Find your next tech and IT Job or contract NIST

Role: Security tester Rate: Outside IR35 Location: 1-2 day a week onsite Croydon (maybe less) Duration: 6 months initially SC clearance required Security Tester - Job Description The Security Tester will play a key role in delivering robust application security testing aligned with Secure-by-Design (SbD) principles and compliance frameworks such as NIST, CAF, and CAT. This role supports the Home Office's strategic aim to scale enterprise security testing capabilities, reduce outsourcing reliance, and embed security into the software development lifecycle. Key Responsibilities Conduct Security Testing using SAST and DAST tools Collaborate with Cyber Security Managers and Governance teams to ensure alignment with organisational security policies and standards Mentor and upskill team testers in application security testing and automation Track and report on security metrics and KPIs, including vulnerability trends and remediation outcomes. Integrate security testing into CI/CD pipelines, supporting shift-left strategies and DevSecOps practices. Required Skills & Experience Strong understanding of security standards including OWASP, NIST SP 800-53, ISO 27001, and CIS Benchmarks. Experience with SAST/DAST tools and Cloud Security platforms (AWS, Azure). Familiarity with Secure-by-Design principles and organisational security policies. Experience with penetration testing, risk assessment, and compliance testing. Proficiency in tools such as JIRA, SharePoint, and vulnerability management platforms. Desirable Attributes Ability to interpret and apply OWASP and NIST security principles across diverse project environments. Strong stakeholder engagement and communication skills. Experience in developing deployment checklists and decision trees for secure tool usage. Certifications such as CREST CRT, OSCP, CEH, or SANS are highly desirable. Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take up to a minimum 10 weeks. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.

Head of IT Infrastructure and Security In summary we are looking to recruit an all-round individual with expert knowledge and hands-on experience of IT Infrastructure coupled with Security, Compliance & Risk Management You must have upwards of 10 years hands-on expertise in IT Infrastructure combined with Security and Risk – ideally from within the banking or insurance sector. The Head of IT Infrastructure and Security Lead is responsible for overseeing the organisation’s IT operations, ensuring the stability, continuity, security, and efficiency of its technology platforms within a global commercial insurance environment. Some of the key points to consider for this role are: Define and enforce cloud security policies, identity management, and access controls to protect systems, networks, and data. Oversee the adoption of zero-trust security principles to enhance protection across cloud platforms. Manage identity and access management (IAM) in a cloud-first environment, including Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM). Lead threat monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). Technology: Microsoft Azure Infrastructure design and administration, including topology, Azure networking, services, and component knowledge, Microsoft AD (Entra), Server and SQL experience, O365 administration and design Microsoft 365 & Azure: Strong experience managing Microsoft 365 (Exchange, SharePoint, Teams), Azure cloud infrastructure, and security tools such as Microsoft Defender and Sentinel. Security & Compliance: Deep knowledge of security frameworks (ISO 27001, NIST, CIS), compliance requirements (GDPR, SOC2), and risk management best practices. Summary: Problem-Solving & Decision-Making: Capable of making informed decisions and resolving complex IT issues in a fast-paced environment. Stakeholder Engagement: Ability to communicate effectively with technical and non-technical stakeholders, including senior leadership and business users. The role will involve managing a Cloud environment in a team of 4 Technical people. Managing 6 different suppliers which include Security, IT Networks, Hosting and Servers and 3 party software. The aim of the role is to bring the MSP’s (suppliers of hardware and software) to the same page for the stakeholders and the Board and ensure technology is running smoothly. The Client is a financial organisation based in the City of London. This is a hybrid position with 3 days in the office. Must have a Bachelor’s degree in IT or similar. The salary for this role will be in the range £85K - £95K plus Excellent Benefits. Do send your CV to us in Word format along with your salary and notice period.

Vous jouerez un rôle technique essentielpour un projet européen d’envergure: conception, déploiement et maintien de solutions cloud sécurisées, évolutives et automatisées pour des infrastructures de pointe. Ce poste requiert impérativement la citoyenneté de l’Union Européenne (au moins 10 ans) et une parfaite maîtrise de l’anglais. Responsabilités principales Concevoir et déployer des environnements cloud sécurisés et résilients avec Microsoft Azure en appliquant les principes Infrastructure as Code (IaC) . Piloter les déploiements Kubernetes , en garantissant la conception des clusters, leur scalabilité et leur haute disponibilité. Gérer et automatiser le cycle de vie Kubernetes (provisionnement, mises à jour, monitoring, optimisation). Configurer et administrer les Azure Landing Zones , les modèles Bicep et les machines virtuelles pour des charges hybrides et conteneurisées. Implémenter et maintenir les solutions de Gestion des Identités et Accès (IAM) . Appliquer les normes de sécurité et conformité (CIS Benchmarks, NIST SP 800) avec des outils adaptés (comme ACS Operator ). Concevoir et maintenir des pipelines CI/CD avec GitHub Actions et déploiements GitOps via ArgoCD . Automatiser l’infrastructure pour Kubernetes et Azure avec Ansible et Terraform . Collaborer étroitement avec les équipes DevOps, cloud et développement pour garantir la cohérence, la fiabilité et la conformité des déploiements.

We are looking for a Technical Security Architect to add security considerations and controls to the design, development, and integration of network infrastructures. Your role will involve working in an Agile Scrum contributing to the wider programme and will be working within an overall Agile framework with Secure by Design and NIST methodologies. On a day-to-day basis, you will work closely with infrastructure and service architects alongside integrators and testers but will function as the security subject matter expert for all aspects of Scrum deliverables. You will be responsible for the delivery of key security enforcing capability into the platform. Mandatory skills: * Broad experience working within network infrastructure design, development, and review for infrastructure solutions, with specific focus upon security. * Experience designing and documenting security solutions. * Knowledge and experience with the design and implementation of vulnerability scanning solutions. * An adaptive ability to consider new innovations and technologies within compressed timeframes. * An ability to robustly present and defend security designs to both peer and leadership positions. Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take up to a minimum 10 weeks. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.