Find your next tech and IT Job or contract role.

Head of Digital & Data Our Client is bank based in Central London with offices across Europe. They are looking to recruit an expert candidate for the Head of Digital position – which is an exciting new position. You will have proven track of working within the banking World and delivering digital capabilities for the bank. You must have at least 5 to 10 years expertise in the digital space within the banking World. This is a senior position and will report to the Board at the bank. The Digital & Data Lead role is responsible for overseeing the strategy and development of the Bank’s digital products and processes and design and implementation of Bank wide data governance framework. Playing an important role within the Bank’s Digital Transformation programme, the role holder will: • Work with multi-disciplinary teams responsible for researching, designing, building and/or procuring, and releasing transformative user journeys – for both customers and employees. • Responsible for engaging collaboratively with the various business and support functions in order to ensure all interests are represented in the development of the Bank’s future state digital capability and to support the adoption and embedding of new digital processes. • Define the overarching digital products and processes vision, building the roadmaps and leading the prioritisation to deliver that vision in a performant, secure and user focussed way. In doing so, ensure alignment to wider Bank strategy and ensure that maximum business value is achieved. • Accountable for delivering and then driving the continual optimisation of the digital products and processes to support the realisation of a seamless, flexible customer and colleague experience. • Responsible for design and implementation of bank wide data governance framework and ensure businesses and support functions are held accountable for ownership and maintenance of accurate data within the bank’s ecosystem. • Responsible for governance, risk management and regulatory compliance activities relating to the digital products and processes under development, forging strong, effective relationships with the 1st and 2nd line control functions. • Develop an inclusive and collaborative culture where the advice and knowledge of skilled specialists around user insights, journey and UX design, technology delivery, security and infrastructure are heard and respected in order to develop highly effective digital products through a process of research, ideation and design. • Forge a strong working relationship with Technology and partner with them on the development and delivery of the digital products and processes. • Work closely with stakeholders in Group to accelerate digital development and ensure optimal ways of working. Candidate expertise: • Outstanding SME in digital product and process management and digital user experience design, within the Financial Services industry. • Customer-centric with a strong focus on end user experience and outcomes. • Demonstrable experience in the end to end lifecycle of product and process development, including managing and delivering high quality digital products and processes to end users, from ideation through to delivery, feedback and improvement. • Experience and/or a robust understanding of the bank wide processes is highly desirable. • In-depth knowledge of agile methodologies and significant experience of working within an agile environment. • High degree of proficiency in prototyping and iterative development, with experience in building product teams desirable. • Highly positive and effective leader, who actively coaches, develops, and supports team members, sharing their experience and knowledge with others. • Be driven, have high levels of personal accountability, not being afraid to be hands-on and get into the detail. • Strong influencing skills with the ability to confidently represent the Digital Product area and gain buy-in to the strategy and roadmap with a diverse set of stakeholders. • Ability to work independently and manage multiple projects simultaneously, often with competing priorities. • Have strong people skills; approachable, empathetic and able to work with people to achieve progress. • Have strong written and verbal communication skills. • A good knowledge of the Financial Services industry. • Strong awareness of the digital banking ecosystem, keeping abreast of market trends and competitor propositions. • Relevant certifications or qualifications in agile product management or aligned disciplines. • Understanding of development processes and business case development. Role requirements: • Actively Builds Relationships • Embraces Change and Technology • Creates Business Value • Role Specific Regulations • Risk Management, Governance and Controls • Consumer Duty This is a hybrid role – at least 3 days in the office in Central London. The salary will be circa £100K - £140K plus benefits – dependent on experience. Do send your CV to us in Word format along with your salary and notice period.

Looking for a experienced Cyber Security and Information Assurance Manager to lead the development and implementation of cyber security strategies for our programme. This role will focus on Operational Technology (OT) systems and ensure compliance with regulatory requirements. Key Responsibilities * Lead the cyber security strategy for OT systems design within the SMR programme, including ICS, SCADA, and other safety/security -critical systems. * Ensure compliance with relevant nuclear and cyber security standards, including: o IEC 62443 (Industrial Automation and Control Systems Security) o ISO/IEC 27001 (Information Security Management) o NCSC guidance and UK Cyber Essentials o ONR Security Assessment Principles (SyAPs) * Develop and maintain the Information Assurance Framework for the project. * Collaborate with engineering, IT, and regulatory teams to integrate security into system design and delivery. * Conduct risk assessments, threat modelling, and vulnerability analysis for OT/IT environments. * Oversee incident response planning and cyber resilience testing. * Oversea Systems Integration and Testing * Manage relationships with external vendors, regulators, and stakeholders. * Provide leadership and mentoring to cyber security personnel within the division. Required Qualifications and Experience * Proven experience in cyber security management within critical infrastructure or nuclear environments. * Strong expertise in Operational Technology (OT) and industrial control systems. * In-depth knowledge of relevant codes, standards, and regulatory frameworks. * Experience with secure system design, implementation, and lifecycle management. * Excellent stakeholder engagement and communication skills. * Relevant certifications (e.g., CISSP, CISM, GICSP, ISO 27001 Lead Implementer) are highly desirable. * Degree in Cyber Security, Information Assurance, Engineering, or a related field. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.

Key Responsibilities Define and deliver BDUK’s Digital, Data and Technology (DDaT) strategy, aligning it with organisational priorities and advising senior leaders on opportunities, risks and investment decisions Lead the design, build and running of digital services and applications that power BDUK’s core programmes, and embed user-centred design, accessibility and continuous improvement Build on BDUK’s data capabilities, ensuring data is secure, well-governed and high quality, and drive the use of data, automation, AI and machine learning to generate insight and improve decisions Oversee the performance, reliability and security of core systems and platforms, ensuring robust operations, risk management and compliance with government standards Lead and develop a skilled, multidisciplinary DDaT workforce, fostering a culture of collaboration, innovation and continuous improvement Represent BDUK’s DDaT agenda across the organisation and the wider government community, championing excellence and capability building

Job Title: Cyber Security Assurance Practitioner Location: Preston. We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Salary: Circa £39,000 dependent on experience What you'll be doing: Conduct Cyber Security risk assessment of systems and services Deliver documentation to demonstrate compliance to internal and external stakeholders. Conduct assessment and provision of control effectiveness in managing information security risk Perform health checks of controls and their effectiveness aligned with NIST (DFARS), DEFCON and HMG Secure by Design requirements to highlight key issues Support and implement service improvement for the assurance function Work with EIT Business Operation Teams to ensure findings/recommendations stemming from Operational Assurance are highlighted, tracked, and remediated Your skills and experiences: Educated to degree level (or equivalent) preferably in a related technical discipline Understanding of cyber security technologies, their implementation and secure configuration CompTIA (A+, Network+, Security+)/ NSCP Practitioner /CCSK/ISO27001 Practitioner (Lead Auditor etc.), CISM-P Cyber Security qualification - Desirable one or more certifications Capable of a high standard of written communication including experience of writing complex reports and giving formal presentations to senior business peers Ability to work autonomously and manage workload and priorities based on demand from multiple projects. Good team working ethic and strives to meet personal and team objectives Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive. The Cyber Security Assurance team: The Cyber Security Assurance Team with Shared Services are part of Enterprise IT (EIT) with responsibility for assuring all enterprise managed systems and services, spanning UK/RoW. The team ensure systems / services are built and configured in-line with applicable Cyber Security Standards. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks. Closing Date: 22nd August 2025 We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible. #LI-SH1 #LI-Hybrid

A Microsoft Security Engineer is required for an initial 6 month contract. This is a hybrid role with 2-3 days per week on site in London and is inside IR35 so will require working via an FCSA accredited umbrella company This role is for a proactive and skilled Microsoft Security Engineer/Analyst tasked with safeguarding digital assets by leveraging a comprehensive suite of Microsoft security technologies. The ideal candidate will use Microsoft Defender XDR for managing and responding to threats, implement Microsoft Purview to ensure data compliance, and secure identities and access through Microsoft Entra ID. Essential skills/knowledge/experience: Microsoft Defender XDR (Extended Detection and Response) *Platform Expertise and Management: Act as a subject matter expert for the core components of the Defender XDR suite, including: *Microsoft Defender for Endpoint: Manage endpoint protection, detection, and response across our device fleet. *Microsoft Defender for Office 365: Protect against email-based threats, including phishing, malicious attachments, and compromised links. *Microsoft Defender for Identity: Monitor on-premises Active Directory signals to identify and investigate threats related to compromised identities. *Microsoft Defender for Cloud Apps: Enforce security policies and provide threat protection across our cloud applications. *Microsoft Defender Vulnerability Management: Prioritize and address critical vulnerabilities and misconfigurations based on a risk-based assessment. *Collaboration & Support: Work with internal IT and other security teams to ensure the effectiveness of the platform. Serve as a point of contact for external services like Microsoft Defender Experts for proactive hunting and expert guidance. *Documentation & Reporting: Document incident response procedures, create reports on security posture, and provide regular briefings to leadership. Microsoft Purview (Data Governance and Compliance) *Data Lifecycle Management: Implement policies for records management and retention to ensure that data is retained according to legal and business requirements and securely disposed of when no longer needed. *Data Security Posture Management (DSPM): Utilize DSPM capabilities to understand data risk, identify sensitive data across the environment, and implement controls to mitigate risk. This includes managing data security posture related to AI applications and models. *eDiscovery & Auditing: Support legal and compliance teams by utilizing Purview's eDiscovery and audit capabilities for investigations. *Education: Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field. *Experience: 8-10 years of experience in a cybersecurity role, with a strong focus on Microsoft security solutions. *Technical Skills: *In-depth practical knowledge of the Microsoft security stack, including Defender XDR, Purview, and Entra ID. *Experience with scripting languages, particularly PowerShell, for automation and management. *Familiarity with common cybersecurity frameworks and attack methodologies, such as the MITRE ATT&CK framework. *Certifications (Preferred): *Microsoft Certified: Security Operations Analyst Associate (SC-200) *Microsoft Certified: Identity and Access Administrator Associate (SC-300) *Microsoft Certified: Information Protection Administrator Associate (SC-400) *Certified Information Systems Security Professional (CISSP) Microsoft Entra ID (Identity and Access Management) *Advanced Threat Protection: Utilize Microsoft Entra ID Protection to identify and respond to compromised credentials and other identity-based risks. Work closely with the Defender for Identity team to monitor on-premises Active Directory signals for threats. *Privileged Access Management: Implement and maintain Privileged Identity Management (PIM) and Privileged Access Management (PAM) to provide just-in-time (JIT) access and enforce the principle of least privilege. *Authentication Protocols: Ensure the proper configuration and integration of various authentication protocols, including SAML, OAuth, OIDC, and SCIM for application and service provisioning. *Device Management: Secure Bring Your Own Device (BYOD) and other device access by implementing device-based access policies and configurations. Desirable skills/knowledge/experience: *Excellent analytical and problem-solving abilities. *Strong communication and collaboration skills to work effectively with technical and non-technical teams. *A proactive mindset and the ability to adapt to a fast-paced, evolving threat landscape. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.

IT Security Manager Our Client is a large international organisation who are looking to recruit an IT Security Manager with at least 5 to 8 years proven expertise. Provide advice, support and guidance to all Company Corporate functions to assist them to maintain and improve their information security maturity. To work collaboratively with all areas of the Company Corporate and build networks and relationships to promote Information Security. Act as subject matter expert on for IT Security, including legal and regulatory compliance Advise Company Corporate functions on how to achieve the required controls and assist with solutions to support them. Eg Support in the development of standards and their application in line with Group security policies. Participate in Company BU’s Projects giving support, guidance, control validation and overall security assurance. This could also involve sitting on major project steering committees. Support and encourage the ethos and methodology of security by design. Aid GRC to build, implement and facilitate a mechanism to aid BU’s to assess and measure their security compliance to policies. Drive the development of BU/Divisional security roadmaps. Giving oversight of key non-conformities to feed into the CISO roadmap. Coach, train and educate the Company IT and Functions to up skill and increase the security maturity in BU’s. Be an active member of the Company’s IS Security community, contributing to and leveraging the experience and lessons learned from other BU’s Produce, implement and standardise protocol and guidance material to support Business unit activities – examples – Asset register templates, third party due-diligence. Facilitate and chair the security working group meetings Engage and manage third party relationships to support the Company and its affiliates Aid Procurement and the tendering process Raising the security baseline controls and standardising where it makes sense to do so. Understanding the different business requirements and aligning to their objectives Support Security operations to continuously improve information security awareness across the group, including phishing campaigns and associated reporting Experience Experience in an information security risk leadership role within a large organisation. Confident in presenting, discussing and championing ideas and concepts with senior stakeholders. Experience of running information security risk governance processes and structures Familiarity with relevant industry standards for information security (e.g. ISO27001, NIST CSF) Experience of creating, implementing and assessing against information security policies and standards Creativity Able to analyse complex, ambiguous problems and summarise clearly with a view to establishing practical solutions Able to “bridge the gap” between technologists and business-people, bringing to life information security risks to the business, while maintaining a pragmatic outlook on likelihood and impact of the risk and cost/complexity of the mitigation. Ensuring initiatives/programmes are anchored in best practice whilst still being highly practical/pragmatic. Ability to defuse situations and resolve conflict to a win-win outcome Influence others understand their views and agree ways of working that are acceptable to all parties. Business acumen to understand business risks and the information security implications Able to identify when information security risks need to be escalated to achieve the right level of management visibility. Able to prioritise security risks and controls, differentiating the essential from the “nice to have”. Able to judge how to communicate messages to people to maximise buy-in and/or understanding. Able to analyse data with rigour & reach sound conclusions Can assess when further data gathering, or analysis will bring diminishing returns. Can place appropriate weight on prevailing (sometimes conflicting) evidence. Support and manage budget Responsibility Responsibility of information security incident management Responsibility for security assessments and assurance activities (e.g. penetration testing) and when to use them. Oversee and management of security compliance management and reporting in relation to any relevant regulatory or legal requirements Operational responsibility of management of third parties Responsibility for managing change management around project and change leadership. Able to judge the political and other people aspects of a situation, and tailor messages and approach to bring people along. Able to work with others, setting challenging but realistic targets for team members, and through coaching and appropriate guidance, securing a successful outcome. A positive collegiate approach to developing relationships and networks at all levels across the Company and the gravitas to work persuasively with senior stakeholders. Is aware of different styles of stakeholders and can adjust own leadership style successfully to bridge any gaps. The Client and the role is based in Central London – and you will be required to be in the office at least 3 days week. The salary for this position will be £75K + £85K plus Benefits. Please do send your CV to us in Word format for this exciting new position along with your salary and availability.

Job title: Data Governance and Management Lead Location: Frimley or Preston - We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Salary: £60,000 depending on skills and experience What you'll be doing: Manage, on behalf of the Enterprise Data Owner, all or part of the People & Organisation data set on a day-to-day basis through the data lifecycle, including data governance processes Own relevant data management documentation and collateral, ensuring that regular review and update of these assets is completed on time and to a high standard, e.g. People & Organisation Data Standard Support the HR data community from data owner to data creator, by providing process, expertise and knowledge which supports excellent management of data across its lifecycle Support the HR business community to understand and adopt data capabilities, ensuring that the derived value and benefit can be tangibly communicated and reported upon, including Master Data Management (MDM), Data Quality Assurance and Data Cataloguing Establish and facilitate a People & Organisation Data Governance Working Group in conjunction with the Office of the Chief Information Officer Data Governance team Promote the importance and value of HR data across the organisation, seeking opportunities to reduce costs / risk and drive value through improved data management practices Your skills and experiences: Essential: Thorough knowledge & experience of the practical application and development of Data Governance Prior thorough knowledge & experience of associated Data Governance, Data Protection and HR toolset processes, including pan-system data management and international legislative considerations Hands-on experience within Master Data Management and/or Data Quality Assurance practices and toolsets Educated to degree level or equivalent experience Prior experience of the HR function, with specific regard to Data Governance and Master Data Management is required for this role Desirable: DAMA Certified Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive. The Data Management team: Working alongside the Head of People Data Management and the Chief Technology and Information Office, the Data Governance and Management Lead will play a key, strategic role in the management and optimisation of our people data infrastructure by defining, embedding and advocating for robust and transparent data management, compliance and security frameworks across a broad range of data stewards and processors. This role requires a strategic thinker with strong analytical skills and a deep understanding of Data Governance, Quality Assurance, Metadata Management and Master Data Management. They should demonstrate a methodical approach to solving problems and confidence to challenge the status quo. Be a clear and effective communicator, with the ability to influence and persuade stakeholders at all levels. Will be highly motivated by driving change and embedding structure and process within a dynamic and evolving environment. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks. Closing Date: 9 September 2025 We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible. #LI-DL1 #LI-Hybrid

AI Consultant – Assurance & Risk (SC/DV Cleared) Location: London + UK travel | Contract: Inside IR35 SC cleared (DV desirable) candidates only. Morela is supporting our client, seeking an experienced AI Consultant – Assurance & Risk to help embed trust, safety, and responsibility into AI adoption across high-security projects. Key Responsibilities: Implement AI risk management and assurance frameworks. Conduct testing, evaluation, and validation of AI/ML solutions. Advise Defence teams on ethical, regulatory, and operational compliance. Support safe deployment of AI systems and guide MLOps practices. What we’re looking for: Active SC clearance (DV desirable). Experience in AI assurance, risk management, or governance. Knowledge of standards such as ISO, NIST, FIPA . Strong communication skills for both technical and non-technical stakeholders. Why join: Work on Defence AI projects of national importance. Collaborate with industry leaders in AI ethics and safety. Shape the future of responsible AI in high-security environments. Please contact me for immeidate consaideraiton.

IT Security Manager Our Client is a large international organisation who are looking to recruit an IT Security Manager with at least 5 to 8 years proven expertise. Provide advice, support and guidance to all Company Corporate functions to assist them to maintain and improve their information security maturity. To work collaboratively with all areas of the Company Corporate and build networks and relationships to promote Information Security. Act as subject matter expert on for IT Security, including legal and regulatory compliance Advise Company Corporate functions on how to achieve the required controls and assist with solutions to support them. Eg Support in the development of standards and their application in line with Group security policies. Participate in Company BU’s Projects giving support, guidance, control validation and overall security assurance. This could also involve sitting on major project steering committees. Support and encourage the ethos and methodology of security by design. Aid GRC to build, implement and facilitate a mechanism to aid BU’s to assess and measure their security compliance to policies. Drive the development of BU/Divisional security roadmaps. Giving oversight of key non-conformities to feed into the CISO roadmap. Coach, train and educate the Company IT and Functions to up skill and increase the security maturity in BU’s. Be an active member of the Company’s IS Security community, contributing to and leveraging the experience and lessons learned from other BU’s Produce, implement and standardise protocol and guidance material to support Business unit activities – examples – Asset register templates, third party due-diligence. Facilitate and chair the security working group meetings Engage and manage third party relationships to support the Company and its affiliates Aid Procurement and the tendering process Raising the security baseline controls and standardising where it makes sense to do so. Understanding the different business requirements and aligning to their objectives Support Security operations to continuously improve information security awareness across the group, including phishing campaigns and associated reporting Experience Experience in an information security risk leadership role within a large organisation. Confident in presenting, discussing and championing ideas and concepts with senior stakeholders. Experience of running information security risk governance processes and structures Familiarity with relevant industry standards for information security (e.g. ISO27001, NIST CSF) Experience of creating, implementing and assessing against information security policies and standards Creativity Able to analyse complex, ambiguous problems and summarise clearly with a view to establishing practical solutions Able to “bridge the gap” between technologists and business-people, bringing to life information security risks to the business, while maintaining a pragmatic outlook on likelihood and impact of the risk and cost/complexity of the mitigation. Ensuring initiatives/programmes are anchored in best practice whilst still being highly practical/pragmatic. Ability to defuse situations and resolve conflict to a win-win outcome Influence others understand their views and agree ways of working that are acceptable to all parties. Business acumen to understand business risks and the information security implications Able to identify when information security risks need to be escalated to achieve the right level of management visibility. Able to prioritise security risks and controls, differentiating the essential from the “nice to have”. Able to judge how to communicate messages to people to maximise buy-in and/or understanding. Able to analyse data with rigour & reach sound conclusions Can assess when further data gathering, or analysis will bring diminishing returns. Can place appropriate weight on prevailing (sometimes conflicting) evidence. Support and manage budget Responsibility Responsibility of information security incident management Responsibility for security assessments and assurance activities (e.g. penetration testing) and when to use them. Oversee and management of security compliance management and reporting in relation to any relevant regulatory or legal requirements Operational responsibility of management of third parties Responsibility for managing change management around project and change leadership. Able to judge the political and other people aspects of a situation, and tailor messages and approach to bring people along. Able to work with others, setting challenging but realistic targets for team members, and through coaching and appropriate guidance, securing a successful outcome. A positive collegiate approach to developing relationships and networks at all levels across the Company and the gravitas to work persuasively with senior stakeholders. Is aware of different styles of stakeholders and can adjust own leadership style successfully to bridge any gaps. The Client and the role is based in Central London – and you will be required to be in the office at least 3 days week. The salary for this position will be £75K + £85K plus Benefits. Please do send your CV to us in Word format for this exciting new position along with your salary and availability.

Description Hello, we're Starling. We built a new kind of bank because we knew technology had the power to help people save, spend and manage their money in a new and transformative way. We're a fully licensed UK bank with the culture and spirit of a fast-moving, disruptive tech company. We're a bank, but better: fairer, easier to use and designed to demystify money for everyone. We employ more than 3,000 people across our London, Southampton, Cardiff and Manchester offices. As a Senior Credit Risk Analyst, you'll play a key role in shaping the future of our lending portfolios. You'll be at the forefront of credit decision optimisation, using data-driven insights to refine our strategies across the credit risk lifecycle. You'll help ensure lending decisions remain accurate, responsible, and aligned with our risk appetite and business goals, while supporting growth, customer outcomes and regulatory expectations. This is a high-impact role where your analytical expertise and curiosity will directly influence our ability to lend safely and fairly. Key Responsibilities - Develop expert understanding of new business originations and in-life credit risk management, including all aspects of credit decisioning and customer journeys - Optimise our credit underwriting - both automated and manual - to improve accuracy, efficiency, and control - Monitor and evaluate strategy performance, including underwriting, limit changes to drive performance improvements. - Investigate and develop new data sources to enhance insight and decision capability - Build and maintain datasets, dashboards and MI to support data-driven strategy decisions - Support business growth and profitability while balancing risk, reward and responsible lending - Work closely with 2LoD Credit Risk and Compliance to ensure strategies align with risk appetite and regulatory expectations - Collaborate with Product, Data and Engineering teams to deliver rapid, safe implementation of credit rules and enhancements - Produce thoughtful, actionable analysis and clear recommendations for decision-makers

IT Infrastructure Operations and Security Lead This role requires excellent management of a small team in IT along with managing stakeholders and vendors. You must be hands-on technically in IT Infrastructure. The IT Operational Platform and Security Lead is responsible for overseeing the organization's IT operations, ensuring the stability, continuity, security, and efficiency of its technology platforms within a global commercial insurance environment. While Microsoft technologies (Microsoft 365, Azure, Exchange Online) form a core part of the infrastructure, the role also encompasses broader enterprise IT systems, multi layered networking, security, data management, and third-party platforms that support global business operations and the associated applications estate. Security, Compliance & Risk Management • Define and enforce cloud security policies, identity management, and access controls to protect systems, networks, and data. • Oversee the adoption of zero-trust security principles to enhance protection across cloud platforms. • Manage identity and access management (IAM) in a cloud-first environment, including Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM). • Lead threat monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. • Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). • Conduct regular security risk assessments, penetration tests, and vulnerability management across cloud services. • Oversee endpoint security, cloud network and API security for robust protection across all assets • Define, manage and maintain accurate DR and BCP plans for the infrastructure area with biannual tests. Technical Experience • Microsoft Azure Infrastructure design and administration, including topology, Azure networking, services, and component knowledge, • Microsoft AD (Entra), Server and SQL experience, • O365 administration and design • Global Software Patching and estate management via Intune • Firewall (Azure, CheckPoint and Cloudflare), DNS, VPN, WIFI and Local Area Network design & administration experience • Software Defined Networking (Cisco, Meraki, Versa) Key Skills • Microsoft 365 & Azure: Strong experience managing Microsoft 365 (Exchange, SharePoint, Teams), Azure cloud infrastructure, and security tools such as Microsoft Defender and Sentinel. • Security & Compliance: Deep knowledge of security frameworks (ISO 27001, NIST, CIS), compliance requirements (GDPR, SOC2), and risk management best practices. • Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign-On (SSO), and Privileged Access Management (PAM). • Threat Management & Incident Response: Ability to detect, respond to, and mitigate cyber threats using SIEM, endpoint security, and vulnerability management tools. • Networking & Infrastructure Security: Understanding of firewalls, VPNs, SD-WAN, DNS security, endpoint protection, and cloud security controls. • IT Service Management & Automation: Experience implementing ITIL-based service management, automating operational tasks, and optimizing service delivery. Operational & Leadership Skills: • IT Operations & Service Continuity: Ability to ensure IT systems are highly available, resilient, and fit for purpose, with a strong focus on business continuity and disaster recovery. • Supplier & Vendor Management: Experience managing third-party IT vendors, MSPs, and SaaS providers, ensuring service levels, performance, and cost-effectiveness. • Project Leadership & Change Management: Ability to lead technology projects, system upgrades, and platform migrations, ensuring smooth execution and minimal business disruption. • Process Improvement & Automation: Strong analytical mindset to identify inefficiencies, automate workflows, and enhance security controls. Soft Skills & Mindset: • Problem-Solving & Decision-Making: Capable of making informed decisions and resolving complex IT issues in a fast-paced environment. • Stakeholder Engagement: Ability to communicate effectively with technical and non-technical stakeholders, including senior leadership and business users. • Resilience & Adaptability: Comfortable working in an evolving technology landscape, with a proactive and security-first approach. Summary of Skills Required: The following is a summary of the key skills that the Client would like you to bring to the company. Global Enterprise level Infrastructure Management position for the last 5 years, Buy before Build mentality and demonstrable migration of Legacy VM based estates to SaaS and Azure Cloud services platforms, Global Operational team management experience (human resources, strategic delivery, operational service, audit lead for Infra, budget, etc.) Key 3rd party operational infrastructure vendor management - ie management of managed service partners as a team extension globally, as well as service/solution delivery partners, Migration of Legacy VM based estates to SaaS and Cloud services platforms, Legacy Infra tech to Azure knowledge/experience, Prior to the last 5 years in Enterprise Management of a global estate/user-base, a demonstrable technical infrastructure engineering level background, working on Windows Server, AD, SQL environments, Firewalls/SDWAN, and Networks (WAN &/or LAN). The Client is based in the City of London. This is a hybrid position with 3 days in the office. The salary for this role will be in the range £85K - £95K plus Benefits. Do send your CV to us in Word format along with your salary and notice period.

Description Hello, we're Starling. We built a new kind of bank because we knew technology had the power to help people save, spend and manage their money in a new and transformative way. We're a fully licensed UK bank with the culture and spirit of a fast-moving, disruptive tech company. We're a bank, but better: fairer, easier to use and designed to demystify money for everyone. We employ more than 3,500 people across our London, Southampton, Cardiff and Manchester offices. We're looking for a Senior Conduct & Compliance Oversight Officer to provide second line of defence (2LoD) oversight over 1LoD (first line of defence) teams, so that they meet their regulatory obligations and effectively manage their regulatory compliance and conduct risks. Please note; this role is a 12 month fixed term contract. Key Responsibilities Deliver thematic Conduct & Compliance Oversight reviews as part of a high performing Oversight team, providing independent challenge to Starling Bank's first line of defence (1LoD) teams. Delivery of thematic Conduct & Compliance reviews with an initial focus on customer and control remediation. Ability to write up findings related to oversight reviews in a timely manner, clearly and accurately. Build strong relationships with 1LoD to deliver a collaborative working environment between Compliance and the business. Ability to support team members with the completion and delivery of compliance reviews and findings.

IT Operations Platforms and Security Lead In summary the Client is looking to recruit an all-round individual with expert knowledge and hands-on experience of IT Infrastructure coupled with Security, Compliance & Risk Management You must have upwards of 10 years hands-on expertise in IT Infrastructure combined with Security and Risk – ideally from within the banking or insurance sector. The IT Operational Platform and Security Lead is responsible for overseeing the organisation’s IT operations, ensuring the stability, continuity, security, and efficiency of its technology platforms within a global commercial insurance environment. While Microsoft technologies (Microsoft 365, Azure, Exchange Online) form a core part of the infrastructure, the role also encompasses broader enterprise IT systems, multi layered networking, security, data management, and third-party platforms that support global business operations and the associated applications estate. The role requires a proactive leader who can drive IT operational excellence, manage security risks, focus on continual service improvement, drive transformational delivery projects, and work effectively with internal stakeholders and third-party vendors to deliver a high-quality Global IT services. Working in line with the Architecture defined IT principle of a "buy before build" environment, the individual will need to ensure that outsourced and cloud-based services are robust, cost-effective, and aligned with business needs and the Strategic IT vision. They will also play a key role in enhancing cybersecurity, protecting data and systems, driving transformative operational change, enhancing IT processes and ensuring compliance with governance bodies and industry regulations. Due to the nature of the role, complexity of the estate, current transformation activities and team size, the role requires the functional capability and proficiency to technically augment the team capabilities (when required) and have a detailed knowledge of technical IT support roles/services as a requirement, across multiple technical areas. Security, Compliance & Risk Management Define and enforce cloud security policies, identity management, and access controls to protect systems, networks, and data. Oversee the adoption of zero-trust security principles to enhance protection across cloud platforms. Manage identity and access management (IAM) in a cloud-first environment, including Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM). Lead threat monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). Conduct regular security risk assessments, penetration tests, and vulnerability management across cloud services. Oversee endpoint security, cloud network and API security for robust protection across all assets Define, manage and maintain accurate DR and BCP plans for the infrastructure area with biannual tests. Technical Experience Microsoft Azure Infrastructure design and administration, including topology, Azure networking, services, and component knowledge, Microsoft AD (Entra), Server and SQL experience, O365 administration and design Global Software Patching and estate management via Intune Firewall (Azure, CheckPoint and Cloudflare), DNS, VPN, WIFI and Local Area Network design & administration experience Software Defined Networking (Cisco, Meraki, Versa) Key Skills Microsoft 365 & Azure: Strong experience managing Microsoft 365 (Exchange, SharePoint, Teams), Azure cloud infrastructure, and security tools such as Microsoft Defender and Sentinel. Security & Compliance: Deep knowledge of security frameworks (ISO 27001, NIST, CIS), compliance requirements (GDPR, SOC2), and risk management best practices. Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign-On (SSO), and Privileged Access Management (PAM). Threat Management & Incident Response: Ability to detect, respond to, and mitigate cyber threats using SIEM, endpoint security, and vulnerability management tools. Networking & Infrastructure Security: Understanding of firewalls, VPNs, SD-WAN, DNS security, endpoint protection, and cloud security controls. IT Service Management & Automation: Experience implementing ITIL-based service management, automating operational tasks, and optimising service delivery. Operational & Leadership Skills: IT Operations & Service Continuity: Ability to ensure IT systems are highly available, resilient, and fit for purpose, with a strong focus on business continuity and disaster recovery. Supplier & Vendor Management: Experience managing third-party IT vendors, MSPs, and SaaS providers, ensuring service levels, performance, and cost-effectiveness. Project Leadership & Change Management: Ability to lead technology projects, system upgrades, and platform migrations, ensuring smooth execution and minimal business disruption. Process Improvement & Automation: Strong analytical mindset to identify inefficiencies, automate workflows, and enhance security controls. Skills & Mindset: Problem-Solving & Decision-Making: Capable of making informed decisions and resolving complex IT issues in a fast-paced environment. Stakeholder Engagement: Ability to communicate effectively with technical and non-technical stakeholders, including senior leadership and business users. Resilience & Adaptability: Comfortable working in an evolving technology landscape, with a proactive and security-first approach. The Client is a financial organisation based in the City of London. This is a hybrid position with 3 days in the office. Must have a Bachelor’s degree in IT or similar. The salary for this role will be in the range £85K - £95K plus Benefits. Do send your CV to us in Word format along with your salary and notice period.

The End User Compute and Collaboration (EUC&C) team is a multifaceted group responsible for various critical functions within the organisation. The EUC&C team plays a vital role in enhancing the organisation's digital presence and improving collaboration and communication across various departments. Their efforts ensure that end-users have the tools and support they need to work efficiently and effectively. The Collaboration Engineering team designs, delivers, and supports services built upon the full suite of E5 licensed products under M365, Power Platform and Azure. They offer tailored support, training, and promote the benefits of M365 tools through a Digital Champions community. As a Lead Technical Architect, you will proactively shape and deliver infrastructure and technical solutions across multiple projects or teams. You will ensure solutions align with the wider enterprise architecture and strategic goals, leveraging modern technologies to drive innovative outcomes. Collaborating with a range of stakeholders including senior leadership, cross-functional teams, and external partners. You will balance near-term delivery with long-term scalability, security, and maintainability. You will define and evolve technical roadmaps, advise on strategic technology investments, and identify opportunities for continual improvement. Through clear, concise communication, you will secure buy-in for architectural initiatives and mentor junior architects to foster a high-performing architecture community. By evaluating emerging trends, incorporating lessons learned, and championing best practices, you will keep the technical estate flexible and future-proof, positioning the organisation for ongoing success. Person specification Key Responsibilities : Define and maintain enterprise-wide technical strategies, roadmaps, and architectures aligned with broader business objectives. Oversee design reviews, incorporating “Secure by Design” principles and compliance with architectural governance. Coordinate with cross-government teams and external partners to ensure cohesive, integrated solutions. Drive digital innovation by evaluating emerging technologies, embracing best practices, and championing continuous improvement. Mentor and coach architects, fostering a culture of collaboration and technical excellence. Facilitate the design and delivery of complex systems, ensuring performance, reliability, and security requirements are met. Lead multiple projects, collaborating with stakeholders to address risks, budgets, and timelines. Evaluate outcomes and integrate lessons learned into future strategies, enabling sustainable, long-term solutions.

Main duties consist of but are not limited to: Be responsible for the design, coding, testing and documentation of small scale to large, complex or mission critical applications and solutions in a cloud first environment Build web based Front End interfaces interacting with RESTful APIs using React, Next JS and other web technologies Work closely with test engineers to reach a common understanding of acceptance criteria, the code base and test coverage Implement toolkits and APIs for purposes such as integration, performance optimisation, security and scalability Proactively investigate problems and opportunities in existing processes, evaluating and communicating findings and recommendations to stakeholders Identify and manage problems, incidents, risks and issues in line with IPO standards Work within a multi-disciplinary team to deliver highly user focused and successful digital services ensuring governance standards are adhered to Keeping an open mind and exploring innovative ways to solve problems, working in a fail-fast fashion to provide required functionality Support assessment of the Public Digital Services we produce by adhering to, demonstrating and documenting compliance with GDS (Government Digital Services) standards

Job Title: Senior Cyber Security Assurance Specialist Location: Preston. We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Salary: Circa £60,000 depending on experience and skills What you'll be doing: Cyber Security risk assessment of systems and services Support the definition and design of secure solutions that meet business needs Assess Architectural designs and identify proportionate Cyber Security controls aligned with business objectives Assessment of systems, services and Cyber Security controls, to provide an independent analysis of compliance with BAE Systems Security Policy, standards and external regulatory requirements. Lead Assessment of Cyber Security controls to ascertain effectiveness in reducing risk, including any vulnerability components Analysis, creation and compilation of relevant documentation determining the compliance level of systems and services, technical security controls with applicable certification, accreditation, and internal policy requirements Manage the delivery of penetration tests and vulnerability analysis in support of risk mitigation strategies Support stakeholders in resolving Cyber Security issues and act as a subject matter expert regarding assurance activities for the wider organisation Your skills and experiences: Essential: In-depth knowledge of industry standard security policy, standards and good practice guidance and their application to a variety of IT solutions processing protectively marked information In-depth knowledge of threats, risks, vulnerabilities and risk mitigations strategies and techniques Knowledge of information security standards, such as HMG, ISO 27001/18, NIST 800 etc Wide ranging knowledge of application, infrastructure and security technologies and in-depth knowledge of implementing them in a secure configuration within On-premise, hybrid & Cloud environments Experience of working in a project environment and risk management and the application of risk management methodologies Desirable: CISSP/CISM/CCSP/CCSK and/or CCP Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive. The Cyber Security Assurance team: The Cyber Security Assurance Team with Shared Services are part of Enterprise IT (EIT) with responsibility for assuring all enterprise managed systems and services, spanning UK/RoW. The team ensure systems / services are built and configured in-line with applicable Cyber Security Standards. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks. Closing Date: 12th August 2025 We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible. #LI-SH1 #LI-Hybrid