic impacts on tactical business problems. Experience in developing business operating models and delivering change. Innovative and solutions-oriented approach. Experience in managing stakeholders and collaborating across multidisciplinary teams. Experience in managing junior staff and navigating conflicting requirements. Desirable: Project management qualification or experience. Leadership experience in change-driven environments. Awareness of Enterprise Architecture and Business Design Artefacts. Experience in managing relationships within a challenging context. Experience in matters of national security and counter-terrorism. Vetting: Minimum SC Clearance required, with the possibility of undergoing National Security Vetting Security Check (enhanced) Se level. if we would be interested in applying please send your CV and covering letter detailing Business Design experience an current clearance level to (url removed)
Mar 27, 2024
Contractor
Service Care Recruitment is proud to partner with Counter Terrorism Policing Headquarters (CTPHQ) in the search for a dynamic and skilled Business Design Lead. As a trusted recruitment agency, we specialise in connecting qualified professionals with esteemed organisations like CTPHQ. Candidates for this role must hold SC cleareance at the time of applying. Job Title: Business Design Lead Pay: 700 - 730 Purpose: To utilise various analytical techniques and operational knowledge to develop evidence-based solutions for complex challenges within Counter Terrorism Policing (CTP). To collaborate with stakeholders across the public sector, contributing to the evolution of CTP's strategies and approaches in counter-terrorism efforts. Key Roles and Responsibilities: Conduct detailed quantitative and qualitative analysis to identify organisational problems and design appropriate solutions. Develop operating models and manage design dependencies with other change initiatives. Translate complex organisational issues into clear, compelling narratives for broad consensus. Collaborate with multidisciplinary teams, manage senior stakeholders, and build relationships across various departments. Work closely with the Business Design Team, CTP officers and staff, programme/project teams, strategy/performance colleagues, finance/HR/communications partners, etc. Skills and Experience Required: Essential: Proficiency in quantitative and qualitative analysis for defining problems and designing solutions. Ability to communicate complex issues effectively and gain consensus. Understanding of wider strategic and socio-economic impacts on tactical business problems. Experience in developing business operating models and delivering change. Innovative and solutions-oriented approach. Experience in managing stakeholders and collaborating across multidisciplinary teams. Experience in managing junior staff and navigating conflicting requirements. Desirable: Project management qualification or experience. Leadership experience in change-driven environments. Awareness of Enterprise Architecture and Business Design Artefacts. Experience in managing relationships within a challenging context. Experience in matters of national security and counter-terrorism. Vetting: Minimum SC Clearance required, with the possibility of undergoing National Security Vetting Security Check (enhanced) Se level. if we would be interested in applying please send your CV and covering letter detailing Business Design experience an current clearance level to (url removed)
Senior Microsoft Purview Consultant Central London 2-3 days per week 12 months + Senior Microsoft Purview Consultant required for a leading organisation in London. We're looking for someone with strong experience in retention and data loss prevention, you will play a pivotal role in helping our client safeguard their sensitive information and ensure compliance with regulatory requirements. Using your experience with Microsoft Purview, you will design and implement strategies for data retention, classification, and protection. (Any reinsurance / banking background would be desirable) The role require 2-3 days on site in London and we're ideally looking for someone with an immediate start. Key Responsibilities: Work with the business to assess their data retention and data loss prevention needs, taking into account industry regulations and compliance standards. Ability to lead the design and implementation of Purview solutions tailored to enhance data retention policies, ensuring the proper classification and lifecycle management of data assets. Help develop and implement data loss prevention (DLP) strategies utilizing Purview and other complementary tools to identify, monitor, and mitigate risks associated with data exposure or leakage. Conduct comprehensive data assessments and audits to identify areas of improvement and recommend actionable solutions for enhancing data protection measures. Provide guidance and expertise on best practices for implementing data retention and DLP policies, including user training and awareness programs. Collaborate closely with cross-functional teams, including cybersecurity experts, legal counsel, and compliance officers, to ensure alignment with organizational policies and regulatory requirements. Interested? Please submit your updated CV to Olivia Yafai at Crimson for immediate consideration. Not interested? Do you know someone who might be a perfect fit for this role? Refer a friend and earn 250 worth of vouchers! Crimson is acting as an employment agency regarding this vacancy. For more information on how Crimson uses data, please see our Privacy Statement at the bottom of our website.
Mar 27, 2024
Contractor
Senior Microsoft Purview Consultant Central London 2-3 days per week 12 months + Senior Microsoft Purview Consultant required for a leading organisation in London. We're looking for someone with strong experience in retention and data loss prevention, you will play a pivotal role in helping our client safeguard their sensitive information and ensure compliance with regulatory requirements. Using your experience with Microsoft Purview, you will design and implement strategies for data retention, classification, and protection. (Any reinsurance / banking background would be desirable) The role require 2-3 days on site in London and we're ideally looking for someone with an immediate start. Key Responsibilities: Work with the business to assess their data retention and data loss prevention needs, taking into account industry regulations and compliance standards. Ability to lead the design and implementation of Purview solutions tailored to enhance data retention policies, ensuring the proper classification and lifecycle management of data assets. Help develop and implement data loss prevention (DLP) strategies utilizing Purview and other complementary tools to identify, monitor, and mitigate risks associated with data exposure or leakage. Conduct comprehensive data assessments and audits to identify areas of improvement and recommend actionable solutions for enhancing data protection measures. Provide guidance and expertise on best practices for implementing data retention and DLP policies, including user training and awareness programs. Collaborate closely with cross-functional teams, including cybersecurity experts, legal counsel, and compliance officers, to ensure alignment with organizational policies and regulatory requirements. Interested? Please submit your updated CV to Olivia Yafai at Crimson for immediate consideration. Not interested? Do you know someone who might be a perfect fit for this role? Refer a friend and earn 250 worth of vouchers! Crimson is acting as an employment agency regarding this vacancy. For more information on how Crimson uses data, please see our Privacy Statement at the bottom of our website.
We are now recruiting for a Senior Security Architect to support the Chief Information Security Officer in managing and reporting the Information Security Risks faced by Technology Services (TS) in delivering AJ Bell's systems and services. This role is responsible for leading the secure delivery of AJ Bell's technology and business change. The Senior Security Architect will play a lead role in designing and implementing security controls and processes. Key to this is assisting and supporting our colleagues in achieving their goals, but in a secure manner. The Information Security Team is based out of our Manchester office, but this role can be based UK wide with intermittent travel to Manchester. The key responsibilities of the role are: Subject matter expertise for security best practice, ensuring the maintenance of the confidentiality, integrity and availability of AJ Bell's systems and data. Engaging with business leaders to ensure security is adequately represented within their changes and initiatives. Design and implementation of enterprise security technology controls and platforms, following industry best practices. Supporting and advising on projects and change initiatives to ensure that there is no negative impact on our security posture Carrying out internal security reviews both on solutions we develop in house and third-party solutions. Supporting audit and due diligence activities within Technology Services Establishing frameworks and patterns for the efficient and effective delivery of security controls. Working with Information Security, Infrastructure and Architecture to define security standards. Acts as an integration point between the CISO and AJ Bell business and technology teams to ensure security is embedded across the organisation What we're looking for: Demonstrable experience of implementing enterprise security platforms Previous experience of delivering and maintaining of technical enterprise security solutions for (but not limited to) the following areas: End Point Protection, Cloud Security, Network Security, DevOps, Security Monitoring & Remediation is advantageous. Knowledge of Secure Software Development Life Cycle best practices Strong understanding and knowledge of Information Security risk management tools and techniques Experience of security governance and compliance, ideally gained in financial services organisations Demonstrable understanding of Information Security control standards and frameworks e.g. ISO27001, NIST, PCI DSS Awareness and understanding of the Information Security threat landscape Deep understanding of Information Security solutions and controls Experience of Cloud security solutions and standards is highly advantageous Knowledge & Skills Excellent communicator, able to translate complex topics to all areas of the business Significant experience in the area of Information security Strong knowledge of core IT and networking concepts Well versed in IT security capabilities, framework and concepts Strong ownership of tasks, attention to detail and following through to conclusion Ability to challenge approach, strategy and implementation to ensure Information Security is consistently considered and improved Ability to work under own initiative to plan and communicate effectively with colleagues and customers Structured, self-starting, flexible and enjoy working in fast-paced environments Effective communication skills, both written and verbal Ability to plan, organise and follow through on assigned tasks and complete with little or no prompting from management Excellent attention to detail Attained CISSP or similar certification Minimum of 5 years' experience in an Information Security role gained in a financial services or e-commerce environment is preferred About Us: AJ Bell is one of the fastest-growing investment platform businesses in the UK offering an award-winning range of solutions that caters for everyone, from professional financial advisers, to DIY investors with little to no experience. We have over 484,000 customers using our award-winning platform propositions to manage assets totalling more than £76.2 billion. Our customers trust us with their investments, and by continuously striving to make investing easier, we aim to help even more people take control of their financial futures. Having listed on the Main Market of the London Stock Exchange in December 2018, AJ Bell is now a FTSE 250 company. Headquartered in Manchester with offices in central London and Bristol, we now have over 1300 employees and have been named one of the UK's 'Best 100 Companies to Work For' for six consecutive years. What we offer: Starting salary £75,000 - £90,000 (DOE) Generous holiday allowance increasing up to 31 days with service, plus bank holidays Holiday buy/sell scheme Hybrid working policy Casual dress code Discretionary bonus Contributory pension scheme Healthcare Cash Plan Dedicated time for proof-of-concepts and assessing new tech Support to attend conferences, events, and meet-ups Buy as you earn share scheme Free annual share scheme Paid study support for qualifications Enhanced maternity/paternity scheme from day one Bike loan Season ticket loan portal Discounted PMI and Dental On-site gym and personal trainer led classes Paid volunteering opportunities, free social events and more AJ Bell is committed to providing an environment of mutual respect where equal employment opportunities are available to all applicants and all employees are empowered to bring their whole self to work. We do not discriminate on the basis of race, sex, gender identity, sexual orientation, age, pregnancy, religion, physical and mental disability, marital status and any other characteristics protected by the Equality Act 2010. All decisions to hire are based on qualifications, merit and business need.
Mar 27, 2024
Full time
We are now recruiting for a Senior Security Architect to support the Chief Information Security Officer in managing and reporting the Information Security Risks faced by Technology Services (TS) in delivering AJ Bell's systems and services. This role is responsible for leading the secure delivery of AJ Bell's technology and business change. The Senior Security Architect will play a lead role in designing and implementing security controls and processes. Key to this is assisting and supporting our colleagues in achieving their goals, but in a secure manner. The Information Security Team is based out of our Manchester office, but this role can be based UK wide with intermittent travel to Manchester. The key responsibilities of the role are: Subject matter expertise for security best practice, ensuring the maintenance of the confidentiality, integrity and availability of AJ Bell's systems and data. Engaging with business leaders to ensure security is adequately represented within their changes and initiatives. Design and implementation of enterprise security technology controls and platforms, following industry best practices. Supporting and advising on projects and change initiatives to ensure that there is no negative impact on our security posture Carrying out internal security reviews both on solutions we develop in house and third-party solutions. Supporting audit and due diligence activities within Technology Services Establishing frameworks and patterns for the efficient and effective delivery of security controls. Working with Information Security, Infrastructure and Architecture to define security standards. Acts as an integration point between the CISO and AJ Bell business and technology teams to ensure security is embedded across the organisation What we're looking for: Demonstrable experience of implementing enterprise security platforms Previous experience of delivering and maintaining of technical enterprise security solutions for (but not limited to) the following areas: End Point Protection, Cloud Security, Network Security, DevOps, Security Monitoring & Remediation is advantageous. Knowledge of Secure Software Development Life Cycle best practices Strong understanding and knowledge of Information Security risk management tools and techniques Experience of security governance and compliance, ideally gained in financial services organisations Demonstrable understanding of Information Security control standards and frameworks e.g. ISO27001, NIST, PCI DSS Awareness and understanding of the Information Security threat landscape Deep understanding of Information Security solutions and controls Experience of Cloud security solutions and standards is highly advantageous Knowledge & Skills Excellent communicator, able to translate complex topics to all areas of the business Significant experience in the area of Information security Strong knowledge of core IT and networking concepts Well versed in IT security capabilities, framework and concepts Strong ownership of tasks, attention to detail and following through to conclusion Ability to challenge approach, strategy and implementation to ensure Information Security is consistently considered and improved Ability to work under own initiative to plan and communicate effectively with colleagues and customers Structured, self-starting, flexible and enjoy working in fast-paced environments Effective communication skills, both written and verbal Ability to plan, organise and follow through on assigned tasks and complete with little or no prompting from management Excellent attention to detail Attained CISSP or similar certification Minimum of 5 years' experience in an Information Security role gained in a financial services or e-commerce environment is preferred About Us: AJ Bell is one of the fastest-growing investment platform businesses in the UK offering an award-winning range of solutions that caters for everyone, from professional financial advisers, to DIY investors with little to no experience. We have over 484,000 customers using our award-winning platform propositions to manage assets totalling more than £76.2 billion. Our customers trust us with their investments, and by continuously striving to make investing easier, we aim to help even more people take control of their financial futures. Having listed on the Main Market of the London Stock Exchange in December 2018, AJ Bell is now a FTSE 250 company. Headquartered in Manchester with offices in central London and Bristol, we now have over 1300 employees and have been named one of the UK's 'Best 100 Companies to Work For' for six consecutive years. What we offer: Starting salary £75,000 - £90,000 (DOE) Generous holiday allowance increasing up to 31 days with service, plus bank holidays Holiday buy/sell scheme Hybrid working policy Casual dress code Discretionary bonus Contributory pension scheme Healthcare Cash Plan Dedicated time for proof-of-concepts and assessing new tech Support to attend conferences, events, and meet-ups Buy as you earn share scheme Free annual share scheme Paid study support for qualifications Enhanced maternity/paternity scheme from day one Bike loan Season ticket loan portal Discounted PMI and Dental On-site gym and personal trainer led classes Paid volunteering opportunities, free social events and more AJ Bell is committed to providing an environment of mutual respect where equal employment opportunities are available to all applicants and all employees are empowered to bring their whole self to work. We do not discriminate on the basis of race, sex, gender identity, sexual orientation, age, pregnancy, religion, physical and mental disability, marital status and any other characteristics protected by the Equality Act 2010. All decisions to hire are based on qualifications, merit and business need.
Position Title: Technology Governance and Assurance Officer Type of Employment: Permanent, Full-time Company Overview: We are working with a leading financial services firm dedicated to providing innovative solutions and exceptional service to their clients. With a commitment to excellence and a focus on integrity, they strive to maintain the highest standards of technology governance and assurance to safeguard their operations and protect the interests of their stakeholders. Job Overview: We are seeking a highly skilled and motivated Technology Governance and Assurance Officer to join their team. The successful candidate will be responsible for maintaining technology governance frameworks, ensuring compliance with regulatory requirements, managing technology risks, and providing assurance to senior management and stakeholders. Key Responsibilities: Maintain technology governance frameworks, policies, and procedures in alignment with industry standards, regulatory requirements, and best practices. Monitor and assess compliance with relevant laws, regulations, and internal policies governing technology operations and information security. Identify, assess, and mitigate technology-related risks that could impact the organization's operations, reputation, or financial health. Oversee vendor management activities, including vendor selection, contract negotiation, performance monitoring, and risk assessment. Conduct regular audits, assessments, and reviews of technology systems, processes, and controls to ensure effectiveness and identify areas for improvement. Provide assurance to senior management, the board of directors, and external auditors that technology risks are being managed effectively and that the organization's technology environment is secure and compliant. Develop and deliver training programs and awareness initiatives to promote a culture of technology governance, risk management, and compliance throughout the organization. Stay abreast of emerging technologies, industry trends, and regulatory developments to inform technology governance strategies and practices. Collaborate with cross-functional teams, including IT, legal, compliance, and risk management, to address technology-related issues and initiatives. Drive continuous improvement in technology governance practices by assessing performance, identifying opportunities for enhancement, and implementing changes as needed. Qualifications: Strong understanding of regulatory requirements, industry standards, and best practices related to technology governance, risk, and compliance. Proven ability to develop and implement technology governance frameworks, policies, and procedures. Excellent analytical, problem-solving, and decision-making skills, with a keen attention to detail. Effective communication and interpersonal skills, with the ability to interact confidently with stakeholders at all levels of the organization. Demonstrated ability to manage multiple projects and priorities in a fast-paced environment. Strong team player with a collaborative mindset and a commitment to continuous learning and professional development.
Mar 27, 2024
Full time
Position Title: Technology Governance and Assurance Officer Type of Employment: Permanent, Full-time Company Overview: We are working with a leading financial services firm dedicated to providing innovative solutions and exceptional service to their clients. With a commitment to excellence and a focus on integrity, they strive to maintain the highest standards of technology governance and assurance to safeguard their operations and protect the interests of their stakeholders. Job Overview: We are seeking a highly skilled and motivated Technology Governance and Assurance Officer to join their team. The successful candidate will be responsible for maintaining technology governance frameworks, ensuring compliance with regulatory requirements, managing technology risks, and providing assurance to senior management and stakeholders. Key Responsibilities: Maintain technology governance frameworks, policies, and procedures in alignment with industry standards, regulatory requirements, and best practices. Monitor and assess compliance with relevant laws, regulations, and internal policies governing technology operations and information security. Identify, assess, and mitigate technology-related risks that could impact the organization's operations, reputation, or financial health. Oversee vendor management activities, including vendor selection, contract negotiation, performance monitoring, and risk assessment. Conduct regular audits, assessments, and reviews of technology systems, processes, and controls to ensure effectiveness and identify areas for improvement. Provide assurance to senior management, the board of directors, and external auditors that technology risks are being managed effectively and that the organization's technology environment is secure and compliant. Develop and deliver training programs and awareness initiatives to promote a culture of technology governance, risk management, and compliance throughout the organization. Stay abreast of emerging technologies, industry trends, and regulatory developments to inform technology governance strategies and practices. Collaborate with cross-functional teams, including IT, legal, compliance, and risk management, to address technology-related issues and initiatives. Drive continuous improvement in technology governance practices by assessing performance, identifying opportunities for enhancement, and implementing changes as needed. Qualifications: Strong understanding of regulatory requirements, industry standards, and best practices related to technology governance, risk, and compliance. Proven ability to develop and implement technology governance frameworks, policies, and procedures. Excellent analytical, problem-solving, and decision-making skills, with a keen attention to detail. Effective communication and interpersonal skills, with the ability to interact confidently with stakeholders at all levels of the organization. Demonstrated ability to manage multiple projects and priorities in a fast-paced environment. Strong team player with a collaborative mindset and a commitment to continuous learning and professional development.
Data Protection Manager Do you want to work for a company that is not driven by profit, but by providing excellent service? A company that is sustained by a genuine community, with everyone coming together to support each other? With a 118-year history and a mutual ethos, this company provides an amazing opportunity to work in a diverse and dynamic environment. About the Role This company is seeking a Data Protection Manager to join their Risk and Compliance department on a 12 month fixed term basis. The role is based in York with a mixture of 3 days office and 2 days working from home. The successful candidate will report to the Data Protection Officer and will be responsible for ensuring that projects embed data protection by design and by default, providing regulatory advice, support and challenge to the business on data protection legislation and cyber security matters, monitoring compliance with data protection laws and internal data protection policies, advising on and assisting with project data protection impact assessments, producing data maps, and ensuring effective compliance with the business's Risk Management Framework. Requirements Strong demonstrable experience of working as a Data Protection Manager or senior data protection role in a FCA regulated financial services business Experience of completion of all data protection activities including expert advice, monitoring and oversight Excellent written and verbal communicator able to influence senior stakeholders and leverage/negotiate resources across the group to achieve objectives Professional, self-motivated, approachable, collaborative and calm, able to prioritise and work on own or as part of a team to provide pragmatic advice and solutions to meet a range of stakeholder needs Please note, should feedback not be received within 28 days due to the large volume of applications, unfortunately, your application has been unsuccessful. However, we may be in touch with similar relevant opportunities.If you would like this job advertisement in an alternative format, please contact MERJE directly.
Mar 27, 2024
Full time
Data Protection Manager Do you want to work for a company that is not driven by profit, but by providing excellent service? A company that is sustained by a genuine community, with everyone coming together to support each other? With a 118-year history and a mutual ethos, this company provides an amazing opportunity to work in a diverse and dynamic environment. About the Role This company is seeking a Data Protection Manager to join their Risk and Compliance department on a 12 month fixed term basis. The role is based in York with a mixture of 3 days office and 2 days working from home. The successful candidate will report to the Data Protection Officer and will be responsible for ensuring that projects embed data protection by design and by default, providing regulatory advice, support and challenge to the business on data protection legislation and cyber security matters, monitoring compliance with data protection laws and internal data protection policies, advising on and assisting with project data protection impact assessments, producing data maps, and ensuring effective compliance with the business's Risk Management Framework. Requirements Strong demonstrable experience of working as a Data Protection Manager or senior data protection role in a FCA regulated financial services business Experience of completion of all data protection activities including expert advice, monitoring and oversight Excellent written and verbal communicator able to influence senior stakeholders and leverage/negotiate resources across the group to achieve objectives Professional, self-motivated, approachable, collaborative and calm, able to prioritise and work on own or as part of a team to provide pragmatic advice and solutions to meet a range of stakeholder needs Please note, should feedback not be received within 28 days due to the large volume of applications, unfortunately, your application has been unsuccessful. However, we may be in touch with similar relevant opportunities.If you would like this job advertisement in an alternative format, please contact MERJE directly.
Salary: up to £40k DOE HYBRID after training Are you a skilled Infrastructure Engineer looking for an exciting opportunity to contribute and work in a rapidly expanding IT department? We are seeking a hands-on, multi-disciplined Technical Lead to work within our client s fast paced IT team. This role is primarily office based but can support hybrid working after training. This individual will support the IT development team and system administrators in delivering robust, performant, resilient and recoverable infrastructure platforms, traditional and cloud, as well as supporting the technical development of the internal infrastructure team. You will determine and maintain best practice and infrastructure standards as well as ensuring all platforms are secure and meet all legislative compliance requirements. Duties: Promoting technical excellence within the team. Work within the incident response process providing expertise and support to the support team as required. Work with the other technical leads and external technical resource to design and document end to end, secure, and scalable, performant Infrastructure solutions driving appropriate best practice and standards. Participate in technical evaluation of products within the infrastructure domain and participate in the deployment and implementation of the infrastructure technologies. Work with the development team to understand development roadmaps for the business. Contribute to the development of technology roadmaps. Work closely with the IT teams to deliver cost effective solutions in line with the IT strategy and roadmap. Review vulnerability and penetration test results, advising, preparing, and performing remediation actions. Work with security functions, including the Data Protection Officer to ensure policies are maintained and audited. Candidate Requirements: Knowledgeable in enhancements available within the current infrastructure. Minimum 3 years experience in a similar infrastructure with a minimum of 1 year s hands on cloud experience. Confident delivering creative proposals to senior managers. Proven and able to articulate technical hands-on experience with cloud platforms, ideally Azure in both design and support capacity. Awareness of DevOps, pipelines, and CI/CD methodology to support infrastructure deployments. Experience in a web-enabled, live e-commerce environment with skills to include web site and services implementations, customisation, and troubleshooting. Experience of working on multi-tier, high volume, transactional system platforms and an understanding of the challenges and management. Experience with use of infrastructure auto-deployment techniques; PowerShell, Ansible, Terraform etc. Awareness of web application development techniques and tools, XML, .Net framework, IIS, Apache and CI/CD methodologies. Experience of the development of high and low-level designs and documenting technical solutions. Working knowledge of ITILv3.
Mar 26, 2024
Full time
Salary: up to £40k DOE HYBRID after training Are you a skilled Infrastructure Engineer looking for an exciting opportunity to contribute and work in a rapidly expanding IT department? We are seeking a hands-on, multi-disciplined Technical Lead to work within our client s fast paced IT team. This role is primarily office based but can support hybrid working after training. This individual will support the IT development team and system administrators in delivering robust, performant, resilient and recoverable infrastructure platforms, traditional and cloud, as well as supporting the technical development of the internal infrastructure team. You will determine and maintain best practice and infrastructure standards as well as ensuring all platforms are secure and meet all legislative compliance requirements. Duties: Promoting technical excellence within the team. Work within the incident response process providing expertise and support to the support team as required. Work with the other technical leads and external technical resource to design and document end to end, secure, and scalable, performant Infrastructure solutions driving appropriate best practice and standards. Participate in technical evaluation of products within the infrastructure domain and participate in the deployment and implementation of the infrastructure technologies. Work with the development team to understand development roadmaps for the business. Contribute to the development of technology roadmaps. Work closely with the IT teams to deliver cost effective solutions in line with the IT strategy and roadmap. Review vulnerability and penetration test results, advising, preparing, and performing remediation actions. Work with security functions, including the Data Protection Officer to ensure policies are maintained and audited. Candidate Requirements: Knowledgeable in enhancements available within the current infrastructure. Minimum 3 years experience in a similar infrastructure with a minimum of 1 year s hands on cloud experience. Confident delivering creative proposals to senior managers. Proven and able to articulate technical hands-on experience with cloud platforms, ideally Azure in both design and support capacity. Awareness of DevOps, pipelines, and CI/CD methodology to support infrastructure deployments. Experience in a web-enabled, live e-commerce environment with skills to include web site and services implementations, customisation, and troubleshooting. Experience of working on multi-tier, high volume, transactional system platforms and an understanding of the challenges and management. Experience with use of infrastructure auto-deployment techniques; PowerShell, Ansible, Terraform etc. Awareness of web application development techniques and tools, XML, .Net framework, IIS, Apache and CI/CD methodologies. Experience of the development of high and low-level designs and documenting technical solutions. Working knowledge of ITILv3.
Information Security Officer / InfoSec Compliance Analyst - Access Governance, Risk, Compliance; Security Controls Testing, Access Certification Audits, Reporting, Metrics; Development of Implementation of Security Controls; CISM, CISSP, CySA+, CASP+ etc; ISO 27001, NIST, Cyber Essentials Plus. London / Remote (Hybrid 3 Days Per Week In Office). £60k - £70k +Bonus +Benefits Prestigious Global Law Firm seeks an Information Security Officer / InfoSec Compliance Analyst to undertake risk assessments, access certification audits and security assessment testing to evaluate and ensure that the firm operates within IT security compliance parameters of both industry best practice and regulatory compliance requirements. You will play a dual role in both the risk assessment work and the development of the IT InfoSec / CyberSec policies and security controls required to ensure that internal systems meet with these standards. This is a mid-level Information Security Officer / InfoSec Compliance Analyst role which will require an individual to both work under their own initiative in terms of risk assessment testing and support the work of senior Information Security Officers within the team to develop security controls. You will evaluate compliance with key security policies and ISO requirements, document variations for remediation and generate actionable metrics for leadership review. Follow this the successful candidate will identify and support creation of policies and procedures to improve compliance processes. Finally, you will manage the IT security risk register and findings and manage updates as appropriate in line with incident management and developments in policy We are searching for an Information Security Officer / IT Security Analyst / InfoSec Officer / IT Auditor / CyberSec Compliance Analyst who can bring both procedural security knowledge, experience of audits and the implementation of security procedures and controls within best practice frameworks within either business or public sector environments. You will be an information security professional who holds certifications ranging from CySA+, CASP+, CISSP, Security+, CISA, CISM, and may have some exposure to frameworks such as ISO 27001 or NIST. You will be familiar with undertaking a range of security audits (such as access certification audits, IT risk assessments, perimeter defence testing etc) and providing guidance and advisory to both technical and business stakeholders alike. You will be familiar with a range of tools such as SailPoint, Tenable, MS Security Suite and others. Excellent organisation and communication skills are pre-requisite. Degree level education preferable but non-essential. Excellent opportunity to join a well renowned, international Law Firm during a time of exciting growth and corporate development.
Mar 26, 2024
Full time
Information Security Officer / InfoSec Compliance Analyst - Access Governance, Risk, Compliance; Security Controls Testing, Access Certification Audits, Reporting, Metrics; Development of Implementation of Security Controls; CISM, CISSP, CySA+, CASP+ etc; ISO 27001, NIST, Cyber Essentials Plus. London / Remote (Hybrid 3 Days Per Week In Office). £60k - £70k +Bonus +Benefits Prestigious Global Law Firm seeks an Information Security Officer / InfoSec Compliance Analyst to undertake risk assessments, access certification audits and security assessment testing to evaluate and ensure that the firm operates within IT security compliance parameters of both industry best practice and regulatory compliance requirements. You will play a dual role in both the risk assessment work and the development of the IT InfoSec / CyberSec policies and security controls required to ensure that internal systems meet with these standards. This is a mid-level Information Security Officer / InfoSec Compliance Analyst role which will require an individual to both work under their own initiative in terms of risk assessment testing and support the work of senior Information Security Officers within the team to develop security controls. You will evaluate compliance with key security policies and ISO requirements, document variations for remediation and generate actionable metrics for leadership review. Follow this the successful candidate will identify and support creation of policies and procedures to improve compliance processes. Finally, you will manage the IT security risk register and findings and manage updates as appropriate in line with incident management and developments in policy We are searching for an Information Security Officer / IT Security Analyst / InfoSec Officer / IT Auditor / CyberSec Compliance Analyst who can bring both procedural security knowledge, experience of audits and the implementation of security procedures and controls within best practice frameworks within either business or public sector environments. You will be an information security professional who holds certifications ranging from CySA+, CASP+, CISSP, Security+, CISA, CISM, and may have some exposure to frameworks such as ISO 27001 or NIST. You will be familiar with undertaking a range of security audits (such as access certification audits, IT risk assessments, perimeter defence testing etc) and providing guidance and advisory to both technical and business stakeholders alike. You will be familiar with a range of tools such as SailPoint, Tenable, MS Security Suite and others. Excellent organisation and communication skills are pre-requisite. Degree level education preferable but non-essential. Excellent opportunity to join a well renowned, international Law Firm during a time of exciting growth and corporate development.