Find your next tech and IT Job or contract ISO 27001

CONTEXTE : Expérience : 8 ans et plus Métiers Fonctions : Etudes & Développement,Expert Spécialités technologiques : Collaboratif, Infrastructure,Sauvegarde, Cloud,Reporting Secteurs d'activités Assurance Description et livrables de la prestation Dans le cadre d’un programme de transformation Cloud visant à moderniser les infrastructures de stockage et à migrer les environnements on-premise vers des solutions hybrides ou cloud, l’équipe Storage (13 personnes) renforce ses capacités. Le poste consiste à intervenir en tant que Storage SME (Subject Matter Expert), garant du bon fonctionnement, de la modernisation et de la sécurisation des environnements de stockage stratégiques de l’entreprise. Le rôle couvre à la fois les activités Build, Run et Migration, au sein d’un environnement international, exigeant, agile et fortement collaboratif. Missions principales A. Gestion des infrastructures de stockage - Concevoir, déployer et administrer des solutions NAS, hyperconvergées ou cloud. - Configurer volumes, politiques de tiers et performances. - Assurer la haute disponibilité et l’optimisation continue (tuning, load balancing). - Participer à une organisation 24/7 avec astreintes et interventions en horaires anticipés. - Produire et maintenir la documentation technique (LLD, procédures, process). B. Protection et sauvegarde des données - Mettre en œuvre des stratégies de backup et de reprise après sinistre (DRP). - Assurer la continuité d’activité via des solutions de réplication multisites. - Supporter ou piloter les solutions de sauvegarde selon les besoins. C. Sécurité & conformité - Implémenter des mécanismes de chiffrement, contrôle d’accès et permissions RBAC. - Garantir la conformité aux normes internationales (GDPR, ISO 27001, HIPAA…). - Détecter et prévenir les menaces (ransomware, accès non autorisés). - Participer à la remédiation d’audit. D. Capacity Planning & Optimisation - Analyser l’usage des capacités et anticiper les évolutions futures. - Mettre en œuvre des optimisations (déduplication, compression, thin provisioning). - Automatiser via scripting (Python, Terraform, Ansible, Bash…). E. Support avancé & migration - Diagnostiquer et résoudre les incidents complexes (IOPS, latence, pannes disques). - Effectuer mises à jour firmware, patching et contrôles de santé. - Collaborer avec les équipes réseau, base de données et migration factory. - Comprendre les applications métiers et leurs implications sur le stockage. Expertise souhaitée - Expert technique avec vision globale infrastructure et Cloud. - Fortement orienté transformation et migration. - Capable d’accompagner des entités sur la modernisation de leurs environnements. - Disponible immédiatement ou à court terme. - Expertise NAS NetApp (administration, upgrade, refresh). - Expertise switch Broadcom. - Maîtrise des environnements de production critiques et DRP. - Compétences scripting : Python, Ansible, Terraform. - Solides connaissances Datacenter et infrastructures IT. Compétences appréciées - NetApp Cloud Volume ONTAP, AWS FSxN. - Solutions hyperconvergées : Nutanix, VSAN. - Solutions cloud NAS ou hybrides. - Automatisation avancée. - Communication claire avec parties prenantes techniques et métiers. - Capacité à rédiger des documents techniques structurés et pédagogiques. - Esprit d’équipe, sens du service et fiabilité opérationnelle. - Rigueur, autonomie, capacité à supporter un environnement exigeant et en transformation rapide. - Engagement fort dans les objectifs collectifs et les pratiques agiles.

IT Operations Platforms and Security Lead In summary the Client is looking to recruit an all-round individual with expert knowledge and hands-on experience of IT Infrastructure coupled with Security, Compliance & Risk Management You must have upwards of 10 years hands-on expertise in IT Infrastructure combined with Security and Risk – ideally from within the banking or insurance sector. The IT Operational Platform and Security Lead is responsible for overseeing the organisation’s IT operations, ensuring the stability, continuity, security, and efficiency of its technology platforms within a global commercial insurance environment. While Microsoft technologies (Microsoft 365, Azure, Exchange Online) form a core part of the infrastructure, the role also encompasses broader enterprise IT systems, multi layered networking, security, data management, and third-party platforms that support global business operations and the associated applications estate. The role requires a proactive leader who can drive IT operational excellence, manage security risks, focus on continual service improvement, drive transformational delivery projects, and work effectively with internal stakeholders and third-party vendors to deliver a high-quality Global IT services. Working in line with the Architecture defined IT principle of a "buy before build" environment, the individual will need to ensure that outsourced and cloud-based services are robust, cost-effective, and aligned with business needs and the Strategic IT vision. They will also play a key role in enhancing cybersecurity, protecting data and systems, driving transformative operational change, enhancing IT processes and ensuring compliance with governance bodies and industry regulations. Due to the nature of the role, complexity of the estate, current transformation activities and team size, the role requires the functional capability and proficiency to technically augment the team capabilities (when required) and have a detailed knowledge of technical IT support roles/services as a requirement, across multiple technical areas. Security, Compliance & Risk Management Define and enforce cloud security policies, identity management, and access controls to protect systems, networks, and data. Oversee the adoption of zero-trust security principles to enhance protection across cloud platforms. Manage identity and access management (IAM) in a cloud-first environment, including Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM). Lead threat monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). Conduct regular security risk assessments, penetration tests, and vulnerability management across cloud services. Oversee endpoint security, cloud network and API security for robust protection across all assets Define, manage and maintain accurate DR and BCP plans for the infrastructure area with biannual tests. Technical Experience Microsoft Azure Infrastructure design and administration, including topology, Azure networking, services, and component knowledge, Microsoft AD (Entra), Server and SQL experience, O365 administration and design Global Software Patching and estate management via Intune Firewall (Azure, CheckPoint and Cloudflare), DNS, VPN, WIFI and Local Area Network design & administration experience Software Defined Networking (Cisco, Meraki, Versa) Key Skills Microsoft 365 & Azure: Strong experience managing Microsoft 365 (Exchange, SharePoint, Teams), Azure cloud infrastructure, and security tools such as Microsoft Defender and Sentinel. Security & Compliance: Deep knowledge of security frameworks (ISO 27001, NIST, CIS), compliance requirements (GDPR, SOC2), and risk management best practices. Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign-On (SSO), and Privileged Access Management (PAM). Threat Management & Incident Response: Ability to detect, respond to, and mitigate cyber threats using SIEM, endpoint security, and vulnerability management tools. Networking & Infrastructure Security: Understanding of firewalls, VPNs, SD-WAN, DNS security, endpoint protection, and cloud security controls. IT Service Management & Automation: Experience implementing ITIL-based service management, automating operational tasks, and optimising service delivery. Operational & Leadership Skills: IT Operations & Service Continuity: Ability to ensure IT systems are highly available, resilient, and fit for purpose, with a strong focus on business continuity and disaster recovery. Supplier & Vendor Management: Experience managing third-party IT vendors, MSPs, and SaaS providers, ensuring service levels, performance, and cost-effectiveness. Project Leadership & Change Management: Ability to lead technology projects, system upgrades, and platform migrations, ensuring smooth execution and minimal business disruption. Process Improvement & Automation: Strong analytical mindset to identify inefficiencies, automate workflows, and enhance security controls. Skills & Mindset: Problem-Solving & Decision-Making: Capable of making informed decisions and resolving complex IT issues in a fast-paced environment. Stakeholder Engagement: Ability to communicate effectively with technical and non-technical stakeholders, including senior leadership and business users. Resilience & Adaptability: Comfortable working in an evolving technology landscape, with a proactive and security-first approach. The Client is a financial organisation based in the City of London. This is a hybrid position with 3 days in the office. Must have a Bachelor’s degree in IT or similar. The salary for this role will be in the range £85K - £95K plus Benefits. Do send your CV to us in Word format along with your salary and notice period.

Job Title: Principal Engineer - Cyber Security Location: Frimley, Bristol, Weymouth, Portsmouth. We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Salary: Up to £61,500 depending on skills and experience What you'll be doing: Define and implement risk-based cybersecurity requirements for systems and subsystems, providing technical expertise and guidance across all aspects of cyber security and resilience Conduct in-depth cybersecurity analysis, including development of threat taxonomies, security architectures, security baselines, and risk mitigation strategies Develop and execute cybersecurity test plans and schedules, carrying out both informal and formal security testing activities Support engineering lifecycle reviews and design assurance processes to ensure security is embedded throughout system development Produce and maintain key security artefacts, including risk registers, security assurance cases, plans, and schedules, while contributing security input to broader engineering documentation Your skills and experiences: Essential: Degree in a relevant STEM subject or maintaining recognised Industry Security Qualifications e.g., CCP, CISSP Proven experience of assessing and managing risk in line with industry good practice (NIST, ISO 27001) Significant experience with using security baselines, mitigations and controls Considerable familiarity with a life cycle phased approach Desirable: Experience in Product Security activities in a highly regulated environment Operational Technologies/ Industrial Control Systems experience Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive. The Engineering Delivery team: The team designs, builds, integrates and provides through life support to all the Submarine Platforms in the Royal Naval fleet. You will ensure the submarine systems and products are developed to support the delivery of an appropriately secure and resilient product. Through application of your knowledge and experience, you shall identify, analyse, evaluate and manage information security risks associated with the products used on-board the submarine. Speaking knowledgably and credibly with customers, users and internal stakeholders you shall provide advice on the causes of the risks identified, their likelihood and potential operational impacts. We offer relocation support packages across all Submarines roles, subject to meeting eligibility criteria. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks. We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible. #LI-AG1 #LI-Hybrid

Storage & Server Architect As an Storage & Server Architect you would be a key part of the Infrastructure unit and have overall responsibility to design, maintain and provide 2& 3 line support for all Storage & Systems hardware, Operating & Virtualisation Software, Open source and application integration. You would work towards providing a 24/7 support system. Ensure maximum availability of core systems and that performance monitoring is in place and appropriate system capacity planning is undertaken. You would also ensure that required DR and BCP provisions exist and are tested regularly. Maintenance of Infrastructure Provide storage & server hardware, virtualisation,services management, enable technical innovation that can create business value to assist with the company’s requirements and expectations. Lead large technology initiatives to build and maintain key elements of the company’s infrastructure and associated product portfolio, including but not limited to 24x7 data centre infrastructure management and evolution, remote access services and enterprise-scale database environments. Carry out annual technology and user audits. Manage the provision and maintenance of 3 party infrastructure to agreed SLA’s including hosting, personal computing support and networking at all major NGC locations. Manage all NGC owned servers, switches, firewalls and routers. Maintain appropriate licenses and subscriptions for computer hardware and software. IT Governance Manage system security, performance monitoring and alerting, ensure appropriate backups are in place and retained for all systems. Ensure a disaster recovery arrangement is maintained, as required in collaboration with the compliance team and operations are in place to ensure compliance during business continuity events. Work with Compliance Director in the development, adoption and enforcement of Information Security policies, procedures and standards. Work with the Network and Security Architect to ensure appropriate security, patching, maintain secure Internet connectivity & private network connection to/from our partners, customers and other Data & Financial Clearing House Work with Database and Development team for all compute, server and storage providing requirement & 24/7 availability. Complete annual reviews and internal audit of required ISO 27001, 9001 and 22301 standards. Competency Profile Extensive knowledge of data centre operations, , network engineering, datacentre applications, client/server computing and production operations support. Specific technologies of note include Microsoft Server & Linux Operating System. Experience with mid tier storage hardware & appliance is essential, more specifical experience with IBM Storage V37xx & V50xx series will be beneficial. Infrastructure applications, Networking, VMware, Firewall, Security and/or Enterprise-level SANs. Experience with Cloud Services & Provisioning (Experience of Oracle Cloud would be preferential) Ability to lead cross functional project teams in implementing projects of a complex nature. The Client has offices in Central London – although this position will mainly remote. The salary for this role will be circa £65K - £80K. Please do send your CV to us in Word format along with your salary and availability.

Role: Security tester Rate: Outside IR35 Location: 1-2 day a week onsite Croydon (maybe less) Duration: 6 months initially SC clearance required Security Tester - Job Description The Security Tester will play a key role in delivering robust application security testing aligned with Secure-by-Design (SbD) principles and compliance frameworks such as NIST, CAF, and CAT. This role supports the Home Office's strategic aim to scale enterprise security testing capabilities, reduce outsourcing reliance, and embed security into the software development lifecycle. Key Responsibilities Conduct Security Testing using SAST and DAST tools Collaborate with Cyber Security Managers and Governance teams to ensure alignment with organisational security policies and standards Mentor and upskill team testers in application security testing and automation Track and report on security metrics and KPIs, including vulnerability trends and remediation outcomes. Integrate security testing into CI/CD pipelines, supporting shift-left strategies and DevSecOps practices. Required Skills & Experience Strong understanding of security standards including OWASP, NIST SP 800-53, ISO 27001, and CIS Benchmarks. Experience with SAST/DAST tools and Cloud Security platforms (AWS, Azure). Familiarity with Secure-by-Design principles and organisational security policies. Experience with penetration testing, risk assessment, and compliance testing. Proficiency in tools such as JIRA, SharePoint, and vulnerability management platforms. Desirable Attributes Ability to interpret and apply OWASP and NIST security principles across diverse project environments. Strong stakeholder engagement and communication skills. Experience in developing deployment checklists and decision trees for secure tool usage. Certifications such as CREST CRT, OSCP, CEH, or SANS are highly desirable. Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take up to a minimum 10 weeks. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.

Security Engineer Kent, Hybrid Competitive Salary VIQU have partnered with a leading automotive organisation in Kent to search for an experineced Security Engineer . This role is all about protecting and improving cloud and infrastructure environments, driving security automation, and helping shape DevSecOps practices. You'll work across AWS and modern platforms, supporting both day-to-day security operations and longer-term strategic projects. Key Responsibilities: Maintain strong security posture across cloud infrastructure Manage vulnerabilities and support regular system maintenance Design, implement, and manage security tooling in cloud environments ( AWS focus ) Support threat detection, incident response, and risk mitigation activities Contribute to compliance initiatives (ISO 27001, CIS benchmarks ) Collaborate with infrastructure and platform teams to embed security controls Apply secure DevOps practices (code scanning, container security, IaC) Support governance, reporting, and vulnerability management processes Participate in security reviews, threat assessments, and architecture decisions Key Requirements: 3+ years' hands-on experience with AWS security services (CloudTrail, GuardDuty, WAF, IAM, Security Hub) Strong knowledge of cloud governance and security best practices

OBJET : L’architecte Authentification travaillera sous la responsabilité du service owner Authentification qui est responsable de la gestion, de l’évolution et de la performance des services d’authentification au sein de l’organisation. Il/elle agit comme point de référence principal pour toutes les questions liées à l’authentification des utilisateurs (internes et externes), en garantissant la sécurité, la fiabilité et l’expérience utilisateur optimale des solutions mises en place (SSO, MFA, gestion des identités, etc). Il/elle participera à la définition de nos architectures. Missions principales : Gouvernance du service : • Définir et maintenir la feuille de route du service Authentification pour toutes les entités du groupe. • Assurer la conformité avec les politiques de sécurité, les normes réglementaires (RGPD, ISO 27001, etc.) et les bonnes pratiques ITIL. Gestion opérationnelle : • Assurer et superviser la disponibilité, la sécurité et la conformité du service. • Coordonner les équipes techniques et gérer le back log (Prioriser les différentes taches/US) lors des cérémonies agiles (en backup du SO). • Collaborer avec les équipes techniques (IAM, sécurité, infrastructure) pour garantir la stabilité et l’évolution du service. • Faire le lien avec les métiers et s’assurer que les règles de gouvernance définies autour du service authentification (ex Tierisation, moindres privilèges, etc ) sont bien respectées. • Gérer les incidents majeurs, les changements et les mises à jour du service. • Participer aux audits de sécurité et aux projets de transformation (cloud, IAM, Zero Trust...). • Être avec le SO, le point de contact toutes les parties prenantes (DSI, RSSI, Métiers) Amélioration continue : • Identifier les opportunités d’optimisation (expérience utilisateur, sécurité, coûts). • Piloter les projets d’évolution du service (suppression des protocoles à risques, ajout de nouveaux protocoles, intégration de solutions tierces, etc.). • Suivre les indicateurs de performance (KPI) et produire des rapports réguliers. Profil recherché • Formation supérieure en informatique (Bac+5 ou équivalent). • Expérience confirmée (5+ ans) dans la gestion d’Active Directory à grande échelle. • Maîtrise des environnements Windows Server, DNS, GPO, ADFS, Azure AD / Entra ID. • Compétences solides en PKI (Public Key Infrastructure) et gestion des certificats. • Bonne connaissance des architectures d’infrastructure IT (réseaux, serveurs, stockage). • Connaissance des technologies de virtualisation (VMware, Nutanix, etc.) et stockage. • Très bonnes connaissances en cybersécurité, IAM, et bonnes pratiques ITIL. • Dans un environnement sans cesse en évolution, savoir s’adapter aux nouvelles technologies (Cloud, IAC, …) • Expertise sur MS Exchange serait un plus. • Anglais professionnel requis. Le poste comprendra environ 60% de build et 40% de run, variable bien sûr en fonction des priorités du moment. Outre ces compétences techniques, le savoir être est important et les qualités suivantes sont attendues • Excellentes capacités de communication et de vulgarisation au besoin selon l’auditoire. • Savoir organiser et gérer les priorités efficacement. • Être proactif • Pouvoir piloter en transverses d’autres équipes (ex Ops) Une astreinte 24/7 sera mise en place dans l’équipe AD qui sera composée de 3 personnes. En conséquent l’astreinte sera en moyenne d’une semaine sur trois tout au long de l’année.

Dans le cadre d'une mission longue durée nous sommes à la recherche d'un consultant SECOPS à Lyon en présentiel. (en présentiel) 👤 Profil recherché: Minimum 5 ans d’expérience dans un environnement opérationnel en cybersécurité Capacité à travailler en autonomie, tout en collaborant avec des équipes transverses Solide culture cybersécurité et rigueur dans l'exécution des tâches Esprit d’analyse, sens de l’initiative Compétence avérée en formalisation documentaire Une habilitation de sécurité est indispensable pour ce poste 🧩 Missions principales: Pilotage et exécution des activités de RUN Cybersécurité Suivi et gestion des outils de sécurité en place Contribution à l’évolution et à l’automatisation des outillages sécurité Participation à la détection, analyse et gestion des incidents de sécurité Rédaction de documentations techniques et procédures Travail en lien avec les équipes projet, infrastructure et RSSI 🧠 Compétences techniques attendues: ✅ EDR / EPP (déploiement, surveillance, tuning) ✅ SIEM (analyse de logs, création de règles de détection) ✅ PKI (gestion de certificats, compréhension des infrastructures à clés) 🔥 Firewall Manager, solutions de contrôle réseau 🧩 Bonnes connaissances des standards cybersécurité (ISO 27001, NIST, etc.) 🛠️ Capacité à intégrer des outils sécurité dans un SI complexe

Dans le cadre du renforcement des capacités de détection et de réponse aux incidents d'un SOC client, nous recherchons un consultant freelance en cybersécurité spécialisé dans les pratiques offensives et défensives. Le consultant interviendra sur des missions à forte valeur ajoutée, mêlant Purple Teaming , ingénierie de cas d'usage , remédiation post-audit , et optimisation des règles de détection sur des plateformes telles que SIEM , EDR et XDR . 🔍 Responsabilités principales Participer à des exercices Purple Team pour tester et améliorer les capacités de détection du SOC. Concevoir, développer et affiner des cas d'usage de détection sur les outils SIEM/EDR. Contribuer à la remédiation des vulnérabilités identifiées lors d'audits de sécurité. Collaborer avec les équipes SOC, GRC et IT pour assurer une couverture de détection cohérente et efficace. Intégrer des frameworks de sécurité (MITRE ATT&CK, NIST, ISO 27001) dans les stratégies de détection. Documenter les actions menées et produire des livrables techniques et fonctionnels.

Contexte de la mission Dans le cadre de ses projets de transformation et de sécurisation, notre client recherche un ingénieur de sécurité opérationnelle IAM afin d’accompagner et de piloter la mise en œuvre des solutions d’Identity & Access Management (IAM). Vous interviendrez sur des projets stratégiques liés à l’identité numérique, à la gestion des accès et à la conformité réglementaire, dans un contexte international exigeant. Vos responsabilités Planification & pilotage : définir les objectifs, plannings, coûts et ressources nécessaires à la réussite des projets IAM. Gestion des risques : identifier les risques, élaborer et suivre les plans de mitigation et de contingence. Coordination & leadership : encadrer et fédérer les équipes projet (IT, sécurité, développement, production) autour des enjeux IAM. Suivi budgétaire : assurer la bonne gestion et l’optimisation des budgets alloués. Qualité & conformité : garantir la conformité des livrables aux normes de sécurité et réglementations en vigueur. Communication & reporting : assurer la relation avec les parties prenantes, produire des rapports d’avancement et proposer des axes d’amélioration. Domaines d’intervention IAM Conception, intégration et déploiement de solutions IAM (SSO, IDP, gestion des accès). Mise en place de SSO pour simplifier et sécuriser l’accès aux applications. Déploiement d’ Identity Providers (IDP) pour la gestion centralisée des identités et des accès. Définition et mise en œuvre des rôles, habilitations et droits d’accès . Contribution à la sécurité et conformité des solutions IAM (standards et réglementations). Accompagnement des équipes projets (développement, test, production). Formation et support aux utilisateurs et administrateurs IAM. Atouts de la mission Environnement international stimulant. Projets stratégiques et à forte valeur ajoutée. Collaboration transverse avec des équipes pluridisciplinaires (Sécurité, IT, DevOps, Production). Domaine technique IAM / IGA : SSO, IDP, gestion des accès, gestion des rôles et habilitations. Produits : SiteMinder, VIP Authentication Hub (ou solutions équivalentes du marché IAM). Sécurité & conformité : normes et réglementations (ISO 27001, GDPR, PCI DSS, etc.). Méthodologies projet : Agile / Scrum, gestion de projets complexes. Langages & outils associés (souvent en interaction avec l’IAM) : LDAP, Active Directory, certificats, protocoles d’authentification (SAML, OAuth2, OpenID Connect). Collaboration & DevOps : intégration avec les équipes Dev, Test, Production ; outils de suivi et de pilotage (Jira, Confluence, ServiceNow…). Environnement international : documentation, reporting et coordination en anglai

Offre : Consultant SECOPS/ Assistant RSSI Missions: Intervenir au sein d’une équipe sécurité composée d’un RSSI et d’un profil SecOps. Assurer la sécurité opérationnelle et soutenir le RSSI sur les actions GRC. Superviser les consoles de sécurité : Vade, SentinelOne, Proofpoint PSAT, MS Defender, Vectra. Réaliser les actions d’investigation et de remédiation. Lancer et suivre les campagnes d’exercices de phishing. Supporter le RSSI lors des audits de conformité internes. Apporter un appui à la sécurité dans les projets IT et cyber. Coordonner les projets cyber orientés infrastructure. Profil recherché Expérience ou forte capacité à monter rapidement en compétence sur : Vade, SentinelOne, Proofpoint PSAT, MS Defender, Vectra. Connaissances confirmées en ISO 27001, ISO 27005 / ISP. Sens de l’organisation, rigueur et capacité à travailler en équipe. Autonomie et réactivité dans la gestion des incidents de sécurité.

This role will lead the Generally Senior Solution Architect with Network specialization and great stakeholder management capability (very proactive). Ability to engage with the architectural governance process (HLDs) to gain appropriate approvals, overseeing projects through delivery. Overview of skills at a high level: Cisco ACI Data Centre Design Knowledge F5 LTM and WAF Design Knowledge F5 Distributed cloud Knowledge Cisco ISE Palo Alto Firewalls Palo Alto SASE - Prisma Access LAN, WAN, WLAN design. More general skills/experience: 1.Core Responsibilities * Design and document enterprise network architectures (LAN, WAN, WLAN, cloud networking). * Ensure scalability, reliability, performance, and security of network infrastructure. * Develop and maintain network roadmaps and standards aligned with business and IT strategy. * Lead network design for data centres, cloud integrations, and hybrid environments. * Evaluate and recommend new technologies, tools, and vendors. * Provide architectural oversight on implementation projects and troubleshooting escalations. * Collaborate with cybersecurity, infrastructure, and application teams to ensure end-to-end solution integrity. * Prepare network capacity and resilience plans. * Document network topology, standards, and procedures. 2. Technical Requirements Networking Technologies * Expert knowledge of IP networking (IPv4/IPv6, routing, switching, subnetting, VLANs, NAT, QoS). * Deep understanding of protocols such as BGP, OSPF, EIGRP, MPLS, STP, VXLAN, and DNS/DHCP. * Familiarity with SDN and SD-WAN architectures (e.g., Cisco Viptela, Meraki, VMware NSX, Fortinet). * Experience designing VPNs and secure remote access solutions. * Strong understanding of wireless networking design and optimisation. * Proficiency in load balancing, firewalls, and proxy solutions.(e.g., F5, Palo Alto, Forcepoint, Cisco ASA) Security & Compliance * Integration of security principles (Zero Trust, segmentation, NAC). * Familiarity with frameworks such as ISO 27001, NIST, PCI-DSS, and data protection standards (GDPR). Cloud & Virtualisation * Experience with AWS, Azure, or GCP networking services (Transit Gateway, VNet, VPC, ExpressRoute, Direct Connect). * Understanding of hybrid and multi-cloud connectivity and governance. * Exposure to virtual networking and automation tools (Terraform, Ansible, Python, etc.). Monitoring & Management * Knowledge of network management systems (SolarWinds, Cisco DNA Center, etc.). * Performance monitoring, logging, and incident response design. 3. Experience Requirements * Typically 7-10+ years in network engineering, with 3-5 years in architecture or design roles. * Proven experience in large-scale or complex enterprise environments. * Experience producing architectural artefacts (HLDs, LLDs, diagrams, standards). * Track record of leading technical design workshops and influencing senior stakeholders. * Vendor selection and cost optimisation experience. 4. Educational & Certification Requirements * Bachelor's degree (or higher) in Computer Science, Information Technology, or related field. * Relevant professional certifications (preferred or equivalent experience): o Cisco: CCNP / CCIE (Enterprise, Security, or Data Center) o Juniper: JNCIP / JNCIE o AWS Certified Advanced Networking / Azure Network Engineer Associate o TOGAF, ITIL, or equivalent enterprise architecture framework o Security certifications (CISSP, CCSP) beneficial. 5. Soft Skills & Attributes * Strategic and analytical thinking. * Strong communication skills - able to translate technical design for non-technical stakeholders. * Leadership and mentoring capability. * Documentation and presentation excellence. * Ability to balance innovation with operational practicality. * Vendor and stakeholder management. * Continuous learning mindset to keep up with evolving technologies. 6. Deliverables (Typical Outputs) * Network Architecture Blueprint / Roadmap * High-Level & Low-Level Design Documents * Network Standards and Configuration Templates * Capacity and Resilience Plans * Risk Assessments and Security Architecture Inputs * Technical Design Authority (TDA) artefacts and governance reports LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.