Find your next tech and IT Job or contract ISO 27001 in England

Head of IT Infrastructure and Security In summary we are looking to recruit an all-round individual with expert knowledge and hands-on experience of IT Infrastructure coupled with Security, Compliance & Risk Management You must have upwards of 10 years hands-on expertise in IT Infrastructure combined with Security and Risk – ideally from within the banking or insurance sector. The Head of IT Infrastructure and Security Lead is responsible for overseeing the organization's IT operations, ensuring the stability, continuity, security, and efficiency of its technology platforms within a global commercial insurance environment. Some of the key points to consider for this role are: • Define and enforce cloud security policies, identity management, and access controls to protect systems, networks, and data. • Oversee the adoption of zero-trust security principles to enhance protection across cloud platforms. • Manage identity and access management (IAM) in a cloud-first environment, including Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM). • Lead threat monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. • Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). Technology: • Microsoft Azure Infrastructure design and administration, including topology, Azure networking, services, and component knowledge, • Microsoft AD (Entra), Server and SQL experience, • O365 administration and design • Microsoft 365 & Azure: Strong experience managing Microsoft 365 (Exchange, SharePoint, Teams), Azure cloud infrastructure, and security tools such as Microsoft Defender and Sentinel. • Security & Compliance: Deep knowledge of security frameworks (ISO 27001, NIST, CIS), compliance requirements (GDPR, SOC2), and risk management best practices. Summary: • Problem-Solving & Decision-Making: Capable of making informed decisions and resolving complex IT issues in a fast-paced environment. • Stakeholder Engagement: Ability to communicate effectively with technical and non-technical stakeholders, including senior leadership and business users. The role will involve managing a Cloud environment in a team of 4 Technical people. Managing 6 different suppliers which include Security, IT Networks, Hosting and Servers and 3rd party software. The aim of the role is to bring the MSP's (suppliers of hardware and software) to the same page for the stakeholders and the Board and ensure technology is running smoothly. The Client is a financial organization based in the City of London. This is a hybrid position with 3 days in the office. The salary for this role will be in the range £85K - £95K plus Excellent Benefits. Do send your CV to us in Word format along with your salary and notice period.

Security Architect 6 Month contract initially Based: Remote/Leeds - Max 4 days p/w onsite Rate: £475 - £500 p/d - (via Umbrella company) We have a great opportunity with a world leading organisation where you will be provided with all of the support and development to succeed. A progressive organisation where you can really make a difference. We have a great opportunity for a Security Architect to join the team. We are looking for an exceptionally seasoned Security Architect with deep progressive experience, including extensive leadership in designing and implementing robust security architectures, particularly within large-scale cloud environments and the highly regulated financial domain. This role demands a deep understanding of complex security challenges, a proven track record of strategic influence, and the ability to translate business requirements into secure, scalable, and compliant technical solutions. Key Responsibilities: * Strategic Security Leadership: Define, evangelize, and evolve the overall cloud security architecture strategy and roadmap, aligning with business objectives, relevant European regulatory requirements (e.g., GDPR, DORA, PSD2, NIS2 Directive), and industry best practices. Act as a trusted security advisor to senior leadership, engineering teams, and business units on all aspects of cloud security. Lead the development and implementation of security architectural standards, patterns, and guidelines for cloud-native and hybrid-cloud deployments. * Solution Design & Assurance: Provide expert security architecture guidance for critical enterprise applications, infrastructure, and data platforms, with a strong focus on secure-by-design principles. Conduct comprehensive security architecture reviews of high-level and low-level designs, identifying risks, proposing effective controls, and ensuring adherence to security policies. Drive the selection and integration of security technologies and services within cloud ecosystems (AWS, Azure, GCP preferred). * Risk & Compliance Management: Lead threat modelling, risk assessments, and security posture management across cloud environments. Ensure architectural designs meet stringent regulatory compliance requirements relevant to the financial industry in Europe (e.g., data residency, privacy, operational resilience). Develop and implement security controls that align with frameworks like NIST CSF, ISO 27001, PCI DSS, and CSA CCM. * DevSecOps & Automation: Champion the integration of security into the entire SDLC (DevSecOps), promoting automated security testing, continuous compliance, and secure configuration management. Design secure CI/CD pipelines and infrastructure as code (IaC) templates. Your Profile Key Skills & Experience: * Deep progressive experience in Information Security, with a significant focus on Security Architecture. * Ideally 5+ years of hands-on experience specifically in Cloud Security Architecture for enterprise-scale deployments across at least one major public cloud provider (AWS, Azure, or GCP). Multi-cloud experience is highly preferred. * Deep expertise in financial services domain security, including understanding of common threats, European regulatory requirements (e.g., PSD2, DORA, EBA guidelines), and data privacy mandates (GDPR). * Extensive knowledge of security architecture principles for: * Identity & Access Management (IAM) in cloud (e.g., AWS IAM, Azure AD, GCP IAM). * Network Security (VPCs, firewalls, WAFs, micro-segmentation, private connectivity). * Data Security (encryption at rest/in transit, KMS, data classification, DLP). * Application Security (secure coding, API security, SAST/DAST, WAF integration). * Container Security (Kubernetes, Docker, service mesh). * Security Information and Event Management (SIEM) and logging strategies. * Zero Trust Architecture principles. * Proven experience with DevSecOps methodologies and securing CI/CD pipelines. * Strong understanding of security frameworks such as NIST CSF, ISO 27001, CSA CCM, and experience in translating these into practical architectural designs. * Hands-on experience with security tools and technologies for vulnerability management, secrets management, cloud security posture management (CSPM), and cloud workload protection platforms (CWPP). * Relevant industry certifications are highly desirable (e.g., TOGAF, CISSP, CCSP, AWS Certified Security - Specialty, Azure Security Engineer Associate, GCP Professional Cloud Security Engineer). This is an excellent opportunity on a great project of work, If you are looking for your next exciting opportunity, apply now for your CV to reach me directly, we will respond as soon as possible. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.

Technical IT Manager Our Client a financial institution with offices in Reading, are looking to recruit an IT Manager to manage the infrastructure and technology for the company. You must be hands-on and have at least 7 to 10 years proven track record. The following are a list of functions for this position: Monitoring and management of the relationship with the managed service provider, including performance against SLAs, charges for non-standard items, complaints, changes to service System changes (software upgrades, introduction of new systems Non-standard requests (new software requests, different/more powerful laptops, etc) Acquisitions of businesses - guidance on how to absorb people and systems Security system monitoring - interpreting and managing output from the SOC (security operations centre) Software licensing (Microsoft, Mimecast, other systems (time recording, billing, marketing, etc) Change management (internal authorisation for significant system changes) Assistance to senior management in relation to IT issues (for example, integration with a new time/billing system) Response to technological change (e.g. major updates to Microsoft software, introduction of AI-based systems) Accreditation for security certificates (Cyber Essentials Plus, possibly ISO 27001) Assistance with AAF and other audits Management of joiner/leaver process Business continuity plan & disaster recovery This is a hybrid position with 2 to 3 days in the office at the offices in Reading. The salary for this position is circa £60K to £80K. Please do send your CV to us in Word format along with your salary and notice period.

**4 days a week onsite in Leeds, Inside IR35** Your responsibilities: Security Leadership Strategy * Define and implement the company-s security strategy across AI, blockchain, and cloud environments. * Establish policies, standards, and governance frameworks aligned with industry best practices (ISO 27001, NIST, SOC2). * Lead incident response, risk assessment, and threat modeling programs. * Build and mentor a world-class security team. AI Data Security * Protect proprietary AI models, training data, and pipelines from data poisoning, model theft, or adversarial attacks. * Secure ML infrastructure across data collection, preprocessing, model training, and deployment. * Implement privacy-preserving techniques (eg, encryption, anonymization, federated learning). Crypto Blockchain Security * Oversee smart contract security audits, testing, and deployment pipelines. * Protect user assets across wallets, custody solutions, and crypto exchange mechanisms . * Monitor on-chain activity for suspicious behavior (rug pulls, flash loan attacks, etc). * Partner with external firms for protocol audits, bug bounty programs, and penetration testing . Infrastructure Application Security * Implement best practices in cloud security (AWS, GCP, Azure) , container security, and zero-trust networks. * Harden DevSecOps pipelines to ensure secure software delivery. * Work with engineering teams to integrate security by design into products. Compliance Risk Management * Ensure regulatory compliance with GDPR, SOC2, ISO, PCI-DSS, and crypto-specific frameworks . * Lead risk assessments for third-party vendors and service providers . * Collaborate with legal and compliance teams on KYC/AML security for crypto services. Your Profile Essential skills/knowledge/experience: * 15+ years of progressive experience in Information Security, with a significant focus (minimum 7-8 years) on Cybersecurity. * Proven track record in cybersecurity strategy, team leadership, and incident management. * Deep knowledge of blockchain protocols, smart contracts (Solidity, Rust), cryptography, and custody systems. * Strong expertise in cloud security, DevSecOps, and secure software development lifecycle (SSDLC). * Understanding of AI/ML systems security, including model attacks and data integrity risks. * Certifications preferred: CISSP, CISM, CISA, CEH, OSCP, CCSK, or blockchain security certs. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.

Role: Security test engineer Rate: Outside IR35 Location: 1-2 days onsite in London Duration: 6 months initially SC clearance required Security Tester - Job Description The Security Tester will play a key role in delivering robust application security testing aligned with Secure-by-Design (SbD) principles and compliance frameworks such as NIST, CAF, and CAT. This role supports the Home Office's strategic aim to scale enterprise security testing capabilities, reduce outsourcing reliance, and embed security into the software development lifecycle. Key Responsibilities Conduct Security Testing using SAST and DAST tools Collaborate with Cyber Security Managers and Governance teams to ensure alignment with organisational security policies and standards Mentor and upskill team testers in application security testing and automation Track and report on security metrics and KPIs, including vulnerability trends and remediation outcomes. Integrate security testing into CI/CD pipelines, supporting shift-left strategies and DevSecOps practices. Required Skills & Experience Strong understanding of security standards including OWASP, NIST SP 800-53, ISO 27001, and CIS Benchmarks. Experience with SAST/DAST tools and Cloud Security platforms (AWS, Azure). Familiarity with Secure-by-Design principles and organisational security policies. Experience with penetration testing, risk assessment, and compliance testing. Proficiency in tools such as JIRA, SharePoint, and vulnerability management platforms. Desirable Attributes Ability to interpret and apply OWASP and NIST security principles across diverse project environments. Strong stakeholder engagement and communication skills. Experience in developing deployment checklists and decision trees for secure tool usage. Certifications such as CREST CRT, OSCP, CEH, or SANS are highly desirable. Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take up to a minimum 10 weeks. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.

Role: Pen tester Rate: Outside IR35 Location: 1-2 days a week onsite in Croydon Duration: 6 months initially SC clearance required This role supports the strategic shift towards internal assurance, reducing reliance on external ITHC suppliers, and aligning with Secure-by-Design (SbD) principles. You will work closely with stakeholders to identify vulnerabilities early in the development lifecycle, contribute to the capability build, and help shape the future of security testing across the department. Key Responsibilities Conduct internal penetration testing across applications, infrastructure, and end user devices (EUDs), including POISE and MacBook platforms. Perform scenario-based testing aligned with SbD principles and DSA security non-functional requirements. Collaborate with development teams to integrate findings into JIRA workflows for rapid remediation. Support the testing pipeline, including planning, execution, and reporting of penetration tests. Maintain compliance with NCSC guidance and Home Office security standards. Desirable Qualifications Certifications: OSCP, CREST CRT, CTL Web/Inf, , CEH. Experience with cloud security (AWS, Azure) and containerised environments. Essential Skills & Experience Hands-on experience with penetration testing tools. Strong understanding of OWASP, NIST SP 800-53, ISO 27001, and CIS Benchmarks. Familiarity with Secure-by-Design principles and CI/CD pipeline integration. Experience testing EUDs under operational constraints (e.g. no destructive tools, CSOC coordination). Ability to interpret and apply security NFRs across diverse environments. Proficiency in JIRA, SharePoint, and vulnerability management platforms. Attributes Strong stakeholder engagement and communication skills. Ability to work independently and as part of cross-functional teams. Commitment to continuous improvement and knowledge sharing. Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take up to a minimum 10 weeks. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.

Azure Infrastructure Engineer Duration: 13th October 2025 - March 2026 Location: Role can be fully remote Day rate: £400.00 to £450.00 Per Day - Outside IR35 An experienced, UK based Azure/Networking Engineer is urgently required to play a key role in supporting our client to implement solutions that provide benefits to users and clients, whilst ensuring all the existing solutions are well maintained and supported. The Contract Azure Infrastructure Engineer will support the infrastructure setup for an upcoming member calculations programme of work. The role requires strong Azure/DevOps/resource setup experience (onboarding new suppliers and resources), and the successful candidate MUST be able to start by the 13th October. Skills & Experience: Experience of Windows Server administration - IIS, Update Management, Performance troubleshooting through methods such as log analysis Experience with O365 Suite Administration, Intune & Defender for Endpoint Strong Networking experience - LAN/WAN/SDWAN/Azure networking such as routing, firewalls, network peering etc. Experience of using tools to automate regular activities (e.g. Tines, N8N, Zapier, Power Automate, Powershell) Familiarity with security and compliance standards, e.g. Experience working in an ISO 27001 certified environment Use of Azure DevOps (or similar tools) to deploy Infrastructure As Code into Azure - experience with ARM or Bicep templates and YAML pipelines Strong SharePoint experience Familiarity with mail flow and security solutions such as ProofPoint and ONDmarc Experience working in a regulated industry, e.g. telecoms, financial services, utilities Experience of Jira & Confluence for work management & documentation If you have proven experience in the above areas, please submit your application ASAP to Jackie Dean at TXP for consideration. TXP takes great pride in representing socially responsible clients who not only prioritise diversity and inclusion but also actively combat social inequality. Together, we have the power to make a profound impact on fostering a more equitable and inclusive society. By working with us, you become part of a movement dedicated to promoting a diverse and inclusive workforce.

SOC Analyst (Outside IR35) 12 Month Contract Full time on site in Birmingham £375 - £475 Outside IR35 (Depending on experience) Requires an active DV Clearance Role Summary Support the client's Security Operations Centre (SOC) with hands-on Splunk SIEM expertise, threat detection, incident response, and continuous improvement of security operations. Core Responsibilities * Operate and tune Splunk SIEM: detection logic, correlation rules, dashboards, playbooks * Triage alerts and manage incidents through resolution * Aggregate and correlate logs from multiple sources * Conduct threat hunting and integrate threat intelligence * Maintain documentation and contribute to SOC knowledge base * Support continuous improvement and R&D initiatives Required Skills & Experience * Strong Splunk SIEM experience (content creation, tuning, reporting) * Live SOC environment experience * Knowledge of OS (Windows, Linux, OSX), firewalls, IDS/IPS, networking * Familiarity with NIST, ISO 27001, MITRE ATT&CK, CIS frameworks * Threat analysis, detection engineering, vulnerability tools * Stakeholder engagement and incident/crisis management Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take up to a minimum 18 weeks. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.

Role: Security tester Rate: Outside IR35 Location: 1-2 day a week onsite Croydon (maybe less) Duration: 6 months initially SC clearance required Security Tester - Job Description The Security Tester will play a key role in delivering robust application security testing aligned with Secure-by-Design (SbD) principles and compliance frameworks such as NIST, CAF, and CAT. This role supports the Home Office's strategic aim to scale enterprise security testing capabilities, reduce outsourcing reliance, and embed security into the software development lifecycle. Key Responsibilities Conduct Security Testing using SAST and DAST tools Collaborate with Cyber Security Managers and Governance teams to ensure alignment with organisational security policies and standards Mentor and upskill team testers in application security testing and automation Track and report on security metrics and KPIs, including vulnerability trends and remediation outcomes. Integrate security testing into CI/CD pipelines, supporting shift-left strategies and DevSecOps practices. Required Skills & Experience Strong understanding of security standards including OWASP, NIST SP 800-53, ISO 27001, and CIS Benchmarks. Experience with SAST/DAST tools and Cloud Security platforms (AWS, Azure). Familiarity with Secure-by-Design principles and organisational security policies. Experience with penetration testing, risk assessment, and compliance testing. Proficiency in tools such as JIRA, SharePoint, and vulnerability management platforms. Desirable Attributes Ability to interpret and apply OWASP and NIST security principles across diverse project environments. Strong stakeholder engagement and communication skills. Experience in developing deployment checklists and decision trees for secure tool usage. Certifications such as CREST CRT, OSCP, CEH, or SANS are highly desirable. Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take up to a minimum 10 weeks. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.

Job Title: Principal Engineer - Cyber Security Location: Frimley, Bristol, Weymouth, Portsmouth. We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Salary: Up to £61,500 depending on skills and experience What you'll be doing: Define and implement risk-based cybersecurity requirements for systems and subsystems, providing technical expertise and guidance across all aspects of cyber security and resilience Conduct in-depth cybersecurity analysis, including development of threat taxonomies, security architectures, security baselines, and risk mitigation strategies Develop and execute cybersecurity test plans and schedules, carrying out both informal and formal security testing activities Support engineering lifecycle reviews and design assurance processes to ensure security is embedded throughout system development Produce and maintain key security artefacts, including risk registers, security assurance cases, plans, and schedules, while contributing security input to broader engineering documentation Your skills and experiences: Essential: Degree in a relevant STEM subject or maintaining recognised Industry Security Qualifications e.g., CCP, CISSP Proven experience of assessing and managing risk in line with industry good practice (NIST, ISO 27001) Significant experience with using security baselines, mitigations and controls Considerable familiarity with a life cycle phased approach Desirable: Experience in Product Security activities in a highly regulated environment Operational Technologies/ Industrial Control Systems experience Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive. The Engineering Delivery team: The team designs, builds, integrates and provides through life support to all the Submarine Platforms in the Royal Naval fleet. You will ensure the submarine systems and products are developed to support the delivery of an appropriately secure and resilient product. Through application of your knowledge and experience, you shall identify, analyse, evaluate and manage information security risks associated with the products used on-board the submarine. Speaking knowledgably and credibly with customers, users and internal stakeholders you shall provide advice on the causes of the risks identified, their likelihood and potential operational impacts. We offer relocation support packages across all Submarines roles, subject to meeting eligibility criteria. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks. We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible. #LI-AG1 #LI-Hybrid

Security Engineer Kent, Hybrid Competitive Salary VIQU have partnered with a leading automotive organisation in Kent to search for an experineced Security Engineer . This role is all about protecting and improving cloud and infrastructure environments, driving security automation, and helping shape DevSecOps practices. You'll work across AWS and modern platforms, supporting both day-to-day security operations and longer-term strategic projects. Key Responsibilities: Maintain strong security posture across cloud infrastructure Manage vulnerabilities and support regular system maintenance Design, implement, and manage security tooling in cloud environments ( AWS focus ) Support threat detection, incident response, and risk mitigation activities Contribute to compliance initiatives (ISO 27001, CIS benchmarks ) Collaborate with infrastructure and platform teams to embed security controls Apply secure DevOps practices (code scanning, container security, IaC) Support governance, reporting, and vulnerability management processes Participate in security reviews, threat assessments, and architecture decisions Key Requirements: 3+ years' hands-on experience with AWS security services (CloudTrail, GuardDuty, WAF, IAM, Security Hub) Strong knowledge of cloud governance and security best practices

This role will lead the Generally Senior Solution Architect with Network specialization and great stakeholder management capability (very proactive). Ability to engage with the architectural governance process (HLDs) to gain appropriate approvals, overseeing projects through delivery. Overview of skills at a high level: Cisco ACI Data Centre Design Knowledge F5 LTM and WAF Design Knowledge F5 Distributed cloud Knowledge Cisco ISE Palo Alto Firewalls Palo Alto SASE - Prisma Access LAN, WAN, WLAN design. More general skills/experience: 1.Core Responsibilities * Design and document enterprise network architectures (LAN, WAN, WLAN, cloud networking). * Ensure scalability, reliability, performance, and security of network infrastructure. * Develop and maintain network roadmaps and standards aligned with business and IT strategy. * Lead network design for data centres, cloud integrations, and hybrid environments. * Evaluate and recommend new technologies, tools, and vendors. * Provide architectural oversight on implementation projects and troubleshooting escalations. * Collaborate with cybersecurity, infrastructure, and application teams to ensure end-to-end solution integrity. * Prepare network capacity and resilience plans. * Document network topology, standards, and procedures. 2. Technical Requirements Networking Technologies * Expert knowledge of IP networking (IPv4/IPv6, routing, switching, subnetting, VLANs, NAT, QoS). * Deep understanding of protocols such as BGP, OSPF, EIGRP, MPLS, STP, VXLAN, and DNS/DHCP. * Familiarity with SDN and SD-WAN architectures (e.g., Cisco Viptela, Meraki, VMware NSX, Fortinet). * Experience designing VPNs and secure remote access solutions. * Strong understanding of wireless networking design and optimisation. * Proficiency in load balancing, firewalls, and proxy solutions.(e.g., F5, Palo Alto, Forcepoint, Cisco ASA) Security & Compliance * Integration of security principles (Zero Trust, segmentation, NAC). * Familiarity with frameworks such as ISO 27001, NIST, PCI-DSS, and data protection standards (GDPR). Cloud & Virtualisation * Experience with AWS, Azure, or GCP networking services (Transit Gateway, VNet, VPC, ExpressRoute, Direct Connect). * Understanding of hybrid and multi-cloud connectivity and governance. * Exposure to virtual networking and automation tools (Terraform, Ansible, Python, etc.). Monitoring & Management * Knowledge of network management systems (SolarWinds, Cisco DNA Center, etc.). * Performance monitoring, logging, and incident response design. 3. Experience Requirements * Typically 7-10+ years in network engineering, with 3-5 years in architecture or design roles. * Proven experience in large-scale or complex enterprise environments. * Experience producing architectural artefacts (HLDs, LLDs, diagrams, standards). * Track record of leading technical design workshops and influencing senior stakeholders. * Vendor selection and cost optimisation experience. 4. Educational & Certification Requirements * Bachelor's degree (or higher) in Computer Science, Information Technology, or related field. * Relevant professional certifications (preferred or equivalent experience): o Cisco: CCNP / CCIE (Enterprise, Security, or Data Center) o Juniper: JNCIP / JNCIE o AWS Certified Advanced Networking / Azure Network Engineer Associate o TOGAF, ITIL, or equivalent enterprise architecture framework o Security certifications (CISSP, CCSP) beneficial. 5. Soft Skills & Attributes * Strategic and analytical thinking. * Strong communication skills - able to translate technical design for non-technical stakeholders. * Leadership and mentoring capability. * Documentation and presentation excellence. * Ability to balance innovation with operational practicality. * Vendor and stakeholder management. * Continuous learning mindset to keep up with evolving technologies. 6. Deliverables (Typical Outputs) * Network Architecture Blueprint / Roadmap * High-Level & Low-Level Design Documents * Network Standards and Configuration Templates * Capacity and Resilience Plans * Risk Assessments and Security Architecture Inputs * Technical Design Authority (TDA) artefacts and governance reports LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.