England Security Job Listings

Senior Detection and Response Engineer63393315915523120

Workable

Senior Detection and Response Engineer

We are looking for an experienced Security Engineer to join our Cyber team.  You will help us build out a world class incident response function that will navigate challenging security incidents, drive process improvement, develop an open culture where we grow from our mistakes as an organization.  In this role, you will also build the tools and detection infrastructure that we need to scale our detection and response capability across all threats to our Studio and gaming environments.  Please note that this position will require participation in an on-call rotation. What you'll be doing: Respond to security events, triage, perform investigations, incident analysis, and communicate clearly and efficiently to stakeholders  Contribute to improving processes, procedures, and technologies used for detection and response, enabling us to improve after each incident  Develop and run tools to gather security telemetry data from cloud production systems   Automate workflows and improve identification and response time for security events  Build and optimize detection rules, allowing us to spend our cycles on the alerts that matter  Develop runbooks and incident playbooks for new and existing detections  Lead Threat hunting practices, suggest product and infrastructure signals to surface attacks and incorporate findings into security controls  Create and optimize detections, playbooks, and workflows to quickly identify and respond to potential incidents  Work cross functionally with other engineering teams  What we're looking for: 8+ years of full-time experience as a security engineer, including security monitoring, incident response, and threat hunting in a cloud environment  A defensive practitioner who understands offensive security and, the actual scenarios that lead to compromise  Prior experience leading complex investigations with a large number of stakeholders  Strong communication skills and a proven track record of communicating with internal and external stakeholders at all levels.  Expertise on AWS security controls and services.   Experience leveraging coding for automation, alert enrichment and detections Knowledge of adversary tactics, techniques, and procedures (TTPs) and MITRE ATT&CK principles  Hands-on experience with data analysis, modeling, and correlation at scale  Operating systems internals and forensics experience for macOS, Windows & Linux  Domain experience managing and working with current SIEM and SOAR platforms  Experience developing tools and automation using common DevOps toolsets and programming languages  Understanding of malware functionality and persistence mechanisms  Ability to analyze endpoint, network, and application logs for anomalous events  A solid understanding of cloud environments and operations  Experience working with engineering teams in a SaaS environment  Exceptional communication and collaboration skills  An ability to lead projects with little guidance  Experience handling security incidents and investigating anomalies as part of a team  What we offer: When you join Jagex you can look forward to a generous Perks & Benefits package including: Private Healthcare, including Dental Plan. Minimum 6% Pension contributions. Employee Assistance Programme & onsite Counselling. Life Insurance. Discretionary annual performance bonus. Enhanced family leave policies from day 1. Flexible working hours. 25 days annual leave + Bank holidays & the option to buy/sell holidays + so much more! About Jagex: Jagex is a leader in developing and publishing deep, engaging online games that connect millions of players worldwide. Best known for the RuneScape franchise, which includes two of the world’s longest running and most successful MMORPGs, in Old School Runescape and Runescape, and the open-world survival crafting game, Runescape: Dragonwilds; we have proven success in delivering immersive Forever Games and fostering strong player communities. We strive to foster an inclusive workplace built on trust, autonomy, and a shared passion for creating forever games. Our values guide everything we do: We Embrace Fellowship by collaborating and sharing openly. We Hone our Craft by always learning and improving; we Honour our Vows by being honest and transparent; we are our Customers’ Heroes by striving to understand our team & player needs, and we Seize The Day by making the most of every opportunity. With over two decades of experience, and over 400 people in our team, we continue to innovate in live game development, leveraging data-driven insights, and a commitment to player-first game design. We have a diverse and talented team where creativity, collaboration, and community-driven game development drives everything we do. As part of Jagex, you’ll have the opportunity to work on a globally successful franchise, contribute to exciting new projects, and be part of a company that hugely values both our employees and our players.

Cambridge, UK

Negotiable Salary

CHECK Team Leader / Senior Penetration Tester63393315031555121

Workable

CHECK Team Leader / Senior Penetration Tester

3B Data Security (part of UBDS Group) are looking for a skilled and experienced Senior Penetration Tester who can provide exceptional service delivery and contribute to the continued expansion of the organisation. You will have a CHECK Team Leader (CTL) qualification in infrastructure and must also hold a Chartered or Principal Cyber Security Professional title in Security Testing. Double badges, i.e. inf and app will be renumerated accordingly. You will be an integral member of the team, working with senior management to achieve and maintain CHECK Green status. You will take the lead on CHECK engagements, directing the team as necessary to provide a high-quality service to our clients. In addition to CHECK work, you will also work on our commercial engagements which range from infrastructure and application testing (web and mobile) to social engineering and Red Team engagements. There are opportunities to develop future complementary testing services around different industries and technology areas, and help to grow the team, business unit and service offerings where necessary. Key Responsibilities Include: Being the Lead Penetration Tester on a wide portfolio of penetration testing engagements including complex CHECK engagements and ITHCs as well as and large projects for our key clients. Working with senior management to maintain CHECK Green Status. Creating high quality reports, ensuring complex technical data is conveyed in a way that is meaningful for customers. Mentor and coach more junior members of the team to help them to grow and develop their career. Build meaningful relationships with customers, ensuring they are kept up to date on the progress of the engagement and any pertinent findings in a timely manner. Acting as a subject matter expert, supporting customers to better understand their situation and the value that 3B Data Security can bring to their organisation. Provide technical presales support where necessary, to assist in the scoping of new engagements. Identify business development opportunities, assisting in the development and implementation of such opportunities. Requirements A CTL qualification in Infrastructure is essential and a required prerequisite. A second CTL qualification in applications would be bonus. Chartered or Principal CSP. A solid background in penetration testing with demonstrable experience of working at a senior level. An ability to achieve and hold UK security clearance is essential. Demonstrable experience of leading a team to achieve high quality outcomes. You must be passionate and enthusiastic for penetration testing and be proactive to increase your knowledge and skills in this area. You must have excellent communication skills and be customer focused. You will be self-motivated and be able to work autonomously. Due to the nature of the role, ideally you would have your own transport and be able to react at short notice when needed. Benefits 3B Data Security is a leading cyber security specialist, we are passionate about assisting our clients to strengthen their systems against ongoing threats in an ever changing, fast paced world. We have assembled a team of professionals with a significant wealth of technical expertise, delivering services based on a wide range of technical cyber security disciplines. We can offer: · A competitive salary. · 25 days holiday plus 8 bank holidays a year. · Medicash Health Plan. · A company pension scheme. · Cycle to work and Tech Scheme. · A commitment to the continued development of all staff and training where you can work towards industry recognised certifications or appropriate goals. · Flexible working opportunities. · 3B Data Security has a technical leadership team dedicated to supporting and developing our staff and business. We are looking for a professional, enthusiastic, self-starter who will rise to the challenge, if you are this person and wish to apply for this exciting opportunity, please send your CV and a covering letter. This role is a remote role, however you will be expected travel to clients sites across the UK and internationally where required. You will also be required to attend the company’s offices on occasion. No Agencies Please – Any unsolicited CVs received will be taken as gratis. www.3BDataSecurity.com

Cambridge, UK

Negotiable Salary

Workable

SOC Analyst

Job Title: SOC Analyst Location: Reading, United Kingdom (Hybrid- 1-2 days/week) Job Type: Contract Inside IR35 Client: Wipro Job Overview: As an OT Senior Cyber Security Analyst, you will be responsible for maintaining SecOps (Security Operations) solutions, controls and processes across the organisation. You will be mentoring and assisting with leading the SOC team to ensure appropriate prioritisation and remediation of OT alerts and incidents. This role requires a deep understanding of SecOps concepts, technologies and best practices across IT and OT environments, as well as the ability to collaborate effectively with cross-functional teams. The ideal candidate will possess strong communication and incident management skills and will be committed to ensuring the highest level of security, compliance, and user experience. Responsibilities: Investigate security alerts from our SIEM tool and 3rd party MSSPs, and to provide appropriate incident response actions. Liaise with technology and business stakeholders in relation to cyber security issues/incidents providing clear descriptions and actions. Support the Cyber Security Operations Lead for security and privacy incidents, triaging events and performing root cause analysis to understand how incidents arise. Acting as the key contact and escalation point for the SOC and Thames Water Digital teams. Supporting out-of-hours incident investigations via an On-Call rota, covering 24*7*365 alongside our 3rd party MSSP. Monitor, analyse and optimise SecOps tool performance (e.g. SIEM, PAM), identify potential issues, and recommend and implement proactive solutions. Develop and maintain SecOps documentation, policies, and procedures. Collaborate with stakeholders to understand business requirements and implementing security controls that are proportionate to the risk. Maintain cyber security solutions with existing systems, applications, and infrastructure. Evaluate and recommend technologies, tools, and vendors to meet business needs. Perform proactive threat hunting for new and emerging cyber threats. Specialist in Operational Technology systems, defining monitoring alerts and ensuring the operation of effective security controls. Collect data that drives cyber security compliance metric dashboards. Support compliance with relevant industry standards, regulations, and best practices, such as GDPR, NIS and ISO 27001. Stay current on industry trends, emerging technologies, and best practices to continuously improve security operations. This job involves: Key Responsibilities Expectations Contextualize OT specific threats Responsible for understanding the Operational Technology estate, specific OT threats and controls and mitigations that are in place. To be able to use tools such as Claroty to understand network traffic and OT hardware limitations to avoid downtime due to active scans. Understand OT specific architecture frameworks Reduce risks with overlaying context Build direct relationships with Operations of the essential service alongside the OT team to understand and articulate operational risk and cyber risk. Maintain Security Operations Responsible for maintaining our security operations processes, including supporting an effective continuous improvement process surrounding the services provided. Familiarity desired with Microsoft security operations tools (e.g. Sentinel), and extensive knowledge of other security tools such as SOAR, EDR / XDR and IDAM. Reductions over time in repetitive tickets/alerts demonstrating successful tuning of security tooling and processes. Reduction over time in average time it takes to investigate and resolve security incidents demonstrating an increasing efficiency in SecOps processes. Operational metrics evidencing the effectiveness of security controls. Proactive Risk Remediation Follow a risk-based approach to continually identify, analyse and evaluate the effectiveness of security controls and relate them to appropriate (and proportionate) security controls. Responsible for helping the business to deliver new security controls and for performing proactive activities (e.g. threat hunting) to continuously evaluate and uncover vulnerabilities throughout the technology stack. Act as an ambassador within the Cyber Security team for the application of a risk-based approach and continuous risk reduction. Collate the data supporting dashboards with robust SecOps metrics that evidence the tangible reduction in risk and technical debt. 4 Incident Readiness & Response The Security Operations team holds primary responsibility for cyber security incident triage, management, and response. A consistent and reliable level of service is provided around both preparing the business for a significant cyber security incident (e.g. ransomware attack) and actual responses to live incidents. Responses to incidents are run in a structured, measured and auditable manner with continuous improvement integrated into incident management processes to ensure processes are always adapting to the changing threat landscape. Reduction over time in business impacts experienced as a result of cyber security incidents. Time between incident identification and remediation/closure reduces over time. The business is periodically educated on incident management procedures and readiness activities. All staff are aware of what constitutes a cyber security incident and how it should be reported. 5Continuous Improvement Demonstrate an ability to improve processes over time whether that be increases in efficiency or using automation. The more efficient SecOps processes are the shorter response time to incidents will be and the more time will be available to proactive security activities such as threat hunting. Gradual improvement over time of operational efficiencies as reporting in metrics/KPIs/dashboards. Demonstrable use of automation to eliminate manual processes. The qualifications, experience, technical skills, competencies, and values required are: Strong analytical and problem-solving abilities Some hands-on exposure to cyber security concepts and principles Experience in working with third party delivery partners and MSSPs Decision making and judgement Ability to innovate technical solutions Excellent planning and organising capabilities Essential Experience Minimum of 3 years of experience working with technical Cyber Security controls, preferably in an enterprise environment Minimum of 3 years of experience in control systems of essential service (ICS, SCADA, CNI) Exposure to working in or with a security operations centre (SOC) Triaging problems or issues in a structured and disciplined manner Experience in remediating cyber risks in ever-changing digital environments Essential Technical Skills & Qualifications Ability to explain complex IT / Security problems in a simple manner to non-technical audiences Strong understanding of OT infrastructure, networking, and end-user computing. Experience writing Kusto Query Language (KQL) for creating and tuning SIEM queries and alerts. Proficient in configuration and troubleshooting of multi-factor authentication (MFA), Privileged Access Management (PAM) and Security Information & Event Management (SIEM) systems, in particular Microsoft Sentinel. Desirable Experience Familiarity with managing network security capabilities such as NAC (Network Access Control), Firewalls, Proxies/VPN, IDS/IPS, etc. Leading and mentoring a team to deliver operational excellence. Desirable Technical Skills & Qualifications Degree in Cyber Security, Computer Science, Information Technology, Engineering, or related field. Microsoft SecOps specific certification(s) e.g. Microsoft Security Operations Analyst (SC-200, AZ-900) Any generic cyber security industry certification(s) such as CCSP, OT-specific certification(s) e.g. Claroty Cybersecurity Analyst

Reading, UK

Negotiable Salary

SC Cleared Application Engineer with IT Security63500068475905123

Workable

SC Cleared Application Engineer with IT Security

Job description We are seeking an experienced Application Engineer with a background in IT security system engineering, particularly within the utilities industry. The ideal candidate will have a strong foundation in system interoperability, video surveillance systems (VSS), access control, networking, and Windows Server OS infrastructure. The Application Engineer will play a key role in supporting the strategy and direction of our Corporate Security business unit, focusing on enhancing security measures and optimizing operational efficiency. Key Responsibilities: 1. System Integration and Management: Collaborate with cross-functional teams to ensure seamless interoperability of security systems across the energy sector infrastructure. - Oversee the implementation of Windows Active Directory and single sign-on solutions for enhanced authentication and authorization. - Lead internal projects related to system upgrades, asset refresh initiatives, and the rollout of access control systems. - Coordinate the commissioning of new sites into the security system, ensuring minimal disruption to operations. - Implement automation processes using PowerShell and SQL scripting to improve operational efficiency and reduce OPEX. 2. Technical Skills Proficiency in Programming Languages and Tools One of the most crucial skills that an application architect must possess is programming proficiency. The architect should have hands-on experience in multiple programming languages such as Java, Python, C#, Ruby, and others. Knowledge of tools is a must to ensure the necessary toolset is developed and fit for purpose. Knowledge of System Architectures and Design Patterns The architect must possess knowledge of system architectures such as microservices, service-oriented architecture, etc. They must also have expertise on software desig. This knowledge is vital for ensuring that applications are designed and developed according to the industry best practices. Familiarity with Security Application Providers An application architect should have experience with security service providers such as Gallagher, Axis and video surveillance management applications. Knowledge of system architecture, data storage, and data processing is essential to developing scalable and responsive applications. - Evaluate security, CCTV, and access control products to assess their functionality and suitability for integration within the energy sector infrastructure. 4. Quality Assurance and Compliance: - Implement rigorous quality assurance processes to validate the functionality, performance, and usability of security systems. - Ensure compliance with industry standards and regulations, including ISO 27001, by implementing appropriate security measures and controls. - Communicate effectively with stakeholders from various departments, including IT, security, and business units, to gather requirements and address concerns. - Act as a subject matter expert and provide high-level support to internal teams and external clients on complex security solutions. - Certified Information Systems Security Professional (CISSP) certification. - CompTIA Security+ certification. - Strong knowledge of Windows Server 2016, networking fundamentals, and ITIL best practices. Experience with Gallagher Access Control systems and other security technologies. - Excellent problem-solving skills and attention to detail. - Strong communication and interpersonal skills, with the ability to interact with stakeholders at all levels.

Warwick, UK

Negotiable Salary

Workable

Security Architect

Security Architect Permanent role Job Location : London ( Hybrid) Languages: Python, Bash Tech Stack: NIST, Cyber Essentials, ISO27001, SOC 2, Azure Sentinel, IAM, SOAR, SIEM Security Standards: NIST, Cyber Essentials Plus, NCSC Security Guidelines, ISO27001, SOC 2 Cloud Platforms: Microsoft Azure (Security and Architecture frameworks, Well-Architected Framework, Cloud Adoption Framework) Security Areas: IAM, SIEM (Splunk, Azure Sentinel), SOAR, Threat Prevention Tools: Palo Alto Networks, FireEye, Nessus, Azure Key Vault, Terraform, Ansible Must Have : 5+ years in security architecture, Azure (Well- Architected Framework), Identity G Access Management (IAM), SIEM (Splunk, Azure Sentinel) Nice to have : Ansible, Terraform, TOGAF, Palo Alto Networks, FireEye, Nessus, data privacy regulations (GDPR, HIPAA) Requirements Tech Stack: NIST, Cyber Essentials, ISO27001, SOC 2, Azure Sentinel, IAM, SOAR, SIEM Security Standards: NIST, Cyber Essentials Plus, NCSC Security Guidelines, ISO27001, SOC 2 Cloud Platforms: Microsoft Azure (Security and Architecture frameworks, Well-Architected Framework, Cloud Adoption Framework)

London, UK

Negotiable Salary

Security Consultant - DLM/DLP Specialist (Microsoft 365 & Purview)63500064686081125

Workable

Security Consultant - DLM/DLP Specialist (Microsoft 365 & Purview)

Job Description: We are seeking a skilled Security Consultant specializing in **Data Loss Prevention (DLP)** and **Data Lifecycle Management (DLM)** within **Microsoft 365** and **Microsoft Purview** environments. This role will be instrumental in designing, implementing, and optimizing data protection policies and controls to safeguard sensitive information and ensure compliance across our digital landscape. Key Responsibilities: - Develop and implement DLP and DLM strategies for Microsoft 365 and Microsoft Purview, including data classification, retention, and risk mitigation policies. - Conduct comprehensive assessments of current data security controls, identifying gaps and recommending enhancements. - Collaborate with internal teams to customize DLP rules, data sensitivity labels, and access policies aligned with regulatory requirements. - Provide technical guidance and training on M365 DLP and DLM best practices for secure data handling and lifecycle management. - Monitor, analyze, and respond to security incidents, working to continuously improve data protection mechanisms. Qualifications: - Proven experience with **Microsoft 365 DLP** and **Microsoft Purview** configuration and management. - Strong understanding of **data security standards** and **compliance frameworks** (e.g., GDPR, HIPAA). - Expertise in implementing and managing DLM policies and data retention schedules. - Excellent problem-solving and communication skills with the ability to work collaboratively.

Warwick, UK

Negotiable Salary

Access Management Engineers-IAM63393295379073126

Workable

Access Management Engineers-IAM

Job Title: Access Management Engineers Location: Coventry/Birmingham, UK (Hybrid) Duration: 6-month contract under Inside IR35 Working Mode: Hybrid (3 days onsite a week) Job description: Key Responsibilities: • Lead the design, build, and validation of refreshed mission-critical Active Directory infrastructure, including an upgrade to the latest functional levels. This will involve patching and securing Windows Server 2022 Core OS, ensuring compatibility with modern systems and security standards. • Manage and support Entra ID pilot initiatives in a development environment, including AWS Workspaces and Win11 devices. Ensure smooth configuration and integration of AD/Entra products within this environment. • Act as a trusted advisor on the design and implementation of IAM solutions, providing in-depth expertise on how core desktop, infrastructure, cloud, and network landscapes integrate with IAM processes and workflows. • Develop and drive the IAM roadmap, ensuring a balance between functional requirements, cost, service quality, and system management. • Collaborate closely with cross-functional teams (security, cloud, network, infrastructure, etc.) to deliver seamless IAM solutions across all environments, ensuring consistent application of best practices for identity governance, authentication, and access management. • Lead IAM-related infrastructure projects, from planning and design to execution and post-implementation support, with a focus on scalability, security, and compliance. • Provide expertise in Active Directory and related technologies, guiding the technical team on complex challenges and identifying solutions to optimize access management workflows. • Review and refine IAM policies and processes to ensure compliance with security standards, regulatory requirements, and organizational needs. • Continuously monitor and enhance IAM solutions, proactively identifying opportunities for improvement or optimization within the environment. • Troubleshoot and resolve IAM-related incidents and issues, providing timely and effective support to internal teams Required Skills and Experience: • Strong experience in Active Directory design, implementation, and management, with a deep understanding of AD functional levels, replication, and security best practices. • Proven expertise in Windows Server 2022 Core OS, including patch management and hardening. • Solid knowledge and hands-on experience with Entra ID (Azure AD) and cloud-based identity management solutions (AWS, Azure). • Experience working with modern desktop environments (e.g., Windows ) and enterprise IT infrastructure, including cloud platforms like AWS. • Proficiency in configuring, troubleshooting, and integrating IAM solutions across hybrid cloud environments. • Demonstrated ability to lead technical projects, collaborating with multiple teams to deliver IAM solutions on time and within scope. • Strong understanding of IAM principles, including authentication, authorization, role-based access control (RBAC), and identity governance. • Experience in system security, risk management, and compliance frameworks (e.g., GDPR, NIST, ISO 27001). • Excellent problem-solving skills and the ability to manage complex technical issues under pressure. • Strong communication skills, with the ability to explain complex IAM concepts to both technical and non-technical stakeholders.

Coventry, UK

Negotiable Salary

Workable

Qualys Engineer

Job title : Qualys Engineer Job Type : Contract role 6+ Months - Inside Ir35 Job Location: London, UK( Hybrid-2/3 days in a week) Client: Mphasis Job description Implemented and managed Qualys deployments across diverse enviroments (on-premise,cloud,hybrid). Proficiency in writing Qualys queries and filters to target specific assets and vulnerbilities. Performing regular vulnerability scans and assessments using Qualys, identifying high-priority vulnerabilities. Worked extensively on collaborating with IT teams to prioritize and remediate vulnerbilities discovered through scans. Worked on escalating critical issues. Utilizing Qualys to monitor for emerging threats and potential security incidents. Worked closely with other team members to identify and mitigating critical issues using Qualys before they exploited. Consulted with departments and customers to discuss project development and proposals. Developing Custom Qualys policies and dashboard to streamline security operations.

London, UK

Negotiable Salary

Access Management Technical Specialist-IAM63393291888387128

Workable

Access Management Technical Specialist-IAM

Job Title: Access Management Technical Specialist Location: Coventry/Birmingham, UK (Hybrid) Contract role under Inside IR35 Working Mode: Hybrid (3 days onsite/week Job description: Key Responsibilities: • IAM Strategy & Roadmap: o Develop, implement, and maintain a comprehensive IAM strategy and roadmap, with a focus on Microsoft technologies (Active Directory, Entra, Azure, Microsoft Defender, MS Office 365 applications). o Ensure that the IAM strategy aligns with broader organizational goals, IT architecture, and security requirements. o Collaborate with key stakeholders to prioritize IAM initiatives and ensure they are aligned with business needs and security standards. • Microsoft Technologies: o Lead the administration, configuration, and optimization of Active Directory (AD), Entra, Azure, and Microsoft Defender to ensure secure and efficient identity and access management across the enterprise. o Oversee the integration of Microsoft 365 applications, managing enterprise licensing and ensuring proper access control and policy enforcement. o Manage shared data solutions (NetApps & DFS) in relation to IAM practices, ensuring seamless access management and data security. o Implement and maintain certificate management processes to ensure secure identity verification across Microsoft-based systems. • HR Provisioning & Integration: o Manage the integration of HR provisioning workflows from SAP SuccessFactors to Active Directory (AD), ensuring smooth user provisioning, deprovisioning, and role-based access control (RBAC). o Collaborate with HR, IT, and security teams to ensure IAM processes align with organizational HR policies and business requirements. o Oversee the maintenance of AD, ensuring user accounts, roles, and permissions are accurate and compliant with HR data from SAP SuccessFactors. • System Build & Maintenance: o Lead the design, build, and ongoing maintenance of IAM systems and infrastructure that integrate Microsoft technologies, ensuring they meet security, scalability, and performance objectives. o Regularly monitor IAM systems for security vulnerabilities, performance issues, and compliance with policies and industry standards. o Implement IAM automation processes to streamline user access provisioning and management across Microsoft environments. • Security & Compliance: o Ensure that IAM solutions are secure and compliant with relevant regulations, including data protection laws (e.g., GDPR), industry best practices, and internal security policies. o Collaborate with security teams to integrate IAM solutions with existing security frameworks (e.g., Microsoft Defender, Azure Security Center) to proactively identify and mitigate potential threats. o Conduct regular audits and assessments to ensure the integrity and compliance of IAM systems. • Collaboration & Stakeholder Engagement: o Work closely with cross-functional teams (HR, IT, security, legal, etc.) to ensure that IAM solutions are effectively implemented and meet organizational needs. o Provide guidance and technical support to teams during the implementation and ongoing maintenance of IAM systems. o Serve as a subject matter expert in IAM technologies, offering strategic recommendations to leadership on IAM best practices and technology advancements. Required Skills and Experience: • Extensive experience in Identity and Access Management (IAM) within Microsoft ecosystems, with hands-on expertise in Active Directory (AD), Entra, Azure, Microsoft Defender, and MS Office 365. • Experience in enterprise licensing management for Microsoft 365 applications and managing shared data (NetApps & DFS) in an IAM context. • Solid understanding of certificate management processes for identity verification and secure communication. • In-depth knowledge of HR provisioning and user lifecycle management, with experience integrating SAP SuccessFactors with Active Directory (AD). • Strong understanding of security principles, including role-based access control (RBAC), multi-factor authentication (MFA), and least privilege access policies. • Familiarity with industry regulations and standards, including GDPR, ISO 27001, NIST, and others. • Proven ability to design, build, and maintain scalable IAM solutions that align with business needs and security requirements. • Strong problem-solving skills and the ability to troubleshoot complex IAM-related issues across diverse platforms. • Excellent communication skills with the ability to engage with both technical and non-technical stakeholders

Birmingham, UK

Negotiable Salary

Workable

Lead Security Engineer

At Fuse, we're building a fully integrated energy company, from developing solar, wind, and hydrogen to power trading & distributed energy installations. We sell directly to energy consumers, cutting out the middleman to reduce costs and pass on savings to customers. But we’re not stopping there. We’re also building the Energy Network: a decentralised network of smart devices where users get rewarded in Energy Dollars for electrifying their homes, shifting usage to off-peak hours, and helping balance the grid. The energy network helps the grid achieve energy stability, a crucial requirement for growth of AI data centers and energy intensive industries. We are looking for a seasoned and proactive Lead Security Engineer to help lead our security strategy. This role is crucial to protecting our core infrastructure, applications, and sensitive data as we continue to scale. The ideal candidate brings deep security expertise and thrives in fast-paced, product-focused environments. You will play a critical role in shaping secure architecture, implementing scalable protection mechanisms, and driving a security-first culture across the company. Key Responsibilities Security Architecture & Design Design and implement secure infrastructure across cloud, web, and distributed application environments. Provide architectural guidance for cryptographic key management, signing workflows, and secure APIs. Evaluate and enhance security of components related to digital asset management, identity systems, or transaction flows. Risk Management & Threat Modelling Conduct comprehensive threat modelling and risk assessments, especially around distributed or high-value transaction systems. Define controls for securing sensitive operations such as wallet integrations, off-chain/on-chain data flows, and internal tooling. Develop and manage internal threat intelligence processes to proactively identify and mitigate emerging risks. Security Operations & Incident Response Lead response to advanced threats and incidents, including analysis, containment, and remediation. Build and optimise detection mechanisms and playbooks for novel attack vectors, including abuse prevention and fraud detection. Governance, Compliance & Best Practices Help define internal standards for security development practices, secrets management, and infrastructure hardening. Maintain compliance with relevant frameworks (e.g., SOC 2, ISO 27001, GDPR), and support any industry-specific due diligence. Cross-Functional Collaboration Partner with engineering, product, and infrastructure teams to embed security best practices into all stages of development. Provide guidance on secure system design, especially in areas involving sensitive financial, identity, or cryptographic components. Requirements Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field. Proven experience as a Security Engineer or in a similar role. Strong understanding of security protocols, cryptography, authentication, and authorisation. Familiarity with securing systems that involve digital transactions, cryptographic operations, or high-privilege user actions. Knowledge of operating systems, network protocols, and software development security. Experience with AWS cloud security. Excellent analytical and problem-solving skills. Benefits Competitive salary and a stock options sign-on bonus Biannual bonus scheme Fully expensed tech to match your needs! Paid annual leave Breakfast and dinner for office based employees

London, UK

Negotiable Salary

IT Security Administrator635000606250271210

Workable

IT Security Administrator

PXO creates industry-leading Virtual Production and Visual Effects for premium Film and Episodic content. With over 20 industry awards and nominations, PXO, a Sony Pictures Entertainment company, is a trusted partner for storytellers and showrunners worldwide. PXO has been creating iconic work since 2001, from Martin Scorsese’s Academy Award winning Hugo and HBO’s Emmy winning Game of Thrones, House of the Dragon, through to Amazon’s The Boys, Marvel’s Ant-Man and the Wasp: Quantumania and many more. We're looking for an IT Security Administrator to join our IT team. In this role, you will provide expert guidance on IT security, contribute to the development of policies and procedures, and support the maintenance of enterprise-wide security solutions across multiple global regions. You will also hold responsibility for decision-making within your area of expertise, ensuring clear ownership and accountability. The ideal candidate will have a strong understanding of IT infrastructure and information security in large-scale, fast-paced environments. Responsibilities Information Security & Compliance Lead and coordinate incident response remediation activities across Office tenant and related infrastructure. Oversee the application security request review process, including white paper evaluations and coordination with InfoSec teams. Conduct Infosec Criticality Assessments (ICAs) and participate in DAART and IR meetings. Represent PXO in Sony CISO meetings and ensure alignment with broader Sony InfoSec policies. Enforce Sony security policies and standards in production environments. Manage and maintain IT Risk Register. Coordinate client security audits and support external certifications (e.g., TPN). Complete and manage client security questionnaires during bidding or audit processes. Conduct internal penetration tests and vulnerability assessments to proactively identify and mitigate security risks. Infrastructure & Systems Security Manage the firewall whitelisting and approval process. Oversee vulnerability and patch management workflows. Maintain sandbox and production environments; support workflow and network hardening (e.g., Microsoft 365, HiBob). Own and manage I/O and data transfer security procedures. Participate in systems design and implementation from a security perspective. Develop user and technical security documentation and training resources. Document and maintain critical security and infrastructure policies, e.g., Incident Response Plan, Business Continuity Plan, Change Management Procedures, and Disaster Recovery Plan. Test and improve Disaster Recovery capabilities and identify process gaps. Physical & On-Set Security Manage and maintain physical security systems including CCTV, alarm, and access control systems in collaboration with vendors. Advise on on-set data handling procedures, ensuring certified media and secure practices are in place. Legal & Regulatory Compliance Act as the liaison between IT/InfoSec and Legal on matters related to GDPR, data retention policies, and compliance. Ensure proper documentation, communication, and enforcement of data protection practices in line with regulatory standards. Requirements Five plus years of hands-on experience in security and/or infrastructure within an enterprise environment. Familiarity with enterprise information security standards such as Cyber Essentials, ISO 27001, 27002, Data Protection Act, and GDPR. Proficiency in Microsoft O365 Security solutions, Networking, Security operations, Vulnerability Management, and Security Auditing. Experience in security testing, vulnerability scanning, and risk management. Ability to create formal documents such as reports or procedures. Detailed knowledge of Microsoft O365 environment, Threat Intelligence analysis, Security Incident Response, and Disaster Recovery principles. Strong interpersonal skills, analytical mindset, and ability to communicate in non-technical language. Good organisational skills and the ability to manage and prioritise workload, along with experience in key security areas such as Zero Trust architecture, secure remote access, and security practices relevant to the digital content/VFX industry (e.g., TPN). Familiarity with SIEM tools, such as Splunk, is also highly desirable. An ITIL certification or similar would be preferred. Benefits Pixomondo is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, national origin, disability, veteran status, age, sexual orientation, gender identity, or other protected characteristics. Benefits may vary by location due to regional regulations and company policies. PXO does not accept resumes from recruiters. Unsolicited resumes are accepted directly from candidates only. PXO will not pay any fees associated with unsolicited resumes.

London, UK

Negotiable Salary

Cloud Security Engineer635000584751371211

Workable

Cloud Security Engineer

Kurt Geiger | About Us We are an inclusive, creative footwear and accessories brand powered by kindness. We want to empower our talent to be confident and true to themselves, the London way. London is our home, our heartbeat, and we draw inspiration from the energy and spirit of the city; its diversity and creativity. For over fifty years our team of in-house shoe and accessory designers have been creating authentic, distinctive designs from our London headquarters. The rainbow is our signature. It represents the good energy and love we have for our community and the many ways we collectively express our individual style. Cloud Security Engineer (InfoSec) We are seeking a Cloud Security Engineer (InfoSec) to join our Technology and Information security team. You’ll play a key role in designing, implementing, and supporting secure infrastructure, cloud services, and applications across the organisation. This position requires strong expertise in AWS, Microsoft cloud services (Intune, Azure, Entra), security auditing, and modern endpoint protection such as CrowdStrike. Responsibilities Monitor and respond to security incidents using EDR/XDR tools such as CrowdStrike, Microsoft Defender, and SIEM platforms. Perform regular audits and security assessments across cloud (AWS, Azure) and SaaS platforms to identify risks and ensure compliance with internal policies and industry standards (ISO 27001, CIS, NIST). Manage and enforce Identity and Access Management (IAM) controls, including conditional access, MFA policies, role-based access control (RBAC), and least-privilege enforcement across Microsoft Entra and AWS IAM. Support incident response processes including investigation, containment, eradication, and recovery of security events. Conduct vulnerability scanning and remediation follow-ups using tools. Develop and maintain security baselines, configuration hardening, and patch compliance reporting across endpoints and cloud systems. Assist in third-party risk assessments and ensure vendors meet security requirements. Participate in change advisory boards (CAB) to review infrastructure and application changes from a security perspective. Support internal and external compliance audits by gathering evidence, ensuring policy alignment, and reporting findings. Collaborate with SOC, DevOps, and IT operations teams to integrate security automation and build secure-by-design practices. Support the IT helpdesk with complex application and system security issues. Patch and secure endpoints (Windows/macOS), and mobile devices via Microsoft Intune, Jamf, or Meraki. Implement and support endpoint and network-level security controls: FortiGate, Cisco Meraki, and Zero Trust Network Access (ZTNA) principles. Provide technical documentation, runbooks, and SOPs for security operations and system configurations. Requirements Skills Required Previous experience in a technical IT security, cloud engineering, or InfoSec-focused role. Proven experience with Microsoft 365 Security, Azure Entra ID, Intune, and AWS IAM/Security Services. Strong background in cloud security (AWS/Azure), including the shared responsibility model. Familiarity with compliance frameworks (ISO 27001, GDPR, SOC 2, NIST). Hands-on experience with EDR tools (CrowdStrike, Defender for Endpoint) and SIEM/SOAR platforms. Basic scripting for automation and reporting using PowerShell or Python. Working knowledge of network security protocols, VPNs, firewalls, and web filtering tools. Understanding of patch management, application control, and vulnerability remediation. Desirable Qualifications Certifications such as CISSP, CISM, Security+, AWS Security Specialty, AZ-500, or MS-500. Experience working in or with a Security Operations Centre (SOC). Familiarity with DevSecOps, infrastructure-as-code, or cloud-native security practices. Benefits Competitive basic salary Pension and life assurance Enviable discounts Gym Discounts Summer Hours - 3pm Friday finish Half Day, Pay Day Friday (once per month) RetailTrust support And so much more! Our Culture We’re an energic fast-paced brand that embraces progress and strives for innovation. Hard work is rewarded with new opportunities at every level and kindness is celebrated in everything we do. Our summer working hours accommodate a healthy work life balance. Wellbeing is important to our working culture, which is why we nurture a friendly environment for talent to thrive in, alongside a vibrant social community. Our Stores The first Kurt Geiger store opened on London Bond street in 1963. Today, our brand has global appeal and is distributed in hundreds of cities around the world. We operate over 70 stand-alone stores nationwide, including our new flagship store on London Oxford street, and in over 400 stores globally. Beyond stand-alone stores and retail pop ups, our retail partners include some of the world’s most famous department stores. We Are One: For Love | For Diversity | For Change | For Equality | For Kindness | For Freedom | For Unity Against Racism INDRETAIL

London, UK

Negotiable Salary

DLP Security Engineer (Proofpoint)635000574167051212

Workable

DLP Security Engineer (Proofpoint)

Job Description We are seeking a highly skilled and motivated Security Engineer with expertise in Proofpoint solutions to join our team. In this role, you will be responsible for ensuring the security, privacy, and integrity of our data across the organization. You will play a critical role in implementing, managing, and optimizing security measures to protect our systems, networks, and data from unauthorized access, cyber threats, and data breaches. The ideal candidate should have a strong background in cybersecurity, particularly in DLP of email security, cloud applications, endpoints and threat prevention with a proven ability to respond to evolving security challenges. An ideal candidate should also understand how to work in a client environment and be able to manage a duality of requests/deliverables. Responsibilities: Proofpoint Management: Configure, deploy, integrate, and manage Proofpoint security solutions, including email security, data loss prevention (DLP), threat protection, and information protection. Monitor and analyse Proofpoint alerts and logs to detect and respond to security incidents and threats. Regularly update and optimise Proofpoint configurations to adapt to evolving threat landscapes and organisational needs. Develop and maintain custom filters and rules within Proofpoint to enhance security measures tailored to organisational needs. Collaborate with vendors and external partners for advanced troubleshooting and feature enhancements related to Proofpoint solutions. Data Security and Privacy: Design and enforce policies and procedures to ensure data security, privacy, and compliance with relevant regulations. Conduct regular risk assessments and vulnerability scans to identify potential security risks and implement mitigation strategies. Collaborate with cross-functional teams to ensure data security requirements are integrated into new projects and existing systems. Lead incident response efforts related to email security breaches, ensuring quick containment and remediation. Ensure compliance with industry standards and regulatory requirements related to data security and cybersecurity. Prepare and deliver reports on security posture, incidents, and trends to management and stakeholders. Assist in internal and external audits by providing documentation and evidence of security controls and processes. Develop and deliver training programs for employees to increase awareness of security practices, especially regarding email security and phishing prevention. Threat Intelligence and Incident Response: Analyse threat intelligence to anticipate and mitigate potential cyber threats targeting the organisation. Participate in or lead incident response activities related to email security breaches or data loss events. Develop playbooks and procedures for responding to incidents involving Proofpoint solutions. Collaboration and Support: Provide guidance and support to other engineers and team members on security best practices and Proofpoint solutions. Collaborate closely with IT teams to ensure seamless integration of security solutions with existing infrastructure and applications. Engage with senior leadership to recommend and implement strategic security initiatives. Document processes, configurations, and changes to ensure knowledge transfer and continuity within the team. Qualifications 5+ years of experience in data security, cybersecurity, or a related field. Hands-on experience with Proofpoint implementations (e.g., Email Protection, Targeted Attack Protection, Information Protection). Proficiency in security technologies, including firewalls, intrusion detection/prevention systems (IDS/IPS), and SIEM. Experience with ProofPoint in a cloud-based environment, specifically Microsoft 365 Excellent problem-solving skills and the ability to work under pressure in a fast-paced environment. Relevant certifications (e.g., CISSP, CISM, CEH, Proofpoint certifications) are highly desirable. Proficiency in scripting or automation (e.g., Python, PowerShell) for security operations is an advantage. Key Competencies Analytical and detail-oriented approach to problem-solving. Strong communication skills, with the ability to explain complex security concepts to non-technical stakeholders. Ability to work independently and as part of a team. High ethical standards and a commitment to protecting sensitive information. Proactive mindset with a continuous learning attitude towards emerging security threats and technologies. Ability to add value to wider projects where Proofpoint may provide or have some crossover. These enhancements aim to provide a more comprehensive overview of the role, emphasizing the importance of deployment, integration, proactive threat management, incident response, and collaboration with other teams.

Warwick, UK

Negotiable Salary

Embedded Corporate Regional Security Manager UK/EU- Speculative Applications635000547493131213

Workable

Embedded Corporate Regional Security Manager UK/EU- Speculative Applications

Provide relevant business first, risk proportionate, pragmatic security advice and support for all client sites and personnel within area of operations aligned to the global Corporate Security Operations & Resilience strategy Provide leadership, advice and support to Security function across geographic area of responsibility ensuring capabilities and competencies are developed development to meet business needs and act as a force multiplier for the Corporate Security Operations & Resilience strategy. Support the client's product security and cross functional anti-counterfeiting programmes across geographic area of responsibility. Support programmes that secure the client’s end-to-end supply chain. Support the Crisis Management and Business Continuity programmes throughout the region. Oversee the security at client Headquarters in London and secondary executive premises. Oversee the security of board and executive-sponsored events in the UK and the wider Region. Deliver the Region’s Security Awareness and Education initiatives (to include: operational, security risk management, resilience and brand protection) Effective security incident management, investigations and advice to personnel at all levels. Undertake Site Security Assurance audits and manage the Global Security Services contract within area of responsibility, ensuring the highest levels of delivery and performance management. Advise on development and strategy for site technical security projects including security technology, equipment requirements and simplification processes. Develop & deliver strategic security awareness briefings for management teams and employees including other security education material as appropriate. Establish and maintain liaison with international and national intelligence and law enforcement agencies within area of responsibility to support the global Corporate Security Operations and Resilience response activities within geographic area of responsibility to limit disruption to business operations, including a 24/7 Corporate Security response service within area of responsibility as necessary. Identify threats to the BUs, assess risk and provide proportionate advice to effectively treat the risks. Requirements This role must have a strong understanding of Corporate Security procedures, risk management methodologies, investigation, incident management, crisis & continuity management, operational security threat management, business/security intelligence and security tech. Excellent written and oral communication skills and presentation skills are required to support all levels of client leadership with reliable and meaningful information to enable fact-based business decisions Strong leadership experience as well as extensive project management experience. The individual must be able to work on matrix teams to identify and address a variety of challenges with global security threat and risk management. Regional experience of the UK/EU is desired. Benefits As this is a speculative application, benefits are not disclosed here.

London, UK

Negotiable Salary