Find your next tech and IT Job or contract IT security in England

Description: Role Title: Cyber Risk Analyst Location: Knutsford 60% office 40% home Duration: 30/10/2026 £497.40 per day INSIDE IR35 MUST BETHROUGH UMBRELLA Role Description: Role Overview: The Lead Cyber Risk Consultant will spearhead the EOL risk assessment project, providing strategic direction and oversight. In this role, you will lead a comprehensive evaluation of cybersecurity risks associated with End-of-Life technologies across the bank and apply a new cyber risk methodology to assign risk ratingsvii. You will identify opportunities to reduce residual risk in obsolete systemsviii, and guide remediation efforts through to successful transition into BAU processesix. This position requires excellent leadership, communication, and stakeholder management to coordinate between technical teams and senior managementx. Required Skills & Competencies: Cyber Risk Expertise: Deep knowledge of cyber risk management practices, including risk assessment methodologies and frameworks (e.g. NIST CSF, ISO 27005, FAIR). Ability to identify, classify, and prioritize cybersecurity risks in a large enterprise environmentxviii. Technical Understanding: Strong understanding of IT infrastructure and applications, especially the challenges posed by End-of-Life technologies (outdated operating systems, unsupported software, legacy hardware). Capable of evaluating technical dependencies and security implications of obsolete systemsxix xx. Analytical & Methodological Skills: Advanced analytical skills ("cyber analytics"xxi), including proficiency with risk analysis tools or GRC platforms for tracking risk items. Comfortable analyzing data (e.g. asset inventories, vulnerability scan results) to quantify risk levels and support data-driven decision making. Leadership & Coordination: Proven ability to lead a team or project in a cybersecurity context. Excellent organizational skills to manage multiple parallel workstreams (risk assessment phase, remediation phase, reporting, etc.), ensuring milestones are met on time. Communication & Stakeholder Management: Exceptional communication skills, both written and verbal. Able to translate technical risk issues into business terms and present findings/recommendations to stakeholders at various levels2. Strong stakeholder management and negotiation skills to drive consensus on remediation priorities and resource allocation. Problem-Solving: Adept at solving complex problems and devising risk mitigation strategies. Can balance security requirements with operational practicalities, recommending solutions that reduce risk while enabling business objectives. Adaptability: Flexibility to work with both onshore and offshore teams. If offshore, willingness to align part of your working hours to UK business hours for effective collaboration3 4. Qualifications & Certifications: Certifications: Industry-recognized certifications in cybersecurity/risk are highly desirable. Examples include CISSP, CISM (information security management), and especially CRISC (Certified in Risk and Information Systems Control) or CISA for IT risk control. These certifications demonstrate a solid foundation in managing enterprise IT risks and controls. Framework Knowledge: Familiarity with relevant security standards and regulations. Knowledge of ISO 27001 information security management and risk assessment standards, NIST cybersecurity framework, and banking industry regulations or guidelines for operational risk/cyber risk is beneficial. Other: Any certifications in cloud security or technical areas are a bonus if EOL systems span on-prem and cloud (e.g. AWS/Azure security certifications), as well as project management certifications (e.g. PRINCE2, PMP) which can aid in managing the engagement. Experience: Years of Experience: Approximately 8-10+ years of experience in cybersecurity, with a significant portion in cyber risk management or security consulting roles. Prior experience leading risk assessment projects or large-scale security consulting engagements is expected. Domain Experience: Demonstrated experience in conducting risk assessments, security audits, or vulnerability management in complex IT environments. Experience should include evaluating technology lifecycle issues, such as dealing with outdated systems or large-scale remediation programs, ideally within a financial services or highly-regulated industry. Project Leadership: Past roles should reflect the ability to manage or coordinate security projects and to work cross-functionally (e.g., working with IT infrastructure teams, application owners, and governance/Risk functions). Evidence of successfully driving risk remediation initiatives or advising on risk treatment plans is important. Please send latest CV LA International is an award-winning partner of choice for many of the world's most influential companies and government organisations. Holding Enhanced Government Security Accreditation, we are recognised as the European market leader in the delivery of Security Cleared talent to organisations that demand the very highest levels of security, compliance and assurance. A multiple award-winning organisation, having secured the prestigious Queens Award for Enterprise: International Trade over consecutive years. We are committed to fostering an inclusive, equitable and accessible workplace where everyone feels valued and supported. We welcome applications from all individuals, regardless of background or identity, and we encourage candidates who may not meet every listed requirement to still apply. If you require any adjustments or support during the recruitment process, please let us know and we will work with you to ensure a fair and accessible experience. Please Note: If a high volume of applications is received, only candidates shortlisted will be contacted.

CGI Cyber Security Team in the UK is one of the largest Cyber consultancies in the UK with around 1700 members. The UK Cyber team works across a variety of domains including: Government, Defence, Critical Infrastructure, Healthcare, Utilities, Banking and Financial Services and many more. At CGI you will get the opportunity to work across a number of domains and work in all areas of Cyber Security allowing you to grow and develop your career. CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named one of the ‘World’s Best Employers’ by Forbes magazine. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you’ll be part of an open, friendly community of experts. We’ll train and support you in taking your career wherever you want it to go. An opportunity for a CHECK Team Member or Infrastructure CHECK Team Leader is available at CGI, joining the Cyber Security business unit, one of the largest groups of cyber security specialists in the UK. CGI has a long established reputation in this area, undertaking rigorous testing for a variety of commercial and public sector clients for over 30 years. Due to the secure nature of the programme, you will need to hold UK Security Clearance or be eligible to go through this clearance.

The successful candidate will be able to possess a thorough working knowledge of Product Delivery Management lifecycle including: Engage with and influence relevant stakeholders, translating technical concepts to non-technical stakeholders * Translate product requirements and features into an achievable delivery plan, considering the people, processes and technology required to deliver and predicting milestones based on forecasts; all product support documentation; and agreed junctions of maintenance necessary to manage through life support. * Actively manage risks, issues and dependencies, acting on delivery data and identifying ways to mitigate risks. * Identify ways to enhance delivery through the application and continual service improvement approach. * Facilitate and, where required, lead governance meetings and mechanisms, selecting the right stakeholders to join these discussions. * Provide regular and accurate reports to stakeholders and management as appropriate and on request manage the budget for related products and services, including forecasting spending and contributing to business cases as necessary. * Key stakeholder in the transition function where they will be responsible for delivering. * Ensuring that deliveries are correctly concluded and where necessary reviewed and lessons captured. Your experience The core skills and experience required for this role are *A good general IT Service Management background *A blend of Agile methodology expertise, strategic planning, and strong communication to lead cross-functional teams, manage stakeholders, and deliver value iteratively *Driving technical execution, and fostering team collaboration to meet quality, budget, and timeline objectives *Manage and mitigate risks and resolve issues regarding release quality and schedule. *Planning and reporting. *Good knowledge of Agile/Scrum, Lean methodologies, and tools (e.g., Jira) to manage backlogs, sprint planning, and release schedules. *The ability to chair meetings *Knowledge of Remedy *Relationship building with Customers, Internal Teams and 3rd Party suppliers *Acting as the bridge between technical teams and non-technical stakeholders, ensuring clear, consistent communication of progress, blockers, and goals Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take a minimum 10 weeks. LA International is an award-winning partner of choice for many of the world's most influential companies and government organisations. Holding Enhanced Government Security Accreditation, we are recognised as the European market leader in the delivery of Security Cleared talent to organisations that demand the very highest levels of security, compliance and assurance. An award-winning organisation, having secured the prestigious Queens Award for Enterprise: International Trade over multiple years. We are committed to fostering an inclusive, equitable and accessible workplace where everyone feels valued and supported. We welcome applications from all individuals, regardless of background or identity, and we encourage candidates who may not meet every listed requirement to still apply. If you require any adjustments or support during the recruitment process, please let us know and we will work with you to ensure a fair and accessible experience. Please Note: If a high volume of applications is received, only candidates shortlisted will be contacted.

Pentaho Developer 6 Month contract initially Based: Hybrid, 2-3 day p/w onsite in London £550- £650 p/d via Umbrella We have a great opportunity with a world leading organisation where you will be provided with all of the support and development to succeed. A progressive organisation where you can really make a difference. We have a great opportunity for a Pentaho Developer on a long term program of work. Key Responsibilities: * Design and develop ETL workflows using Pentaho Data Integration. * Write and optimize Java and SQL code for data processing. * Collaborate with data engineers and analysts to deliver solutions. * Ensure data integrity, security, and compliance. * Monitor and improve ETL performance and scalability. * Document processes and provide technical support. * Participate in design reviews and provide recommendations. * Support troubleshooting and incident resolution for ETL issues. Key Skills & Experiences: * Strong expertise in Pentaho Data Integration (PDI) * Experience in designing and implementing ETL workflows * Proficiency in Java and SQL for data processing * Ability to optimize ETL performance and scalability * Troubleshooting and debugging skills Desirable skills/knowledge/experience: * Knowledge of data warehousing concepts * Experience with cloud-based ETL deployments * Understanding of security and compliance in data integration * Exposure to Agile methodologies * Familiarity with scripting for automation This is an excellent opportunity on a great project of work, If you are looking for your next exciting opportunity, apply now for your CV to reach me directly, we will respond as soon as possible. LA International is an award-winning partner of choice for many of the world's most influential companies and government organisations. Holding Enhanced Government Security Accreditation, we are recognised as the European market leader in the delivery of Security Cleared talent to organisations that demand the very highest levels of security, compliance and assurance. A multiple award-winning organisation, having secured the prestigious Queens Award for Enterprise: International Trade over consecutive years. We are committed to fostering an inclusive, equitable and accessible workplace where everyone feels valued and supported. We welcome applications from all individuals, regardless of background or identity, and we encourage candidates who may not meet every listed requirement to still apply. If you require any adjustments or support during the recruitment process, please let us know and we will work with you to ensure a fair and accessible experience. Please Note: If a high volume of applications is received, only candidates shortlisted will be contacted.

CGI’s Space, Defence & Intelligence business unit delivers secure, mission-critical solutions that support national defence. We are seeking an Azure Cloud Engineer to support a highly secure programme for UK Defence. You will work on an established secure project— a global electronic medical and dental records system used by the UK Armed Forces worldwide, including deployed and maritime environments. This is a hands-on role supporting a live, business-critical service. This position will require some on site work requirements in Leatherhead, as well as holding or going through UK Security Clearance.

Required: Vetting Case Handler Location: Fully Remote Duration: 6 month initial contract Rate: £25-26ph IR35 Status: Inside Vetting Case Handler Key Responsibilities Review vetting applications to check all required information has been provided and in the correct format Checking identification documents, right to work in the UK and proof of address documents Liaising with external Client Vetting teams to progress applications Liaising with internal project PMO teams to progress applications Maintain vetting records on the internal Accenture SharePoint portal & PowerApp platform Contribute towards establishing and maintaining policy, procedures and records relating to personnel security and National Security Vetting (NSV) Sponsorship/ submission of NSV applications and aftercare reports to United Kingdom Security Vetting (UKSV) and other Contracting Authorities Support weekly status calls with internal project teams and external client teams to discuss progress of on-going vetting cases Monitoring the internal Vetting mailbox and responding to regular queries Participate in identifying and mitigating personnel security related risks Ensure personnel security incidents are reported to the Personnel Security Controller and participate in the resolution activities Experience Working with Power Apps and Excel as well as experience in background checks and UK National Security Vetting would be advantageous. Skills Must be a current holder of, or be able to obtain, Security Check (SC) clearance - Essential Must be a British national - Essential Able to liaise effectively with both internal and external stakeholders Attention to detail Approaches challenges as opportunities LA International is an award-winning partner of choice for many of the world's most influential companies and government organisations. Holding Enhanced Government Security Accreditation, we are recognised as the European market leader in the delivery of Security Cleared talent to organisations that demand the very highest levels of security, compliance and assurance. A multiple award-winning organisation, having secured the prestigious Queens Award for Enterprise: International Trade over consecutive years. We are committed to fostering an inclusive, equitable and accessible workplace where everyone feels valued and supported. We welcome applications from all individuals, regardless of background or identity, and we encourage candidates who may not meet every listed requirement to still apply. If you require any adjustments or support during the recruitment process, please let us know and we will work with you to ensure a fair and accessible experience. Please Note: If a high volume of applications is received, only candidates shortlisted will be contacted.

PAM Architect - CyberArk The PAM architect will have strong CyberArk experience to define and deliver the end-to-end architecture for a major Privileged Access Management implementation. This includes design of the CyberArk CorePAS platform, onboarding strategy for privileged accounts, vaulting, session control, credential rotation, JIT access, and integration with enterprise systems including AD, Entra ID, ServiceNow, and infrastructure/security tooling. Experience and skills required: - PAM - Saviynt - CyberArk Vault - Integration architecture The role is inside IR35 and for 3 months initially. The work is based on a hybrid working model with two days in the office in Central London each week. To be considered for the position please send your latest CV over. LA International is an award-winning partner of choice for many of the world's most influential companies and government organisations. Holding Enhanced Government Security Accreditation, we are recognised as the European market leader in the delivery of Security Cleared talent to organisations that demand the very highest levels of security, compliance and assurance. A multiple award-winning organisation, having secured the prestigious Queens Award for Enterprise: International Trade over consecutive years. We are committed to fostering an inclusive, equitable and accessible workplace where everyone feels valued and supported. We welcome applications from all individuals, regardless of background or identity, and we encourage candidates who may not meet every listed requirement to still apply. If you require any adjustments or support during the recruitment process, please let us know and we will work with you to ensure a fair and accessible experience. Please Note: If a high volume of applications is received, only candidates shortlisted will be contacted.

The Director General for Digital Foundations will lead the UK Government's work to lay the digital foundations for the country, including through delivering safe and secure access for all through programmes and policy to build and support infrastructure, and ensuring cyber security for individuals, business and across government. As DG, you will: Lead government cyber security policy and oversee the Government Cyber Unit Share responsibility for the UK’s digital identity scheme as the policy develops Oversee implementation for the Digital Inclusion Action Plan Lead delivery of Project Gigabit and the Shared Rural Network as Building Digital UK transitions from an Executive Agency to a DSIT directorate Strengthen telecoms and digital infrastructure resilience Represent DSIT in industry and regional partnerships Click to view a video from Emran Mian, Permanent Secretary DSIT

At CGI, we are driving critical transformation programme for our Space, Defence, and Intelligence business unit, delivering secure, high-impact solutions that enable mission success. We are seeking a Service Transition Manager to lead the seamless integration of capabilities into a next-generation Identity and Access Management service. In this role, you will shape service readiness, ensure operational continuity, and deliver measurable outcomes within a complex, security-cleared environment. Working collaboratively with experts across CGI and our clients, you will take ownership of transition delivery, contribute innovative approaches, and play a key role in advancing secure digital services that make a real-world difference. CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named a UK ‘Best Employer’ by the Financial Times. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you’ll be part of an open, friendly community of experts. We’ll train and support you in taking your career wherever you want it to go. Due to the secure nature of the programme, you will need to hold UK Security Clearance or be eligible to go through this clearance. This is a hybrid position with frequent onsite commitments in Chippenham.

Role Summary The PingFederate Engineer (UK Onshore) is responsible for the design, implementation, and operational support of enterprise grade federated identity and single sign on (SSO) solutions using PingFederate. The role is client facing, requiring close collaboration with UK based stakeholders, application teams, and security leadership to deliver secure, compliant authentication services across on premise, cloud, and hybrid environments. This role operates within regulated UK environments (e.g. Financial Services, Insurance, Healthcare), ensuring adherence to UK security standards, data protection requirements, and audit expectations while enabling modern authentication using SAML, OAuth, and OpenID Connect. ________________________________________ Key Responsibilities UK Onshore Delivery & Stakeholder Engagement * Act as a UK onshore technical SME for PingFederate within client IAM programmes. * Engage directly with UK business, application, and security stakeholders to gather requirements and explain federation designs in clear, non vendor language. * Participate in design authorities, CABs, and security reviews, representing the identity federation domain. * Support UK delivery governance, documentation standards, and change management processes. ________________________________________ Identity Federation & SSO Engineering * Design, configure, and support PingFederate as an Identity Provider (IdP) and Service Provider (SP) for internal, partner, and customer applications. * Implement and support SAML 2.0, OAuth 2.0, and OpenID Connect (OIDC) authentication flows. * Deliver IdP initiated and SP initiated SSO integrations for web, mobile, and API based services. * Integrate PingFederate with Active Directory / LDAP and external identity providers. ________________________________________ Platform Administration & Operations * Perform installation, configuration, upgrade, and patching of PingFederate in line with UK enterprise standards. * Configure high availability, clustering, and load balanced deployments suitable for regulated production environments. * Manage SSL/TLS certificates, key rotation, trust stores, and federation metadata. * Provide 3rd line support, root cause analysis, and incident resolution for authentication and federation issues. * Support change, release, and incident processes aligned to ITIL practices. ________________________________________ Security, Risk & Compliance * Ensure solutions comply with UK regulatory and security requirements, including: o Data protection and privacy obligations (e.g. UK GDPR) o Internal security policies and audit controls * Implement MFA and adaptive authentication integrations (e.g. PingID or third party MFA). * Apply Zero Trust and least privilege principles within federation and token designs. * Support internal and external audits by providing technical evidence and documentation. ________________________________________ Customisation & Integration * Develop or support custom PingFederate adapters, selectors, and token translators (Java based) where required. * Integrate PingFederate with PingAccess, API gateways, CIAM platforms, and cloud identity services. * Work with DevOps teams to support automation, environment consistency, and controlled deployments. ________________________________________ Required Skills & Experience Essential Technical Skills * Strong, hands on experience engineering and supporting PingFederate in enterprise environments. * Deep understanding of: o SAML 2.0 o OAuth 2.0 o OpenID Connect (OIDC) * Experience integrating with Active Directory, LDAP, and identity stores. * Solid understanding of PKI, certificates, encryption, and secure authentication flows. * Ability to troubleshoot complex federation issues across multiple systems. Experience * Typically 4-8+ years in IAM / Access Management / Identity Federation roles. * Proven experience working in UK regulated or compliance driven environments. * Experience working onshore with UK clients or stakeholders. * Exposure to cloud or hybrid identity architectures (Azure AD, AWS, GCP) is desirable. ________________________________________ Education & Certifications * Degree in Computer Science, Information Security, or related discipline (or equivalent experience). * Desirable (not mandatory): o Ping Identity certifications o Security or IAM certifications (CISSP, CISM, Security+, etc.) ________________________________________ Behavioural & Delivery Expectations (UK Onshore) * Strong written and verbal communication skills suitable for UK client environments. * Ability to explain complex IAM concepts to non technical stakeholders. * Comfortable working within UK delivery governance, risk, and audit frameworks. * Collaborative mindset with a strong focus on quality, stability, and compliance. ________________________________________ Nice to Have * Experience delivering Financial Services or Insurance IAM programmes in the UK. * CIAM (Customer Identity) exposure. * Migration experience from ADFS, SiteMinder, or other legacy federation platforms to PingFederate. * Familiarity with ServiceNow, JIRA, Confluence, and structured delivery models.