Find your next tech and IT Job or contract Endpoint detection and response (EDR)

Job Title: Lead Threat Detection Analyst - Operational Technology (OT) Location: Preston. We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Salary: Circa £59,000 depending on experience What you'll be doing: Delivery of core triage function as part of protective monitoring services across a range of networks/services focusing on Operational Technology (OT) Overseeing and contributing to the analysis and escalation of security threats and incidents identified on OT systems Coordinate with Cyber Operations teams to respond to identified security threats and mitigate prior to impact Lead the development of people, process and technology improvements to aid the service development Provide subject matter advice on security analysis and development of detection content Deputise for the Threat Detection Manager when required Analyses requirements and advises on scope and options for continual operational improvement Your skills and experiences: Essential: Experience of working within Security Operations or equivalent roles Experience with Operational Technology environments Demonstrable leadership in Operational Management Experience in the application of relevant industry standard frameworks (MITRE ATT&CK/D3FEND/ENGAGE etc.) in an operational environment A good level of knowledge and proficiency in the use of SIEM platforms, tools and analytical techniques Innovative approach to analysing and solving problems Desirable: Industry recognised qualification (OSDA, GIAC etc.) or equivalent proven industry experience Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive. The Cyber Operations team: Cyber Operations is responsible for protecting BAE Systems from Cyber Attack by various threat actors. Not only do we protect BAE Systems and its employees, indirectly we protect those who protect us - who serve in our military and rely on the products and services we create. Across Threat Intelligence, Detection, Incident Response and now Active Defence we work to evolve cyber operations as a world class capability. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks. Closing Date: 26th August 2025 We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible. #LI-SH1 #LI-Hybrid

IT Infrastructure Operations and Security Lead This role requires excellent management of a small team in IT along with managing stakeholders and vendors. You must be hands-on technically in IT Infrastructure. The IT Operational Platform and Security Lead is responsible for overseeing the organization's IT operations, ensuring the stability, continuity, security, and efficiency of its technology platforms within a global commercial insurance environment. While Microsoft technologies (Microsoft 365, Azure, Exchange Online) form a core part of the infrastructure, the role also encompasses broader enterprise IT systems, multi layered networking, security, data management, and third-party platforms that support global business operations and the associated applications estate. Security, Compliance & Risk Management • Define and enforce cloud security policies, identity management, and access controls to protect systems, networks, and data. • Oversee the adoption of zero-trust security principles to enhance protection across cloud platforms. • Manage identity and access management (IAM) in a cloud-first environment, including Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM). • Lead threat monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. • Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). • Conduct regular security risk assessments, penetration tests, and vulnerability management across cloud services. • Oversee endpoint security, cloud network and API security for robust protection across all assets • Define, manage and maintain accurate DR and BCP plans for the infrastructure area with biannual tests. Technical Experience • Microsoft Azure Infrastructure design and administration, including topology, Azure networking, services, and component knowledge, • Microsoft AD (Entra), Server and SQL experience, • O365 administration and design • Global Software Patching and estate management via Intune • Firewall (Azure, CheckPoint and Cloudflare), DNS, VPN, WIFI and Local Area Network design & administration experience • Software Defined Networking (Cisco, Meraki, Versa) Key Skills • Microsoft 365 & Azure: Strong experience managing Microsoft 365 (Exchange, SharePoint, Teams), Azure cloud infrastructure, and security tools such as Microsoft Defender and Sentinel. • Security & Compliance: Deep knowledge of security frameworks (ISO 27001, NIST, CIS), compliance requirements (GDPR, SOC2), and risk management best practices. • Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign-On (SSO), and Privileged Access Management (PAM). • Threat Management & Incident Response: Ability to detect, respond to, and mitigate cyber threats using SIEM, endpoint security, and vulnerability management tools. • Networking & Infrastructure Security: Understanding of firewalls, VPNs, SD-WAN, DNS security, endpoint protection, and cloud security controls. • IT Service Management & Automation: Experience implementing ITIL-based service management, automating operational tasks, and optimizing service delivery. Operational & Leadership Skills: • IT Operations & Service Continuity: Ability to ensure IT systems are highly available, resilient, and fit for purpose, with a strong focus on business continuity and disaster recovery. • Supplier & Vendor Management: Experience managing third-party IT vendors, MSPs, and SaaS providers, ensuring service levels, performance, and cost-effectiveness. • Project Leadership & Change Management: Ability to lead technology projects, system upgrades, and platform migrations, ensuring smooth execution and minimal business disruption. • Process Improvement & Automation: Strong analytical mindset to identify inefficiencies, automate workflows, and enhance security controls. Soft Skills & Mindset: • Problem-Solving & Decision-Making: Capable of making informed decisions and resolving complex IT issues in a fast-paced environment. • Stakeholder Engagement: Ability to communicate effectively with technical and non-technical stakeholders, including senior leadership and business users. • Resilience & Adaptability: Comfortable working in an evolving technology landscape, with a proactive and security-first approach. Summary of Skills Required: The following is a summary of the key skills that the Client would like you to bring to the company. Global Enterprise level Infrastructure Management position for the last 5 years, Buy before Build mentality and demonstrable migration of Legacy VM based estates to SaaS and Azure Cloud services platforms, Global Operational team management experience (human resources, strategic delivery, operational service, audit lead for Infra, budget, etc.) Key 3rd party operational infrastructure vendor management - ie management of managed service partners as a team extension globally, as well as service/solution delivery partners, Migration of Legacy VM based estates to SaaS and Cloud services platforms, Legacy Infra tech to Azure knowledge/experience, Prior to the last 5 years in Enterprise Management of a global estate/user-base, a demonstrable technical infrastructure engineering level background, working on Windows Server, AD, SQL environments, Firewalls/SDWAN, and Networks (WAN &/or LAN). The Client is based in the City of London. This is a hybrid position with 3 days in the office. The salary for this role will be in the range £85K - £95K plus Benefits. Do send your CV to us in Word format along with your salary and notice period.

IT Infrastructure Operation s and Security Lead This role requires excellent management of a small team in IT along with managing stakeholders and vendors. You must be hands-on technically in IT Infrastructure. The IT Operational Platform and Security Lead is responsible for overseeing the organisation’s IT operations, ensuring the stability, continuity, security, and efficiency of its technology platforms within a global commercial insurance environment. While Microsoft technologies (Microsoft 365, Azure, Exchange Online) form a core part of the infrastructure, the role also encompasses broader enterprise IT systems, multi layered networking, security, data management, and third-party platforms that support global business operations and the associated applications estate. Security, Compliance & Risk Management Define and enforce cloud security policies, identity management, and access controls to protect systems, networks, and data. Oversee the adoption of zero-trust security principles to enhance protection across cloud platforms. Manage identity and access management (IAM) in a cloud-first environment, including Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM). Lead threat monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). Conduct regular security risk assessments, penetration tests, and vulnerability management across cloud services. Oversee endpoint security, cloud network and API security for robust protection across all assets Define, manage and maintain accurate DR and BCP plans for the infrastructure area with biannual tests. Technical Experience Microsoft Azure Infrastructure design and administration, including topology, Azure networking, services, and component knowledge, Microsoft AD (Entra), Server and SQL experience, O365 administration and design Global Software Patching and estate management via Intune Firewall (Azure, CheckPoint and Cloudflare), DNS, VPN, WIFI and Local Area Network design & administration experience Software Defined Networking (Cisco, Meraki, Versa) Key Skills Microsoft 365 & Azure: Strong experience managing Microsoft 365 (Exchange, SharePoint, Teams), Azure cloud infrastructure, and security tools such as Microsoft Defender and Sentinel. Security & Compliance: Deep knowledge of security frameworks (ISO 27001, NIST, CIS), compliance requirements (GDPR, SOC2), and risk management best practices. Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign-On (SSO), and Privileged Access Management (PAM). Threat Management & Incident Response: Ability to detect, respond to, and mitigate cyber threats using SIEM, endpoint security, and vulnerability management tools. Networking & Infrastructure Security: Understanding of firewalls, VPNs, SD-WAN, DNS security, endpoint protection, and cloud security controls. IT Service Management & Automation: Experience implementing ITIL-based service management, automating operational tasks, and optimising service delivery. Operational & Leadership Skills: IT Operations & Service Continuity: Ability to ensure IT systems are highly available, resilient, and fit for purpose, with a strong focus on business continuity and disaster recovery. Supplier & Vendor Management: Experience managing third-party IT vendors, MSPs, and SaaS providers, ensuring service levels, performance, and cost-effectiveness. Project Leadership & Change Management: Ability to lead technology projects, system upgrades, and platform migrations, ensuring smooth execution and minimal business disruption. Process Improvement & Automation: Strong analytical mindset to identify inefficiencies, automate workflows, and enhance security controls. Soft Skills & Mindset: Problem-Solving & Decision-Making: Capable of making informed decisions and resolving complex IT issues in a fast-paced environment. Stakeholder Engagement: Ability to communicate effectively with technical and non-technical stakeholders, including senior leadership and business users. Resilience & Adaptability: Comfortable working in an evolving technology landscape, with a proactive and security-first approach. Summary of Skills Required: The following is a summary of the key skills that the Client would like you to bring to the company. Global Enterprise level Infrastructure Management position for the last 5 years, Buy before Build mentality and demonstrable migration of Legacy VM based estates to SaaS and Azure Cloud services platforms, Global Operational team management experience (human resources, strategic delivery, operational service, audit lead for Infra, budget..) Key 3 party operational infrastructure vendor management - i.e. management of managed service partners as a team extension globally, as well as service/solution delivery partners, Migration of Legacy VM based estates to SaaS and Cloud services platforms, Legacy Infra tech to Azure knowledge/experience, Prior to the last 5 years in Enterprise Management of a global estate/user-base, a demonstrable technical infrastructure engineering level background, working on Windows Server, AD , SQL environments, Firewalls/SDWAN, and Networks (WAN &/or LAN). The Client is based in the City of London. This is a hybrid position with 3 days in the office. The salary for this role will be in the range £85K - £95K plus Benefits. Do send your CV to us in Word format along with your salary and notice period.

Job title: External Attack Surface Management Analyst Location: Preston or Frimley. We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Salary: Circa 45k dependant on skills and experience What you'll be doing: Supporting the Senior Attack Surface Management Analyst in maintaining the Global Attack Surface Management service to ensure BAE Systems perimeter assets are known and tested, and Shadow-IT assets are discovered and brought into governance Identifying and prioritising vulnerabilities across BAE Systems managed external assets as part of ongoing external attack surface management, coordinating remediation with resolver teams Reviewing and validating vulnerabilities detected by SaaS-based scanning tools, confirming exploitability and severity to inform accurate remediation Supporting vulnerability management across cloud and SaaS environments, identifying risks and coordinating remediation to safeguard externally hosted services Proactively detects external-facing security gaps and misconfigurations, ensuring timely escalation to relevant resolver teams for remediation Your skills and experiences: Essential A extensive technical background with a detailed knowledge of cyber security, computer networks and operating systems Broad and detailed experience of technologies including but not limited to DNS, Certificate Transparency, firewalls, IDS/IPS, Active Directory, endpoint protection, Windows Server, Linux, TCP/IP, Networks, Cloud, CDN's and Vulnerability Management Good knowledge of technologies contributing to external risk, including publicly accessible services, user interfaces, and legacy systems Analytical background and is comfortable analysing and interpreting large and complex data sets and articulating the story behind any observations along with providing conclusions and recommendations Desirable Good knowledge of technologies contributing to external risk, including publicly accessible services, user interfaces, and legacy system Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive. The Cyber Operations team: Cyber Operations is responsible for protecting BAE Systems from Cyber Attack by various threat actors. Not only do we protect BAE Systems and its employees, indirectly we protect those who protect us - who serve in our military and rely on the products and services we create. Across Threat Intelligence, Detection, Incident Response and now Active Defence we work to evolve cyber operations as a world class capability. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks. Closing Date: 5th September 2025 We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible. #LI-NP1 #LI-Hybrid

IT Operations Platforms and Security Lead In summary the Client is looking to recruit an all-round individual with expert knowledge and hands-on experience of IT Infrastructure coupled with Security, Compliance & Risk Management You must have upwards of 10 years hands-on expertise in IT Infrastructure combined with Security and Risk – ideally from within the banking or insurance sector. The IT Operational Platform and Security Lead is responsible for overseeing the organisation’s IT operations, ensuring the stability, continuity, security, and efficiency of its technology platforms within a global commercial insurance environment. While Microsoft technologies (Microsoft 365, Azure, Exchange Online) form a core part of the infrastructure, the role also encompasses broader enterprise IT systems, multi layered networking, security, data management, and third-party platforms that support global business operations and the associated applications estate. The role requires a proactive leader who can drive IT operational excellence, manage security risks, focus on continual service improvement, drive transformational delivery projects, and work effectively with internal stakeholders and third-party vendors to deliver a high-quality Global IT services. Working in line with the Architecture defined IT principle of a "buy before build" environment, the individual will need to ensure that outsourced and cloud-based services are robust, cost-effective, and aligned with business needs and the Strategic IT vision. They will also play a key role in enhancing cybersecurity, protecting data and systems, driving transformative operational change, enhancing IT processes and ensuring compliance with governance bodies and industry regulations. Due to the nature of the role, complexity of the estate, current transformation activities and team size, the role requires the functional capability and proficiency to technically augment the team capabilities (when required) and have a detailed knowledge of technical IT support roles/services as a requirement, across multiple technical areas. Security, Compliance & Risk Management Define and enforce cloud security policies, identity management, and access controls to protect systems, networks, and data. Oversee the adoption of zero-trust security principles to enhance protection across cloud platforms. Manage identity and access management (IAM) in a cloud-first environment, including Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM). Lead threat monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). Conduct regular security risk assessments, penetration tests, and vulnerability management across cloud services. Oversee endpoint security, cloud network and API security for robust protection across all assets Define, manage and maintain accurate DR and BCP plans for the infrastructure area with biannual tests. Technical Experience Microsoft Azure Infrastructure design and administration, including topology, Azure networking, services, and component knowledge, Microsoft AD (Entra), Server and SQL experience, O365 administration and design Global Software Patching and estate management via Intune Firewall (Azure, CheckPoint and Cloudflare), DNS, VPN, WIFI and Local Area Network design & administration experience Software Defined Networking (Cisco, Meraki, Versa) Key Skills Microsoft 365 & Azure: Strong experience managing Microsoft 365 (Exchange, SharePoint, Teams), Azure cloud infrastructure, and security tools such as Microsoft Defender and Sentinel. Security & Compliance: Deep knowledge of security frameworks (ISO 27001, NIST, CIS), compliance requirements (GDPR, SOC2), and risk management best practices. Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign-On (SSO), and Privileged Access Management (PAM). Threat Management & Incident Response: Ability to detect, respond to, and mitigate cyber threats using SIEM, endpoint security, and vulnerability management tools. Networking & Infrastructure Security: Understanding of firewalls, VPNs, SD-WAN, DNS security, endpoint protection, and cloud security controls. IT Service Management & Automation: Experience implementing ITIL-based service management, automating operational tasks, and optimising service delivery. Operational & Leadership Skills: IT Operations & Service Continuity: Ability to ensure IT systems are highly available, resilient, and fit for purpose, with a strong focus on business continuity and disaster recovery. Supplier & Vendor Management: Experience managing third-party IT vendors, MSPs, and SaaS providers, ensuring service levels, performance, and cost-effectiveness. Project Leadership & Change Management: Ability to lead technology projects, system upgrades, and platform migrations, ensuring smooth execution and minimal business disruption. Process Improvement & Automation: Strong analytical mindset to identify inefficiencies, automate workflows, and enhance security controls. Skills & Mindset: Problem-Solving & Decision-Making: Capable of making informed decisions and resolving complex IT issues in a fast-paced environment. Stakeholder Engagement: Ability to communicate effectively with technical and non-technical stakeholders, including senior leadership and business users. Resilience & Adaptability: Comfortable working in an evolving technology landscape, with a proactive and security-first approach. The Client is a financial organisation based in the City of London. This is a hybrid position with 3 days in the office. Must have a Bachelor’s degree in IT or similar. The salary for this role will be in the range £85K - £95K plus Benefits. Do send your CV to us in Word format along with your salary and notice period.

Cyber Security Analyst Ashby-de-la-Zouch - Hybrid Up to £40,000 VIQU have partnered with a dynamic organisation that are looking for a Cyber Security Analyst to join their growing IT team. This is a pivotal role in strengthening the organisation's cyber defences and risk management framework, ensuring systems, networks, and applications are secure against evolving threats. Key Responsibilities of the Cyber Security Analyst: Support the design, implementation, and management of cyber security technologies across the business Monitor and respond to security incidents, alerts, and helpdesk requests, maintaining robust threat detection Conduct vulnerability assessments, penetration testing, and phishing simulations to identify and mitigate risks Collaborate closely with IT teams to embed security best practices into system management and project delivery Stay up to date with emerging cyber threats and recommend improvements to strengthen the organisation's security posture Promote cyber awareness across colleagues, ensuring everyone understands their role in protecting systems and data Experience Required of the Cyber Security Analyst: Demonstrable experience in cyber security or information security, with knowledge of standards such as Cyber Essentials or ISO 27001 Familiarity with endpoint protection, network security, application security, and vendor risk management Experience with CrowdStrike or similar security platforms is advantageous Proactive approach to learning and implementing security best practices Excellent communication skills, capable of liaising with colleagues at all levels

IT Operation s Platforms and Security Lead This role requires excellent management of a small team in IT along with managing stakeholders and vendors. You must be hands-on technically in IT Infrastructure. The IT Operational Platform and Security Lead is responsible for overseeing the organisation’s IT operations, ensuring the stability, continuity, security, and efficiency of its technology platforms within a global commercial insurance environment. While Microsoft technologies (Microsoft 365, Azure, Exchange Online) form a core part of the infrastructure, the role also encompasses broader enterprise IT systems, multi layered networking, security, data management, and third-party platforms that support global business operations and the associated applications estate. The role requires a proactive leader who can drive IT operational excellence, manage security risks, focus on continual service improvement, drive transformational delivery projects, and work effectively with internal stakeholders and third-party vendors to deliver a high-quality Global IT services. Working in line with the Architecture defined IT principle of a "buy before build" environment, the individual will need to ensure that outsourced and cloud-based services are robust, cost-effective, and aligned with business needs and the Strategic IT vision. They will also play a key role in enhancing cybersecurity, protecting data and systems, driving transformative operational change, enhancing IT processes and ensuring compliance with governance bodies and industry regulations. Due to the nature of the role, complexity Security, Compliance & Risk Management Define and enforce cloud security policies, identity management, and access controls to protect systems, networks, and data. Oversee the adoption of zero-trust security principles to enhance protection across cloud platforms. Manage identity and access management (IAM) in a cloud-first environment, including Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM). Lead threat monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). Conduct regular security risk assessments, penetration tests, and vulnerability management across cloud services. Oversee endpoint security, cloud network and API security for robust protection across all assets Define, manage and maintain accurate DR and BCP plans for the infrastructure area with biannual tests. Technical Experience Microsoft Azure Infrastructure design and administration, including topology, Azure networking, services, and component knowledge, Microsoft AD (Entra), Server and SQL experience, O365 administration and design Global Software Patching and estate management via Intune Firewall (Azure, CheckPoint and Cloudflare), DNS, VPN, WIFI and Local Area Network design & administration experience Software Defined Networking (Cisco, Meraki, Versa) Key Skills Microsoft 365 & Azure: Strong experience managing Microsoft 365 (Exchange, SharePoint, Teams), Azure cloud infrastructure, and security tools such as Microsoft Defender and Sentinel. Security & Compliance: Deep knowledge of security frameworks (ISO 27001, NIST, CIS), compliance requirements (GDPR, SOC2), and risk management best practices. Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign-On (SSO), and Privileged Access Management (PAM). Threat Management & Incident Response: Ability to detect, respond to, and mitigate cyber threats using SIEM, endpoint security, and vulnerability management tools. Networking & Infrastructure Security: Understanding of firewalls, VPNs, SD-WAN, DNS security, endpoint protection, and cloud security controls. IT Service Management & Automation: Experience implementing ITIL-based service management, automating operational tasks, and optimising service delivery. Operational & Leadership Skills: IT Operations & Service Continuity: Ability to ensure IT systems are highly available, resilient, and fit for purpose, with a strong focus on business continuity and disaster recovery. Supplier & Vendor Management: Experience managing third-party IT vendors, MSPs, and SaaS providers, ensuring service levels, performance, and cost-effectiveness. Project Leadership & Change Management: Ability to lead technology projects, system upgrades, and platform migrations, ensuring smooth execution and minimal business disruption. Process Improvement & Automation: Strong analytical mindset to identify inefficiencies, automate workflows, and enhance security controls. Soft Skills & Mindset: Problem-Solving & Decision-Making: Capable of making informed decisions and resolving complex IT issues in a fast-paced environment. Stakeholder Engagement: Ability to communicate effectively with technical and non-technical stakeholders, including senior leadership and business users. Resilience & Adaptability: Comfortable working in an evolving technology landscape, with a proactive and security-first approach. Summary of Skills Required: Global Enterprise level Infrastructure Management position for the last 5 years, Global team management (human resources, strategic delivery, operational service, audit lead for Infra, budget..) Key - 3 party operational infrastructure vendor management - i.e management of managed service partners, Migration of Legacy VM based estates to SaaS and Cloud services platforms, Legacy tech to Azure knowledge/experience, Prior to the last 5 years, a technical infrastructure engineering level background, working on Windows Server, AD , SQL environments, Firewalls/SDWAN, and Networks (WAN &/or LAN). The Client is based in the City of London. This is a hybrid position with 3 days in the office. The salary for this role will be in the range £85K - £100K plus Benefits. Do send your CV to us in Word format along with your salary and notice period.

IT Manager Our Client is a Bank based in Central London, are looking to recruit an IT Manager ideally with at least 2 years of experience in IT within the financial industry and overall 7 to 10 years of experience in IT. You will be working in a small team managing the day-to-day technology infrastructure to ensure that the Bank can operate efficiently. Cybersecurity Strategy and Planning Evaluate and proritize security initiatives for the branch in London in collaboration with GT (Group Technology) - Group IT Security. Stay up-to-date with the latest cybersecurity threats and trends and escalate risks promptly. Ensure compliance with relevant industry regulations and standards (e.g., GDPR and any other applicable to the IT). Evaluate GT s compliance with relevant regulatory standards (eg ISO 27001) as part of critical vendor performance assessment ensuring operational resilience is maintained. In collaboration with GT, manage security systems, including firewalls, intrusion detection/prevention systems, and antivirus software. In collaboration with GT, Develop and test incident response plans and coordinate responses to security incidents and breaches Raise awareness of cybersecurity issues among bank London employees; conduct annual training /workshops to educate staff on security best practices aligned with GT. Other Duties Maintain professional and technical knowledge (Conduct Rule 2) e.g. by attending educational workshops; read professional publications; benchmarking state-of-the-art practices etc where relevant. Collaborate with stakeholders to handle backlogs and new requirements - Resolve conflicts and remove blockers for the team - Monitor, track and uphold quality of deliverables. Be the point of contact for external communications and facilitate internal communication for effective collaboration on IT related matters. Ensure work deliverables are in compliance with policies and regulatory requirements . Maintains quality service by establishing and enforcing organization standards. To act as second/third level support with GT for support related issues. To comply with all applicable FCA/PRA conduct rules. Compliance with all mandatory training as set by the Branch/Group. Technical/Functional skills - Proficient in common operating systems o Windows 10, Windows Server 2018 and above o Redhat Linux based Operating System - Software proficiency o VMWare v6.7 and above o Veeam Backup and Replication o Symantec Endpoint Protection o Symantec Endpoint Encryption o ManageEngine Patch Manager Plus o Microsoft Office 365 o Bloomberg FXT/eikons o Murex Treasury System o SWIFT Alliance Access (SAA) - Networking (IT) o Cisco Switches and Routers o Fortigate Firewalls o LAN/WAN Routing - Hardware o Dell PowerEdge Servers o Dell PowerVault SAN Storage - Data analysis - Basic PC/Laptop support (formatting, imaging, etc) - Experience of writing and updating IT policies, standards, procedures, and guidelines Personal skills (Soft Competencies [Core/Leadership]) - Committed and dedicated to team deliverables. - Ownership of the business - Strong interpersonal stakeholders management skills - Strong written and verbal communication skills - Ability to train IT staff, supervise and motivate team members for high performance - Experience in coordinating installations, upgrades, and maintenance - Knowledge of architecture processes and performance reports of operating systems - Strong analytical/critical thinking skills - Ability to understand and oversee code development Qualifications: Bachelors degree qualification in relevant discipline Professional Qualification and/or Regulatory, Licensing requirements Project management certification (e.g., PMP, PRINCE2) is highly desirable. Professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA) are highly desirable. Relevant Work Experience At least 6 years of experience in IT within the financial/banking industry is preferable. Minimum of 2 years experience in managing staff or managing teams in a cross functional set-up. The position is based in Central London and is hybrid 3 days w eek in the office. The salary for this position will be up to £65K. Please do send your CV to us in Word format along with your salary and notice period.

Microsoft Intune and Windows 365 Subject Matter Expert (SME) Candidates will be expected to demonstrate that they meet these requirements within their application, and during the interview process. Due to the nature of the work that the M365 team must cover; it is imperative that candidates are able to operate with initiative, leadership and a strong work ethic. This role requires the candidate to act independently as a trusted advisor on all matters relating to Windows 365 and Microsoft Intune. Act as the Microsoft Windows 365 Subject Matter Expert (SME) Administrator The Microsoft Windows 365 SME must have in depth knowledge and experience of working with Windows 365, and will be solely responsible for managing, maintaining, and troubleshooting all elements pertaining to the Windows 365 Cloud PCs. The role will cover reactive support and proactive activities to include design solutioning in accordance with project requirements. The Windows 365 SME will be able to demonstrate knowledge and experience in the following areas: · Windows 365 provisioning - to include how this is handled and the various options, such as gallery image type, Single Sign On (SSO), SKU types etc. · Onboarding/off boarding users - This process will be owned by the Windows 365 SME and as such, an understanding of how this works, how it triggers the provisioning process, and licensing requirements is essential. · Knowledge and experience of how to re-size Windows 365 Cloud PCs. · Knowledge and experience of how to re-provision Windows 365 Cloud PCs. · Knowledge and experience of managing Windows 365 Cloud PC restore points. · Knowledge and experience of managing and troubleshooting the Windows client operating system (Windows 11). Act as the Microsoft Intune Subject Matter Expert (SME) Administrator · Maintain the Intune Security policies (investigation and testing of the current policy conflicts) The Microsoft Intune SME must have in depth knowledge and experience of working with Microsoft Intune, and will be solely responsible for managing, maintaining, and troubleshooting all elements pertaining to Microsoft Intune. The role will cover reactive support and proactive strategy, not only investigating and resolving immediate operational challenges but also driving forward the architecting, designing, and implementation of robust Windows 365 and Intune solutions tailored to project needs. The Microsoft Intune SME will be able to demonstrate knowledge and experience in the following areas: · Autopilot. · Enrolment. · Configuration policy profiles - settings catalogue, templates, custom etc. To include managing Intune policy conflicts - highlight, troubleshoot, resolve and/or make recommendations. · Security Baselines - To include managing Intune policy conflicts - highlight, troubleshoot, resolve and/or make recommendations. · Endpoint Security - Antivirus, Account Protection, Disk encryption, App control for Business etc. · Windows Update Rings and Autopatch. · Platform scripts. · Detection and Remediation scripts. · Microsoft Defender for endpoint. · Reporting - Monitor the health and activity of endpoints. · Microsoft Intune Application management - Store apps, win32 apps etc - This should include knowledge of the Microsoft Company Portal, and it's role supporting end users (available apps, compliance status etc). · Assignment of user and device group memberships, to include the creation and management of user and device dynamic membership rules. · Compliance policies - must also understand how compliance can integrate with conditional access. Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take up to a minimum 10 weeks. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.

Lead Cyber Security Operations Analyst Location: Manchester (Hybrid/Office-based) Contract: Permanent Salary: £60,000 - £67,000 + 10% car allowance (paid monthly) + up to 20% performance bonus About the Role We're working with a leading energy organisation in Manchester that operates the UK's largest smart meter network. Regulated by OFGEM and backed by government and private shareholders, this is a fast-paced, dynamic, and sometimes chaotic environment where priorities can shift quickly. It's an exciting place to work for someone looking to make a real impact and grow their career internally over time. As a Lead Cyber Security Operations Analyst , you'll join the Security Operations Centre and play a critical role in leading security investigations, developing detection content, and advancing operational security capabilities across the business. You'll collaborate with Risk, Technology, and Operations teams, provide subject matter expertise, and help shape the SOC's strategy and processes. Key Responsibilities Act as the technical escalation point for the SOC, leading security incidents and advising on containment, mitigation, and system hardening. Provide operational oversight for day-to-day SOC activities, ensuring incidents are escalated appropriately and recurring issues are addressed. Support team development through mentoring junior analysts, delivering technical training, and facilitating tabletop exercises. Lead use case development, approve tasks, and develop new detection content including machine learning analytics and security automation. Maintain and update SOC documentation, processes, procedures, and operational metrics/dashboard reporting.

Information Security Manager Role Description This is a full-time role as an Information Security Manager for Bank in Central London. The Information Security Manager will be responsible for day-to-day tasks related to information security management, including implementing and maintaining Information Security Management Systems (ISMS), ensuring cybersecurity and network security, and protecting sensitive information. This is a hybrid role, based in London with the flexibility for some remote work. Qualifications Information Security Management, ISMS, and Cybersecurity skills Network Security and Information Security knowledge Experience in implementing and maintaining ISMS Proficient in identifying and addressing information security vulnerabilities Strong analytical and problem-solving skills Excellent communication and interpersonal skills Certifications such as CISSP, CISM, or equivalent are preferred Bachelor's degree in Information Security, Computer Science, or related field Information Security Manager role (permanent) reporting into Head of IT (CIO | CISO) Need an individual with a strong hands on network and security background Cisco networking Cisco firewalls (Firepower / Threat Detection) Palo Alto firewalls SIEM experience (Logarithm desirable) Web proxy (Forcepoint desirable) Governance skills Policy writing / reviewing Reporting KPI monitoring Certifications like CCNP / CISM would be desirable but strong experience is preferable. The Client is based in Central London and the position is hybrid - 3 days in the office every week. Salary circa £60K - £75K + Benefits. Please do send your CV to us in Word format along with your salary and notice period.

Security Analyst | Hybrid | London | 6 - Months My client is looking for a Security Analyst to join their SecOps division. The successful candidate will be focused on responding to alerts from the security system and other general BAU security related tickets. They will also be required to analyse suspicious activity, from malicious emails to process hierarchies to help shape and improve the customers defensive capabilities. Any experience above this will be a benefit and so, rarely for a contract role, this is the sort of opportunity where you may be able to grow your skills by getting access to new opportunities within the Team. Key Responsibilities of the Security Analyst: Dealing with escalation of security related tickets and hands-on maintenance to solve the issues. Using CrowdStrike to monitor and investigate security alerts. Applying knowledge of Base64 encoding and recognise common Windows SIDs such as NT Authority/systems to assess privilege level suspicious processes. Creating SIEM dashboards and detection rules using Splunk . Management of identity, MDM, or directory services via Jump cloud . Conducting regular vulnerability scans and risk assessments using Qualys . Play a key role within the SecOps team and collaboration with other IT teams to insure secure system configurations. Stay Informed on emerging threats, vulnerabilities and best practice within cyber security. Requirements and experience of the Security Analyst: Must have proven experience as a Security Analyst or part of a SecOps team. Must have proven expertise and hands-on experience with CrowdStrike for detection, investigation and threat hunting. Strong Practical experience analysing suspicious emails and using email authentication methods. A background using process analysis on Windows and MacOS systems Strong experience with Splunk for log analysis and alerting. Deep understanding of vulnerability management tools, Qualys preferred. Expertise with handling escalated security related tickets. Experience working with a business that doesn't use the Microsoft suite is desirable. Relevant certifications include (GCIA, GCIH, CISSP, Splunk Certified User) are a bonus. Experience within the professional regulated services, preferably financial sector is desirable. The successful Security Analyst candidate will initially be working Onsite near

Description Starling is the UK's first and leading digital bank on a mission to fix banking! Our vision is fast technology, fair service, and honest values. All at the tap of a phone, all the time. We are about giving customers a new way to spend, save and manage their money while taking better care of the planet which has seen us become a multi-award winning bank that now employs over 2800 across five offices in London, Cardiff, Dublin, Southampton, and Manchester. Our journey started in 2014, and since then we have surpassed 3.5 million accounts (and four account types!) with 350,000 business customers. We are a fully licensed UK bank but at the heart, we are a tech first company, enabling our platform to deliver brilliant products. Our technologists are at the very heart of Starling and enjoy working in a fast-paced environment that is all about building things, creating new stuff, and disruptive technology that keeps us on the cutting edge of fintech. We operate a flat structure to empower you to make decisions regardless of what your primary responsibilities may be, innovation and collaboration will be at the core of everything you do. Help is never far away in our open culture, you will find support in your team and from across the business, we are in this together! The way to thrive and shine within Starling is to be a self-driven individual and be able to take full ownership of everything around you: From building things, designing, discovering, to sharing knowledge with your colleagues and making sure all processes are efficient and productive to deliver the best possible results for our customers. Our purpose is underpinned by five Starling values: Listen, Keep It Simple, Do The Right Thing, Own It, and Aim For Greatness. Hybrid Working We have a Hybrid approach to working here at Starling - our preference is that you're located within a commutable distance of one of our offices so that we're able to interact and collaborate in person. In Technology, we're asking that you attend the office a minimum of 1 day per week. Our Data Environment Our Data teams are excited about the value of data within the business, powers our product decisions to improve things for our customers and enhance effective and agile decision making, regardless of what their primary tech stack may be. Hear from the team in our latest blogs or our case studies with Women in Tech . We are looking for talented data professionals at all levels to join the team. We value people being engaged and caring about customers, caring about the code they write and the contribution they make to Starling. People with a broad ability to apply themselves to a multitude of problems and challenges, who can work across teams do great things here at Starling, to continue changing banking for good. Ways of Working: We value autonomy - you'll be trusted to manage your own projects, drive modelling initiatives, and take ideas from concept to production You'll be encouraged to propose new approaches and explore creative ways to detect and prevent fraud We debate and critique our ideas in a healthy, supportive team You'll have the chance to shape both models and how we think about fraud detection as a wider team Responsibilities: You will be part of a team that builds, evaluates and deploys machine learning models to improve and automate decision making Collaborate with technical and non-technical teams to understand problems, explore data, and develop effective fraud prevention tools and solutions Design and maintain robust feature engineering pipelines for modelling, working closely with analytics engineering teams Contribute to the development of end-to-end machine learning workflows and help embed models into production systems Analyse transaction and behavioural data to identify trends, anomalies, and AML patterns

Project Manager with Digital Banking Operations and Artificial Intelligence AI We are seeking a Project Manager with Digital Banking Operations and Artificial Intelligence (AI) Projects experience to join our Client a bank based in Central London. This is a full-time role located in London, with flexibility for some remote work. As an AI project manager, you be responsible for overseeing and managing the implementation of AI projects within our digital banking operations. You will collaborate with cross-functional teams to define project goals, develop project plans, allocate resources, track progress, and ensure timely and successful delivery of projects. Experience and Qualifications Previous experience in project management, preferably within the banking or financial services industry Strong understanding of digital banking operations and Artificial Intelligence AI technologies Proven track record of successfully delivering complex projects on time and within budget Excellent communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams Strong problem-solving and decision-making abilities Knowledge of agile project management methodologies Experience with data analysis and reporting Ability to adapt to changing priorities and work well under pressure Project management certification (e.g., PMP) is a plus Bachelor's degree in a relevant field Areas to Consider 1. Customer Service Enhancement Chatbots and Virtual Assistants : Deploy AI-driven chatbots to handle routine inquiries, provide 24/7 support, and reduce wait times. Sentiment Analysis : Use AI to analyze customer feedback and sentiment from various channels to improve services. 2. Fraud Detection and Prevention Real-Time Monitoring : Implement AI algorithms to detect and flag unusual transactions in real-time. Predictive Analytics : Use machine learning models to predict potential fraud based on historical data and behavioural patterns. 3. Loan Processing Automation Credit Scoring : AI can evaluate creditworthiness more accurately by analyzing a wider range of data points. Document Verification : Automate the verification of documents submitted for loan applications, speeding up the approval process. 4. Personalized Banking Services Customer Insights : Leverage AI to gain insights into customer behaviour and preferences, allowing for personalized product recommendations. Marketing Campaigns : Use AI to target customers with tailored marketing campaigns based on their transaction history and preferences. 5. Risk Management Risk Assessment : AI can analyze market trends and economic indicators to provide early warnings about potential risks. Compliance Monitoring : Automate compliance checks and monitoring to ensure adherence to regulations and reduce the risk of non-compliance penalties. 6. Operational Efficiency Process Automation : Use robotic process automation (RPA) to handle repetitive tasks such as data entry, account reconciliation, and report generation. Workflow Optimization : AI can optimize workflows by identifying bottlenecks and suggesting improvements. Implementation Strategy Assessment : Evaluate the current state of digital banking operations and identify areas where AI can add value. Pilot Projects : Start with pilot projects to test AI applications in a controlled environment. Scalability : Ensure that AI solutions are scalable and can handle increasing volumes of data and transactions. Employee Training : Train staff on AI tools and their applications to ensure seamless integration. Continuous Improvement : Regularly update AI models and algorithms based on new data and evolving business needs. Challenges and Considerations Data Quality : Ensure high-quality data for accurate AI predictions and analysis. Regulatory Compliance : Stay compliant with financial regulations while implementing AI solutions. Customer Trust : Maintain transparency in AI-driven decisions to build and maintain customer trust. Integration : Seamlessly integrate AI with existing banking systems and processes. The main emphasis of this position to is harness the data from a variety of data tables at the bank and collate a Data Lake from which to extract a variety of AI reports to increase the banks customer strategy. By strategically implementing AI in these areas, a Digital Banking Operations Manager can greatly improve the efficiency, security, and customer satisfaction in digital banking operations. The position will be hybrid 3 days a week in the office. The salary is negotiable depending on experience but probably in the range £80K - £120K plus benefits. Do send your CV to us in Word format along with your salary and notice period.

Cyber Security Manager Our Client to be secured and protected from increased cyber threats and compliant to industry standards. This role covers information protection, including data loss protection and data classification, and threat protection, including security information and event management (SIEM), user and entity behaviour analytics (UEBA), point products like anti-virus (AV) and intrusion detection system/intrusion prevention system (IDS/IPS) and penetration testing. The Service Delivery team consists of approximately 20 staff who support and operate the Company’s services and there is an opportunity in that team for a Cyber Security Manager to oversee and govern all security services. Reporting Lines This role reports to Head of Service Delivery Main Accountabilities Technical leadership for all security solutions, including all the 3rd party managed services Maintain the overall security of Company’s network, systems, and data Monitor security access and manage IDS/IPS configurations Establishing and implementing security 'best-practice' standards as well as departmental policies and procedures Responsible for Security scanning and the efficient remediation of vulnerabilities Responsible for analysing all security incidents to determine root cause Determine, recommend, and implement upgrade security measures and controls Delivery security responses for customer and client compliance requirements Developing and managing security plans with vendors Audit activities of administrators and conduct Security awareness training Requirements Demonstrable skills and capability in Security leadership and 3rd party management experience CISSP certification preferred. Compliance knowledge required in ISO27001, PCI and GDPR. Possibly a certified ethical hacker Knowledge of Security technologies is essential, such as network appliances, firewall administration, AD, IAM, PAM, SIEM, UEBA, AV, IDS/IPS and MDM solutions Understanding of common frameworks, such as ITIL or LEAN is preferred Good exposure of user environment management, including desktops/laptops, profile management, access control methodologies Must be very proactive in understanding and staying up to date with current security technologies and industry technology trends The job/Client is located at our head office in Paddington, London with hybrid working The Client holds a Licence to Sponsor (grade A) and will always consider sponsoring employees if needed We welcome applications from Ukrainian Refugees The salary for this position is circa £70K - £80K plus Benefits. Please do send your CV to us in Word format along with your salary.

***SC Cleared*** SOC Architect 3 Month contract initially + Great scope for extension Based: 2 days p/w onsite maximum = Bristol Rate: £550 - £810 p/d (via Umbrella company) We have a great opportunity with a world leading organisation where you will be provided with all of the support and development to succeed. A progressive organisation where you can really make a difference. We have a great opportunity for a SOC Architect to join the team. The successful candidate will lead the development and delivery of a high-level design for a SOC, including associated tooling (e.g. SIEM solution) to support a multi-vendor cloud based back office implementation Key Skills & Experience: Industry best practice for SOC service and solution design. Working with organisations with heightened threat response requirements (e.g. UK Defence & Central Government) Evaluation and selection of security tools that meet the organisations SOC requirements. High Level Design of security infrastructure and tools to support a SOC's mission of monitoring, detecting, analysing, and responding to cyber threats. Knowledge of the following policies and process (required): NIST NCSC SOC Guidance NCSC CAF (CNI) (nice to have): MoD JSP 440 MoD JSP 503 MoD JSP 45 This is an excellent opportunity on a great project of work, If you are looking for your next exciting opportunity, apply now for your CV to reach me directly, we will respond as soon as possible. Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take up to a minimum 10 weeks. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.