This is a key leadership role within the IT and Change function, responsible for overall operation and governance of the IT department and reporting directly to the group IT Director.
You will be responsible for defining policy, process and working practices and for ensuring an effective IT Support service to the Group.
A full-time post, working 37.5 hours per week Monday to Friday. Remote working, but occasional requirement to attend a site office.
Responsibilities include:
IT Service Delivery
Establishing, configuring and providing adoption assurance for service tooling
Oversight and co-ordination of incidents and requests on behalf of engineers within each subsidiary
Build relationships with senior leaderships within Group companies
Providing service reporting to senor leadership within each business
Delivery of Key IT Processes, in line with ISO27001 and ITIL, including:
Incident and Major Incident
Change Control
Access Control
Disaster Recovery Test Scheduling and Reporting
Service Desk Management
Information Security Audit
Capacity management
Vulnerability Management
Asset Management and SAM
Knowledgebase Management
Chairs the Businesses Monthly Governance meetings
Liaises with Group and subsidiary compliance teams to enable ongoing review of controls
Delivers the Group IT Risk Treatment Plan, updated the IT risk Register accordingly
Governance of MS Teams and SharePoint
Manages Vendors and Suppliers in line with the Group Supplier policy
Profile: Skills, experience, education
Skills
Strong technical awareness without being an expert
Excellent verbal, written, organisational communication skills
Strong background in ISO27001 and ITIL
Service leadership
Able to lead and mentor others who are not direct reports
Able to build relationships and engage with senior stakeholders
Customer service oriented
Knowledge of DR techniques and technologies
Strong awareness and experience of implementing IT Service management tools
Experience
5 years (or able to demonstrate excellent experience) of managing an IT Operation / Service Desk
Experience of working in a multi subsidiary business desirable
Experience of working within regulated industries preferred
Qualifications – Essential
Degree or equivalent
ITIL V4 Foundation
Qualifications – Desirable
ITIL V4 Create, Deliver, Support
ISO27001 Auditor
Formal training in people leadership
Role conditional on passing employee vetting process which includes a 5 year employment reference check, 3 year financial probity and basic criminal disclosure check.
We offer an unrivalled benefits package including flexible working arrangements, enhanced maternity & paternity, private medical insurance, medical cash plan, company sick pay, 5% matched pension, up to 27 days paid holiday (subject to length of service increments) plus bank holidays on top and option to top up by 5 days per year through our flexible leave scheme.
Kuro Health actively promotes equality of opportunity for all. We welcome applications from a wide range of candidates with the right mix of talent, skills and potential.
Sep 08, 2023
Full time
This is a key leadership role within the IT and Change function, responsible for overall operation and governance of the IT department and reporting directly to the group IT Director.
You will be responsible for defining policy, process and working practices and for ensuring an effective IT Support service to the Group.
A full-time post, working 37.5 hours per week Monday to Friday. Remote working, but occasional requirement to attend a site office.
Responsibilities include:
IT Service Delivery
Establishing, configuring and providing adoption assurance for service tooling
Oversight and co-ordination of incidents and requests on behalf of engineers within each subsidiary
Build relationships with senior leaderships within Group companies
Providing service reporting to senor leadership within each business
Delivery of Key IT Processes, in line with ISO27001 and ITIL, including:
Incident and Major Incident
Change Control
Access Control
Disaster Recovery Test Scheduling and Reporting
Service Desk Management
Information Security Audit
Capacity management
Vulnerability Management
Asset Management and SAM
Knowledgebase Management
Chairs the Businesses Monthly Governance meetings
Liaises with Group and subsidiary compliance teams to enable ongoing review of controls
Delivers the Group IT Risk Treatment Plan, updated the IT risk Register accordingly
Governance of MS Teams and SharePoint
Manages Vendors and Suppliers in line with the Group Supplier policy
Profile: Skills, experience, education
Skills
Strong technical awareness without being an expert
Excellent verbal, written, organisational communication skills
Strong background in ISO27001 and ITIL
Service leadership
Able to lead and mentor others who are not direct reports
Able to build relationships and engage with senior stakeholders
Customer service oriented
Knowledge of DR techniques and technologies
Strong awareness and experience of implementing IT Service management tools
Experience
5 years (or able to demonstrate excellent experience) of managing an IT Operation / Service Desk
Experience of working in a multi subsidiary business desirable
Experience of working within regulated industries preferred
Qualifications – Essential
Degree or equivalent
ITIL V4 Foundation
Qualifications – Desirable
ITIL V4 Create, Deliver, Support
ISO27001 Auditor
Formal training in people leadership
Role conditional on passing employee vetting process which includes a 5 year employment reference check, 3 year financial probity and basic criminal disclosure check.
We offer an unrivalled benefits package including flexible working arrangements, enhanced maternity & paternity, private medical insurance, medical cash plan, company sick pay, 5% matched pension, up to 27 days paid holiday (subject to length of service increments) plus bank holidays on top and option to top up by 5 days per year through our flexible leave scheme.
Kuro Health actively promotes equality of opportunity for all. We welcome applications from a wide range of candidates with the right mix of talent, skills and potential.
ABOUT THE ROLE
Are you passionate about protecting Cyber Security?
Do you want to make a real difference in the fight against cybercrime in local government?
Are you passionate about making a difference in your community?
If so, we want you to join our team!
We seek a highly motivated and experienced Cyber Security & Networks Manager to join our team. Stevenage Borough Council are a leading local authority in Cyber Security in the UK and pilot cyber security standards for The Department for Levelling Up, Housing and Communities (DLUHC). This is an exciting opportunity to be at the forefront of Cyber Security in the public sector. The ideal candidate will have a strong understanding of cyber security principles and associated technology risk management. They will also have experience in managing and leading a team of IT professionals.
Accountable for Cyber security, you will identify and ensure the security of the council’s IT Applications and Digital Solutions. You will lead in evaluating new and existing projects, software and hardware products, and vendors, including examining vendor contracts and terms of service. You will support teams across the council to develop their understanding of security cyber risks. You will manage a small team of two Senior Network and Security Engineers
You will take the lead on cyber security and network for the Shared IT service, which supports over 1,000 users across Stevenage Borough Council and East Herts District Council and will put in place controls over security systems, such as firewalls, data protection controls, patching, encryption, vulnerability scanning and penetration testing.
You will be responsible for achieving compliance with Cyber Essentials Plus, Cyber Assessment Framework (CAF) and Public Sector Network (PSN) and related government frameworks, including those of the National Cyber Security Centre, the Information Commissioners Office (ICO)
ABOUT YOU
The successful candidate will have
Ability to work in a high-pressure environment and make sound decisions in emergency situations while empathising with customers and responding sympathetically to
Extensive knowledge of all IT security aspects, including audit response, oversight, and scrutiny, ICO responses, Information Governance, Information Assurance, IT Asset Management policies, Quality Assurance, Test Strategies, PSN and PCI and other relevant compliance frameworks, Disaster recovery and Business continuity
Extensive experience working as part of a multidiscipline ICT team in a complex organisation, ideally a local authority.
OUR BENEFITS
Pension Scheme: We offer a career average pension scheme, providing generous benefits upon retirement, as well as a lump sum and pensions for dependants
Flexible working: available upon request, subject to operational requirements
Part-time and job share opportunities - all our full time vacancies are open to job share unless otherwise stated
A variety of different types of paid leave covering emergency and planned leave, maternity, paternity, adoption and parental leave
25 days holiday rising to 31 days (depending on Local Government service)
An extensive range of learning and development opportunities
Employee Assistance Programme – 24/7 Confidential advice and support on personal, work, family, and relationship issues
Discounted health and fitness membership
Trade Unions: For a small fee, all employees have the opportunity to join a Trade Union
HOW TO APPLY
All applications must be made on online - please visit https://bit.ly/45Yo0Ke
For an informal discussion about this role please contact
Name Matt Canterford
Job Title Assistant Director and Chief Technology Officer
Phone Number 07706 349657
Email matt.canterford@stevenage.gov.uk
Closing date for receipt of applications : 26 June 2023
Interviews will be held the week commencing: 3 July 2023
Please note that if we receive a large volume of applications for this role, we reserve the right to close this vacancy ahead of the published closing date
Stevenage Borough Council (SBC) is committed to safeguarding and promoting the welfare of children, young people and vulnerable adults and expects all staff, volunteers and recruitment candidates to share this commitment. SBC shall take all reasonable steps to employ staff who are safe to work with children, young people and vulnerable adults. For posts identified with regular contact with these groups applicants will be required to undertake a Value Based Interview. The council supports the legislative requirements for employing and maintaining safer staff and the guidance specified by Hertfordshire Safeguarding Adults Board
Stevenage Borough Council is committed to Equal Opportunities for All. For further information please click https://www.stevenage.gov.uk/about-the-council/jobs-and-careers/equal-opportunities
Jun 05, 2023
Full time
ABOUT THE ROLE
Are you passionate about protecting Cyber Security?
Do you want to make a real difference in the fight against cybercrime in local government?
Are you passionate about making a difference in your community?
If so, we want you to join our team!
We seek a highly motivated and experienced Cyber Security & Networks Manager to join our team. Stevenage Borough Council are a leading local authority in Cyber Security in the UK and pilot cyber security standards for The Department for Levelling Up, Housing and Communities (DLUHC). This is an exciting opportunity to be at the forefront of Cyber Security in the public sector. The ideal candidate will have a strong understanding of cyber security principles and associated technology risk management. They will also have experience in managing and leading a team of IT professionals.
Accountable for Cyber security, you will identify and ensure the security of the council’s IT Applications and Digital Solutions. You will lead in evaluating new and existing projects, software and hardware products, and vendors, including examining vendor contracts and terms of service. You will support teams across the council to develop their understanding of security cyber risks. You will manage a small team of two Senior Network and Security Engineers
You will take the lead on cyber security and network for the Shared IT service, which supports over 1,000 users across Stevenage Borough Council and East Herts District Council and will put in place controls over security systems, such as firewalls, data protection controls, patching, encryption, vulnerability scanning and penetration testing.
You will be responsible for achieving compliance with Cyber Essentials Plus, Cyber Assessment Framework (CAF) and Public Sector Network (PSN) and related government frameworks, including those of the National Cyber Security Centre, the Information Commissioners Office (ICO)
ABOUT YOU
The successful candidate will have
Ability to work in a high-pressure environment and make sound decisions in emergency situations while empathising with customers and responding sympathetically to
Extensive knowledge of all IT security aspects, including audit response, oversight, and scrutiny, ICO responses, Information Governance, Information Assurance, IT Asset Management policies, Quality Assurance, Test Strategies, PSN and PCI and other relevant compliance frameworks, Disaster recovery and Business continuity
Extensive experience working as part of a multidiscipline ICT team in a complex organisation, ideally a local authority.
OUR BENEFITS
Pension Scheme: We offer a career average pension scheme, providing generous benefits upon retirement, as well as a lump sum and pensions for dependants
Flexible working: available upon request, subject to operational requirements
Part-time and job share opportunities - all our full time vacancies are open to job share unless otherwise stated
A variety of different types of paid leave covering emergency and planned leave, maternity, paternity, adoption and parental leave
25 days holiday rising to 31 days (depending on Local Government service)
An extensive range of learning and development opportunities
Employee Assistance Programme – 24/7 Confidential advice and support on personal, work, family, and relationship issues
Discounted health and fitness membership
Trade Unions: For a small fee, all employees have the opportunity to join a Trade Union
HOW TO APPLY
All applications must be made on online - please visit https://bit.ly/45Yo0Ke
For an informal discussion about this role please contact
Name Matt Canterford
Job Title Assistant Director and Chief Technology Officer
Phone Number 07706 349657
Email matt.canterford@stevenage.gov.uk
Closing date for receipt of applications : 26 June 2023
Interviews will be held the week commencing: 3 July 2023
Please note that if we receive a large volume of applications for this role, we reserve the right to close this vacancy ahead of the published closing date
Stevenage Borough Council (SBC) is committed to safeguarding and promoting the welfare of children, young people and vulnerable adults and expects all staff, volunteers and recruitment candidates to share this commitment. SBC shall take all reasonable steps to employ staff who are safe to work with children, young people and vulnerable adults. For posts identified with regular contact with these groups applicants will be required to undertake a Value Based Interview. The council supports the legislative requirements for employing and maintaining safer staff and the guidance specified by Hertfordshire Safeguarding Adults Board
Stevenage Borough Council is committed to Equal Opportunities for All. For further information please click https://www.stevenage.gov.uk/about-the-council/jobs-and-careers/equal-opportunities
Business Unit / Team: Chief Operating Office Salary range: £22,400 - £33,600 per annum DOE + red-hot benefits Location: Remote Contract Type: Permanent Take control of your career Our Team Within this fast-paced area of the business - Technology Control, we are passionate about installing sustainable disciplines so that things are done in a controlled manner and risk is minimized. This directly helps ensure safe delivery that protects our customers and shareholders. The Control Analyst role is a key role that supports the oversight and analysis of critical processes within the function. This role will specifically support Risk, Controls & Governance and the role offers the opportunity to work closely with Technology practitioners, enabling the role holder to enhance their personal profile within the COO Technology functions. The successful candidate will join an exciting, motivated team who really make a difference to Making our Customers Happier about Money. What you'll be doing Supporting the delivery of team objectives, including applying their expertise to support the design, development, implementation and ongoing management of risk and control management best practice within COO Technology function Contributing to the development, production and ongoing management of regular and/or ad-hoc team reports and MI (e.g., data contributory to risk committee papers), as well as other governance reporting requirements prioritising and planning their own work to meet team deadlines, including the delivery of business-as-usual team activities; Delivering all allocated work packages to the required quality standards; Maintaining an understanding of VM risk management processes, policies and frameworks; Providing practitioner support to COO colleagues in their use of key risk systems, through effective support and guidance; and Contributing to internal or wider team meetings, Committees and workshops, as required. management of stakeholder relationships and business partnerships across COO and with our partners in 2nd Line Risk and 3rd Line Audit; Management of an effective risk and control management culture across COO. We need you to have Experience using risk & control frameworks and methodologies. Good banking experience and knowledge. Demonstrated success in building effective working relationships with a variety of stakeholders. Efficient and organised in relation to work tasks, with attention to detail and accuracy. Effective management and prioritisation of workloads. It's a bonus if you have but not essential Good understanding of the Bank's risk management policies, standards and frameworks. Red Hot Rewards Generous holidays - 38.5 days annual leave (including bank holidays and prorated if part-time) plus the option to buy more Up to five extra paid well-being days per year 20 weeks paid, gender-neutral family leave (52 weeks in total) for expectant parents and those looking to adopt Market-leading pension Free private medical cover, income protection and life assurance Flexible benefits include Cycle to Work, wellness and health assessments, and critical illness Ability to work anywhere in the UK (where the role allows) And there's no waiting around, you'll enjoy these benefits from day one. Feeling insatiably curious about this role? Apply as soon as you can. If we're lucky to receive a lot of interest, we may close the advert early and would hate you to miss out. We're all about helping you Live a Life More Virgin, so happy to talk flexible working with you. Say hello to Virgin Money We're making great strides towards achieving our ambition of becoming the UK's best digital bank. As a full-service digital bank with a heritage stretching back over 180 years, we re a workforce to be reckoned with. We're putting the full power of our experience behind disruptive ideas that reinvent the role a bank plays in people's lives. We strive to create positive experiences for our millions of customers and our purpose, 'Making You Happier About Money', underpins everything we do. We believe in doing banking differently, innovating and working together to make a real difference. Join us and Live a Life More Virgin that empowers you with choice and flexibility in how you work. Be yourself at Virgin Money Our purpose is to make people happier about money, this means seeing and feeling the world as our customers do by creating a workforce that reflects the rich diversity of our customers and communities. We're committed to creating an inclusive culture where colleagues feel safe and inspired to contribute, speak up and be heard. As a Disability Confident Leader, we're committed to removing any obstacles to inclusion. If you need any reasonable adjustments or support making your application, contact our Talent Acquisition team Now the legal bit Living A Life More Virgin allows our colleagues to be based anywhere in the UK (if the role allows it), but we'll need you to confirm you have the right to work in the UK. If you're successful in securing a role with us, there are some checks you need to complete before starting. These include credit and criminal record checks and three years' worth of satisfactory references. If the role is part of the Senior Manager Regime and Certification Regime, it requires enhanced pre-employment checks - we'll ask for six years of regulatory references, and once in the role, you'll be subject to periodic employment checks. Advertised: 02 May 2024 GMT Daylight Time Applications close: 16 May 2024 GMT Daylight Time
May 04, 2024
Full time
Business Unit / Team: Chief Operating Office Salary range: £22,400 - £33,600 per annum DOE + red-hot benefits Location: Remote Contract Type: Permanent Take control of your career Our Team Within this fast-paced area of the business - Technology Control, we are passionate about installing sustainable disciplines so that things are done in a controlled manner and risk is minimized. This directly helps ensure safe delivery that protects our customers and shareholders. The Control Analyst role is a key role that supports the oversight and analysis of critical processes within the function. This role will specifically support Risk, Controls & Governance and the role offers the opportunity to work closely with Technology practitioners, enabling the role holder to enhance their personal profile within the COO Technology functions. The successful candidate will join an exciting, motivated team who really make a difference to Making our Customers Happier about Money. What you'll be doing Supporting the delivery of team objectives, including applying their expertise to support the design, development, implementation and ongoing management of risk and control management best practice within COO Technology function Contributing to the development, production and ongoing management of regular and/or ad-hoc team reports and MI (e.g., data contributory to risk committee papers), as well as other governance reporting requirements prioritising and planning their own work to meet team deadlines, including the delivery of business-as-usual team activities; Delivering all allocated work packages to the required quality standards; Maintaining an understanding of VM risk management processes, policies and frameworks; Providing practitioner support to COO colleagues in their use of key risk systems, through effective support and guidance; and Contributing to internal or wider team meetings, Committees and workshops, as required. management of stakeholder relationships and business partnerships across COO and with our partners in 2nd Line Risk and 3rd Line Audit; Management of an effective risk and control management culture across COO. We need you to have Experience using risk & control frameworks and methodologies. Good banking experience and knowledge. Demonstrated success in building effective working relationships with a variety of stakeholders. Efficient and organised in relation to work tasks, with attention to detail and accuracy. Effective management and prioritisation of workloads. It's a bonus if you have but not essential Good understanding of the Bank's risk management policies, standards and frameworks. Red Hot Rewards Generous holidays - 38.5 days annual leave (including bank holidays and prorated if part-time) plus the option to buy more Up to five extra paid well-being days per year 20 weeks paid, gender-neutral family leave (52 weeks in total) for expectant parents and those looking to adopt Market-leading pension Free private medical cover, income protection and life assurance Flexible benefits include Cycle to Work, wellness and health assessments, and critical illness Ability to work anywhere in the UK (where the role allows) And there's no waiting around, you'll enjoy these benefits from day one. Feeling insatiably curious about this role? Apply as soon as you can. If we're lucky to receive a lot of interest, we may close the advert early and would hate you to miss out. We're all about helping you Live a Life More Virgin, so happy to talk flexible working with you. Say hello to Virgin Money We're making great strides towards achieving our ambition of becoming the UK's best digital bank. As a full-service digital bank with a heritage stretching back over 180 years, we re a workforce to be reckoned with. We're putting the full power of our experience behind disruptive ideas that reinvent the role a bank plays in people's lives. We strive to create positive experiences for our millions of customers and our purpose, 'Making You Happier About Money', underpins everything we do. We believe in doing banking differently, innovating and working together to make a real difference. Join us and Live a Life More Virgin that empowers you with choice and flexibility in how you work. Be yourself at Virgin Money Our purpose is to make people happier about money, this means seeing and feeling the world as our customers do by creating a workforce that reflects the rich diversity of our customers and communities. We're committed to creating an inclusive culture where colleagues feel safe and inspired to contribute, speak up and be heard. As a Disability Confident Leader, we're committed to removing any obstacles to inclusion. If you need any reasonable adjustments or support making your application, contact our Talent Acquisition team Now the legal bit Living A Life More Virgin allows our colleagues to be based anywhere in the UK (if the role allows it), but we'll need you to confirm you have the right to work in the UK. If you're successful in securing a role with us, there are some checks you need to complete before starting. These include credit and criminal record checks and three years' worth of satisfactory references. If the role is part of the Senior Manager Regime and Certification Regime, it requires enhanced pre-employment checks - we'll ask for six years of regulatory references, and once in the role, you'll be subject to periodic employment checks. Advertised: 02 May 2024 GMT Daylight Time Applications close: 16 May 2024 GMT Daylight Time
Business Unit / Team: Chief Operating Office Salary range: £44,000 - £60,000 per annum DOE + red-hot benefits Location: Remote Contract Type: Permanent Get out of your comfort zone. Live a life more Virgin. Our Team Within this fast-paced area of the business, we are passionate about installing sustainable disciplines so that things are done in a controlled manner and risk is minimized. This directly helps ensure safe delivery that protects our customers and shareholders. The Technology Control Manager role is a key role that provides essential oversight and analysis of critical processes within the function. This role will specifically support Risk, Controls & Governance and the role offers the opportunity to work closely with Technology practitioners and stakeholders to provide insight and analysis, enabling the role holder to enhance their personal profile across a wide network. In such a role, it is necessary to be a person who can adapt to a varied workload. The successful candidate will join an exciting, motivated team who really make a difference to Making our Customers Happier about Money. What you'll be doing Contributing to the Risk Assessments as part of the COO Technology function RCSA process, with specific responsibility for Controls Design within the function Undertaking review activity, including reviewing the Implementation Decision Framework (IDF) outputs, Potential Customer Harms (PCH) and Consumer Duty (CD) Assessments Contributing to the analysis of 3rd Line Audit outputs (e.g., remediation plans for audit issues) Leading process redesign activity, linked to the outputs of your controls testing Supporting continuous improvement techniques with a focus on data and measurement to ensure own objectives are delivered Providing first-phase assessment of key risk packs and reporting outputs Supporting the management and outputs of the function Risk Committee Performing policy standard reviews specific to the function Supporting preparation of key materials required for external Regulator engagement We need you to have Expertise in Payments, Data, Products & Channels and/or Engineering & Environments Controls Design experience Knowledge & experience of Risk Management techniques in a financial institution (preferably in a Technology setting) Strong leadership and management skills Strong history of providing challenge to deliver improved results Understanding of commercial pressures on the bank Experience of financial institutions including key drivers of performance & risk. Highly effective communication at all levels Positive influencing of senior stakeholders Experience of production of report writing to LT Level audience Confidence in creating detailed remedial and mitigation recommendations aligned with industry standard techniques It's a bonus if you have but not essential Demonstrable understanding of continuous improvement and risk & control analysis techniques Understanding of Operational Risk Management - environment assessment, Risk Appetite, Control effectiveness and KPI monitoring Knowledge of the relevant Microsoft software, including Project, Visio; Excel; PowerPoint and Word. Red Hot Rewards Generous holidays - 38.5 days annual leave (including bank holidays and prorated if part-time) plus the option to buy more Up to five extra paid well-being days per year 20 weeks paid, gender-neutral family leave (52 weeks in total) for expectant parents and those looking to adopt Market-leading pension Free private medical cover, income protection and life assurance Flexible benefits include Cycle to Work, wellness and health assessments, and critical illness Ability to work anywhere in the UK (where the role allows) And there's no waiting around, you'll enjoy these benefits from day one. Feeling insatiably curious about this role? Apply as soon as you can. If we're lucky to receive a lot of interest, we may close the advert early and would hate you to miss out. We're all about helping you Live a Life More Virgin, so happy to talk flexible working with you. Say hello to Virgin Money We're making great strides towards achieving our ambition of becoming the UK's best digital bank. As a full-service digital bank with a heritage stretching back over 180 years, we re a workforce to be reckoned with. We're putting the full power of our experience behind disruptive ideas that reinvent the role a bank plays in people's lives. We strive to create positive experiences for our millions of customers and our purpose, 'Making You Happier About Money', underpins everything we do. We believe in doing banking differently, innovating and working together to make a real difference. Join us and Live a Life More Virgin that empowers you with choice and flexibility in how you work. Be yourself at Virgin Money Our purpose is to make people happier about money, this means seeing and feeling the world as our customers do by creating a workforce that reflects the rich diversity of our customers and communities. We're committed to creating an inclusive culture where colleagues feel safe and inspired to contribute, speak up and be heard. As a Disability Confident Leader, we're committed to removing any obstacles to inclusion. If you need any reasonable adjustments or support making your application, contact our Talent Acquisition team Now the legal bit Living A Life More Virgin allows our colleagues to be based anywhere in the UK (if the role allows it), but we'll need you to confirm you have the right to work in the UK. If you're successful in securing a role with us, there are some checks you need to complete before starting. These include credit and criminal record checks and three years' worth of satisfactory references. If the role is part of the Senior Manager Regime and Certification Regime, it requires enhanced pre-employment checks - we'll ask for six years of regulatory references, and once in the role, you'll be subject to periodic employment checks. Advertised: 02 May 2024 GMT Daylight Time Applications close: 16 May 2024 GMT Daylight Time
May 04, 2024
Full time
Business Unit / Team: Chief Operating Office Salary range: £44,000 - £60,000 per annum DOE + red-hot benefits Location: Remote Contract Type: Permanent Get out of your comfort zone. Live a life more Virgin. Our Team Within this fast-paced area of the business, we are passionate about installing sustainable disciplines so that things are done in a controlled manner and risk is minimized. This directly helps ensure safe delivery that protects our customers and shareholders. The Technology Control Manager role is a key role that provides essential oversight and analysis of critical processes within the function. This role will specifically support Risk, Controls & Governance and the role offers the opportunity to work closely with Technology practitioners and stakeholders to provide insight and analysis, enabling the role holder to enhance their personal profile across a wide network. In such a role, it is necessary to be a person who can adapt to a varied workload. The successful candidate will join an exciting, motivated team who really make a difference to Making our Customers Happier about Money. What you'll be doing Contributing to the Risk Assessments as part of the COO Technology function RCSA process, with specific responsibility for Controls Design within the function Undertaking review activity, including reviewing the Implementation Decision Framework (IDF) outputs, Potential Customer Harms (PCH) and Consumer Duty (CD) Assessments Contributing to the analysis of 3rd Line Audit outputs (e.g., remediation plans for audit issues) Leading process redesign activity, linked to the outputs of your controls testing Supporting continuous improvement techniques with a focus on data and measurement to ensure own objectives are delivered Providing first-phase assessment of key risk packs and reporting outputs Supporting the management and outputs of the function Risk Committee Performing policy standard reviews specific to the function Supporting preparation of key materials required for external Regulator engagement We need you to have Expertise in Payments, Data, Products & Channels and/or Engineering & Environments Controls Design experience Knowledge & experience of Risk Management techniques in a financial institution (preferably in a Technology setting) Strong leadership and management skills Strong history of providing challenge to deliver improved results Understanding of commercial pressures on the bank Experience of financial institutions including key drivers of performance & risk. Highly effective communication at all levels Positive influencing of senior stakeholders Experience of production of report writing to LT Level audience Confidence in creating detailed remedial and mitigation recommendations aligned with industry standard techniques It's a bonus if you have but not essential Demonstrable understanding of continuous improvement and risk & control analysis techniques Understanding of Operational Risk Management - environment assessment, Risk Appetite, Control effectiveness and KPI monitoring Knowledge of the relevant Microsoft software, including Project, Visio; Excel; PowerPoint and Word. Red Hot Rewards Generous holidays - 38.5 days annual leave (including bank holidays and prorated if part-time) plus the option to buy more Up to five extra paid well-being days per year 20 weeks paid, gender-neutral family leave (52 weeks in total) for expectant parents and those looking to adopt Market-leading pension Free private medical cover, income protection and life assurance Flexible benefits include Cycle to Work, wellness and health assessments, and critical illness Ability to work anywhere in the UK (where the role allows) And there's no waiting around, you'll enjoy these benefits from day one. Feeling insatiably curious about this role? Apply as soon as you can. If we're lucky to receive a lot of interest, we may close the advert early and would hate you to miss out. We're all about helping you Live a Life More Virgin, so happy to talk flexible working with you. Say hello to Virgin Money We're making great strides towards achieving our ambition of becoming the UK's best digital bank. As a full-service digital bank with a heritage stretching back over 180 years, we re a workforce to be reckoned with. We're putting the full power of our experience behind disruptive ideas that reinvent the role a bank plays in people's lives. We strive to create positive experiences for our millions of customers and our purpose, 'Making You Happier About Money', underpins everything we do. We believe in doing banking differently, innovating and working together to make a real difference. Join us and Live a Life More Virgin that empowers you with choice and flexibility in how you work. Be yourself at Virgin Money Our purpose is to make people happier about money, this means seeing and feeling the world as our customers do by creating a workforce that reflects the rich diversity of our customers and communities. We're committed to creating an inclusive culture where colleagues feel safe and inspired to contribute, speak up and be heard. As a Disability Confident Leader, we're committed to removing any obstacles to inclusion. If you need any reasonable adjustments or support making your application, contact our Talent Acquisition team Now the legal bit Living A Life More Virgin allows our colleagues to be based anywhere in the UK (if the role allows it), but we'll need you to confirm you have the right to work in the UK. If you're successful in securing a role with us, there are some checks you need to complete before starting. These include credit and criminal record checks and three years' worth of satisfactory references. If the role is part of the Senior Manager Regime and Certification Regime, it requires enhanced pre-employment checks - we'll ask for six years of regulatory references, and once in the role, you'll be subject to periodic employment checks. Advertised: 02 May 2024 GMT Daylight Time Applications close: 16 May 2024 GMT Daylight Time
The role As the Cyber Risk & Compliance Lead at the Scottish Funding Council, you will champion our cybersecurity initiatives, ensuring the protection of our operations, data and technologies in alignment with UK-specific cybersecurity standards and frameworks. This role is critical in maintaining the SFC's reputation for excellence and integrity in the funding of education and research across Scotland. Key accountabilities Develop and implement a cyber risk management framework tailored to the specific needs and challenges of the SFC, focusing on the protection of financial data, personal information of students and staff, and sensitive research data. Ensure full compliance with Scottish and UK data protection laws, as well as adherence to specific regulations relevant to our organisation and our internal and external audit obligations. Collaborate closely with academic institutions, research bodies, and government agencies to align cyber security practices and foster a culture of shared responsibility and leading practices in data protection and risk management. Lead the review and enhancement of policies, procedures, and controls governing data security, risk assessment, and compliance within the funding council's operations. Conduct targeted cyber risk assessments and compliance audits, providing strategic insights and recommendations to the SFC's senior management and governing board. Act as a principal advisor on cyber security matters, offering expert guidance to support the council's strategic initiatives in funding education and research. Stay abreast of emerging cyber threats and advancements in cyber security technologies and practices, ensuring the SFC remains proactive and responsive in its cyber risk and compliance strategies. Skills & experience Essential Requirements: Proven track record in cybersecurity risk management, with a strong understanding of the UK cybersecurity landscape, including Cyber Essentials, ISO 27001 frameworks. Familiarity with the NCSC's guidelines and recommendations for public sector organisations. Experience in managing cybersecurity compliance projects within the UK, including the attainment of Cyber Essentials certification. Leadership experience with the ability to mentor a team and drive cybersecurity awareness across an organisation. Excellent communication and influencing skills, capable of engaging effectively with a range of stakeholders on complex cybersecurity issues to ensure change is adopted and sustained. Professional Certifications: Holding or working towards UK-recognized cybersecurity certifications, such as those offered by CREST or Cyber Essentials Plus, is highly desirable. Additional certifications such as CISSP, CISM, or ISO 27001 Lead Auditor/Implementer would be beneficial. Other Location SFC offers hybrid working for its employees. This means that whilst the role is based at our Edinburgh office, there is substantial opportunity to work from home most of the time. As a rule of thumb SFC expects that a minimum of three days a month in the office (on average) will achieve the benefits of its hybrid approach, however it is for the employee and their line manager to agree the balance between home and workplace working - determined primarily by business need. Please be aware that this role can only be worked from within the UK and not overseas. Relocation expenses are not available. Key Rewards and Benefits Normal full-time hours of work are 35 per week. We will consider flexible working arrangements. A flexi-time system is in operation. Annual leave entitlement of 26.5 days pro-rata, rising to 30 days pro-rata after 4 years' continuous service. Public and privilege holiday entitlement of 11.5 days pro-rata. A flexible approach to hybrid working, giving you flexibility to work from home for some of the time while also maintaining regular in-person contact with colleagues. Annual pay review: approved within the framework of the Scottish Government's Public Sector Pay Policy and negotiated with our recognised trade union, Unite. Salaries are reviewed annually in April for employees who commence employment prior to 1 October in the preceding year. Eligibility to join the Civil Service Pension Scheme. With its low member contribution rates and generous employer contributions, this gives you a secure, inflation-proof pension for life with no investment uncertainty. Details of contribution rates together with further details of the pension benefits are available on the Civil Service Pensions website. There is also the option of a Partnership pension account. Support for continuous professional development. Support for health and wellbeing, including generous occupational sick pay, free access to confidential advice and support through our 24/7 Employee Assistance Programme, Special Leave (paid and unpaid), a contribution to learning outside work through our Lifelong Learning Fund, free winter flu vaccination, and access to occupational health support. Support for travel to and from work, including a salary sacrifice cycle loan scheme, cycle storage and shower facilities, an interest-free loan for bus or rail season tickets and free office car parking for employees on a first-come basis. The Selection Process How to Apply To apply, please send your CV and cover letter. The selection panel will use this evidence to assess your application against the selection criteria in the Person Specification section above. It is not mandatory to provide a cover letter but it can be beneficial to provide further evidence of your suitability against the essential skills. In your CV please also set out your educational and professional qualifications, and career history, with key responsibilities, dates and achievements. Please provide reasons for any gaps. Expected Timeline: Your application will be reviewed by a Reed Recruitment
May 03, 2024
Full time
The role As the Cyber Risk & Compliance Lead at the Scottish Funding Council, you will champion our cybersecurity initiatives, ensuring the protection of our operations, data and technologies in alignment with UK-specific cybersecurity standards and frameworks. This role is critical in maintaining the SFC's reputation for excellence and integrity in the funding of education and research across Scotland. Key accountabilities Develop and implement a cyber risk management framework tailored to the specific needs and challenges of the SFC, focusing on the protection of financial data, personal information of students and staff, and sensitive research data. Ensure full compliance with Scottish and UK data protection laws, as well as adherence to specific regulations relevant to our organisation and our internal and external audit obligations. Collaborate closely with academic institutions, research bodies, and government agencies to align cyber security practices and foster a culture of shared responsibility and leading practices in data protection and risk management. Lead the review and enhancement of policies, procedures, and controls governing data security, risk assessment, and compliance within the funding council's operations. Conduct targeted cyber risk assessments and compliance audits, providing strategic insights and recommendations to the SFC's senior management and governing board. Act as a principal advisor on cyber security matters, offering expert guidance to support the council's strategic initiatives in funding education and research. Stay abreast of emerging cyber threats and advancements in cyber security technologies and practices, ensuring the SFC remains proactive and responsive in its cyber risk and compliance strategies. Skills & experience Essential Requirements: Proven track record in cybersecurity risk management, with a strong understanding of the UK cybersecurity landscape, including Cyber Essentials, ISO 27001 frameworks. Familiarity with the NCSC's guidelines and recommendations for public sector organisations. Experience in managing cybersecurity compliance projects within the UK, including the attainment of Cyber Essentials certification. Leadership experience with the ability to mentor a team and drive cybersecurity awareness across an organisation. Excellent communication and influencing skills, capable of engaging effectively with a range of stakeholders on complex cybersecurity issues to ensure change is adopted and sustained. Professional Certifications: Holding or working towards UK-recognized cybersecurity certifications, such as those offered by CREST or Cyber Essentials Plus, is highly desirable. Additional certifications such as CISSP, CISM, or ISO 27001 Lead Auditor/Implementer would be beneficial. Other Location SFC offers hybrid working for its employees. This means that whilst the role is based at our Edinburgh office, there is substantial opportunity to work from home most of the time. As a rule of thumb SFC expects that a minimum of three days a month in the office (on average) will achieve the benefits of its hybrid approach, however it is for the employee and their line manager to agree the balance between home and workplace working - determined primarily by business need. Please be aware that this role can only be worked from within the UK and not overseas. Relocation expenses are not available. Key Rewards and Benefits Normal full-time hours of work are 35 per week. We will consider flexible working arrangements. A flexi-time system is in operation. Annual leave entitlement of 26.5 days pro-rata, rising to 30 days pro-rata after 4 years' continuous service. Public and privilege holiday entitlement of 11.5 days pro-rata. A flexible approach to hybrid working, giving you flexibility to work from home for some of the time while also maintaining regular in-person contact with colleagues. Annual pay review: approved within the framework of the Scottish Government's Public Sector Pay Policy and negotiated with our recognised trade union, Unite. Salaries are reviewed annually in April for employees who commence employment prior to 1 October in the preceding year. Eligibility to join the Civil Service Pension Scheme. With its low member contribution rates and generous employer contributions, this gives you a secure, inflation-proof pension for life with no investment uncertainty. Details of contribution rates together with further details of the pension benefits are available on the Civil Service Pensions website. There is also the option of a Partnership pension account. Support for continuous professional development. Support for health and wellbeing, including generous occupational sick pay, free access to confidential advice and support through our 24/7 Employee Assistance Programme, Special Leave (paid and unpaid), a contribution to learning outside work through our Lifelong Learning Fund, free winter flu vaccination, and access to occupational health support. Support for travel to and from work, including a salary sacrifice cycle loan scheme, cycle storage and shower facilities, an interest-free loan for bus or rail season tickets and free office car parking for employees on a first-come basis. The Selection Process How to Apply To apply, please send your CV and cover letter. The selection panel will use this evidence to assess your application against the selection criteria in the Person Specification section above. It is not mandatory to provide a cover letter but it can be beneficial to provide further evidence of your suitability against the essential skills. In your CV please also set out your educational and professional qualifications, and career history, with key responsibilities, dates and achievements. Please provide reasons for any gaps. Expected Timeline: Your application will be reviewed by a Reed Recruitment
UK Power Networks (Operations) Ltd
Colchester, Essex
78322 This Senior Project Manager will report to the Program Delivery Manager and will work within Network Operations based in our Norfolk/ Suffolk/Essex regions. You will be a permanent employee. You will attract a salary of 84,704 (Depending on Skills & Experience) + car and a bonus of 3%. Close Date: 18th May 2024 We also provide the following additional benefits Annual Leave Personal Pension Plan - Personal contribution rates of 4% or 5% (UK Power Networks will make a corresponding contribution of 8% or 10%) Tenancy Loan Deposit scheme Tax efficient benefits: cycle to work scheme Season ticket loan Occupational Health support Switched On - scheme providing discount on hundreds of retailers products. Discounted access to sports and social clubs Employee Assistance Programme. Job Purpose: The role of the Senior Project Manager within the Distribution Capital Delivery team is for managing a geographical team to ensure the delivery of distribution programmes as set out in the annual investment plan produced by Asset Management. All projects are required to be delivered safely, to quality, on budget, on time and to customer service standards. You will be to lead a team of Project Managers, SAPs, Work Planners, and Project Support in delivering a portfolio of projects and programmes from inception to completion. Also, the Senior Project Manager is responsible for a team of direct resources and the daily management of contractors. The Senior Project Manager will support the Program Delivery Manager with regards to budgeting and cost provision for their team and will be empowered to manage their budgets and expenditures following current Financial Authorisation Limits (FAL). You will have the variety of being both technically and commercially challenging. It carries the responsibility for managing functions such as safety and customer service for the Distribution Capital Delivery activity. You will also support: Procurement and Contract Management for delivering professional services and engineering contracts, Asset Management in developing the delivery plans/strategies and budgets for future years, and Network Operations in responding to system emergencies and daily assistance. The Senior Project Manager agrees and implements the project delivery strategy, allocating works to the project managers, and monitoring the performance of both the direct teams and contractors. You will forecast resource and material requirements, monitor overall portfolio/project costs and delivery, manage contractor performance, and provide regular reporting. Dimensions: The Distribution Capital Delivery team delivers the regulated settlement (ED1 & ED2) via the Asset Portfolio Plan for the three licence areas, with a team based in each region. As part of this team the Senior Project Manager will deliver a portfolio of projects spread across several areas within the Asset Portfolio Plan. The value of the portfolio will vary depending on the content but will be in the order of 15m - 20m per annum with a significant volume being low to medium value projects with a few larger value schemes circa 300k to 1M. The number of direct reports (Project Manages, Work Planners, SAPs, and Project Support will be in the order of 10-20. Several direct teams will report to individual project managers bringing the total number of staff under the Senior Project Manager to between 50-75 people. Part of the portfolio will be delivered by our contract partners and the Senior Project Manager will also have overall responsible for (Apply online only) contract teams working on the network on a day-by-day basis. Principal Accountabilities: Ensure that a high standard of safety management prevails throughout all responsibilities and that safety performance is maintained within parameters defined by UK Power Networks. Promote the Incident and Injury free philosophy. Lead a team to deliver projects from inception to completion to time, quality, cost, whilst maintaining the highest levels of safety and environmental management. Manage the coordination and performance of several Project Managers. Close liaison with the Network Operations Area Managers & Lead Engineers to ensure the maximum utilisation of staff will be an important aspect of this role. Provide technical and management leadership to the team of Project Managers across all project management disciplines. Ensuring construction assurance through site safety audits on quality of work, technical competencies, adherence to specifications, compliance with testing and commissioning procedures and safety and environmental procedures. Ensure that the required project completion data is compliant with policy and submitted within specified timescales for processing. Produce an overall delivery strategy and ensure provision of project managers, direct/contract resources, materials and services to ensure that project programmes are maintained. Manage the commercial arrangements with contractors to ensure that contractual arrangements are met and that cost controls are in place. Work with the appointed contractor management team to ensure utilisation of contractor resource. Ensure escalation of related issues and contractor performance to the Programme Delivery Manager. Responsible for the continuous improvement in productivity of our direct resources and contractor partners. Must strive to remove any barriers preventing the efficient delivery of work in Distribution Capital Delivery and across all Directorates. Produce forecasts for overall cost, commitment, milestone progress, resources, materials and contracts to ensure expenditure plans are met and delivery of critical items and personnel can be sourced promptly, ensuring agreement on UK Power Networks procedures. Work with partners such as Asset Management, Distribution Planning, Supply Chain, Network Operations, Procurement and Contract management to ensure that materials and delivery contracts are in place to deliver the programme. Lead the team in ensuring high levels of safety and customer focus. Support the Programme Delivery Manager in the ongoing development of the team to ensure delivery of the asset portfolio plan. Ensure continuous development of the Project delivery team's knowledge and skill base training & staff development. Ensure design and construction compliance with CDM. Carry out daily management of contractors and conduct regular reviews with contractors of safety, forecasts, delivery, and costs. Ensure staff comply with Company procedures and complete work to the required standard. Management and resolution of customer complaints for both internal and contractor resources. Deputise for the Programme Delivery Manager. Qualifications: A HNC or equivalent qualification is required A safety qualification such as IOSH Managing Safely will be required as will experience working with the CDM regulations and ISO9001 quality processes A formal Project Management qualification such as APMP or Prince 2 (Foundation & Practitioner) will be required Knowledge of Microsoft Project, the Microsoft Office suite of applications (Excel, word and access) and project management techniques A working knowledge of SAP including (Project Management, Works management, Finance and Asset Management modules) or experience with a similar Enterprise Management IT system would also be advantageous Full UK driving licence (Candidates not meeting the above requirements, but willing to undertake a development plan will also be considered for the position.) Health & Safety Responsibilities Managers and supervisors carry both legal and company responsibilities for ensuring the health and safety of their employees, those under their control and those who might be affected by the work undertaken, i.e. public, visitors and employees of other organisations. This includes briefing individuals working for them and ensuring there is the necessary understanding, competence and application of requirements to work safely and without harming the environment. Employees will ensure they understand the health and safety risks involved in their work activities and their responsibility to apply the controls needed to manage those risks to acceptable levels. Similarly where work activities can have an adverse impact upon the environment, and where there are legal requirements, employees will understand those impacts and the controls they must ensure are applied. If in doubt ask! We are committed to equal employment opportunity regardless of race, colour, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender, gender identity or expression, or veteran status. We are proud to be an equal opportunity workplace.
May 03, 2024
Full time
78322 This Senior Project Manager will report to the Program Delivery Manager and will work within Network Operations based in our Norfolk/ Suffolk/Essex regions. You will be a permanent employee. You will attract a salary of 84,704 (Depending on Skills & Experience) + car and a bonus of 3%. Close Date: 18th May 2024 We also provide the following additional benefits Annual Leave Personal Pension Plan - Personal contribution rates of 4% or 5% (UK Power Networks will make a corresponding contribution of 8% or 10%) Tenancy Loan Deposit scheme Tax efficient benefits: cycle to work scheme Season ticket loan Occupational Health support Switched On - scheme providing discount on hundreds of retailers products. Discounted access to sports and social clubs Employee Assistance Programme. Job Purpose: The role of the Senior Project Manager within the Distribution Capital Delivery team is for managing a geographical team to ensure the delivery of distribution programmes as set out in the annual investment plan produced by Asset Management. All projects are required to be delivered safely, to quality, on budget, on time and to customer service standards. You will be to lead a team of Project Managers, SAPs, Work Planners, and Project Support in delivering a portfolio of projects and programmes from inception to completion. Also, the Senior Project Manager is responsible for a team of direct resources and the daily management of contractors. The Senior Project Manager will support the Program Delivery Manager with regards to budgeting and cost provision for their team and will be empowered to manage their budgets and expenditures following current Financial Authorisation Limits (FAL). You will have the variety of being both technically and commercially challenging. It carries the responsibility for managing functions such as safety and customer service for the Distribution Capital Delivery activity. You will also support: Procurement and Contract Management for delivering professional services and engineering contracts, Asset Management in developing the delivery plans/strategies and budgets for future years, and Network Operations in responding to system emergencies and daily assistance. The Senior Project Manager agrees and implements the project delivery strategy, allocating works to the project managers, and monitoring the performance of both the direct teams and contractors. You will forecast resource and material requirements, monitor overall portfolio/project costs and delivery, manage contractor performance, and provide regular reporting. Dimensions: The Distribution Capital Delivery team delivers the regulated settlement (ED1 & ED2) via the Asset Portfolio Plan for the three licence areas, with a team based in each region. As part of this team the Senior Project Manager will deliver a portfolio of projects spread across several areas within the Asset Portfolio Plan. The value of the portfolio will vary depending on the content but will be in the order of 15m - 20m per annum with a significant volume being low to medium value projects with a few larger value schemes circa 300k to 1M. The number of direct reports (Project Manages, Work Planners, SAPs, and Project Support will be in the order of 10-20. Several direct teams will report to individual project managers bringing the total number of staff under the Senior Project Manager to between 50-75 people. Part of the portfolio will be delivered by our contract partners and the Senior Project Manager will also have overall responsible for (Apply online only) contract teams working on the network on a day-by-day basis. Principal Accountabilities: Ensure that a high standard of safety management prevails throughout all responsibilities and that safety performance is maintained within parameters defined by UK Power Networks. Promote the Incident and Injury free philosophy. Lead a team to deliver projects from inception to completion to time, quality, cost, whilst maintaining the highest levels of safety and environmental management. Manage the coordination and performance of several Project Managers. Close liaison with the Network Operations Area Managers & Lead Engineers to ensure the maximum utilisation of staff will be an important aspect of this role. Provide technical and management leadership to the team of Project Managers across all project management disciplines. Ensuring construction assurance through site safety audits on quality of work, technical competencies, adherence to specifications, compliance with testing and commissioning procedures and safety and environmental procedures. Ensure that the required project completion data is compliant with policy and submitted within specified timescales for processing. Produce an overall delivery strategy and ensure provision of project managers, direct/contract resources, materials and services to ensure that project programmes are maintained. Manage the commercial arrangements with contractors to ensure that contractual arrangements are met and that cost controls are in place. Work with the appointed contractor management team to ensure utilisation of contractor resource. Ensure escalation of related issues and contractor performance to the Programme Delivery Manager. Responsible for the continuous improvement in productivity of our direct resources and contractor partners. Must strive to remove any barriers preventing the efficient delivery of work in Distribution Capital Delivery and across all Directorates. Produce forecasts for overall cost, commitment, milestone progress, resources, materials and contracts to ensure expenditure plans are met and delivery of critical items and personnel can be sourced promptly, ensuring agreement on UK Power Networks procedures. Work with partners such as Asset Management, Distribution Planning, Supply Chain, Network Operations, Procurement and Contract management to ensure that materials and delivery contracts are in place to deliver the programme. Lead the team in ensuring high levels of safety and customer focus. Support the Programme Delivery Manager in the ongoing development of the team to ensure delivery of the asset portfolio plan. Ensure continuous development of the Project delivery team's knowledge and skill base training & staff development. Ensure design and construction compliance with CDM. Carry out daily management of contractors and conduct regular reviews with contractors of safety, forecasts, delivery, and costs. Ensure staff comply with Company procedures and complete work to the required standard. Management and resolution of customer complaints for both internal and contractor resources. Deputise for the Programme Delivery Manager. Qualifications: A HNC or equivalent qualification is required A safety qualification such as IOSH Managing Safely will be required as will experience working with the CDM regulations and ISO9001 quality processes A formal Project Management qualification such as APMP or Prince 2 (Foundation & Practitioner) will be required Knowledge of Microsoft Project, the Microsoft Office suite of applications (Excel, word and access) and project management techniques A working knowledge of SAP including (Project Management, Works management, Finance and Asset Management modules) or experience with a similar Enterprise Management IT system would also be advantageous Full UK driving licence (Candidates not meeting the above requirements, but willing to undertake a development plan will also be considered for the position.) Health & Safety Responsibilities Managers and supervisors carry both legal and company responsibilities for ensuring the health and safety of their employees, those under their control and those who might be affected by the work undertaken, i.e. public, visitors and employees of other organisations. This includes briefing individuals working for them and ensuring there is the necessary understanding, competence and application of requirements to work safely and without harming the environment. Employees will ensure they understand the health and safety risks involved in their work activities and their responsibility to apply the controls needed to manage those risks to acceptable levels. Similarly where work activities can have an adverse impact upon the environment, and where there are legal requirements, employees will understand those impacts and the controls they must ensure are applied. If in doubt ask! We are committed to equal employment opportunity regardless of race, colour, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender, gender identity or expression, or veteran status. We are proud to be an equal opportunity workplace.
Lead IT Security Manager Permanent Birmingham - 2 Days per week on site 48,900 - 61,140 per annum My client in the Rail industry are looking for a Lead IT Security Manager to join their fast-paced Operations team on a permanent basis. The Lead IT Security Manager is responsible for is the effective management of the Security Operations pillar within the IT Security, Compliance & Identity function. This includes Security technology and Security Operations Centre management. Key focus areas for this role, the ideal candidate will have experience in each of the below; Threat & Vulnerability Management Security Operations Centre - 24/7 Outsourced Web & Content Filtering - ProofPoint, Zscaler, etc. Endpoint Security Infrastructure Security Accountabilities Lead the Security Operations pillar, determining and delivering requirements, methods, and tools to provide value and reduce risk across proactive monitoring, incident response, threat management and vulnerability management (among other activity) . Lead the creation and maintenance of Security Operations policy, standards procedures, and documentation (including playbooks and guidance). Manage the application and compliance of security operations procedures, reviewing actual and potential security breaches, and ensuring their investigation. Lead the Security Operations team's response to incidents, recommending actions and appropriate control improvements. Monitor the external environment to gather intelligence on emerging technologies, documenting impacts, threats, and opportunities to IT. Provide expert advice on threat intelligence activities, identifying which threat categories are most dangerous to the organization and how to defend against them. Manage vulnerability assessment activities within company IT, providing expert advice where necessary in the review of vulnerability assessment tools and techniques. Develop, maintain, and test Security Operations' incident management procedures, investigating escalated incidents and facilitating recovery post-incident resolution. Lead Security Operations risk management activities, leading on the identification of risks and vulnerabilities and assessment of their impacts. Manage and oversee the day-to-day activity of the SOC supplier who will deliver security capabilities, communicating their activity to relevant teams. Manage the design, delivery, maintenance, and continuous improvement of the IT Security Ops capabilities in line with business needs. Manage the Security Operations Centre (SOC) capability, ensuring effective protection, defence, and response to IT security risks. Promote the Security, Compliance & Identity function to develop and enhance the team profile to develop enduring relationships with stakeholders and teams. Implement a multi-year Security roadmap that provides proactive capabilities which enable business objectives. Actively promote and embed Equality Diversity and Inclusion (EDI) in all your work, and support and comply with all organisational initiatives, policies and procedures on EDI. Skills: Relationship Building. Ability to develop and maintain strong relationships with internal and external stakeholders. Security Operations. Ability provide leadership for live security incidents and helping conduct robust investigations in order to identify corrective actions and see them through to completion. Threat Intelligence. Ability to provide guidance on proactive threat identification, analysis, and mitigation. Skilled in actionable intelligence, industry sources, and general awareness of threat landscape. Vulnerability Assessment. Ability to identify and classify security vulnerabilities in networks, systems and applications and mitigating or eliminating their impact. Risk Management. Ability to identify IT security operations risks and the delivery of audit remediation activities. Emerging technology monitoring. Ability to identify and assess new and emerging technologies, products, services, methods and techniques. Knowledge: Knowledge of IT Service Frameworks, methodologies, and best practice such as ITIL v4 and Agile. Knowledge of day-to-day activities and best practice within a SOC. Knowledge of technical security such as firewalls, network security groups, and access controls. Type of Experience: Experience of leading a team through the full IT service lifecycle, enhancing security posture, and evolving capabilities via continual service improvement. Experience of leading live cyber incidents and the remediation actions. Experience of partnering with supplier teams for managed services delivery of improvements. Experience across the full IT security spectrum (software, servers, infrastructure, and networks). Experience designing and implementing secure systems, leading review where necessary of complex security issues. Experience of enabling and informing risk-based decisions. Experience dealing with the security implications of transformation and day-to-day product changes. Experience working with system architectures, displaying a strong understanding of the impact of vulnerabilities on varied systems Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission.
May 03, 2024
Full time
Lead IT Security Manager Permanent Birmingham - 2 Days per week on site 48,900 - 61,140 per annum My client in the Rail industry are looking for a Lead IT Security Manager to join their fast-paced Operations team on a permanent basis. The Lead IT Security Manager is responsible for is the effective management of the Security Operations pillar within the IT Security, Compliance & Identity function. This includes Security technology and Security Operations Centre management. Key focus areas for this role, the ideal candidate will have experience in each of the below; Threat & Vulnerability Management Security Operations Centre - 24/7 Outsourced Web & Content Filtering - ProofPoint, Zscaler, etc. Endpoint Security Infrastructure Security Accountabilities Lead the Security Operations pillar, determining and delivering requirements, methods, and tools to provide value and reduce risk across proactive monitoring, incident response, threat management and vulnerability management (among other activity) . Lead the creation and maintenance of Security Operations policy, standards procedures, and documentation (including playbooks and guidance). Manage the application and compliance of security operations procedures, reviewing actual and potential security breaches, and ensuring their investigation. Lead the Security Operations team's response to incidents, recommending actions and appropriate control improvements. Monitor the external environment to gather intelligence on emerging technologies, documenting impacts, threats, and opportunities to IT. Provide expert advice on threat intelligence activities, identifying which threat categories are most dangerous to the organization and how to defend against them. Manage vulnerability assessment activities within company IT, providing expert advice where necessary in the review of vulnerability assessment tools and techniques. Develop, maintain, and test Security Operations' incident management procedures, investigating escalated incidents and facilitating recovery post-incident resolution. Lead Security Operations risk management activities, leading on the identification of risks and vulnerabilities and assessment of their impacts. Manage and oversee the day-to-day activity of the SOC supplier who will deliver security capabilities, communicating their activity to relevant teams. Manage the design, delivery, maintenance, and continuous improvement of the IT Security Ops capabilities in line with business needs. Manage the Security Operations Centre (SOC) capability, ensuring effective protection, defence, and response to IT security risks. Promote the Security, Compliance & Identity function to develop and enhance the team profile to develop enduring relationships with stakeholders and teams. Implement a multi-year Security roadmap that provides proactive capabilities which enable business objectives. Actively promote and embed Equality Diversity and Inclusion (EDI) in all your work, and support and comply with all organisational initiatives, policies and procedures on EDI. Skills: Relationship Building. Ability to develop and maintain strong relationships with internal and external stakeholders. Security Operations. Ability provide leadership for live security incidents and helping conduct robust investigations in order to identify corrective actions and see them through to completion. Threat Intelligence. Ability to provide guidance on proactive threat identification, analysis, and mitigation. Skilled in actionable intelligence, industry sources, and general awareness of threat landscape. Vulnerability Assessment. Ability to identify and classify security vulnerabilities in networks, systems and applications and mitigating or eliminating their impact. Risk Management. Ability to identify IT security operations risks and the delivery of audit remediation activities. Emerging technology monitoring. Ability to identify and assess new and emerging technologies, products, services, methods and techniques. Knowledge: Knowledge of IT Service Frameworks, methodologies, and best practice such as ITIL v4 and Agile. Knowledge of day-to-day activities and best practice within a SOC. Knowledge of technical security such as firewalls, network security groups, and access controls. Type of Experience: Experience of leading a team through the full IT service lifecycle, enhancing security posture, and evolving capabilities via continual service improvement. Experience of leading live cyber incidents and the remediation actions. Experience of partnering with supplier teams for managed services delivery of improvements. Experience across the full IT security spectrum (software, servers, infrastructure, and networks). Experience designing and implementing secure systems, leading review where necessary of complex security issues. Experience of enabling and informing risk-based decisions. Experience dealing with the security implications of transformation and day-to-day product changes. Experience working with system architectures, displaying a strong understanding of the impact of vulnerabilities on varied systems Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission.
Position: Information Security Lead Salary: 59k Location: Oxford ( Hybrid ) Responsibilities: Develop and maintain an Information Security improvement plan for the group. Work with IT staff within the group to build on an existing information security program and ongoing security projects that address information security risks and compliance requirements. Recommend, coordinate and where appropriate, implement agreed technical controls. Be responsible for decisions regarding operational activities in relation to Information Security improvement within the group. Work with the Head of IT and College governance structures to create and maintain security policies. Monitor and report on compliance with security policies, as well as the enforcement of policies. Plan and prioritise own work ensuring effective support to the group and delivery of key Cyber Security improvement objectives. Research, evaluate, design, test, recommend and plan the implementation of new or updated information security hardware or software, and analyse its impact on the existing environment; provide technical and managerial expertise for the administration of security tools. Develop strong working relationships with the Head of IT, Technical Services Manager, and IT Managers to develop and implement controls and configurations aligned with security policies and legal, regulatory and audit requirements. Ensure all IT staff have access to IT systems limited by need and role. Research/evaluate emerging information security threats and ways to manage them. Assist Colleges with maintaining suitable TPSA templates and maintaining a list of assessed third parties. Monitor and test vulnerabilities in technological infrastructure, managed services, and devices. Use influencing skills to ensure collaborative working to engender a level of quality improvement across the group. Consult with IT colleagues to ensure that security is factored into the evaluation, selection, installation and configuration of hardware, applications, and software as part of Privacy by Design and Default. Manage and coordinate operational components of security incident management, including detection response and reporting. Manage the day-to-day activities of threat and vulnerability management, identify risk tolerances, recommend treatment plans, and communicate information about residual risk. Manage security projects, provide expert guidance on security matters for other IT projects and work with suppliers to obtain best value. Evaluate requests for exceptions to policies, ensuring sufficient mitigating controls are in place. Ensure audit trails, system logs and other monitoring data sources are reviewed periodically and are following policies and audit requirements. Review, escalate and action any unusual event behaviour identified through the groups information security systems. Create standards in system hardening, change management, documentation. Perform periodic firewall Ensure disaster recovery and data restoration processes work. Ensure appropriate Corrective and Preventative Actions are implemented in line with best practice guidance. Essential: A record of accomplishment in and experience of introducing Information Security Improvement through successfully designing, implementing, and improving IT security architecture and controls. Working technical knowledge in broad domains of IT infrastructure such as data networks, server and desktop hardware and operating systems, storage and backups, and related monitoring and management systems. Demonstrable experience of applying security controls in one or more of the following areas: Unix/Linux Servers, Windows servers, firewalls, IDS/IPS, vulnerability management, WAF, Wi-Fi, mobile security, Data Loss Prevention, digital certificates, encryption and authentication techniques, forensics, and LAN / WANs. Solid understanding of security protocols, cryptography, authentication, authorisation, and security. Able to manage own workload, resolve competing demands, and cope with changing priorities in a flexible and proactive way. High level of personal integrity, as well as the ability to handle confidential matters and show an appropriate level of judgment and maturity. Excellent written and oral communication skills, interpersonal and collaborative skills, and the ability to communicate information security and risk-related concepts to technical and non-technical audiences. INDIT Planet Recruitment acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers. Planet Recruitment is an Equal Opportunities Employer. By applying for this role your details will be submitted to Planet Recruitment. Our Candidate Privacy Information Statement explains how we will use your information. Only candidates with the relevant skills and experience will be contacted after application, if you do not hear back from us within 7 days you have unfortunately been unsuccessful in your application. Please note that no terminology in this advert is intended to discriminate on the grounds of a person's gender, marital status, race, religion, colour, age, disability or sexual orientation. Every candidate will be assessed only in accordance with their merits, qualifications and abilities to perform the duties of the position.
May 03, 2024
Full time
Position: Information Security Lead Salary: 59k Location: Oxford ( Hybrid ) Responsibilities: Develop and maintain an Information Security improvement plan for the group. Work with IT staff within the group to build on an existing information security program and ongoing security projects that address information security risks and compliance requirements. Recommend, coordinate and where appropriate, implement agreed technical controls. Be responsible for decisions regarding operational activities in relation to Information Security improvement within the group. Work with the Head of IT and College governance structures to create and maintain security policies. Monitor and report on compliance with security policies, as well as the enforcement of policies. Plan and prioritise own work ensuring effective support to the group and delivery of key Cyber Security improvement objectives. Research, evaluate, design, test, recommend and plan the implementation of new or updated information security hardware or software, and analyse its impact on the existing environment; provide technical and managerial expertise for the administration of security tools. Develop strong working relationships with the Head of IT, Technical Services Manager, and IT Managers to develop and implement controls and configurations aligned with security policies and legal, regulatory and audit requirements. Ensure all IT staff have access to IT systems limited by need and role. Research/evaluate emerging information security threats and ways to manage them. Assist Colleges with maintaining suitable TPSA templates and maintaining a list of assessed third parties. Monitor and test vulnerabilities in technological infrastructure, managed services, and devices. Use influencing skills to ensure collaborative working to engender a level of quality improvement across the group. Consult with IT colleagues to ensure that security is factored into the evaluation, selection, installation and configuration of hardware, applications, and software as part of Privacy by Design and Default. Manage and coordinate operational components of security incident management, including detection response and reporting. Manage the day-to-day activities of threat and vulnerability management, identify risk tolerances, recommend treatment plans, and communicate information about residual risk. Manage security projects, provide expert guidance on security matters for other IT projects and work with suppliers to obtain best value. Evaluate requests for exceptions to policies, ensuring sufficient mitigating controls are in place. Ensure audit trails, system logs and other monitoring data sources are reviewed periodically and are following policies and audit requirements. Review, escalate and action any unusual event behaviour identified through the groups information security systems. Create standards in system hardening, change management, documentation. Perform periodic firewall Ensure disaster recovery and data restoration processes work. Ensure appropriate Corrective and Preventative Actions are implemented in line with best practice guidance. Essential: A record of accomplishment in and experience of introducing Information Security Improvement through successfully designing, implementing, and improving IT security architecture and controls. Working technical knowledge in broad domains of IT infrastructure such as data networks, server and desktop hardware and operating systems, storage and backups, and related monitoring and management systems. Demonstrable experience of applying security controls in one or more of the following areas: Unix/Linux Servers, Windows servers, firewalls, IDS/IPS, vulnerability management, WAF, Wi-Fi, mobile security, Data Loss Prevention, digital certificates, encryption and authentication techniques, forensics, and LAN / WANs. Solid understanding of security protocols, cryptography, authentication, authorisation, and security. Able to manage own workload, resolve competing demands, and cope with changing priorities in a flexible and proactive way. High level of personal integrity, as well as the ability to handle confidential matters and show an appropriate level of judgment and maturity. Excellent written and oral communication skills, interpersonal and collaborative skills, and the ability to communicate information security and risk-related concepts to technical and non-technical audiences. INDIT Planet Recruitment acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers. Planet Recruitment is an Equal Opportunities Employer. By applying for this role your details will be submitted to Planet Recruitment. Our Candidate Privacy Information Statement explains how we will use your information. Only candidates with the relevant skills and experience will be contacted after application, if you do not hear back from us within 7 days you have unfortunately been unsuccessful in your application. Please note that no terminology in this advert is intended to discriminate on the grounds of a person's gender, marital status, race, religion, colour, age, disability or sexual orientation. Every candidate will be assessed only in accordance with their merits, qualifications and abilities to perform the duties of the position.
Business Unit / Team: Chief Operating Office Salary range: £22,400 - £33,600 per annum DOE + red-hot benefits Location: Remote Contract Type: Permanent Take control of your career Our Team Within this fast-paced area of the business - Technology Control, we are passionate about installing sustainable disciplines so that things are done in a controlled manner and risk is minimized. This directly helps ensure safe delivery that protects our customers and shareholders.The Control Analyst role is a key role that supports the oversight and analysis of critical processes within the function. This role will specifically support Risk, Controls & Governance and the role offers the opportunity to work closely with Technology practitioners, enabling the role holder to enhance their personal profile within the COO Technology functions. The successful candidate will join an exciting, motivated team who really make a difference to Making our Customers Happier about Money. What you'll be doing • Supporting the delivery of team objectives, including applying their expertise to support the design, development, implementation and ongoing management of risk and control management best practice within COO Technology function• Contributing to the development, production and ongoing management of regular and/or ad-hoc team reports and MI (e.g., data contributory to risk committee papers), as well as other governance reporting requirements• prioritising and planning their own work to meet team deadlines, including the delivery of business-as-usual team activities;• Delivering all allocated work packages to the required quality standards;• Maintaining an understanding of VM risk management processes, policies and frameworks;• Providing practitioner support to COO colleagues in their use of key risk systems, through effective support and guidance; and• Contributing to internal or wider team meetings, Committees and workshops, as required.• management of stakeholder relationships and business partnerships across COO and with our partners in 2nd Line Risk and 3rd Line Audit;• Management of an effective risk and control management culture across COO. We need you to have • Experience using risk & control frameworks and methodologies.• Good banking experience and knowledge.• Demonstrated success in building effective working relationships with a variety of stakeholders.• Efficient and organised in relation to work tasks, with attention to detail and accuracy.• Effective management and prioritisation of workloads. It's a bonus if you have but not essential • Good understanding of the Bank's risk management policies, standards and frameworks. Red Hot Rewards • Generous holidays - 38.5 days annual leave (including bank holidays and prorated if Part-Time) plus the option to buy more • Up to five extra paid well-being days per year • 20 weeks paid, gender-neutral family leave (52 weeks in total) for expectant parents and those looking to adopt • Market-leading pension • Free private medical cover, income protection and life assurance • Flexible benefits include Cycle to Work, wellness and health assessments, and critical illness • Ability to work anywhere in the UK (where the role allows) And there's no waiting around, you'll enjoy these benefits from day one. Feeling insatiably curious about this role? Apply as soon as you can. If we're lucky to receive a lot of interest, we may close the advert early and would hate you to miss out. We're all about helping you Live a Life More Virgin, so happy to talk flexible working with you. Say hello to Virgin Money We're making great strides towards achieving our ambition of becoming the UK's best digital bank. As a full-service digital bank with a heritage stretching back over 180 years, we re a workforce to be reckoned with. We're putting the full power of our experience behind disruptive ideas that reinvent the role a bank plays in people's lives. We strive to create positive experiences for our millions of customers and our purpose, 'Making You Happier About Money', underpins everything we do. We believe in doing banking differently, innovating and working together to make a real difference. Join us and Live a Life More Virgin that empowers you with choice and flexibility in how you work. Be yourself at Virgin Money Our purpose is to make people happier about money, this means seeing and feeling the world as our customers do by creating a workforce that reflects the rich diversity of our customers and communities. We're committed to creating an inclusive culture where colleagues feel safe and inspired to contribute, speak up and be heard. As a Disability Confident Leader, we're committed to removing any obstacles to inclusion. If you need any reasonable adjustments or support making your application, contact our Talent Acquisition team Now the legal bit Living A Life More Virgin allows our colleagues to be based anywhere in the UK (if the role allows it), but we'll need you to confirm you have the right to work in the UK. If you're successful in securing a role with us, there are some checks you need to complete before starting. These include credit and criminal record checks and three years' worth of satisfactory references. If the role is part of the Senior Manager Regime and Certification Regime, it requires enhanced pre-employment checks - we'll ask for six years of regulatory references, and once in the role, you'll be subject to periodic employment checks.
May 03, 2024
Full time
Business Unit / Team: Chief Operating Office Salary range: £22,400 - £33,600 per annum DOE + red-hot benefits Location: Remote Contract Type: Permanent Take control of your career Our Team Within this fast-paced area of the business - Technology Control, we are passionate about installing sustainable disciplines so that things are done in a controlled manner and risk is minimized. This directly helps ensure safe delivery that protects our customers and shareholders.The Control Analyst role is a key role that supports the oversight and analysis of critical processes within the function. This role will specifically support Risk, Controls & Governance and the role offers the opportunity to work closely with Technology practitioners, enabling the role holder to enhance their personal profile within the COO Technology functions. The successful candidate will join an exciting, motivated team who really make a difference to Making our Customers Happier about Money. What you'll be doing • Supporting the delivery of team objectives, including applying their expertise to support the design, development, implementation and ongoing management of risk and control management best practice within COO Technology function• Contributing to the development, production and ongoing management of regular and/or ad-hoc team reports and MI (e.g., data contributory to risk committee papers), as well as other governance reporting requirements• prioritising and planning their own work to meet team deadlines, including the delivery of business-as-usual team activities;• Delivering all allocated work packages to the required quality standards;• Maintaining an understanding of VM risk management processes, policies and frameworks;• Providing practitioner support to COO colleagues in their use of key risk systems, through effective support and guidance; and• Contributing to internal or wider team meetings, Committees and workshops, as required.• management of stakeholder relationships and business partnerships across COO and with our partners in 2nd Line Risk and 3rd Line Audit;• Management of an effective risk and control management culture across COO. We need you to have • Experience using risk & control frameworks and methodologies.• Good banking experience and knowledge.• Demonstrated success in building effective working relationships with a variety of stakeholders.• Efficient and organised in relation to work tasks, with attention to detail and accuracy.• Effective management and prioritisation of workloads. It's a bonus if you have but not essential • Good understanding of the Bank's risk management policies, standards and frameworks. Red Hot Rewards • Generous holidays - 38.5 days annual leave (including bank holidays and prorated if Part-Time) plus the option to buy more • Up to five extra paid well-being days per year • 20 weeks paid, gender-neutral family leave (52 weeks in total) for expectant parents and those looking to adopt • Market-leading pension • Free private medical cover, income protection and life assurance • Flexible benefits include Cycle to Work, wellness and health assessments, and critical illness • Ability to work anywhere in the UK (where the role allows) And there's no waiting around, you'll enjoy these benefits from day one. Feeling insatiably curious about this role? Apply as soon as you can. If we're lucky to receive a lot of interest, we may close the advert early and would hate you to miss out. We're all about helping you Live a Life More Virgin, so happy to talk flexible working with you. Say hello to Virgin Money We're making great strides towards achieving our ambition of becoming the UK's best digital bank. As a full-service digital bank with a heritage stretching back over 180 years, we re a workforce to be reckoned with. We're putting the full power of our experience behind disruptive ideas that reinvent the role a bank plays in people's lives. We strive to create positive experiences for our millions of customers and our purpose, 'Making You Happier About Money', underpins everything we do. We believe in doing banking differently, innovating and working together to make a real difference. Join us and Live a Life More Virgin that empowers you with choice and flexibility in how you work. Be yourself at Virgin Money Our purpose is to make people happier about money, this means seeing and feeling the world as our customers do by creating a workforce that reflects the rich diversity of our customers and communities. We're committed to creating an inclusive culture where colleagues feel safe and inspired to contribute, speak up and be heard. As a Disability Confident Leader, we're committed to removing any obstacles to inclusion. If you need any reasonable adjustments or support making your application, contact our Talent Acquisition team Now the legal bit Living A Life More Virgin allows our colleagues to be based anywhere in the UK (if the role allows it), but we'll need you to confirm you have the right to work in the UK. If you're successful in securing a role with us, there are some checks you need to complete before starting. These include credit and criminal record checks and three years' worth of satisfactory references. If the role is part of the Senior Manager Regime and Certification Regime, it requires enhanced pre-employment checks - we'll ask for six years of regulatory references, and once in the role, you'll be subject to periodic employment checks.
Are you looking for a Security role within a dynamic, innovative financial technology organisation? If so, we are recruiting for a Cyber Operations Engineer to join our IT Department! Working alongside the Cyber Operations Lead you will help to design, develop, and mature the company's cybersecurity capability, including the selection, implementation, and management of security tools/technologies, focused on detection, prevention, and analysis of security threats. This role offers a great opportunity to help define and shape the security function within a collaborative IT department, ensuring the protection of customer assets. Responsibilities include: Work with technology and business teams to deliver security processes, technologies and controls, acting as the authority on security related queries. Define, design, implement, and maintain security solutions appropriate to the business' needs. Support the definition, execution and continuous improvement of key cybersecurity processes including vulnerability & patch management, security incident response, security monitoring, endpoint security, identity and access management, network security, and cryptography. Assist with developing and maintaining security policies, processes and incident response management plans and playbooks. Prepare and document standard operating procedures and protocols. Provide expertise on security requirements into core technology processes like asset management, change management, third-party management, technology development & acquisition, configuration management, etc. Contribute as a team member in projects and change initiatives aimed at increasing enterprise security capabilities e.g., identity and access management, log aggregation, etc. Required experience: Minimum of 3 years' experience in a Security/Cyber Engineer/Analyst, role focusing on designing and implementing security solutions and managing security infrastructure. Previous experience working within a financial services environment and a working understanding of relevant regulations. Experience and in-depth technical knowledge of deploying, maintaining, and configuring a wide range of security technologies within a large and complex environment (anti-malware/EDR, SIEM solutions, vulnerability scanners, patch management, CASB, DLP, penetration testing tools, etc.) Knowledge of TCP/IP and related network protocols: knowledge of standard network protocols like TCP, ARP, ICMP, DHCP, DNS, HTTP, SNMP, VPN etc., and accompanying protocol/packet analysis/manipulation tools. Understanding of key operating systems and network appliances and the ability to assess their security posture based on their configuration/deployment. Experience of working effectively with a variety of stakeholders from different technology and business teams. Strong verbal and written communication skills. Desirable experience: Professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or Certified Information Security Manager (CISM). Strong knowledge of Operating System security and system hardening concepts such as CIS Benchmarks. Experience in working with information security frameworks and regulatory requirements including ISO27001, NIST, PCI DSS, GDPR, Cyber Essentials. Experience of general IT Audit processes and conducting risk assessments. You will be a proactive self - starter with strong communication skills and comfortable interacting with stakeholders at all levels. You will have the ability to tailor your approach and translate requirements to non-technical members of staff. We offer a competitive remuneration package, including company discretionary bonus, excellent pension contributions, an attractive staff share scheme, BUPA health insurance, buying and selling of annual leave and sponsorship of relevant professional qualifications. The role is based in our central London office, working a minimum of two days a week in the office and three days a week from home. About Us Transact is the leading independent investment wrap platform in the UK. Established in 2000, we have over £54.9 billion of funds under direction (as at Sept 2023) on behalf of over 7,600 advisers and 230,000 investor clients. Our service includes an online platform, owned and built by us, and dedicated regional adviser support to help bring clients' assets and investments together in a smarter, more tax efficient way. We offer access to a wide range of tax wrappers (including ISAs, pensions and life insurance investment bonds) and funds which advisers use to build client investment portfolios. Portfolio valuations, purchases and sales are all supported via Transact Online which is available 24/7. Transact's parent company, IntegraFin Holdings plc, is listed on the London Stock Exchange and is a constituent of the FTSE 250 index. Equal Opportunities We provide a diverse and inclusive workplace and ensure that all of our staff respect and understand individual differences. We are an equal opportunities employer and positively encourage applications from suitably qualified and eligible candidates regardless of age, disability, gender reassignment, marital or civil partner status, pregnancy or maternity, race, religion or belief, sex or sexual orientation.
May 02, 2024
Full time
Are you looking for a Security role within a dynamic, innovative financial technology organisation? If so, we are recruiting for a Cyber Operations Engineer to join our IT Department! Working alongside the Cyber Operations Lead you will help to design, develop, and mature the company's cybersecurity capability, including the selection, implementation, and management of security tools/technologies, focused on detection, prevention, and analysis of security threats. This role offers a great opportunity to help define and shape the security function within a collaborative IT department, ensuring the protection of customer assets. Responsibilities include: Work with technology and business teams to deliver security processes, technologies and controls, acting as the authority on security related queries. Define, design, implement, and maintain security solutions appropriate to the business' needs. Support the definition, execution and continuous improvement of key cybersecurity processes including vulnerability & patch management, security incident response, security monitoring, endpoint security, identity and access management, network security, and cryptography. Assist with developing and maintaining security policies, processes and incident response management plans and playbooks. Prepare and document standard operating procedures and protocols. Provide expertise on security requirements into core technology processes like asset management, change management, third-party management, technology development & acquisition, configuration management, etc. Contribute as a team member in projects and change initiatives aimed at increasing enterprise security capabilities e.g., identity and access management, log aggregation, etc. Required experience: Minimum of 3 years' experience in a Security/Cyber Engineer/Analyst, role focusing on designing and implementing security solutions and managing security infrastructure. Previous experience working within a financial services environment and a working understanding of relevant regulations. Experience and in-depth technical knowledge of deploying, maintaining, and configuring a wide range of security technologies within a large and complex environment (anti-malware/EDR, SIEM solutions, vulnerability scanners, patch management, CASB, DLP, penetration testing tools, etc.) Knowledge of TCP/IP and related network protocols: knowledge of standard network protocols like TCP, ARP, ICMP, DHCP, DNS, HTTP, SNMP, VPN etc., and accompanying protocol/packet analysis/manipulation tools. Understanding of key operating systems and network appliances and the ability to assess their security posture based on their configuration/deployment. Experience of working effectively with a variety of stakeholders from different technology and business teams. Strong verbal and written communication skills. Desirable experience: Professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or Certified Information Security Manager (CISM). Strong knowledge of Operating System security and system hardening concepts such as CIS Benchmarks. Experience in working with information security frameworks and regulatory requirements including ISO27001, NIST, PCI DSS, GDPR, Cyber Essentials. Experience of general IT Audit processes and conducting risk assessments. You will be a proactive self - starter with strong communication skills and comfortable interacting with stakeholders at all levels. You will have the ability to tailor your approach and translate requirements to non-technical members of staff. We offer a competitive remuneration package, including company discretionary bonus, excellent pension contributions, an attractive staff share scheme, BUPA health insurance, buying and selling of annual leave and sponsorship of relevant professional qualifications. The role is based in our central London office, working a minimum of two days a week in the office and three days a week from home. About Us Transact is the leading independent investment wrap platform in the UK. Established in 2000, we have over £54.9 billion of funds under direction (as at Sept 2023) on behalf of over 7,600 advisers and 230,000 investor clients. Our service includes an online platform, owned and built by us, and dedicated regional adviser support to help bring clients' assets and investments together in a smarter, more tax efficient way. We offer access to a wide range of tax wrappers (including ISAs, pensions and life insurance investment bonds) and funds which advisers use to build client investment portfolios. Portfolio valuations, purchases and sales are all supported via Transact Online which is available 24/7. Transact's parent company, IntegraFin Holdings plc, is listed on the London Stock Exchange and is a constituent of the FTSE 250 index. Equal Opportunities We provide a diverse and inclusive workplace and ensure that all of our staff respect and understand individual differences. We are an equal opportunities employer and positively encourage applications from suitably qualified and eligible candidates regardless of age, disability, gender reassignment, marital or civil partner status, pregnancy or maternity, race, religion or belief, sex or sexual orientation.
Cedar is currently partnered with private equity backed technology and infrastructure business to secure an Interim Group Reporting Manager. The role is a 3-6-month contract, paying a day rate between (Apply online only) per day. The Company This rapidly growing private equity-backed infrastructure business based in London, has developed at an enviable pace in recent years. With a focus on delivering exceptional service and innovative solutions, they are at the forefront of their industry. The Role As Interim Group Reporting Manager, you'll oversee the preparation of annual consolidated financial statements under IFRS and standalone statements for overseas subsidiaries. You'll drive reporting excellence, collaborate globally, manage intercompany transactions, and ensure financial integrity through precise journal entries. Additionally, you'll lead interactions with auditors, research new standards, advise on IFRS application, develop accounting policies, and spearhead internal control implementation, ensuring accurate technical reporting and alignment with IFRS principles. Lead the meticulous preparation of annual consolidated statutory financial statements under IFRS, ensuring precision and compliance. Drive excellence in monthly and quarterly consolidated financial schedules under IFRS for internal and shareholder reporting. Collaborate seamlessly with financial reporting teams globally, ensuring timely and accurate information flow. Play a key role in collaborating with external auditors, efficiently resolving audit queries. Prepare monthly and annual consolidated financial statements in accordance with IFRS. Ensure precise technical reporting, including income statements, balance sheets, and cash flow statements, while adhering to IFRS principles. Develop accounting policies, procedures, and position papers. Play a pivotal role in project teams during acquisitions and significant transactions, ensuring financial due diligence and reporting alignment. Spearhead the creation, implementation, and documentation of robust internal controls within financial reporting and group accounting. Your Profile You will ideally have: A formal accountancy qualification (e.g. ACA/CIMA/CA). Previous experience within a technical reporting role within a Group environment. Strong knowledge of IFRS. Prior experience in an interim / contract role would be beneficial but not necessary. The rate of (Apply online only) per day represents a fair value, or logical increase on your previous salary or day rate. Compensation & Benefits As well as the day rate of (Apply online only) per day, this contract role as Interim Group Reporting Manager, offers the chance to join a dynamic, and rapidly expanding business, with exposure to some of the best industry minds in their market. The company has a very forward-thinking, dynamic approach, adapting to new ideas and embracing innovation. Their Central London office is accessible from multiple transport hubs. They are attending the office usually around 2-3 times per week. They are a highly collaborative, collegiate environment, that rewards success.
May 01, 2024
Contractor
Cedar is currently partnered with private equity backed technology and infrastructure business to secure an Interim Group Reporting Manager. The role is a 3-6-month contract, paying a day rate between (Apply online only) per day. The Company This rapidly growing private equity-backed infrastructure business based in London, has developed at an enviable pace in recent years. With a focus on delivering exceptional service and innovative solutions, they are at the forefront of their industry. The Role As Interim Group Reporting Manager, you'll oversee the preparation of annual consolidated financial statements under IFRS and standalone statements for overseas subsidiaries. You'll drive reporting excellence, collaborate globally, manage intercompany transactions, and ensure financial integrity through precise journal entries. Additionally, you'll lead interactions with auditors, research new standards, advise on IFRS application, develop accounting policies, and spearhead internal control implementation, ensuring accurate technical reporting and alignment with IFRS principles. Lead the meticulous preparation of annual consolidated statutory financial statements under IFRS, ensuring precision and compliance. Drive excellence in monthly and quarterly consolidated financial schedules under IFRS for internal and shareholder reporting. Collaborate seamlessly with financial reporting teams globally, ensuring timely and accurate information flow. Play a key role in collaborating with external auditors, efficiently resolving audit queries. Prepare monthly and annual consolidated financial statements in accordance with IFRS. Ensure precise technical reporting, including income statements, balance sheets, and cash flow statements, while adhering to IFRS principles. Develop accounting policies, procedures, and position papers. Play a pivotal role in project teams during acquisitions and significant transactions, ensuring financial due diligence and reporting alignment. Spearhead the creation, implementation, and documentation of robust internal controls within financial reporting and group accounting. Your Profile You will ideally have: A formal accountancy qualification (e.g. ACA/CIMA/CA). Previous experience within a technical reporting role within a Group environment. Strong knowledge of IFRS. Prior experience in an interim / contract role would be beneficial but not necessary. The rate of (Apply online only) per day represents a fair value, or logical increase on your previous salary or day rate. Compensation & Benefits As well as the day rate of (Apply online only) per day, this contract role as Interim Group Reporting Manager, offers the chance to join a dynamic, and rapidly expanding business, with exposure to some of the best industry minds in their market. The company has a very forward-thinking, dynamic approach, adapting to new ideas and embracing innovation. Their Central London office is accessible from multiple transport hubs. They are attending the office usually around 2-3 times per week. They are a highly collaborative, collegiate environment, that rewards success.
The Planet Group have recently been engaged by global Fintech organisation to secure an interim Head of Finance on an initial contract basis. (Inside IR35) PAYE. This role will be based out of London offering Hybrid working. Job Summary: We are actively seeking an exceptional individual to lead our Finance Systems team sitting within our Finance Transformation division. Reporting to the Finance Transformation Director the successful candidate will be responsible for ensuring the Finance systems are operating effectively, providing value to stakeholders, whilst maintaining controls. This individual will be responsible for managing a team of four to implement and maintain IT General Controls and manage system releases, complete security audits and improve finance business processes in our systems. This will be a hands-on-role with a key focus on ensuring our systems are efficient and effective. There will be lots of opportunities to learn and for this remit to grow as our system landscape evolves and Finance Transformation projects are delivered. This role would be ideal for someone that has worked in a finance department with the ability to understand systems that solve business problems. Day to Day Responsibilities: Manage third party finance systems, including Workday Financials, Workday Adaptive, Coupa, Dell Boomi, Longview and Navan. For the systems above, you will be managing the delivery of security audits, access management, release management, and key rotation. Partner with the Finance team to improve existing systems and processes. Be the ambassador of change, able to challenge existing practices with the aim to establish new processes based on the Finance priorities and Transformation objectives. Work alongside the Finance Transformation team during new system implementations to ensure the support model post-go live is fit for purpose. Creating detailed project plans, RAID logs, RACIs and reporting on progress to governance forums. Implement, document and own the IT General Controls across the finance systems to ensure a robust control environment across our critical business system. Liaise with the auditors to ensure effective and timely delivery of the audit evidence/support during year-end audits. Manage a team of four system specialists. What will you bring to the role? Strong knowledge of Finance systems. Having led or been part of an implementation of Workday Financials and managed the system once live is a must. Experience with controllership, purchase-to-pay, budgeting and forecasting, HR Information Systems, middleware, tax and travel systems is a must. Experience with Workday Adaptive, Workday HCM, Coupa, Dell Boomi, Longview and Navan is preferred. Experience with reviewing system configuration before moving changes to production. Able to manage and prioritise the work of a team across multiple systems. Own the roadmap of change and implementation for the team while periodic and BAU tasks continue. Owning the incident management across all Finance systems, be the first point of contact. Experienced in finance transformation projects/ programmes where you are implementing systems and improving processes through process re-engineering. Strong understanding of ITGCs, including how to set these up in the systems listed previously and provide evidence of their effectiveness. Understanding of best practice finance processes. Strong experience in educating stakeholders regarding finance related processes and how they translate to wider business impacts. Good understanding of how Accounting processes should work to ensure they are efficient and controlled. Able to act as a project manager to develop project plans, RAID logs, RACIs and then execute a project across functions. Good understanding of systems and integration approaches. Excellent at communicating with senior stakeholders and team members to identify issues and propose solutions. Able to identify problems, define the root cause, determine the solution and propose the solution. Able to translate technical expertise into solutions and process guidance to implement improvements or address user issues. Able to map processes, outlining risks and controls. Experienced in data analysis, data manipulation and reporting. Experience in managing system budgets and exercising cost containment/ cost reduction Please apply in the first instance or contact Ryan Deeble for more details. We are an equal opportunities Recruitment Business and Agency. We welcome applications from all suitably qualified candidates regardless of their race, sex, disability, religion/belief, sexual orientation or age. Each company within the Planet Equity Group is a data controller . This means that we are responsible for deciding how we hold and use personal information about you in line with GDPR guidelines. Full details regarding how we hold your data is available within our Privacy Notice accessible at our website.
May 01, 2024
Contractor
The Planet Group have recently been engaged by global Fintech organisation to secure an interim Head of Finance on an initial contract basis. (Inside IR35) PAYE. This role will be based out of London offering Hybrid working. Job Summary: We are actively seeking an exceptional individual to lead our Finance Systems team sitting within our Finance Transformation division. Reporting to the Finance Transformation Director the successful candidate will be responsible for ensuring the Finance systems are operating effectively, providing value to stakeholders, whilst maintaining controls. This individual will be responsible for managing a team of four to implement and maintain IT General Controls and manage system releases, complete security audits and improve finance business processes in our systems. This will be a hands-on-role with a key focus on ensuring our systems are efficient and effective. There will be lots of opportunities to learn and for this remit to grow as our system landscape evolves and Finance Transformation projects are delivered. This role would be ideal for someone that has worked in a finance department with the ability to understand systems that solve business problems. Day to Day Responsibilities: Manage third party finance systems, including Workday Financials, Workday Adaptive, Coupa, Dell Boomi, Longview and Navan. For the systems above, you will be managing the delivery of security audits, access management, release management, and key rotation. Partner with the Finance team to improve existing systems and processes. Be the ambassador of change, able to challenge existing practices with the aim to establish new processes based on the Finance priorities and Transformation objectives. Work alongside the Finance Transformation team during new system implementations to ensure the support model post-go live is fit for purpose. Creating detailed project plans, RAID logs, RACIs and reporting on progress to governance forums. Implement, document and own the IT General Controls across the finance systems to ensure a robust control environment across our critical business system. Liaise with the auditors to ensure effective and timely delivery of the audit evidence/support during year-end audits. Manage a team of four system specialists. What will you bring to the role? Strong knowledge of Finance systems. Having led or been part of an implementation of Workday Financials and managed the system once live is a must. Experience with controllership, purchase-to-pay, budgeting and forecasting, HR Information Systems, middleware, tax and travel systems is a must. Experience with Workday Adaptive, Workday HCM, Coupa, Dell Boomi, Longview and Navan is preferred. Experience with reviewing system configuration before moving changes to production. Able to manage and prioritise the work of a team across multiple systems. Own the roadmap of change and implementation for the team while periodic and BAU tasks continue. Owning the incident management across all Finance systems, be the first point of contact. Experienced in finance transformation projects/ programmes where you are implementing systems and improving processes through process re-engineering. Strong understanding of ITGCs, including how to set these up in the systems listed previously and provide evidence of their effectiveness. Understanding of best practice finance processes. Strong experience in educating stakeholders regarding finance related processes and how they translate to wider business impacts. Good understanding of how Accounting processes should work to ensure they are efficient and controlled. Able to act as a project manager to develop project plans, RAID logs, RACIs and then execute a project across functions. Good understanding of systems and integration approaches. Excellent at communicating with senior stakeholders and team members to identify issues and propose solutions. Able to identify problems, define the root cause, determine the solution and propose the solution. Able to translate technical expertise into solutions and process guidance to implement improvements or address user issues. Able to map processes, outlining risks and controls. Experienced in data analysis, data manipulation and reporting. Experience in managing system budgets and exercising cost containment/ cost reduction Please apply in the first instance or contact Ryan Deeble for more details. We are an equal opportunities Recruitment Business and Agency. We welcome applications from all suitably qualified candidates regardless of their race, sex, disability, religion/belief, sexual orientation or age. Each company within the Planet Equity Group is a data controller . This means that we are responsible for deciding how we hold and use personal information about you in line with GDPR guidelines. Full details regarding how we hold your data is available within our Privacy Notice accessible at our website.
Description Position Description: The IAM Senior Engineer will be responsible for supporting the development and delivery of Privileged Account Management (PAM) solutions for our on-prem and cloud infrastructure. This is a multifaceted role that involves engineering, hands-on support, and advanced troubleshooting responsibilities as well support of project-based work for two leading PAM platforms (Hashicorp and CyberArk). Position Responsibilities: Assist in the buildout of Hashicorp Vault enterprise in a highly available environment Streamline application onboarding and migration as it relates to secrets management within Hashicorp Vault and CyberArk Work with IT teams across the company to ensure Hashicorp Vault and CyberArk are adopted consistently and effectively Build upon the Hashicorp Vault foundation by adding support for ephemeral identities and adoption of zero-trust concepts Architect and deliver PAM solutions which enhance security and compliance Provide advanced troubleshooting, participate in on-call rotation, disaster recovery tests, and develop solutions and processes to eliminate off hours support calls Develop processes, guidelines, and documentation for consumption by internal teams Assist teams in identifying, properly storing, and retrieving their credentials Provide training, guidance and mentorship for junior staff Qualifications: Hands-on PAM solution experience, SaaS/Cloud based vendors preferred Proven experience with automation, CI/CD, orchestration, and configuration management Experience with CI/CD tools such as Jenkins Experience with image lifecycle management using tools such as Packer Experience with Infrastructure as Code (IaC) using tools such as Terraform, CloudFormation, and Chef Strong analytical, problem-solving, and troubleshooting skills Proficiency in explaining concepts, use cases, and technologies in DevOps, operations, security, cloud, microservices, containers, and scheduling platforms Experience in cloud platforms (GCP preferred, but AWS or Azure accepted) Knowledge of applicable audit controls and applicability to IAM services architecture, design, and processes Proficiency in Python, Bash, Go, Perl, PowerShell, and Ruby are a plus Hands on experience with CyberArk and personal password managers are a plus Experience in working within an a Scaled Agile Framework Personal Attributes: Highly self-motivated and self-directed, with keen attention to detail Ability to interface and work with highly technical counterparts in other departments within the company to provide solutions to technical problems Ability to succinctly articulate complex technical issues to business sponsors Effective time management skills Ability to work both independently and in a team-oriented, collaborative environment Ability to articulate difficult concepts or materials to gain consensus Experience in a large, international enterprise is preferred Formal Education & Certification A Bachelor's degree in Computer Science or Information Systems or equivalent combination of education and related work experience Certification or equivalent experience in PAM enterprise platforms Company Benefits Bonus Programme Equity Programme Employee Stock Purchase Plan (ESPP) Private Medical and Dental coverage Mental Health Benefit Programme Group Pension Plan Income Protection Life Assurance Cycle To Work Gym Membership Family Leave Education Assistance - MBA/Advanced Degree/Bachelor Degree Ongoing Employee Development Training/Certification Hybrid Working # LI-RK2 CME Group: Where Futures Are Made CME Group () is the world's leading derivatives marketplace. But who we are goes deeper than that. Here, you can impact markets worldwide. Transform industries. And build a career shaping tomorrow. We invest in your success and you own it, all while working alongside a team of leading experts who inspire you in ways big and small. Problem solvers, difference makers, trailblazers. Those are our people. And we're looking for more. At CME Group, we embrace our employees' diverse experiences, cultures and skills, and work to ensure that everyone's perspectives are acknowledged and valued. As an equal opportunity employer, we recognize the importance of a diverse and inclusive workplace and consider all potential employees without regard to any protected characteristic. The Candidate Privacy Policy can be found here.
May 01, 2024
Full time
Description Position Description: The IAM Senior Engineer will be responsible for supporting the development and delivery of Privileged Account Management (PAM) solutions for our on-prem and cloud infrastructure. This is a multifaceted role that involves engineering, hands-on support, and advanced troubleshooting responsibilities as well support of project-based work for two leading PAM platforms (Hashicorp and CyberArk). Position Responsibilities: Assist in the buildout of Hashicorp Vault enterprise in a highly available environment Streamline application onboarding and migration as it relates to secrets management within Hashicorp Vault and CyberArk Work with IT teams across the company to ensure Hashicorp Vault and CyberArk are adopted consistently and effectively Build upon the Hashicorp Vault foundation by adding support for ephemeral identities and adoption of zero-trust concepts Architect and deliver PAM solutions which enhance security and compliance Provide advanced troubleshooting, participate in on-call rotation, disaster recovery tests, and develop solutions and processes to eliminate off hours support calls Develop processes, guidelines, and documentation for consumption by internal teams Assist teams in identifying, properly storing, and retrieving their credentials Provide training, guidance and mentorship for junior staff Qualifications: Hands-on PAM solution experience, SaaS/Cloud based vendors preferred Proven experience with automation, CI/CD, orchestration, and configuration management Experience with CI/CD tools such as Jenkins Experience with image lifecycle management using tools such as Packer Experience with Infrastructure as Code (IaC) using tools such as Terraform, CloudFormation, and Chef Strong analytical, problem-solving, and troubleshooting skills Proficiency in explaining concepts, use cases, and technologies in DevOps, operations, security, cloud, microservices, containers, and scheduling platforms Experience in cloud platforms (GCP preferred, but AWS or Azure accepted) Knowledge of applicable audit controls and applicability to IAM services architecture, design, and processes Proficiency in Python, Bash, Go, Perl, PowerShell, and Ruby are a plus Hands on experience with CyberArk and personal password managers are a plus Experience in working within an a Scaled Agile Framework Personal Attributes: Highly self-motivated and self-directed, with keen attention to detail Ability to interface and work with highly technical counterparts in other departments within the company to provide solutions to technical problems Ability to succinctly articulate complex technical issues to business sponsors Effective time management skills Ability to work both independently and in a team-oriented, collaborative environment Ability to articulate difficult concepts or materials to gain consensus Experience in a large, international enterprise is preferred Formal Education & Certification A Bachelor's degree in Computer Science or Information Systems or equivalent combination of education and related work experience Certification or equivalent experience in PAM enterprise platforms Company Benefits Bonus Programme Equity Programme Employee Stock Purchase Plan (ESPP) Private Medical and Dental coverage Mental Health Benefit Programme Group Pension Plan Income Protection Life Assurance Cycle To Work Gym Membership Family Leave Education Assistance - MBA/Advanced Degree/Bachelor Degree Ongoing Employee Development Training/Certification Hybrid Working # LI-RK2 CME Group: Where Futures Are Made CME Group () is the world's leading derivatives marketplace. But who we are goes deeper than that. Here, you can impact markets worldwide. Transform industries. And build a career shaping tomorrow. We invest in your success and you own it, all while working alongside a team of leading experts who inspire you in ways big and small. Problem solvers, difference makers, trailblazers. Those are our people. And we're looking for more. At CME Group, we embrace our employees' diverse experiences, cultures and skills, and work to ensure that everyone's perspectives are acknowledged and valued. As an equal opportunity employer, we recognize the importance of a diverse and inclusive workplace and consider all potential employees without regard to any protected characteristic. The Candidate Privacy Policy can be found here.
Are you looking for a career move that will put you at the heart of a global financial institution? Then bring your skills in analysis, problem solving and communication to Citi's Global Reconciliation Support Team. By Joining Citi, you will become part of a global organisation whose mission is to serve as a trusted partner to our clients by responsibly providing financial services that enable growth and economic progress. Team/Role Overview Working as an Applications Support Senior Manager, you will play an integral role in running and maintaining the production environment for reconciliation applications so that the our Operations and Risk & Control users can confidently service their clients. The role sits within the Data Engineering Production Management team, which aims to be the best for our clients by creating a Service-Centric organization focused on digitizing SMBF's products/services, driving out manual work and delivering world-class Client experience and enabling growth via scalability. You will be working closely with colleagues in APAC, EMEA and NAM to ensure perfect 24/7 support of our franchise critical applications. In addition, you will also partner with Level 1 Support teams, Application Technology Development teams, Infrastructure teams and the Business Product owners. You will play an integral role in driving stability and service improvements, developing application knowledge and working with senior business partners across the globe. What you'll do Provide functional oversight to production support team in Belfast. Provide a holistic view of the production environment for both technology and business management, working closely as a trusted partner for senior business heads. Manage, maintain and support applications and their operating environments. This includes focusing on stability, quality and functionality in line with service level expectations Partner with appropriate development and production support areas and teams to prioritize bug fixes and support tooling requirements Assess risk and impact of production issues, escalating to the business and technology management in a timely and appropriate manner Implement and drive automations focused on productivity improvements and toil reduction Exhibits sound and comprehensive communication and diplomacy skills to exchange complex information with inherent confidence with operations and technology partners on a regional or global basis. Requires awareness of audit and compliance related issues. What we'll need from you Relevant Production Support experience as lead in any financial domain is essential. Experience in supporting reconciliation application (including vendor product SMARTSTREAM TLM) is preferable. Good Unix/Linux and Python skills Good Experience with Monitoring tools such as ITRS Geneos, AppDynamics Good Experience with Log Aggregation tools such as ELK, Splunk, Grafana(GEM) is preferred Experience working with Oracle Database, Hadoop, Apache Spark, Hive, Starburst Experience with Middleware solutions such as Tibco EMS, Kafka Good written and verbal communication skills What we can offer you The SMBF Production Management organization follows Best in Class Application Support procedures, technical solutions, Risk & Controls procedures. You will be exposed to advanced technologies used to build Reconciliation Platform. The role presents an excellent opportunity for the successful candidate to develop a broad range of technical and soft skills. You will gain significant experience of the advanced technologies used to run our business regionally and globally, giving you the vast exposure to new and existing methodologies and systems. We work hard to have a positive financial and social impact on the communities we serve. In turn, we put our employees first and provide the best-in-class benefits they need to be well, live well and save well. By joining Citi Belfast, you will not only be part of a business casual workplace with a hybrid working model (up to 2 days working at home per week), but also receive a competitive base salary (which is annually reviewed), and enjoy a whole host of additional benefits such as: Generous holiday allowance starting at 27 days plus bank holidays; increasing with tenure A discretional annual performance related bonus Private medical insurance packages to suit your personal circumstances Employee Assistance Program Pension Plan Paid Parental Leave Special discounts for employees, family, and friends Access to an array of learning and development resources Job Family Group: Technology Job Family: Applications Support Time Type: Full time Citi is an equal opportunity and affirmative action employer. Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Citigroup Inc. and its subsidiaries ("Citi") invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi . View the " EEO is the Law " poster. View the EEO is the Law Supplement . View the EEO Policy Statement . View the Pay Transparency Posting
May 01, 2024
Full time
Are you looking for a career move that will put you at the heart of a global financial institution? Then bring your skills in analysis, problem solving and communication to Citi's Global Reconciliation Support Team. By Joining Citi, you will become part of a global organisation whose mission is to serve as a trusted partner to our clients by responsibly providing financial services that enable growth and economic progress. Team/Role Overview Working as an Applications Support Senior Manager, you will play an integral role in running and maintaining the production environment for reconciliation applications so that the our Operations and Risk & Control users can confidently service their clients. The role sits within the Data Engineering Production Management team, which aims to be the best for our clients by creating a Service-Centric organization focused on digitizing SMBF's products/services, driving out manual work and delivering world-class Client experience and enabling growth via scalability. You will be working closely with colleagues in APAC, EMEA and NAM to ensure perfect 24/7 support of our franchise critical applications. In addition, you will also partner with Level 1 Support teams, Application Technology Development teams, Infrastructure teams and the Business Product owners. You will play an integral role in driving stability and service improvements, developing application knowledge and working with senior business partners across the globe. What you'll do Provide functional oversight to production support team in Belfast. Provide a holistic view of the production environment for both technology and business management, working closely as a trusted partner for senior business heads. Manage, maintain and support applications and their operating environments. This includes focusing on stability, quality and functionality in line with service level expectations Partner with appropriate development and production support areas and teams to prioritize bug fixes and support tooling requirements Assess risk and impact of production issues, escalating to the business and technology management in a timely and appropriate manner Implement and drive automations focused on productivity improvements and toil reduction Exhibits sound and comprehensive communication and diplomacy skills to exchange complex information with inherent confidence with operations and technology partners on a regional or global basis. Requires awareness of audit and compliance related issues. What we'll need from you Relevant Production Support experience as lead in any financial domain is essential. Experience in supporting reconciliation application (including vendor product SMARTSTREAM TLM) is preferable. Good Unix/Linux and Python skills Good Experience with Monitoring tools such as ITRS Geneos, AppDynamics Good Experience with Log Aggregation tools such as ELK, Splunk, Grafana(GEM) is preferred Experience working with Oracle Database, Hadoop, Apache Spark, Hive, Starburst Experience with Middleware solutions such as Tibco EMS, Kafka Good written and verbal communication skills What we can offer you The SMBF Production Management organization follows Best in Class Application Support procedures, technical solutions, Risk & Controls procedures. You will be exposed to advanced technologies used to build Reconciliation Platform. The role presents an excellent opportunity for the successful candidate to develop a broad range of technical and soft skills. You will gain significant experience of the advanced technologies used to run our business regionally and globally, giving you the vast exposure to new and existing methodologies and systems. We work hard to have a positive financial and social impact on the communities we serve. In turn, we put our employees first and provide the best-in-class benefits they need to be well, live well and save well. By joining Citi Belfast, you will not only be part of a business casual workplace with a hybrid working model (up to 2 days working at home per week), but also receive a competitive base salary (which is annually reviewed), and enjoy a whole host of additional benefits such as: Generous holiday allowance starting at 27 days plus bank holidays; increasing with tenure A discretional annual performance related bonus Private medical insurance packages to suit your personal circumstances Employee Assistance Program Pension Plan Paid Parental Leave Special discounts for employees, family, and friends Access to an array of learning and development resources Job Family Group: Technology Job Family: Applications Support Time Type: Full time Citi is an equal opportunity and affirmative action employer. Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Citigroup Inc. and its subsidiaries ("Citi") invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi . View the " EEO is the Law " poster. View the EEO is the Law Supplement . View the EEO Policy Statement . View the Pay Transparency Posting
Job Description: Job Title Information Technology (IT) Auditor - Investment Banking Location Birmingham Corporate Title Assistant Vice President The Group Audit (GA) function takes a proactive, risk-based and independent approach to assist the Bank's business and infrastructure functions to identify key control weaknesses. You will be joining the global GA Investment Banking Application & Innovation Technology team reporting into the Principal Audit Manager responsible for covering the Bank's Technology and Information Security risks and controls across Investment Banking and the Bank's Innovation activities covering emerging technologies such as artificial intelligence, robotic process automation and cloud computing. What we'll offer you A healthy, engaged and well-supported workforce are better equipped to do their best work and, more importantly, enjoy their lives inside and outside the workplace. That's why we are committed to providing an environment with your development and wellbeing at its centre. Hybrid Working We understand that employee expectations and preferences are changing. We have implemented a Hybrid Working Model that enables employees to reach a working pattern that works for them. Eligible employees have the opportunity to work from the office and remotely from home (subject to the role's eligibility). You can expect: Competitive salary and non-contributory pension 30 days' holiday plus bank holidays, with the option to purchase additional days Life Assurance and Private Healthcare for you and your family A range of flexible benefits including Retail Discounts, a Bike4Work scheme and Gym benefits The opportunity to support a wide-ranging CSR programme + 2 days' volunteering leave per year Your key responsibilities Evaluate the effectiveness of internal IT controls supporting Innovation and Investment Banking areas including Fixed Income & Currencies, Electronic Trading, Origination and Advisory in accordance with GA methodology and the established risk assessment framework Conduct technology assessments, continuous monitoring and complete all work assignments on a timely basis - including planned audits, finding validations, and ad-hoc projects Prepare, coordinate and execute audit assignments, attend meetings with internal stakeholders, draft exceptions and audit findings for review by the audit lead and audit management, facilitate tracking and closure validation of findings Stay abreast of business/industry changes and their effect on the team's audit plan, GA methodology and risk assessments Pro-actively develop and maintain professional working relationships with colleagues, the business and respective support areas. Contribute to departmental projects and initiatives Your skills and experience Experience in auditing or practical working experience in software development, application lifecycle, vendor management and cyber security including IT general and automated application controls Ability to multi-task assignments, prioritize workloads with minimal supervision and work well within teams, building strong relationships Strong analytical and communication skills with the ability to clearly articulate control deficiencies and related risks Firm commitment to maintaining the highest professional and ethical standards - and the ability to stand your ground when challenged Undergraduate or equivalent degree in information technology, computer science or a related discipline; and relevant professional certifications (e.g. CISA, CISSP, CCAK, CCSP, ITIL, COBIT) preferred Interest in coding, cyber security, data analytics, as well as emerging technologies relating to artificial intelligence, cloud and robotics is an advantage How we'll support you GA's dedicated in-house Staff Development team will provide you with an understanding of GA's methodology, as well as basic product knowledge and associated risk and control matters We value diversity and as an equal opportunities' employer, we make reasonable adjustments for those with a disability such as the provision of assistive equipment if required (e.g., screen readers, assistive hearing devices, adapted keyboards) About us and our teams Deutsche Bank is the leading German bank with strong European roots and a global network. Click here to see what we do Our values define the working environment we strive to create - diverse, supportive and welcoming of different views. We embrace a culture reflecting a variety of perspectives, insights and backgrounds to drive innovation. We build talented and diverse teams to drive business results and encourage our people to develop to their full potential. Talk to us about flexible work arrangements and other initiatives we offer. We promote good working relationships and encourage high standards of conduct and work performance. We welcome applications from talented people from all cultures, countries, races, genders, sexual orientations, disabilities, beliefs and generations and are committed to providing a working environment free from harassment, discrimination and retaliation. Visit Inside Deutsche Bank to discover more about the culture of Deutsche Bank including Diversity, Equity & Inclusion, Leadership, Learning, Future of Work and more besides.
May 01, 2024
Full time
Job Description: Job Title Information Technology (IT) Auditor - Investment Banking Location Birmingham Corporate Title Assistant Vice President The Group Audit (GA) function takes a proactive, risk-based and independent approach to assist the Bank's business and infrastructure functions to identify key control weaknesses. You will be joining the global GA Investment Banking Application & Innovation Technology team reporting into the Principal Audit Manager responsible for covering the Bank's Technology and Information Security risks and controls across Investment Banking and the Bank's Innovation activities covering emerging technologies such as artificial intelligence, robotic process automation and cloud computing. What we'll offer you A healthy, engaged and well-supported workforce are better equipped to do their best work and, more importantly, enjoy their lives inside and outside the workplace. That's why we are committed to providing an environment with your development and wellbeing at its centre. Hybrid Working We understand that employee expectations and preferences are changing. We have implemented a Hybrid Working Model that enables employees to reach a working pattern that works for them. Eligible employees have the opportunity to work from the office and remotely from home (subject to the role's eligibility). You can expect: Competitive salary and non-contributory pension 30 days' holiday plus bank holidays, with the option to purchase additional days Life Assurance and Private Healthcare for you and your family A range of flexible benefits including Retail Discounts, a Bike4Work scheme and Gym benefits The opportunity to support a wide-ranging CSR programme + 2 days' volunteering leave per year Your key responsibilities Evaluate the effectiveness of internal IT controls supporting Innovation and Investment Banking areas including Fixed Income & Currencies, Electronic Trading, Origination and Advisory in accordance with GA methodology and the established risk assessment framework Conduct technology assessments, continuous monitoring and complete all work assignments on a timely basis - including planned audits, finding validations, and ad-hoc projects Prepare, coordinate and execute audit assignments, attend meetings with internal stakeholders, draft exceptions and audit findings for review by the audit lead and audit management, facilitate tracking and closure validation of findings Stay abreast of business/industry changes and their effect on the team's audit plan, GA methodology and risk assessments Pro-actively develop and maintain professional working relationships with colleagues, the business and respective support areas. Contribute to departmental projects and initiatives Your skills and experience Experience in auditing or practical working experience in software development, application lifecycle, vendor management and cyber security including IT general and automated application controls Ability to multi-task assignments, prioritize workloads with minimal supervision and work well within teams, building strong relationships Strong analytical and communication skills with the ability to clearly articulate control deficiencies and related risks Firm commitment to maintaining the highest professional and ethical standards - and the ability to stand your ground when challenged Undergraduate or equivalent degree in information technology, computer science or a related discipline; and relevant professional certifications (e.g. CISA, CISSP, CCAK, CCSP, ITIL, COBIT) preferred Interest in coding, cyber security, data analytics, as well as emerging technologies relating to artificial intelligence, cloud and robotics is an advantage How we'll support you GA's dedicated in-house Staff Development team will provide you with an understanding of GA's methodology, as well as basic product knowledge and associated risk and control matters We value diversity and as an equal opportunities' employer, we make reasonable adjustments for those with a disability such as the provision of assistive equipment if required (e.g., screen readers, assistive hearing devices, adapted keyboards) About us and our teams Deutsche Bank is the leading German bank with strong European roots and a global network. Click here to see what we do Our values define the working environment we strive to create - diverse, supportive and welcoming of different views. We embrace a culture reflecting a variety of perspectives, insights and backgrounds to drive innovation. We build talented and diverse teams to drive business results and encourage our people to develop to their full potential. Talk to us about flexible work arrangements and other initiatives we offer. We promote good working relationships and encourage high standards of conduct and work performance. We welcome applications from talented people from all cultures, countries, races, genders, sexual orientations, disabilities, beliefs and generations and are committed to providing a working environment free from harassment, discrimination and retaliation. Visit Inside Deutsche Bank to discover more about the culture of Deutsche Bank including Diversity, Equity & Inclusion, Leadership, Learning, Future of Work and more besides.
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high-growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our IT team collaborates with every department. They develop, they explore and they implement the new ideas helping us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an IT role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. The Security Operations Manager role is integral to BDO, ensuring that we protect our colleagues, clients and partners information as we rapidly expand our digital footprint. Reporting into the Head of IT Security, you'll ensure the delivery of cybersecurity improvement initiatives, operational excellence, technical security assurance and develop a talent pipeline. You'll work closely alongside the Head of IT Security to instill the right structure and processes to support the delivery of continual Cybersecurity improvements across BDO and will have direct line management responsibilities of 3x Cybersecurity Analysts where you will conduct performance reviews, and provide leadership and coaching, including technical and personal development programs for team members. You'll also: Deliver security operations technology roadmaps in conjunction with the wider Cybersecurity strategy. Propose changes to existing policies, procedures and configurations to ensure operating efficiency and regulatory compliance. Contribute to the security strategy, ensuring that technical and structural considerations regarding design, build and run components are considered. Aid the Head of IT Security in chairing various defined security management working groups, ensuring that reporting against progress vs plan is developed. Manage security operational production incidents and participate in problem and change management forums. Serve as an active participant in the information security governance process, working with Business Analysts, Governance and PMO functions in order to ensure that cyber risks are accurately reported, assessed and mitigated. Consult with IT and support staff to ensure that security is factored into the evaluation, selection, installation and configuration of new products and services. Report on the implementation of technical controls to support and enforce defined security policies. Report on the technical aspects of security management against pre-defined Cybersecurity operational metrics. Engage with the MSSP re Service Level Agreements (SLA's), monitoring metrics, including contract and performance metrics Own day-to-day management IT Security Service Requests and tickets, including: Reporting, Knowledge Management, Root Cause Analysis and Proactive Problem Repetition Avoidance. Contribute to a Cybersecurity knowledgebase comprising technical reference libraries, security advisories and alerts, information on security trends and practices, and laws and regulations. Ensure audit trails, system logs and other monitoring data sources are reviewed periodically and are in compliance with policies and audit requirements. Contribute to the development of a Cybersecurity Operations Resource and Capacity planner managed through BDO's Azure DevOps environment. Oversee incident response, threat detection, and mitigation efforts You'll be someone with: A good understanding of monitoring frameworks eg MITRE ATT&CK and SIEM technologies eg Microsoft Sentinel An interest in automation of Security operation function including artificial intelligence An understanding of Microsoft security product portfolio CISSP/CISM (Desired) CCSP/SSCP (Desired) Proven experience in Cybersecurity and IT Operations (Required) DLP, EDR/XDR, CASB, E-mail Security, SWG and ZTNA/SASE You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suit you, your teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
May 01, 2024
Full time
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high-growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our IT team collaborates with every department. They develop, they explore and they implement the new ideas helping us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an IT role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. The Security Operations Manager role is integral to BDO, ensuring that we protect our colleagues, clients and partners information as we rapidly expand our digital footprint. Reporting into the Head of IT Security, you'll ensure the delivery of cybersecurity improvement initiatives, operational excellence, technical security assurance and develop a talent pipeline. You'll work closely alongside the Head of IT Security to instill the right structure and processes to support the delivery of continual Cybersecurity improvements across BDO and will have direct line management responsibilities of 3x Cybersecurity Analysts where you will conduct performance reviews, and provide leadership and coaching, including technical and personal development programs for team members. You'll also: Deliver security operations technology roadmaps in conjunction with the wider Cybersecurity strategy. Propose changes to existing policies, procedures and configurations to ensure operating efficiency and regulatory compliance. Contribute to the security strategy, ensuring that technical and structural considerations regarding design, build and run components are considered. Aid the Head of IT Security in chairing various defined security management working groups, ensuring that reporting against progress vs plan is developed. Manage security operational production incidents and participate in problem and change management forums. Serve as an active participant in the information security governance process, working with Business Analysts, Governance and PMO functions in order to ensure that cyber risks are accurately reported, assessed and mitigated. Consult with IT and support staff to ensure that security is factored into the evaluation, selection, installation and configuration of new products and services. Report on the implementation of technical controls to support and enforce defined security policies. Report on the technical aspects of security management against pre-defined Cybersecurity operational metrics. Engage with the MSSP re Service Level Agreements (SLA's), monitoring metrics, including contract and performance metrics Own day-to-day management IT Security Service Requests and tickets, including: Reporting, Knowledge Management, Root Cause Analysis and Proactive Problem Repetition Avoidance. Contribute to a Cybersecurity knowledgebase comprising technical reference libraries, security advisories and alerts, information on security trends and practices, and laws and regulations. Ensure audit trails, system logs and other monitoring data sources are reviewed periodically and are in compliance with policies and audit requirements. Contribute to the development of a Cybersecurity Operations Resource and Capacity planner managed through BDO's Azure DevOps environment. Oversee incident response, threat detection, and mitigation efforts You'll be someone with: A good understanding of monitoring frameworks eg MITRE ATT&CK and SIEM technologies eg Microsoft Sentinel An interest in automation of Security operation function including artificial intelligence An understanding of Microsoft security product portfolio CISSP/CISM (Desired) CCSP/SSCP (Desired) Proven experience in Cybersecurity and IT Operations (Required) DLP, EDR/XDR, CASB, E-mail Security, SWG and ZTNA/SASE You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suit you, your teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
Clarasys is a fast-growing and award-winning consultancy, with a great team. We are over ten years old and 200+ people. We work with some of the world's sector leading companies to solve their greatest challenges. Our clients trust us to deliver better ways of doing things, because of our different way of doing things. Embracing a non-hierarchical culture, we foster collaboration, creativity, and inclusivity. 'Team' rules over 'individual', and development is part of the fabric, not just a training course. Here, you're encouraged to be yourself, every voice is heard, and every idea is valued, propelling us forward into a future where collective empowerment drives our success. Here, doing the right thing for our clients is what matters most. Job Overview: We are seeking a highly skilled and experienced Senior Operations Manager to oversee the operational aspects of our consultancy firm. The ideal candidate will be responsible for optimising day-to-day operations, enhancing processes, and enabling the seamless delivery of services to our people and clients. The Senior Operations Manager will collaborate with various teams within the organisation to drive efficiency, improve productivity, and contribute to the overall growth and success of the company. We're looking for someone with: Proven experience in operations management within a management consultancy or similar professional services firm. Strong leadership and team management skills, with a track record of building and motivating high-performing teams. Ability to thrive in a fast-paced, dynamic and uncertain environment, managing multiple priorities effectively. Excellent critical thinking skills with a passion for problem-solving. Exceptional communication and interpersonal skills. Experience in implementing process improvements and driving operational excellence. Knowledge of industry best practices and trends in operations management. Key Responsibilities: 1. Operational Excellence: Streamline and optimise internal processes to improve efficiency and productivity. Develop and maintain operational policies and procedures to ensure consistency and quality in service delivery. Implement process enhancements and automation to drive operational efficiency and reduce manual effort. Provide leadership, guidance, and mentorship to the wider operations team (4 direct reports). Foster a collaborative and positive work environment, promoting teamwork and open communication. Collaborate with the team to define and implement the long-term initiatives required to support the business' future plans 3. Information Security and Compliance: Develop and enforce information security policies, procedures, and standards to safeguard sensitive data and client information. Collaborate with external IT security teams to ensure the implementation of robust security measures, including access controls, encryption, and regular security audits. Stay updated on industry best practices and regulations related to information security and ensure the organisation's compliance. Collaborate with consulting teams to understand the viability of new tools and technologies, whilst maintaining compliance with InfoSec. Take ownership of the technology infrastructure, including core central cloud-based systems, and ensure their optimal performance. Collaborate with the wider business to implement and maintain scalable and secure technology solutions. Evaluate emerging technologies and assess their potential impact on operations. Act as a liaison between operations and client teams to address client-specific needs, ensuring solutions meet or exceed expectations. 5. Resource Management: Oversee the efficient allocation and management of our people to meet project requirements and deadlines. Monitor resource utilisation and implement strategies to optimise resource allocation, ensuring maximum productivity and cost-effectiveness. Collaborate with the relevant teams to optimise workforce planning and support future client demand. 6. Client Relationship Management: Collaborate with client-facing teams to understand client needs and expectations. Contribute to the timely and accurate delivery of services, meeting or exceeding client expectations. Address client concerns promptly and effectively, striving for high client satisfaction. 7. Facilities Management: Oversee facilities and office space management, ensuring a safe and conducive working environment for employees. Manage relationships with facilities vendors and service providers, negotiating contracts and agreements to maintain high standards. Identify potential risks in operations, information security, resourcing and facilities management. Develop and implement strategies to mitigate risks, maintaining a robust risk management framework across all operational aspects. Work closely with the finance department to manage operational spend and financial forecasts. Identify cost-saving opportunities and implement strategies to optimise operational expenditures. Clarasys is an equal opportunity employer. We encourage applications from candidates of all backgrounds and experiences.
May 01, 2024
Full time
Clarasys is a fast-growing and award-winning consultancy, with a great team. We are over ten years old and 200+ people. We work with some of the world's sector leading companies to solve their greatest challenges. Our clients trust us to deliver better ways of doing things, because of our different way of doing things. Embracing a non-hierarchical culture, we foster collaboration, creativity, and inclusivity. 'Team' rules over 'individual', and development is part of the fabric, not just a training course. Here, you're encouraged to be yourself, every voice is heard, and every idea is valued, propelling us forward into a future where collective empowerment drives our success. Here, doing the right thing for our clients is what matters most. Job Overview: We are seeking a highly skilled and experienced Senior Operations Manager to oversee the operational aspects of our consultancy firm. The ideal candidate will be responsible for optimising day-to-day operations, enhancing processes, and enabling the seamless delivery of services to our people and clients. The Senior Operations Manager will collaborate with various teams within the organisation to drive efficiency, improve productivity, and contribute to the overall growth and success of the company. We're looking for someone with: Proven experience in operations management within a management consultancy or similar professional services firm. Strong leadership and team management skills, with a track record of building and motivating high-performing teams. Ability to thrive in a fast-paced, dynamic and uncertain environment, managing multiple priorities effectively. Excellent critical thinking skills with a passion for problem-solving. Exceptional communication and interpersonal skills. Experience in implementing process improvements and driving operational excellence. Knowledge of industry best practices and trends in operations management. Key Responsibilities: 1. Operational Excellence: Streamline and optimise internal processes to improve efficiency and productivity. Develop and maintain operational policies and procedures to ensure consistency and quality in service delivery. Implement process enhancements and automation to drive operational efficiency and reduce manual effort. Provide leadership, guidance, and mentorship to the wider operations team (4 direct reports). Foster a collaborative and positive work environment, promoting teamwork and open communication. Collaborate with the team to define and implement the long-term initiatives required to support the business' future plans 3. Information Security and Compliance: Develop and enforce information security policies, procedures, and standards to safeguard sensitive data and client information. Collaborate with external IT security teams to ensure the implementation of robust security measures, including access controls, encryption, and regular security audits. Stay updated on industry best practices and regulations related to information security and ensure the organisation's compliance. Collaborate with consulting teams to understand the viability of new tools and technologies, whilst maintaining compliance with InfoSec. Take ownership of the technology infrastructure, including core central cloud-based systems, and ensure their optimal performance. Collaborate with the wider business to implement and maintain scalable and secure technology solutions. Evaluate emerging technologies and assess their potential impact on operations. Act as a liaison between operations and client teams to address client-specific needs, ensuring solutions meet or exceed expectations. 5. Resource Management: Oversee the efficient allocation and management of our people to meet project requirements and deadlines. Monitor resource utilisation and implement strategies to optimise resource allocation, ensuring maximum productivity and cost-effectiveness. Collaborate with the relevant teams to optimise workforce planning and support future client demand. 6. Client Relationship Management: Collaborate with client-facing teams to understand client needs and expectations. Contribute to the timely and accurate delivery of services, meeting or exceeding client expectations. Address client concerns promptly and effectively, striving for high client satisfaction. 7. Facilities Management: Oversee facilities and office space management, ensuring a safe and conducive working environment for employees. Manage relationships with facilities vendors and service providers, negotiating contracts and agreements to maintain high standards. Identify potential risks in operations, information security, resourcing and facilities management. Develop and implement strategies to mitigate risks, maintaining a robust risk management framework across all operational aspects. Work closely with the finance department to manage operational spend and financial forecasts. Identify cost-saving opportunities and implement strategies to optimise operational expenditures. Clarasys is an equal opportunity employer. We encourage applications from candidates of all backgrounds and experiences.
Lead the strategy and implementation of security measures, ensuring a secure IT environment and compliance with Cyber Essentials+ and ISO 27001. While this role is within the technology function, the ideal candidate should be self-motivated and proactive in enhancing security throughout the organisation, evaluating maturity, setting priorities, and recommending necessary changes. Client Details Everything about CSL is designed to keep our customers connected, secure and live. Simplicity, service and reliability have been at the heart of everything we do since CSL was founded in 1996. The sectors we work in and applications we connect are at the highest end of critical communications. Critical connectivity can be complex but we make it easy. Our partnerships with all the major Mobile Network Operators, Monitoring Centres and Installers, allows us to deliver complete end-to-end connectivity solutions. Whether it's 4G, IP, xDSL, or FTTC, we have the knowledge, expertise and ability to deliver the best combination for your connectivity requirements. Description Duties & Responsibilities: This role will encompass a range of responsibilities including but not limited to: Information Security Policy and Standard definition and rollout to align CSL with relevant industry frameworksand certifications. Ensure compliance and adherence to the standards leading to successful external audit outcomes whilstdriving continuous improvement within the business through internal audit and other collaborativeengagement across tech and the business overall. Champion and drive Information Security Awareness and education company wide. Ensure the confidentiality, integrity and accessibility of our customer supporting and internal IT infrastructure& systems in line with business requirements and best practice. Work with IT engineers to ensure operational controls are in place supporting the standards and policies andwith Cyber Security Engineers that detection and response capability is in place and effective. Respond rapidly to IT security incidents managing both our internal response as well as any required externalparties including digital forensics and/or regulatory bodies to ensure the investigation, containment,remediation and reporting of security events are handled effectively and appropriately. Lead and manage IT change projects and initiatives as relevant to Information Security such as penetrationtesting activity, vulnerability scanning and remediation, identity and access enhancements and other projectsto eliminate gaps to the standard, drive improvement or as a consequence of a decision to mitigate risk. Engage with the technology leadership team to embed secure by design practices into change projects toensure the outcomes and deliveries of those teams have tackled the relevant security and availability relatednon-functional requirements. Ensure systems and data are recoverable in line with business RPO and RTO goals, and work with theleadership team to define them if required. Establish and manage a Governance, Risk and compliance framework that ensures that appropriate input iscaptured, reported upon and followed up on in order to ensure risks are actively managed. Support CSL new business acquisition / sales through leading with new and existing accounts on informationsecurity topics as part of the pre-sales engagements. Ensure CSLs successful transition from ISO 27001:2013 to ISO 27001:2022 and ongoing maintenance of thecertification. Profile Key Skills & Qualifications Sought: ISO 27001 Lead Auditor CISSP - Certified Information Systems Security Professional Experience working with public cloud and an understanding of the toolsets they provide for governance andcompliance Hands on experience with SIEM, Cloud Vendor compliance tools, EDR/XDR and other anomaly detectioncapability. ITIL v3 Foundation or greater Cisco Network and Security Products e.g firepower, routers, duo etc. Encryption fundamentals including HTTPS, SSL, AES-256, PGP Secure system maintenance including requirements for patching and recoverability Solid knowledge and experience of information security principles, frameworks and standards such as ISO27001, NIST, GDPR, Cyber Essentials+ and SOC2 Job Offer 25 days holiday, increasing with service Annual bonus and salary review Free on site parking
May 01, 2024
Full time
Lead the strategy and implementation of security measures, ensuring a secure IT environment and compliance with Cyber Essentials+ and ISO 27001. While this role is within the technology function, the ideal candidate should be self-motivated and proactive in enhancing security throughout the organisation, evaluating maturity, setting priorities, and recommending necessary changes. Client Details Everything about CSL is designed to keep our customers connected, secure and live. Simplicity, service and reliability have been at the heart of everything we do since CSL was founded in 1996. The sectors we work in and applications we connect are at the highest end of critical communications. Critical connectivity can be complex but we make it easy. Our partnerships with all the major Mobile Network Operators, Monitoring Centres and Installers, allows us to deliver complete end-to-end connectivity solutions. Whether it's 4G, IP, xDSL, or FTTC, we have the knowledge, expertise and ability to deliver the best combination for your connectivity requirements. Description Duties & Responsibilities: This role will encompass a range of responsibilities including but not limited to: Information Security Policy and Standard definition and rollout to align CSL with relevant industry frameworksand certifications. Ensure compliance and adherence to the standards leading to successful external audit outcomes whilstdriving continuous improvement within the business through internal audit and other collaborativeengagement across tech and the business overall. Champion and drive Information Security Awareness and education company wide. Ensure the confidentiality, integrity and accessibility of our customer supporting and internal IT infrastructure& systems in line with business requirements and best practice. Work with IT engineers to ensure operational controls are in place supporting the standards and policies andwith Cyber Security Engineers that detection and response capability is in place and effective. Respond rapidly to IT security incidents managing both our internal response as well as any required externalparties including digital forensics and/or regulatory bodies to ensure the investigation, containment,remediation and reporting of security events are handled effectively and appropriately. Lead and manage IT change projects and initiatives as relevant to Information Security such as penetrationtesting activity, vulnerability scanning and remediation, identity and access enhancements and other projectsto eliminate gaps to the standard, drive improvement or as a consequence of a decision to mitigate risk. Engage with the technology leadership team to embed secure by design practices into change projects toensure the outcomes and deliveries of those teams have tackled the relevant security and availability relatednon-functional requirements. Ensure systems and data are recoverable in line with business RPO and RTO goals, and work with theleadership team to define them if required. Establish and manage a Governance, Risk and compliance framework that ensures that appropriate input iscaptured, reported upon and followed up on in order to ensure risks are actively managed. Support CSL new business acquisition / sales through leading with new and existing accounts on informationsecurity topics as part of the pre-sales engagements. Ensure CSLs successful transition from ISO 27001:2013 to ISO 27001:2022 and ongoing maintenance of thecertification. Profile Key Skills & Qualifications Sought: ISO 27001 Lead Auditor CISSP - Certified Information Systems Security Professional Experience working with public cloud and an understanding of the toolsets they provide for governance andcompliance Hands on experience with SIEM, Cloud Vendor compliance tools, EDR/XDR and other anomaly detectioncapability. ITIL v3 Foundation or greater Cisco Network and Security Products e.g firepower, routers, duo etc. Encryption fundamentals including HTTPS, SSL, AES-256, PGP Secure system maintenance including requirements for patching and recoverability Solid knowledge and experience of information security principles, frameworks and standards such as ISO27001, NIST, GDPR, Cyber Essentials+ and SOC2 Job Offer 25 days holiday, increasing with service Annual bonus and salary review Free on site parking
Excited to grow your career? Our purpose is to empower people to save and invest with confidence. We are looking for great people to join us, so please come and invest in YOUR future at HL. We know that sometimes people can be put off applying for a job if they don't tick every box. If you're excited about working for us and have most of the skills or experience we're looking for, please go ahead and apply. We'd love to hear from you! About the role Hargreaves Lansdown (HL) are now recruiting for a Senior Cloud Security Analyst to join the team. The Senior Cloud Security Analyst is a specialist role with the primary focus on Cloud Security Governance, Risk & Compliance. You will be supporting the Information Security function to ensure HL remains effective in protecting critical information assets within risk appetite. What you'll be doing Leading the technical aspects of cloud security risk and controls by overseeing and conducting, as necessary, Cloud Compliance assessments for AWS and Azure risk assessments. Assisting the Senior Information Security Team in ensuring HL's Information Security Management System remains effective in protecting HL critical information assets within risk appetite. Conducting analysis of cloud-based assets pertaining to information security incidents, audits, and testing while adhering to best practices. Leading in the identification and reporting of remediation and mitigation activities related to cloud security findings across multiple cloud platforms (AWS and Azure). Identifying gaps in cloud security posture and prioritise remediation efforts. Approve within delegated limits risk assessments and 3rd party due diligence assessments that have been carried out by analysts and apprentices and provide guidance where needed. Building relationships across multiple business functions, locations, and technical stakeholders to accomplish goals. You will help deliver the strategy by emphasising the importance of AWS Well Architected Framework, Shared responsibility model and good cloud governance. About you Previous experience in Information Security, with demonstrable experience of cloud security risks and controls in a DevSecOps cloud context. Strong knowledge of common web technologies, cloud technologies, enterprise, and network architecture. Experience in a regulated environment. Certified to advanced security standards, for example CISSP, CCSP, CCSK, CRISC. Practical work-based experience across the areas of security policy, culture, audit, and risk management. Good exposure to and experience of carrying out security reviews against recognised security control frameworks such as ISO27017/27001, NIST CSF, or PCI-DSS. Ability to evaluate the adequacy of cloud security controls, and how they are applied in a business context. Familiarity and use of some of the following tools is a must: AWS Audit Manager, AWS Security Hub, Macie, Wiz, Microsoft Compliance Portal/Purview, Azure Information Protection (AIP), Azure Security Centre. Experience of carrying out security reviews against recognised security control frameworks such as NIST CSF. Effective interpersonal skills to engage and collaborate with multiple internal and external stakeholders. Interview process The interview process for this role will be a 2 stage interview including a task. Working Schedule This role is based in Bristol head office, BS1 5HL. This role is permanent, full time, 37.5 hours per week, Monday to Friday. We have returned to the office, however for this role we offer a hybrid flexible working pattern to enable you the option of working from home and coming into the office. Why us? Here at HL, we're the UK's number 1 investment platform for private investors, based in Bristol. For more than 40 years we've helped investors save time, tax and money on their investments. To achieve our mission, we believe we have a workplace like no other, with constant learning, dynamic teams, and a great ethos. We're steered by core values that promote service, quality, innovation, and opportunity in everything we do. What's on offer? Discretionary annual bonus & annual pay review 25 days holiday plus bank holidays and 1-day additional Christmas closure time Option to purchase an additional 5 days holiday per year at annual enrolment Flexible working options available, including hybrid working Enhanced parental leave Pension scheme up to 11% employer contribution Sharesave scheme - have a real stake in HL's future Income Protection & Life insurance (4 x salary core level of cover) Private medical insurance Health care cash plans - including optical, dental, and out patientcare and an Employee Assistance Programme Gympass - gym memberships and wellbeing apps available Variety of travel to work schemes with free bike storage and shower facilities An inhouse barista serving subsidised coffee and snacks Join HL's sports, I&D networks and volunteering groups (two paid volunteering days per year) LifeWorks Discounts on services, restaurants and retailers dependant on role level Hargreaves Lansdown is an inclusive employer that values diversity in its workforce. We encourage applications from all individuals without regard to race, religion, gender, sexual orientation, national origin, disability or age. This role may also be available on a flexible working or part time basis - please ask the Recruitment & Onboarding team for more information. Please note, we are unable to provide employment sponsorship to candidates.
May 01, 2024
Full time
Excited to grow your career? Our purpose is to empower people to save and invest with confidence. We are looking for great people to join us, so please come and invest in YOUR future at HL. We know that sometimes people can be put off applying for a job if they don't tick every box. If you're excited about working for us and have most of the skills or experience we're looking for, please go ahead and apply. We'd love to hear from you! About the role Hargreaves Lansdown (HL) are now recruiting for a Senior Cloud Security Analyst to join the team. The Senior Cloud Security Analyst is a specialist role with the primary focus on Cloud Security Governance, Risk & Compliance. You will be supporting the Information Security function to ensure HL remains effective in protecting critical information assets within risk appetite. What you'll be doing Leading the technical aspects of cloud security risk and controls by overseeing and conducting, as necessary, Cloud Compliance assessments for AWS and Azure risk assessments. Assisting the Senior Information Security Team in ensuring HL's Information Security Management System remains effective in protecting HL critical information assets within risk appetite. Conducting analysis of cloud-based assets pertaining to information security incidents, audits, and testing while adhering to best practices. Leading in the identification and reporting of remediation and mitigation activities related to cloud security findings across multiple cloud platforms (AWS and Azure). Identifying gaps in cloud security posture and prioritise remediation efforts. Approve within delegated limits risk assessments and 3rd party due diligence assessments that have been carried out by analysts and apprentices and provide guidance where needed. Building relationships across multiple business functions, locations, and technical stakeholders to accomplish goals. You will help deliver the strategy by emphasising the importance of AWS Well Architected Framework, Shared responsibility model and good cloud governance. About you Previous experience in Information Security, with demonstrable experience of cloud security risks and controls in a DevSecOps cloud context. Strong knowledge of common web technologies, cloud technologies, enterprise, and network architecture. Experience in a regulated environment. Certified to advanced security standards, for example CISSP, CCSP, CCSK, CRISC. Practical work-based experience across the areas of security policy, culture, audit, and risk management. Good exposure to and experience of carrying out security reviews against recognised security control frameworks such as ISO27017/27001, NIST CSF, or PCI-DSS. Ability to evaluate the adequacy of cloud security controls, and how they are applied in a business context. Familiarity and use of some of the following tools is a must: AWS Audit Manager, AWS Security Hub, Macie, Wiz, Microsoft Compliance Portal/Purview, Azure Information Protection (AIP), Azure Security Centre. Experience of carrying out security reviews against recognised security control frameworks such as NIST CSF. Effective interpersonal skills to engage and collaborate with multiple internal and external stakeholders. Interview process The interview process for this role will be a 2 stage interview including a task. Working Schedule This role is based in Bristol head office, BS1 5HL. This role is permanent, full time, 37.5 hours per week, Monday to Friday. We have returned to the office, however for this role we offer a hybrid flexible working pattern to enable you the option of working from home and coming into the office. Why us? Here at HL, we're the UK's number 1 investment platform for private investors, based in Bristol. For more than 40 years we've helped investors save time, tax and money on their investments. To achieve our mission, we believe we have a workplace like no other, with constant learning, dynamic teams, and a great ethos. We're steered by core values that promote service, quality, innovation, and opportunity in everything we do. What's on offer? Discretionary annual bonus & annual pay review 25 days holiday plus bank holidays and 1-day additional Christmas closure time Option to purchase an additional 5 days holiday per year at annual enrolment Flexible working options available, including hybrid working Enhanced parental leave Pension scheme up to 11% employer contribution Sharesave scheme - have a real stake in HL's future Income Protection & Life insurance (4 x salary core level of cover) Private medical insurance Health care cash plans - including optical, dental, and out patientcare and an Employee Assistance Programme Gympass - gym memberships and wellbeing apps available Variety of travel to work schemes with free bike storage and shower facilities An inhouse barista serving subsidised coffee and snacks Join HL's sports, I&D networks and volunteering groups (two paid volunteering days per year) LifeWorks Discounts on services, restaurants and retailers dependant on role level Hargreaves Lansdown is an inclusive employer that values diversity in its workforce. We encourage applications from all individuals without regard to race, religion, gender, sexual orientation, national origin, disability or age. This role may also be available on a flexible working or part time basis - please ask the Recruitment & Onboarding team for more information. Please note, we are unable to provide employment sponsorship to candidates.
Cyber Security Engineer Automotive Hybrid: 2-3 days per week in Crewe 6 months £550 per day PAYE In short: Cyber Security Engineer required to join a prestigious automotive manufacturer in performing security-related activities. ABOUT THE ROLE We are seeking a Cyber Security Engineer to join the business on a temporary basis, at our Crewe campus working on a hybrid basis. The Cyber Security Engineer will report to Vehicle Cyber Security Manager. The role is responsible for the product cyber security engineering activities primarily focused around cyber security requirements, legislation analysis and interpretation and compliance to the client defined secure product development process. Responsibilities include: Assess, interpret and track new or amended cybersecurity security / software update management legislations to relevant functions and cascade interpretation to subject matter experts. Develop and or maintain security specifications for vehicle components and functions for all projects. Analyse and update cybersecurity requirements based on the applicable cyber security legislations for the project. Ensure traceability between regulations and requirements are maintained and available for audit purposes. Deliver cybersecurity work products aligned to the client's Secure Development Process (for e.g. TARA , security case, security plan, component security analysis). Update process templates or process flows based on lessons learnt and recommended improvements. SKILLS AND EXPERIENCE The successful applicant will be a delivery focused and experienced Cyber Security Engineer with technical product security competencies ideally from within the automotive sector. The successful candidate will be able to demonstrate: Product security technical competency (UNECE, R155, R156, ISO21434) Good knowledge of legislative landscape for cybersecurity and connected services in different regions (like China, South Korea, Japan, South Africa) in addition to Europe. Ability to analyse and interpret cyber security and software update regulations and how they impact the product requirements. Good understanding of security controls for automotive vehicles. System requirements engineering experience Software/Programming knowledge (C, C++) Delivery focused Project management and Planning Good communication at various levels in different forums Good presentation skills Ability to influence colleagues within your area of responsibility Good communication skills(German language would be advantageous) Engineering degree or equivalent is essential (or equivalent experience) Associate member of relevant professional institute is desirable. Candidates will ideally show evidence of the above in their CV in order to be considered.Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly. Pontoon is an employment consultancy and operates as an equal opportunities employer.
May 01, 2024
Full time
Cyber Security Engineer Automotive Hybrid: 2-3 days per week in Crewe 6 months £550 per day PAYE In short: Cyber Security Engineer required to join a prestigious automotive manufacturer in performing security-related activities. ABOUT THE ROLE We are seeking a Cyber Security Engineer to join the business on a temporary basis, at our Crewe campus working on a hybrid basis. The Cyber Security Engineer will report to Vehicle Cyber Security Manager. The role is responsible for the product cyber security engineering activities primarily focused around cyber security requirements, legislation analysis and interpretation and compliance to the client defined secure product development process. Responsibilities include: Assess, interpret and track new or amended cybersecurity security / software update management legislations to relevant functions and cascade interpretation to subject matter experts. Develop and or maintain security specifications for vehicle components and functions for all projects. Analyse and update cybersecurity requirements based on the applicable cyber security legislations for the project. Ensure traceability between regulations and requirements are maintained and available for audit purposes. Deliver cybersecurity work products aligned to the client's Secure Development Process (for e.g. TARA , security case, security plan, component security analysis). Update process templates or process flows based on lessons learnt and recommended improvements. SKILLS AND EXPERIENCE The successful applicant will be a delivery focused and experienced Cyber Security Engineer with technical product security competencies ideally from within the automotive sector. The successful candidate will be able to demonstrate: Product security technical competency (UNECE, R155, R156, ISO21434) Good knowledge of legislative landscape for cybersecurity and connected services in different regions (like China, South Korea, Japan, South Africa) in addition to Europe. Ability to analyse and interpret cyber security and software update regulations and how they impact the product requirements. Good understanding of security controls for automotive vehicles. System requirements engineering experience Software/Programming knowledge (C, C++) Delivery focused Project management and Planning Good communication at various levels in different forums Good presentation skills Ability to influence colleagues within your area of responsibility Good communication skills(German language would be advantageous) Engineering degree or equivalent is essential (or equivalent experience) Associate member of relevant professional institute is desirable. Candidates will ideally show evidence of the above in their CV in order to be considered.Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly. Pontoon is an employment consultancy and operates as an equal opportunities employer.