Find your next tech and IT Job or contract Governance, risk and compliance (GRC)

Global Resilience Risk Specialist Technology Risk Lead Global Operational and Resilience Risk (ORR) is a sub function of Group Risk. Its purpose is to make sure the bank understands, and is in control of its non-financial risk position. In addition, the function provides resilience risk stewardship to global businesses, functions and entities we operate in. This is achieved through: Completing analytical assessments and opining on the control environment of the First Line of Defence (1LOD) within Businesses Constructive challenge to the global businesses and functions on their control environment and assessment of risk Oversight of emerging risks, strategic business initiatives and local change activity and new/materially changed products Analysis of risk exposure across all bank operations and territories to inform capital management and stress testing requirements Completing thematic reviews and aggregated reporting of the Non-Financial Risk profile of the bank Responsibility for the implementation of a Risk Management Framework (RMF) that sets out governance, policies and practices to proactively identify, assess, measure and report on, mitigate and control operational risk exposures associated with the businesses and operations at all levels of the organization. The role holder will maintain close working relationships with the wider ORR team, locally, globally and globally Key Accountabilities: The role holder will have global responsibility for: Leading the deployment of deep subject matter expertise around technology risk globally Providing issues, event and incident oversight, including specialist oversight of technical controls globally Supporting country and global ORR Managers with all technology risk related queries Providing advice, guidance and challenge to senior businesses, functions and entity management, ensuring robust opinion is provided through global governance Recommending risk appetite thresholds for technology risk, and oversee risk appetite monitoring Providing guidance and support with policy writing, owning and monitoring compliance with a comprehensive set of clear and concise policies that outline the key principles and minimum requirements applicable to the management of technology risk Engaging with risk owners, control owners and risk stewards to ensure technology risks are managed in accordance to policy Overseeing compliance, for example, through the Risk and Control Assessment process, Top Risk Assessments and Incident Management process Promoting and developing technology risk awareness and risk management culture in order to ensure that the material risks are both evident and effectively managed Identifying any concerning trends and challenging the business to address these Leading on defining the risk and control library, including minimum control standards, with input from Risk Owners, Business Service and Control Owners, specifying key risks and key controls Recommending RCA scoping for technology risk controls and challenge where this is not appropriately applied in the RCA Driving appropriate governance for technology risk across key stakeholders and senior control owners Reporting on risk and control profile, including impacts of external environment changes, emerging risks and changes to the business strategy Monitoring the local external environment to get early sight of emerging risks and provide detailed guidance on controls required to mitigate against them Providing technical guidance to support development and completion of ORR and regulatory reporting obligations (e.g. RAS, top & emerging risks, risk profile reporting, RMM, Board reporting where relevant, etc.) Ensuring any concerns with key controls and material change programmes, relevant to technology risk, are understood and escalated as required Leading regulator and audit engagement pertaining to technology risk; ensure regulatory compliance for technology risk and timely completion of audit actions and findings Support training and capability uplift across ORR to ensure robust understanding of Technology risk. Requirements: Strong leader with the ability to influence at the senior levels of the organisation Expert level of technology risk management knowledge and relevant deep experience in this field Comprehensive knowledge of the internal control environment Ability to communicate effectively, building strong relationships and influence senior internal and external stakeholders Comprehensive knowledge of the external environment (threat, regulatory, geopolitical, competitor, technological landscapes) A change agent who challenges the status quo constructively and positively, leading relevant strategies that enable safe growth of the bank An advanced degree preferable in relevant discipline (e.g. Masters, Doctorate etc.) Location: Kraków The Client will consider candidates from France, Germany UK etc… to work remotely whilst we are in a Pandemic and probably 2 days a week in Krakow after that point. Salary will be in the range of Euros 75K – Euros 95K. Do send your CV to us in Word format along with your monthly salary either in Euros or PLZ.

Data Governance Lead 6 Month contract initially Based: Hybrid 1-3 days p/w onsite in Norwich Mark rates p/d via Umbrella We have a great opportunity with a world leading organisation where you will be provided with all of the support and development to succeed. A progressive organisation where you can really make a difference. We have a great opportunity for a Data Governance Lead on a long term program of work. Key Responsibilities: * Develop and implement enterprise-wide data governance strategies and roadmaps. * Define governance objectives, KPIs, and success metrics. * Establish governance structures, roles, and responsibilities. * Create and enforce data governance policies, standards, procedures, data security and privacy controls. * Ensure alignment with regulatory requirements (e.g., GDPR, CCPA, HIPAA). * Oversee data classification, ownership models, and lifecycle management. * Define and monitor data quality metrics and standards. * Collaborate with data owners and stewards to resolve data quality issues. * Implement metadata management processes and tools. * Maintain data dictionaries, glossaries, and lineage documentation. * Monitor access controls, encryption, and risk mitigation strategies. * Conduct training and awareness programs on data governance. * Promote a culture of data stewardship and accountability. * Manage data governance platforms (e.g., Collibra, BigID). * Leverage AI/ML tools for automated compliance and classification. * Monitor compliance and effectiveness of governance policies. * Present dashboards and reports to senior leadership. Key Skills & Experiences: 1. Develop and implement enterprise-wide data governance strategies and roadmaps. 2. Define governance objectives, KPIs, and success metrics. 3. Establish governance structures, roles, and responsibilities. 4. Create and enforce data governance policies, standards, procedures, data security and privacy controls. * Experience: ideally 8 - 15 Yrs * Strong experience in Data Governance Preferred Qualifications 1. Strong understanding of data governance frameworks and best practices. 2. Experience with data privacy regulations and compliance standards. This is an excellent opportunity on a great project of work, If you are looking for your next exciting opportunity, apply now for your CV to reach me directly, we will respond as soon as possible. LA International is an award-winning partner of choice for many of the world's most influential companies and government organisations. Holding Enhanced Government Security Accreditation, we are recognised as the European market leader in the delivery of Security Cleared talent to organisations that demand the very highest levels of security, compliance and assurance. A multiple award-winning organisation, having secured the prestigious Queens Award for Enterprise: International Trade over consecutive years. We are committed to fostering an inclusive, equitable and accessible workplace where everyone feels valued and supported. We welcome applications from all individuals, regardless of background or identity, and we encourage candidates who may not meet every listed requirement to still apply. If you require any adjustments or support during the recruitment process, please let us know and we will work with you to ensure a fair and accessible experience. Please Note: If a high volume of applications is received, only candidates shortlisted will be contacted.

Description: Role Title: Cyber Risk Analyst Location: Knutsford 60% office 40% home Duration: 30/10/2026 £497.40 per day INSIDE IR35 MUST BETHROUGH UMBRELLA Role Description: Role Overview: The Lead Cyber Risk Consultant will spearhead the EOL risk assessment project, providing strategic direction and oversight. In this role, you will lead a comprehensive evaluation of cybersecurity risks associated with End-of-Life technologies across the bank and apply a new cyber risk methodology to assign risk ratingsvii. You will identify opportunities to reduce residual risk in obsolete systemsviii, and guide remediation efforts through to successful transition into BAU processesix. This position requires excellent leadership, communication, and stakeholder management to coordinate between technical teams and senior managementx. Required Skills & Competencies: Cyber Risk Expertise: Deep knowledge of cyber risk management practices, including risk assessment methodologies and frameworks (e.g. NIST CSF, ISO 27005, FAIR). Ability to identify, classify, and prioritize cybersecurity risks in a large enterprise environmentxviii. Technical Understanding: Strong understanding of IT infrastructure and applications, especially the challenges posed by End-of-Life technologies (outdated operating systems, unsupported software, legacy hardware). Capable of evaluating technical dependencies and security implications of obsolete systemsxix xx. Analytical & Methodological Skills: Advanced analytical skills ("cyber analytics"xxi), including proficiency with risk analysis tools or GRC platforms for tracking risk items. Comfortable analyzing data (e.g. asset inventories, vulnerability scan results) to quantify risk levels and support data-driven decision making. Leadership & Coordination: Proven ability to lead a team or project in a cybersecurity context. Excellent organizational skills to manage multiple parallel workstreams (risk assessment phase, remediation phase, reporting, etc.), ensuring milestones are met on time. Communication & Stakeholder Management: Exceptional communication skills, both written and verbal. Able to translate technical risk issues into business terms and present findings/recommendations to stakeholders at various levels2. Strong stakeholder management and negotiation skills to drive consensus on remediation priorities and resource allocation. Problem-Solving: Adept at solving complex problems and devising risk mitigation strategies. Can balance security requirements with operational practicalities, recommending solutions that reduce risk while enabling business objectives. Adaptability: Flexibility to work with both onshore and offshore teams. If offshore, willingness to align part of your working hours to UK business hours for effective collaboration3 4. Qualifications & Certifications: Certifications: Industry-recognized certifications in cybersecurity/risk are highly desirable. Examples include CISSP, CISM (information security management), and especially CRISC (Certified in Risk and Information Systems Control) or CISA for IT risk control. These certifications demonstrate a solid foundation in managing enterprise IT risks and controls. Framework Knowledge: Familiarity with relevant security standards and regulations. Knowledge of ISO 27001 information security management and risk assessment standards, NIST cybersecurity framework, and banking industry regulations or guidelines for operational risk/cyber risk is beneficial. Other: Any certifications in cloud security or technical areas are a bonus if EOL systems span on-prem and cloud (e.g. AWS/Azure security certifications), as well as project management certifications (e.g. PRINCE2, PMP) which can aid in managing the engagement. Experience: Years of Experience: Approximately 8-10+ years of experience in cybersecurity, with a significant portion in cyber risk management or security consulting roles. Prior experience leading risk assessment projects or large-scale security consulting engagements is expected. Domain Experience: Demonstrated experience in conducting risk assessments, security audits, or vulnerability management in complex IT environments. Experience should include evaluating technology lifecycle issues, such as dealing with outdated systems or large-scale remediation programs, ideally within a financial services or highly-regulated industry. Project Leadership: Past roles should reflect the ability to manage or coordinate security projects and to work cross-functionally (e.g., working with IT infrastructure teams, application owners, and governance/Risk functions). Evidence of successfully driving risk remediation initiatives or advising on risk treatment plans is important. Please send latest CV LA International is an award-winning partner of choice for many of the world's most influential companies and government organisations. Holding Enhanced Government Security Accreditation, we are recognised as the European market leader in the delivery of Security Cleared talent to organisations that demand the very highest levels of security, compliance and assurance. A multiple award-winning organisation, having secured the prestigious Queens Award for Enterprise: International Trade over consecutive years. We are committed to fostering an inclusive, equitable and accessible workplace where everyone feels valued and supported. We welcome applications from all individuals, regardless of background or identity, and we encourage candidates who may not meet every listed requirement to still apply. If you require any adjustments or support during the recruitment process, please let us know and we will work with you to ensure a fair and accessible experience. Please Note: If a high volume of applications is received, only candidates shortlisted will be contacted.

Technology Planning and Governance Manager Be responsible for the ongoing development and maintenance of the technology alignment roadmap for Corporate working closely with senior stakeholders, systems owners and 3 parties to deliver innovation. Lead day-to-day support and management of the core business Applications Portfolio lifecycle including but not limited to Finance, Legal, Property, Pensions, Treasury, HR, Business Development, Payroll and our Corporate Intranet ensuring that delivery of change is fit for purpose, of high quality, reliable and secure. Role Responsibilities Drive customer-centricity and stakeholder engagement, work closely with Corp functions to align application roadmaps with the combined Corp IT / SSC annual technology plans and dependencies. Work with senior stakeholders to build, document and map business capability to solution architecture across the Corp. Take ownership and develop a technology roadmap that meets the application requirements of the Corp to support the wider Company businesses. Evaluate the potential impacts of application workloads moving to cloud, notwithstanding the threats and opportunities for Corp functions. Shape, create and present business cases for high level initiatives, seek approval, funding and prioritisation with senior stakeholders. Understand the capital allocation requirement across the Corp functions plus the overall impact of application change on the operational expenditure budget. Align technology roadmaps and annual budget planning, use as the foundation for reporting on the state of the Corp Application portfolio. Provide technical leadership for Corp initiatives engaging across the Company where corporate applications service the wider businesses. Solve complex business problems with process and technology that cut across Corp group such as Identity and Access Management. Document and review IT standards, procedures and policies to ensure compliance with legal and regulatory requirements. Liaise with internal and external audit teams. Develop and adapt innovation tools and processes to drive operational excellence within Corp IT. Establish and maintain a consistent and integrated approach to information security and data protection governance in line with audit requirements. Create alignment on how to utilise governance forums such as User Experience and Architecture to improve services delivered to Corp functions. Manage solution architects, contractors, 3 Parties and business analyst in the future. Experience Required Significant and relevant progressive IT experience Experience of being in a practical solution planning and technical architecture design role is essential e.g. SaaS, Identity and Access Management Good understanding of emerging and innovative technologies, how to shape, deliver and leverage those technologies Experience of architecture business capability mapping, data management governance, technology roadmaps and project delivery lifecycle processes. Experience of ensuring compliance between corporate business application roadmaps and IT roadmaps. Experience of working within an ITIL service management environment with strong knowledge of business systems or applications within a corporate environment. Ability to deal with and manage conflicts whilst building successful business relationships across a range of stakeholder groups both internal and external to the organisation. Proven leadership skills, setting objectives and ensuring delivery of services to target Proven contract management, supplier management, procurement, and vendor selection experience Experience of systems such as Microsoft Office 365, Dynamics 365, SAP Success Factors, Treasury Openlink Findur, CMS, BACs Payment Platforms, Microsoft Power BI, Integration/ETL, Azure Active Directory Single Sign On and other bespoke applications Experience in executing business continuity planning and IT DRP Creating solution and technical application architectures, IT standards and policies Day-to-Day management of the Application Portfolio, its currency, dependencies and risk Technical lead on major system changes and upgrades Responsible for the development and management of Solution Architects, Business Analyst and contract resources Provide support to Corporate functions and wider businesses to enable them to optimise their use of corporate applications Vendor Management and selection (RFIs / RFP support) The Client is based in Central London. Please do send your CV to us in Word format along with your salary and availability.

In this role, you will work across multiple products and platforms, providing strategic test leadership, supporting delivery teams, and influencing senior stakeholders to embed best practice and continuous improvement. As a Lead Test Engineer, you will play a strategic role in shaping and embedding consistent testing best practices across HMRC’s complex digital ecosystem. Your responsibilities will include: Leadership & Collaboration Lead, coach, and mentor test engineers across programmes, fostering a culture of continuous improvement and professional development. Collaborate with product, platform, and delivery teams to ensure testing is integrated early and effectively within agile workflows. Influence and engage with senior stakeholders across HMRC and supplier organisations to drive quality outcomes. Test Strategy & Implementation Define and implement risk-based, shift-left testing strategies across diverse platforms and services. Ensure testing approaches align with business priorities, technical architecture, and delivery timelines. Promote consistent standards and practices across internal teams and third party suppliers. Technical Excellence & Problem Solving Apply advanced testing techniques to solve complex technical challenges and improve delivery confidence. Provide expert guidance on functional, non-functional, and automation testing, including performance, security, and accessibility. Identify and drive opportunities for innovation and efficiency in testing processes. Tooling & Governance Evaluate, implement, and optimise test tooling, including AI-assisted solutions, to support continuous integration and delivery. Establish governance frameworks for supplier-led testing activities, ensuring alignment with HMRC standards and compliance requirements. Support tooling integration with platforms and services. Quality Assurance & Risk Management Ensure quality is built in from the outset by validating requirements and test coverage across the lifecycle. Lead retrospectives and continuous improvement initiatives to enhance test effectiveness and reduce delivery risk. Produce clear, actionable reports and insights to inform decision-making and assurance activities.

FIS Integrity -Treasury and Risk Management System Support Analyst Our Client is in the process of implementing a global rollout of FIS Integrity Treasury and Risk Management System. You must have at least 1 to 4 years experience of working with and supporting FIS Treasury and Risk Management System Integrity. This is a 1st to 3rd level implementation and support position. The Client may consider experience of FIS Quantum as well. Experience of software development skills with Python, C# .net, C++ and SQL Server would be very useful for this role. Role Description This is a full-time hybrid role for an FIS Integrity System Treasury and Risk Management System Support Analyst to be based in London with flexibility. The Client may consider remote working in exceptional situations. The analyst will be responsible for providing technical support, troubleshooting issues related to the Treasury and Risk Management system (Integrity), and ensuring system stability. Daily tasks include resolving technical queries, conducting system analysis, offering guidance to users, and proactively identifying process improvements to optimize workflows. Ideally have been involved in end-to-end implementation and enhancement of FIS Integrity for banking and treasury clients globally. Lead requirements analysis and translated complex treasury and capital markets processes into functional system designs. Research and document client needs processes relating to system design or enhancements. Facilitate client workshops and training, supporting successful go-lives and post-implementation adoption. Build and support system integrations with third-party platforms including SAP, Bloomberg, Reuters, FXALL, 360T…etc. Configuration of payment processes such as Swift Develop and execute test plans and UAT, performing manual financial validations to ensure accuracy and compliance. Design custom data sources and reports beyond standard product offerings to meet client regulatory and operational needs. You will ideally have experience of ATS training. Qualifications · Proficiency in Technical Support, Troubleshooting, and resolving system issues · Strong background in Information Technology and Operating Systems · Exceptional Analytical Skills to interpret data and identify solutions · Effective communication and problem-solving abilities · A bachelor's degree in a related field such as IT, Computer Science, or Engineering · Experience with FIS Integrity or similar Treasury and Risk Management systems is highly desirable · A proactive attitude and ability to adapt to a hybrid work environment This will be a hybrid role with 3 days in the office in Central London. The salary for this role will be in the range £60K - £80K. Do send your CV to us in Word format along with your salary and availability.

IT Technology Planning & Governance Manager with Enterprise Architect Solutions Our Client is a leading company in the UK who are looking to recruit a candidate with at least 10 years expertise in IT technology and governance planning with Enterprise Architect Solutions experience. The role is Technology Planning Manager where you be responsible for the ongoing development and maintenance of the technology alignment roadmap for Corporate working closely with senior stakeholders, systems owners and 3 parties to deliver innovation. Lead day-to-day support and management of the core business Applications Portfolio lifecycle including but not limited to Finance, Legal, Property, Pensions, Treasury, HR, Business Development, Payroll and our Corporate Intranet ensuring that delivery of change is fit for purpose, of high quality, reliable and secure. Role Responsibilities Drive customer-centricity and stakeholder engagement, work closely with Corp functions to align application roadmaps with the combined Corp IT / SSC annual technology plans and dependencies. Work with senior stakeholders to build, document and map business capability to solution architecture across the Corp. Take ownership and develop a technology roadmap that meets the application requirements of the Corp to support the wider Company businesses. Evaluate the potential impacts of application workloads moving to cloud, notwithstanding the threats and opportunities for Corp functions. Shape, create and present business cases for high level initiatives, seek approval, funding and prioritisation with senior stakeholders. Understand the capital allocation requirement across the Corp functions plus the overall impact of application change on the operational expenditure budget. Align technology roadmaps and annual budget planning, use as the foundation for reporting on the state of the Corp Application portfolio. Provide technical leadership for Corp initiatives engaging across the Company where corporate applications service the wider businesses. Solve complex business problems with process and technology that cut across Corp group such as Identity and Access Management. Document and review IT standards, procedures and policies to ensure compliance with legal and regulatory requirements. Liaise with internal and external audit teams. Develop and adapt innovation tools and processes to drive operational excellence within Corp IT. Establish and maintain a consistent and integrated approach to information security and data protection governance in line with audit requirements. Create alignment on how to utilise governance forums such as User Experience and Architecture to improve services delivered to Corp functions. Manage solution architects, contractors, 3 Parties and business analyst in the future. Experience Required Significant and relevant progressive IT experience Experience of being in a practical solution planning and technical architecture design role is essential e.g. SaaS, Identity and Access Management Good understanding of emerging and innovative technologies, how to shape, deliver and leverage those technologies Experience of architecture business capability mapping, data management governance, technology roadmaps and project delivery lifecycle processes. Experience of ensuring compliance between corporate business application roadmaps and IT roadmaps. Experience of working within an ITIL service management environment with strong knowledge of business systems or applications within a corporate environment. Ability to deal with and manage conflicts whilst building successful business relationships across a range of stakeholder groups both internal and external to the organisation. Proven leadership skills, setting objectives and ensuring delivery of services to target Proven contract management, supplier management, procurement, and vendor selection experience Experience of systems such as Microsoft Office 365, Dynamics 365, SAP Success Factors, Treasury Openlink Findur, CMS, BACs Payment Platforms, Microsoft Power BI, Integration/ETL, Azure Active Directory Single Sign On and other bespoke applications Experience in executing business continuity planning and IT DRP Creating solution and technical application architectures, IT standards and policies Day-to-Day management of the Application Portfolio, its currency, dependencies and risk Technical lead on major system changes and upgrades Responsible for the development and management of Solution Architects, Business Analyst and contract resources Provide support to Corporate functions and wider businesses to enable them to optimise their use of corporate applications Vendor Management and selection (RFIs / RFP support) The Client is based in Central London. The salary for this role will be in the range of £90K - £110K + Benefits. Please do send your CV to us in Word format along with your salary and availability.

FIS Integrity -Treasury and Risk Management System 2nd and 3rd Level Support Analyst Our Client is in the process of implementing a global rollout of FIS Integrity Treasury and Risk Management System. You must have at least 1 to 4 years experience of working with and supporting FIS Treasury and Risk Management System Integrity. This is a 2nd to 3 level implementation and support position. The Client may consider experience of FIS Quantum as well. Experience of software development skills with Python, C# .net, C++ and SQL Server would be very useful for this role. Role Description This is a full-time hybrid role for an FIS Integrity System Treasury and Risk Management System Support Analyst to be based in London with flexibility. The Client may consider remote working in exceptional situations. The analyst will be responsible for providing technical support, troubleshooting issues related to the Treasury and Risk Management system (Integrity), and ensuring system stability. Daily tasks include resolving technical queries, conducting system analysis, offering guidance to users, and proactively identifying process improvements to optimize workflows. Ideally have been involved in end-to-end implementation and enhancement of FIS Integrity for banking and treasury clients globally. Lead requirements analysis and translated complex treasury and capital markets processes into functional system designs. Research and document client needs processes relating to system design or enhancements. Facilitate client workshops and training, supporting successful go-lives and post-implementation adoption. Build and support system integrations with third-party platforms including SAP, Bloomberg, Reuters, FXALL, 360T…etc. Configuration of payment processes such as Swift Develop and execute test plans and UAT, performing manual financial validations to ensure accuracy and compliance. Design custom data sources and reports beyond standard product offerings to meet client regulatory and operational needs. You will ideally have experience of ATS training. Qualifications Proficiency in Technical Support, Troubleshooting, and resolving system issues Strong background in Information Technology and Operating Systems Exceptional Analytical Skills to interpret data and identify solutions Effective communication and problem-solving abilities A bachelor's degree in a related field such as IT, Computer Science, or Engineering Experience with FIS Integrity or similar Treasury and Risk Management systems is highly desirable A proactive attitude and ability to adapt to a hybrid work environment This will be a hybrid role with 3 days in the office in Central London. The salary for this role will be in the range £60K - £90K. Do send your CV to us in Word format along with your salary and availability.

- Lead the architecture, design and assurance of Fortinet SD-WAN solution - Produce, review and maintain HLDs, LLDs and associated technical documentation in line with customer architecture standards - Define and govern network patterns, reference architectures, and configuration baselines for routing, switching, segmentation and security - Ensure solutions meet security, compliance, performance and availability requirements - Support ITHC and penetration test remediation across network and security components - Oversee integration and assurance of network logging and visibility into SIEM/SOC platform - Guide Engineering, SOC and Operations teams in implementing architectural direction and resolving complex technical issues - Provide structured updates, design decisions, risks and progress reports to internal and external stakeholders - Minimum 4 days per week on-site (Farnborough) for the duration of the engagement - Deliver fully assured and validated network architectures that achieve formal customer sign off - Demonstrate alignment with operational teams, ensuring designs support operational workflows and service delivery - UK National - SC clearance Strong knowledge of Fortinet technologies, including: - FortiGate NGFW & SD WAN - IPSec/ADVPN - Routing protocols (BGP/OSPF) - ZTNA, segmentation, security profiles - Hands on experience producing HLDs/LLDs and technical governance packs - Enterprise network architecture and secure configuration principles - Monitoring, logging, and SIEM integration - Experience with system, network and security testing is desirable Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take a minimum 10 weeks. LA International is an award-winning partner of choice for many of the world's most influential companies and government organisations. Holding Enhanced Government Security Accreditation, we are recognised as the European market leader in the delivery of Security Cleared talent to organisations that demand the very highest levels of security, compliance and assurance. An award-winning organisation, having secured the prestigious Queens Award for Enterprise: International Trade over multiple years. We are committed to fostering an inclusive, equitable and accessible workplace where everyone feels valued and supported. We welcome applications from all individuals, regardless of background or identity, and we encourage candidates who may not meet every listed requirement to still apply. If you require any adjustments or support during the recruitment process, please let us know and we will work with you to ensure a fair and accessible experience. Please Note: If a high volume of applications is received, only candidates shortlisted will be contacted.

CGI Cyber Security Team in the UK is one of the largest Cyber consultancies in the UK with around 300 members. The UK Cyber team works across a variety of domains including: Government, Defence, Critical Infrastructure, Healthcare, Utilities, Banking and Financial Services and Many more. At CGI you will get the opportunity to work across a number of domains and work in all areas of Cyber Security allowing you to grow and develop your career. We offer full 360-degree services to our clients from initial consulting on a range of areas including Risk Assessments, Vulnerability Management, Accreditations (ISO27001, GDPR), GRC (Governance, Risk, Compliance), Security Architecture Design and Build (technical and Non-technical), Incident Response, Protective Monitoring Services, Penetration Testing and much more. We take clients through a journey to improve their overall security posture and maturity to ensure they feel reassured in the Security control, measures and systems we have put in place in line with their requirements. At CGI training and development is very important not only do we give you training to keep you up to date with the latest trends within an ever-changing landscape, but we also combine that training with your career ambitions, so we support you in taking your career anywhere you want it to go. Our roles are only available if you hold or fulfil the criteria to obtain a UK Security Clearance.

Safety Engineers required 3 monthly rolling contracts 2-3 days per week on site in Bristol SC Clearance required As a Safety Engineer, you will be responsible for supporting in the delivery of Acquisition Safety policy and solutions. It involves through life management of project safety risk management delivery in support of safe and suitable equipment, systems, and services to FLC. Specialisms associated with this Skill Group/Success Profile are: System Safety Policy and Governance; System Safety Management; and System Safety Assurance and Audit Skills & Experience required: *Safety cases and reporting *Hazard logs *POSMS/POEMS *Experience in one of the following domains: Land, Air, Maritime or OME Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take a minimum 10 weeks. LA International is an award-winning partner of choice for many of the world's most influential companies and government organisations. Holding Enhanced Government Security Accreditation, we are recognised as the European market leader in the delivery of Security Cleared talent to organisations that demand the very highest levels of security, compliance and assurance. An award-winning organisation, having secured the prestigious Queens Award for Enterprise: International Trade over multiple years. We are committed to fostering an inclusive, equitable and accessible workplace where everyone feels valued and supported. We welcome applications from all individuals, regardless of background or identity, and we encourage candidates who may not meet every listed requirement to still apply. If you require any adjustments or support during the recruitment process, please let us know and we will work with you to ensure a fair and accessible experience. Please Note: If a high volume of applications is received, only candidates shortlisted will be contacted.

REQUIRED: CLINICAL SAFETY OFFICER LOCATION: HYBRID ROLE SPLIT BETWEEN WORKING REMOTELY AND ONSITE IN CENTRAL LONDON DURATION: 12 MONTH INITIAL CONTRACT IR35 STATUS: INSIDE Clinical Safety Officer - Digital Screening Programme Role Description: The Clinical Safety Officer (CSO) for the Digital Screening programme provides end-to-end clinical safety assurance across the product lifecycle, ensuring digital solutions comply with mandatory clinical safety standards (DCB0129 and DCB0160) and NHSE governance. The CSO leads clinical risk identification and hazard analysis, determines Safety Assurance Levels (SAL), advises on clinical design to mitigate patient-safety risks, produces and reviews Clinical Safety Case Reports and hazard logs, assesses and supports incident investigations and post-implementation risk reviews, attends and presents to Clinical Safety Group (CSG) and programme governance, and embeds clinical safety into agile and User-Centred Design delivery practices. The role requires documenting risks and assurance activities in programme tooling (e.g. Aspyre) and driving improvements in workflows and tooling to enable safe, more frequent releases. This is a highly collaborative role requiring strong stakeholder management across clinical, technical, and senior leadership groups. The CSO must act as a trusted advisor and enabler, working proactively and positively to facilitate progress when clinical safety challenges arise, rather than acting as a blocker. Success depends on building strong relationships, communicating complex clinical risks clearly to diverse audiences, and maintaining an enthusiastic, solution-focused attitude that helps multidisciplinary teams navigate safety requirements whilst maintaining delivery momentum. The role must be filled by a clinically registered professional with specialist clinical safety training and hands-on experience in digital delivery. Without effective and timely Clinical Risk Management delivered through this role, digital solutions within Digital Screening cannot be successfully delivered and used. Key Skills and Experience: * Clinical credentials and certification: Clinically/medically qualified and currently registered with relevant UK regulatory body (e.g. GMC, NMC, HCPC), plus recognized Clinical Safety Officer training and evidence of CPD in clinical safety. * Deep practical knowledge of clinical safety standards and governance: Demonstrable experience applying DCB0129 and DCB0160, developing Clinical Safety Cases, managing Hazard Logs, determining SALs, and working within NHSE Clinical Safety Management System and governance structures. * Hands-on digital delivery experience: Several years delivering digital health solutions in complex NHS or equivalent environments; strong understanding of agile delivery, User-Centred Design, DevOps/continuous delivery practices, and proven ability to balance release velocity with safety rigor. * Risk management and incident response: Expert facilitation of hazard workshops and collaborative risk assessment sessions; quantitative and qualitative risk assessment skills; experience documenting and tracking risks (e.g. in Aspyre); proven ability to assess incidents for clinical risk, advise investigations, and guide remediation. * Technical appreciation: Familiarity with digital health system architectures, interoperability issues, regulatory contexts (medical device regulations, ISO 14971, IEC 62304 where relevant), ability to translate clinical risks into technical requirements, and awareness of emerging technology risks (e.g. AI/ML). * Exceptional stakeholder management and communication: Proven ability to build and maintain strong relationships with diverse stakeholders across clinical, technical, product, delivery, and senior leadership groups; excellence in communicating complex clinical safety concepts clearly to both clinical and non-clinical audiences; experience managing upward to governance boards; strong written communication for safety documentation and presentations; ability to influence and negotiate with tact and diplomacy. * Collaboration and teamwork: Strong collaborative mindset with proven ability to work effectively across multidisciplinary teams; experience embedding clinical safety thinking across agile teams rather than operating in isolation; ability to coach Clinical Safety Co-ordinators and build capability in others; track record of fostering a "one team" mentality; active listening skills and openness to diverse perspectives. * Proactive, positive and solution-focused attitude: Demonstrates a proactive, enthusiastic, and positive approach to clinical safety challenges; acts as an enabler and facilitator rather than a blocker, helping teams find pragmatic solutions that balance safety with delivery pace; solution-oriented mindset; ability to anticipate issues early and take ownership of resolving them; resilience and adaptability in complex or high-pressure situations; maintains composure and constructive approach when facing resistance or competing priorities. * Problem-solving and continuous improvement: Analytical thinking and systematic problem-solving abilities; track record of improving clinical safety workflows, governance processes, and tooling adoption to support faster, safer releases; process improvement mindset; comfortable with ambiguity and capable of working pragmatically within evolving frameworks. * Leadership and professional influence: Ability to provide professional leadership in clinical safety across the programme; credibility to challenge and influence product, technical, and delivery decisions when patient safety is at risk; comfortable speaking up and raising concerns constructively whilst maintaining positive working relationships; role modelling of professional standards and clinical safety best practice. LA International is an award-winning partner of choice for many of the world's most influential companies and government organisations. Holding Enhanced Government Security Accreditation, we are recognised as the European market leader in the delivery of Security Cleared talent to organisations that demand the very highest levels of security, compliance and assurance. A multiple award-winning organisation, having secured the prestigious Queens Award for Enterprise: International Trade over consecutive years. We are committed to fostering an inclusive, equitable and accessible workplace where everyone feels valued and supported. We welcome applications from all individuals, regardless of background or identity, and we encourage candidates who may not meet every listed requirement to still apply. If you require any adjustments or support during the recruitment process, please let us know and we will work with you to ensure a fair and accessible experience. Please Note: If a high volume of applications is received, only candidates shortlisted will be contacted.

Head of SOC/Incident Response Inside IR35 ,rate circa £700 pd Start : ASAP Duration :6 months Location : Fully remote. Occasional onsite meetings 1-2x per month - probably London. Preferred exp of working in Central Gov or Defence environments. About the Role This consultant would typically fulfil a senior leadership position within the public sector and Defence, responsible for setting, leading, and delivering the vision for a modern, secure digital environment. The priorities for this role include: * Coordinating and integrating public sector/ Defence digital services * Leveraging artificial intelligence for public benefit * Strengthening and expanding digital and data infrastructure * Elevating leadership and investing in talent * Funding for outcomes and encouraging innovation * Promoting transparency and accountability Person Specification Candidates should demonstrate: * Several years of experience in Cyber Security Operations and Incident Management, particularly in digital and cloud first environments * Strong knowledge of intrusion detection and analysis * Comprehensive understanding of cyber security operations and effective incident response * Expertise in security operations management, applied security capability, and protective security * Awareness of information risk assessment and risk management * Up-to-date knowledge of emerging threat intelligence and threat assessment * Basic understanding of digital forensics sufficient to collaborate with forensics specialists Qualifications and Certifications * Familiarity with information security best practices, standards, and frameworks (e.g., Cyber Assessment Framework, ISO 27001, NIST 800-53, COBIT 5, CIS CSC 2, Cyber Essentials Plus, PCI DSS) is beneficial. * Membership in relevant institutions or bodies (e.g., Institute of Information Security Professionals, Council for Registered Ethical Security Testers) * Relevant industry qualifications and accreditations: - Operations Centre Analyst - Offensive Security Certified Professional, - Certified Information Security Management - Certified Information Systems Security Professional - Relevant government qualifications or accreditations Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take a minimum 10 weeks. LA International is an award-winning partner of choice for many of the world's most influential companies and government organisations. Holding Enhanced Government Security Accreditation, we are recognised as the European market leader in the delivery of Security Cleared talent to organisations that demand the very highest levels of security, compliance and assurance. An award-winning organisation, having secured the prestigious Queens Award for Enterprise: International Trade over multiple years. We are committed to fostering an inclusive, equitable and accessible workplace where everyone feels valued and supported. We welcome applications from all individuals, regardless of background or identity, and we encourage candidates who may not meet every listed requirement to still apply. If you require any adjustments or support during the recruitment process, please let us know and we will work with you to ensure a fair and accessible experience. Please Note: If a high volume of applications is received, only candidates shortlisted will be contacted.

Information Security Architect / Manager Our Client is an International company with offices in Central London. They are looking to bring on-board an Information Security Architect / Manager with at least 5 to 8 years proven expertise within Information Security. The function of the position will be as follows: Assess the current environment against industry standards and trends. Implement robust security and control measures, in line with the global IT team Streamline current processes and execute changes for a secured and optimised technology and data landscape. Subject matter expert in application and network security, with operational experience of managing security operations, SIEM solutions, incident, and response management. Collaborate to develop the Infosec strategy and associated operating model. Conduct an in-depth security risk assessment across the technology stack and provide end-to-end mitigation steps for resilience. Working closely with key stakeholders to ensure compliance with security policies, and promotion of strong information security culture. Provide weekly governance, risk and compliance reports utilising key risk and key performance indicators and metrics. Skills/Competencies Required: Experience developing information security policy, process and procedure design and implementation. Excellent troubleshooting, problem solving, and root-cause analytical (RCA) skills. Good working knowledge of Cisco Meraki and associated technologies. Practical knowledge of Continual Service Improvement (CSI) methodologies. Vulnerability management and assessment. Intrusion detection and prevention analysis / frameworks. Solid exposure to cloud based applications security and provisioning. Experience in writing policy, process, and standard playbooks. Experience in SOC and SIEM platforms Excellent communications skills in framing and messaging issues of highly technical nature, into meaningful and relevant information for a varied audience. Excellent analytical skills, with an ability to manage multiple projects under tight guidelines. Experience with common Information security frameworks such as ISO, ITIL, and COBIT. Information security professional qualifications (CISMP, CISSM, SSCP, CAP..etc) ** Occasional travel to other sites may be required. This is 6 month contract assignment based in Central London. Rate will be circa £500 per day. Please do send your CV to us in Word format along with your daily rate and availability.

Our blue-chip client is looking for a Senior Project Manager experienced in leading and managing multiple cloud based projects simultaneously to work on a 12 month contract. The position would be a mix of remote working and an onsite presence in London as required. This would be an Inside IR35 contract and applicants would need to hold an active DV clearance. **Key Responsibilities** * Develop and execute comprehensive project plans, ensuring alignment with business objectives * Manage multiple cloud-based projects, prioritizing tasks and resources to meet deadlines * Collaborate with stakeholders to gather requirements, define project scope, and establish project timelines * Lead cross-functional teams, providing guidance and support to ensure successful project execution * Identify and mitigate project risks, developing contingency plans to minimize impact * Analyze project performance, identifying areas for improvement and implementing process enhancements * Develop and maintain project budgets, tracking expenses and ensuring cost-effectiveness * Communicate project status and progress to stakeholders, providing regular updates and insights * Ensure compliance with organizational policies, procedures, and industry standards Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take a minimum 18 weeks. LA International is an award-winning partner of choice for many of the world's most influential companies and government organisations. Holding Enhanced Government Security Accreditation, we are recognised as the European market leader in the delivery of Security Cleared talent to organisations that demand the very highest levels of security, compliance and assurance. An award-winning organisation, having secured the prestigious Queens Award for Enterprise: International Trade over multiple years. We are committed to fostering an inclusive, equitable and accessible workplace where everyone feels valued and supported. We welcome applications from all individuals, regardless of background or identity, and we encourage candidates who may not meet every listed requirement to still apply. If you require any adjustments or support during the recruitment process, please let us know and we will work with you to ensure a fair and accessible experience. Please Note: If a high volume of applications is received, only candidates shortlisted will be contacted.

Job Title: Cyber Security Operations Manager Location: Liverpool City Centre on a Hybrid working basis Salary: Up to £75,000 per annum Depending on experience Job Type: Permanent, Full Time Working Hours: 37.5 hours per week, Monday to Friday Acorn are looking to recruit a brand-new role as a Cyber Security Operations Manager. The Cyber Security Operations Manager will lead the operational security function responsible for protecting the organisation's information assets, technology services, and users. This role oversees all security operation functions, incident response, threat detection, vulnerability management, and continuous improvement of the organisation's security posture. Working closely with Infrastructure, Cloud, Architecture, Governance, Compliance and Risk teams, the manager ensures that security operations are proactive, resilient, and aligned with business needs. Responsibilities: Lead and manage the daily operations of the internal Security Operations team and primary relationship with any outsourced SOC solution ensuring 24/7 monitoring and response coverage. Oversee cyber defence capabilities including SIEM, SOAR, EDR/XDR, threat intelligence, and identity protection. Develop and maintain operational procedures, playbooks, and response frameworks. Direct the full incident response lifecycle: detection, triage, containment, eradication, recovery, and post-incident review. Coordinate major incident management with IT Infrastructure, Cloud, and Business teams. Ensure lessons learned are captured and drive meaningful improvement. Oversee the vulnerability management programme, ensuring timely identification, prioritisation, and remediation of risks. Partner with asset owners to ensure patches, configuration hardening, and remediation actions are completed. Support risk assessment processes and provide input to security governance and compliance teams. Ensure the design, tuning, and optimisation of detection rules, alerts, and correlation logic across security platforms. Drive automation initiatives using SOAR to improve response speed and reduce operational workload. Maintain robust coverage across cloud, on premise, network, and endpoint environments. Build capability through training, certifications, and knowledge-sharing programmes. Work with technology, business, and leadership teams to communicate risks, incidents, and security posture. Support audits, regulatory assessments, and customer assurance activities About you: Requirements: Experience managing a SOC or security operations function within a complex enterprise environment. Strong understanding of SIEM, SOAR, EDR, IDS/IPS, firewalls, and cloud-native security tooling. Knowledge of cyber security frameworks such as NIST CSF, MITRE ATT&CK, ISO 27001, or CIS Controls. Demonstrated expertise in incident response and threat management. Experience working in hybrid cloud environments (Azure, AWS, or GCP). Grow with Acorn: We bring over 40 years of specialist insurance expertise to the table. From humble beginnings, we've grown into a national leader, now employing 1,700+ people across the UK. We're growing fast, with new opportunities emerging every week. That growth is largely due to the values we share: We run through walls for our customers and each other We challenge the status quo We succeed when we help those around us succeed We decide quickly when the smart thing to do is use our judgement Benefits: 35 days' holiday (including bank holidays) with additional buy/sell options 24/7 mental health support & free counselling available Grow with us: Through career fairs, leadership programs, and learning on the go! Flexible benefits, including early access to salary via our internal platform Hybrid working options to support work-life balance and individual needs Recognition awards, social events & more Our Commitment to our colleague's: Earn recognition and accreditation from leading organisations that share our commitment to people and growth: Mindful Employer Disability Confident Level 1 & 2 Menopause Friendly accredited Armed Forces Covenant signatory Great Places to Work 2024/25 Best Place to Work for Development Best Place to Work for Women Before applying, please know: If your application is successful, we will run relevant employment checks prior to your employment with us. These will include a standard criminal record check and an insolvency register check. Visa Requirements We can only consider applicants who have at least one year remaining on their Graduate or Post-Study Work visa. At the moment, we're not able to offer visa sponsorship. We're Here to Support You We're committed to creating an inclusive, supportive workplace where everyone can flourish. If you need any adjustments during the recruitment process-or once you're part of the team-we'll work with you to make sure you can do your best work. Please click the APPLY button to submit your CV for this role. Candidates with experience or relevant job titles of; Cyber Security Consultant, Head of Cyber Security, Cyber Security Operations Supervisor, IT Cloud Operations Manager may also be considered for this role.