Find your next tech and IT Job or contract role.

**4 days a week onsite in Leeds, Inside IR35** Your responsibilities: Security Leadership Strategy * Define and implement the company-s security strategy across AI, blockchain, and cloud environments. * Establish policies, standards, and governance frameworks aligned with industry best practices (ISO 27001, NIST, SOC2). * Lead incident response, risk assessment, and threat modeling programs. * Build and mentor a world-class security team. AI Data Security * Protect proprietary AI models, training data, and pipelines from data poisoning, model theft, or adversarial attacks. * Secure ML infrastructure across data collection, preprocessing, model training, and deployment. * Implement privacy-preserving techniques (eg, encryption, anonymization, federated learning). Crypto Blockchain Security * Oversee smart contract security audits, testing, and deployment pipelines. * Protect user assets across wallets, custody solutions, and crypto exchange mechanisms . * Monitor on-chain activity for suspicious behavior (rug pulls, flash loan attacks, etc). * Partner with external firms for protocol audits, bug bounty programs, and penetration testing . Infrastructure Application Security * Implement best practices in cloud security (AWS, GCP, Azure) , container security, and zero-trust networks. * Harden DevSecOps pipelines to ensure secure software delivery. * Work with engineering teams to integrate security by design into products. Compliance Risk Management * Ensure regulatory compliance with GDPR, SOC2, ISO, PCI-DSS, and crypto-specific frameworks . * Lead risk assessments for third-party vendors and service providers . * Collaborate with legal and compliance teams on KYC/AML security for crypto services. Your Profile Essential skills/knowledge/experience: * 15+ years of progressive experience in Information Security, with a significant focus (minimum 7-8 years) on Cybersecurity. * Proven track record in cybersecurity strategy, team leadership, and incident management. * Deep knowledge of blockchain protocols, smart contracts (Solidity, Rust), cryptography, and custody systems. * Strong expertise in cloud security, DevSecOps, and secure software development lifecycle (SSDLC). * Understanding of AI/ML systems security, including model attacks and data integrity risks. * Certifications preferred: CISSP, CISM, CISA, CEH, OSCP, CCSK, or blockchain security certs. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.

IT Technology Planning & Governance Manager with Enterprise Architect Solutions Our Client is a leading company in the UK who are looking to recruit a candidate with at least 10 years expertise in IT technology and governance planning with Enterprise Architect Solutions experience. The role is Technology Planning Manager where you be responsible for the ongoing development and maintenance of the technology alignment roadmap for Corporate working closely with senior stakeholders, systems owners and 3 parties to deliver innovation. Lead day-to-day support and management of the core business Applications Portfolio lifecycle including but not limited to Finance, Legal, Property, Pensions, Treasury, HR, Business Development, Payroll and our Corporate Intranet ensuring that delivery of change is fit for purpose, of high quality, reliable and secure. Role Responsibilities Drive customer-centricity and stakeholder engagement, work closely with Corp functions to align application roadmaps with the combined Corp IT / SSC annual technology plans and dependencies. Work with senior stakeholders to build, document and map business capability to solution architecture across the Corp. Take ownership and develop a technology roadmap that meets the application requirements of the Corp to support the wider Company businesses. Evaluate the potential impacts of application workloads moving to cloud, notwithstanding the threats and opportunities for Corp functions. Shape, create and present business cases for high level initiatives, seek approval, funding and prioritisation with senior stakeholders. Understand the capital allocation requirement across the Corp functions plus the overall impact of application change on the operational expenditure budget. Align technology roadmaps and annual budget planning, use as the foundation for reporting on the state of the Corp Application portfolio. Provide technical leadership for Corp initiatives engaging across the Company where corporate applications service the wider businesses. Solve complex business problems with process and technology that cut across Corp group such as Identity and Access Management. Document and review IT standards, procedures and policies to ensure compliance with legal and regulatory requirements. Liaise with internal and external audit teams. Develop and adapt innovation tools and processes to drive operational excellence within Corp IT. Establish and maintain a consistent and integrated approach to information security and data protection governance in line with audit requirements. Create alignment on how to utilise governance forums such as User Experience and Architecture to improve services delivered to Corp functions. Manage solution architects, contractors, 3 Parties and business analyst in the future. Experience Required Significant and relevant progressive IT experience Experience of being in a practical solution planning and technical architecture design role is essential e.g. SaaS, Identity and Access Management Good understanding of emerging and innovative technologies, how to shape, deliver and leverage those technologies Experience of architecture business capability mapping, data management governance, technology roadmaps and project delivery lifecycle processes. Experience of ensuring compliance between corporate business application roadmaps and IT roadmaps. Experience of working within an ITIL service management environment with strong knowledge of business systems or applications within a corporate environment. Ability to deal with and manage conflicts whilst building successful business relationships across a range of stakeholder groups both internal and external to the organisation. Proven leadership skills, setting objectives and ensuring delivery of services to target Proven contract management, supplier management, procurement, and vendor selection experience Experience of systems such as Microsoft Office 365, Dynamics 365, SAP Success Factors, Treasury Openlink Findur, CMS, BACs Payment Platforms, Microsoft Power BI, Integration/ETL, Azure Active Directory Single Sign On and other bespoke applications Experience in executing business continuity planning and IT DRP Creating solution and technical application architectures, IT standards and policies Day-to-Day management of the Application Portfolio, its currency, dependencies and risk Technical lead on major system changes and upgrades Responsible for the development and management of Solution Architects, Business Analyst and contract resources Provide support to Corporate functions and wider businesses to enable them to optimise their use of corporate applications Vendor Management and selection (RFIs / RFP support) The Client is based in Central London. The salary for this role will be in the range of £90K - £110K + Benefits. Please do send your CV to us in Word format along with your salary and availability.

You will work across multiple programmes and platforms, providing strategic test leadership, supporting delivery teams, and influencing senior stakeholders to embed best practice and continuous improvement Key Responsibilities As a Lead Test Engineer, you will play a strategic role in shaping and embedding consistent testing best practices across HMRC’s complex digital ecosystem. Your responsibilities will include: Leadership & Collaboration Lead, coach, and mentor test engineers across programmes, fostering a culture of continuous improvement and professional development. Collaborate with product, platform, and delivery teams to ensure testing is integrated early and effectively within agile workflows. Influence and engage with senior stakeholders across HMRC and supplier organisations to drive quality outcomes. Test Strategy & Implementation Define and implement risk-based, shift-left testing strategies across diverse platforms (e.g., ServiceNow, SAP, Pega). Ensure testing approaches align with business priorities, technical architecture, and delivery timelines. Promote consistent standards and practices across internal teams and third party suppliers. Technical Excellence & Problem Solving Apply advanced testing techniques to solve complex technical challenges and improve delivery confidence. Provide expert guidance on functional, non-functional, and automation testing, including performance, security, and accessibility. Identify and drive opportunities for innovation and efficiency in testing processes. Tooling & Governance Evaluate, implement, and optimise test tooling, including AI-assisted solutions, to support continuous integration and delivery. Establish governance frameworks for supplier-led testing activities, ensuring alignment with HMRC standards and compliance requirements. Support tooling integration with platforms such as ServiceNow and CI/CD pipelines. Quality Assurance & Risk Management Ensure quality is built in from the outset by validating requirements and test coverage across the lifecycle. Lead retrospectives and continuous improvement initiatives to enhance test effectiveness and reduce delivery risk. Produce clear, actionable test reports and insights to inform decision-making and assurance activities. Person specification We’re looking for a disciplined and dynamic test leader with proven experience in strategic test management. You’ll bring strong analytical skills to guide testers and developers, shaping test direction that aligns with delivery goals. You must be confident engaging and reporting across all levels of stakeholders and third-party partners, with a clear ability to influence and drive quality outcomes. You will: Advise, design, and execute functional test cases. You can assess and peer-review the work of others. You can coach and mentor others. You can design and execute non-functional test cases using standard testing techniques. Understand the hierarchy of test environments and the phases of testing as the product moves through levels of maturity to Production. You can demonstrate a good working knowledge of different tools and techniques and can train others. You can advise others on testing techniques and frameworks. You can analyse and review data to identify problems and opportunities and make informed recommendations in line with strategic business objectives. You can communicate test approaches and make recommendations to influence senior stakeholders. You will be comfortable operating in a fast-paced, agile environment and have the confidence to challenge constructively, influence decisions, and drive quality outcomes.” You can solve complex problems, applying logical reasoning. Actively hold (or be willing to obtain) SC Clearance

CGI Cyber Security Team in the UK is one of the largest Cyber consultancies in the UK with around 300 members. The UK Cyber team works across a variety of domains including: Government, Defence, Critical Infrastructure, Healthcare, Utilities, Banking and Financial Services and Many more. At CGI you will get the opportunity to work across a number of domains and work in all areas of Cyber Security allowing you to grow and develop your career. We offer full 360-degree services to our clients from initial consulting on a range of areas including Risk Assessments, Vulnerability Management, Accreditations (ISO27001, GDPR), GRC (Governance, Risk, Compliance), Security Architecture Design and Build (technical and Non-technical), Incident Response, Protective Monitoring Services, Penetration Testing and much more. We take clients through a journey to improve their overall security posture and maturity to ensure they feel reassured in the Security control, measures and systems we have put in place in line with their requirements. At CGI training and development is very important not only do we give you training to keep you up to date with the latest trends within an ever-changing landscape, but we also combine that training with your career ambitions, so we support you in taking your career anywhere you want it to go. Our roles are only available if you hold or fulfil the criteria to obtain a UK Security Clearance.

CGI Cyber Security Team in the UK is one of the largest Cyber consultancies in the UK with around 300 members. The UK Cyber team works across a variety of domains including: Government, Defence, Critical Infrastructure, Healthcare, Utilities, Banking and Financial Services and Many more. At CGI you will get the opportunity to work across a number of domains and work in all areas of Cyber Security allowing you to grow and develop your career. We offer full 360-degree services to our clients from initial consulting on a range of areas including Risk Assessments, Vulnerability Management, Accreditations (ISO27001, GDPR), GRC (Governance, Risk, Compliance), Security Architecture Design and Build (technical and Non-technical), Incident Response, Protective Monitoring Services, Penetration Testing and much more. We take clients through a journey to improve their overall security posture and maturity to ensure they feel reassured in the Security control, measures and systems we have put in place in line with their requirements. At CGI training and development is very important not only do we give you training to keep you up to date with the latest trends within an ever-changing landscape, but we also combine that training with your career ambitions, so we support you in taking your career anywhere you want it to go. Our roles are only available if you hold or fulfil the criteria to obtain a UK Security Clearance.

Role: Security test engineer Rate: Outside IR35 Location: 1-2 days onsite in London Duration: 6 months initially SC clearance required Security Tester - Job Description The Security Tester will play a key role in delivering robust application security testing aligned with Secure-by-Design (SbD) principles and compliance frameworks such as NIST, CAF, and CAT. This role supports the Home Office's strategic aim to scale enterprise security testing capabilities, reduce outsourcing reliance, and embed security into the software development lifecycle. Key Responsibilities Conduct Security Testing using SAST and DAST tools Collaborate with Cyber Security Managers and Governance teams to ensure alignment with organisational security policies and standards Mentor and upskill team testers in application security testing and automation Track and report on security metrics and KPIs, including vulnerability trends and remediation outcomes. Integrate security testing into CI/CD pipelines, supporting shift-left strategies and DevSecOps practices. Required Skills & Experience Strong understanding of security standards including OWASP, NIST SP 800-53, ISO 27001, and CIS Benchmarks. Experience with SAST/DAST tools and Cloud Security platforms (AWS, Azure). Familiarity with Secure-by-Design principles and organisational security policies. Experience with penetration testing, risk assessment, and compliance testing. Proficiency in tools such as JIRA, SharePoint, and vulnerability management platforms. Desirable Attributes Ability to interpret and apply OWASP and NIST security principles across diverse project environments. Strong stakeholder engagement and communication skills. Experience in developing deployment checklists and decision trees for secure tool usage. Certifications such as CREST CRT, OSCP, CEH, or SANS are highly desirable. Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take up to a minimum 10 weeks. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.

An SC cleared Operational Technology Security Specialist is required for an initial 6 month outside of ir35 contract. The clients site is Abingdon this is a hybrid role paying £450 per day outside ir35 for 4 days working remotely 1 day on site or £500oper day outside of ir35 for 4.5 days on site and .5 day remotely. The OT Security Specialist will lead the development and maturation of the Operational Technology (OT) security capability as part of a greenfield security programme. This includes defining and implementing an OT Security Strategy, developing policies and standards, and introducing appropriate security controls across OT environments. The OT Security Specialist will provide technical and governance oversight of OT security, ensuring alignment with industry frameworks (IEC 62443, NIST CSF, CAF, ISO 27001) and with enterprise cyber security objectives. The role will combine hands-on implementation, strategic oversight, and the creation of governance artefacts. You will also engage with engineering teams and managed service providers (MSPs) to ensure that OT security controls are effectively designed, implemented, and sustained. Experience with SIEM/SOC integration is valuable and considered desirable. Key Skills and experience: *Lead the design and delivery of the OT Security Strategy, policies, and standards. *Define governance processes for OT security, ensuring alignment with enterprise security frameworks. *Conduct OT risk assessments and gap analyses against recognised standards (IEC 62443, NIST CSF, CAF). *Identify, prioritise, and oversee the implementation of security controls across OT systems and networks. *Provide technical oversight and assurance when engaging with MSPs and third-party vendors. *Collaborate with enterprise security teams to align OT security with broader cyber programmes. *Support OT incident response activities, including escalation paths to SOC teams where relevant. *Mentor and support junior team members in OT security concepts and practices. *Track and report on OT security maturity progress against roadmap milestones. oDemonstrable experience in maturing OT security within ICS or critical infrastructure environments. oProven ability to create and implement OT security strategies, policies, and standards. oStrong knowledge of OT security frameworks and standards (IEC 62443, NIST CSF, CAF, ISO 27001). oExperience conducting OT security risk assessments, gap analysis, and remediation planning. oKnowledge of OT networks, segmentation, and common industrial protocols. oExperience working with operations and engineering teams in OT environments. oAbility to provide technical oversight for MSPs or third-party security service providers. oStrong communication and documentation skills, particularly in policy/standards creation. *Desirable Experience: oFamiliarity with SIEM/SOC integration for OT environments. oExperience with OT asset discovery, monitoring, and security tool deployment. o Exposure to regulatory compliance in critical infrastructure (e.g., NIS Directive, UK CAF). oMay be requested to represent the Group in OT security working groups, act as an SME in OT-related projects, and contribute to the development of internal security capability through training and mentoring Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take up to a minimum 10 weeks. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.

Security Architect 6 Month contract initially Based: Remote/Leeds - Max 4 days p/w onsite Rate: £475 - £500 p/d - (via Umbrella company) We have a great opportunity with a world leading organisation where you will be provided with all of the support and development to succeed. A progressive organisation where you can really make a difference. We have a great opportunity for a Security Architect to join the team. We are looking for an exceptionally seasoned Security Architect with deep progressive experience, including extensive leadership in designing and implementing robust security architectures, particularly within large-scale cloud environments and the highly regulated financial domain. This role demands a deep understanding of complex security challenges, a proven track record of strategic influence, and the ability to translate business requirements into secure, scalable, and compliant technical solutions. Key Responsibilities: * Strategic Security Leadership: Define, evangelize, and evolve the overall cloud security architecture strategy and roadmap, aligning with business objectives, relevant European regulatory requirements (e.g., GDPR, DORA, PSD2, NIS2 Directive), and industry best practices. Act as a trusted security advisor to senior leadership, engineering teams, and business units on all aspects of cloud security. Lead the development and implementation of security architectural standards, patterns, and guidelines for cloud-native and hybrid-cloud deployments. * Solution Design & Assurance: Provide expert security architecture guidance for critical enterprise applications, infrastructure, and data platforms, with a strong focus on secure-by-design principles. Conduct comprehensive security architecture reviews of high-level and low-level designs, identifying risks, proposing effective controls, and ensuring adherence to security policies. Drive the selection and integration of security technologies and services within cloud ecosystems (AWS, Azure, GCP preferred). * Risk & Compliance Management: Lead threat modelling, risk assessments, and security posture management across cloud environments. Ensure architectural designs meet stringent regulatory compliance requirements relevant to the financial industry in Europe (e.g., data residency, privacy, operational resilience). Develop and implement security controls that align with frameworks like NIST CSF, ISO 27001, PCI DSS, and CSA CCM. * DevSecOps & Automation: Champion the integration of security into the entire SDLC (DevSecOps), promoting automated security testing, continuous compliance, and secure configuration management. Design secure CI/CD pipelines and infrastructure as code (IaC) templates. Your Profile Key Skills & Experience: * Deep progressive experience in Information Security, with a significant focus on Security Architecture. * Ideally 5+ years of hands-on experience specifically in Cloud Security Architecture for enterprise-scale deployments across at least one major public cloud provider (AWS, Azure, or GCP). Multi-cloud experience is highly preferred. * Deep expertise in financial services domain security, including understanding of common threats, European regulatory requirements (e.g., PSD2, DORA, EBA guidelines), and data privacy mandates (GDPR). * Extensive knowledge of security architecture principles for: * Identity & Access Management (IAM) in cloud (e.g., AWS IAM, Azure AD, GCP IAM). * Network Security (VPCs, firewalls, WAFs, micro-segmentation, private connectivity). * Data Security (encryption at rest/in transit, KMS, data classification, DLP). * Application Security (secure coding, API security, SAST/DAST, WAF integration). * Container Security (Kubernetes, Docker, service mesh). * Security Information and Event Management (SIEM) and logging strategies. * Zero Trust Architecture principles. * Proven experience with DevSecOps methodologies and securing CI/CD pipelines. * Strong understanding of security frameworks such as NIST CSF, ISO 27001, CSA CCM, and experience in translating these into practical architectural designs. * Hands-on experience with security tools and technologies for vulnerability management, secrets management, cloud security posture management (CSPM), and cloud workload protection platforms (CWPP). * Relevant industry certifications are highly desirable (e.g., TOGAF, CISSP, CCSP, AWS Certified Security - Specialty, Azure Security Engineer Associate, GCP Professional Cloud Security Engineer). This is an excellent opportunity on a great project of work, If you are looking for your next exciting opportunity, apply now for your CV to reach me directly, we will respond as soon as possible. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.

Our client is looking for Corporate Risk and Assurance lead to come and join their team. Primary/general responsibilities: * Ensuring the appropriate plans, standards and practices for managing corporate risk and conducting corporate assurance and internal audit activities. Corporate Risk Management: * Coordinate a programme of regular assurance reviews with key Corporate and Portfolio stakeholders in accordance with the Integrated Assurance Map Support maintenance of and champion the Policy, Framework and Appetite Statement in accordance with best practice and Departmental policy. * Provision of advice to risk practitioners in using standards and processes through Risk Champion Working Groups. * Support risk management maturity using the Government Internal Audit Agency (GIAA) risk maturity model * Support the maintenance of the risk system/log, with the support of a technical development team * Develop and coordinate a programme of regular risk and issue reviews with key stakeholders * Analysing trends and performance to provide insightful recommendations to senior leaders to improve risk management Corporate Assurance & Compliance * Supporting the maintenance of, and championing, the Agency's Assurance Strategy and Assurance Framework * Maintaining the Integrated Assurance Map * Provision of advice to those involved in assurance on using standards and * Preparing reports highlighting insight from assurance interventions for senior leaders, including the Audit, Risk and Assurance Committee * Contributing the Governance Statement in the Agency's Annual Report and Accounts, summarising the processes, plans and findings of assurance activities * Collating, assessing and challenging information from the relevant leads within the Agency including oversight of the DAASIC process (Director's Annual Assurance Statements of Internal Control) and assurance of achievement of Functional Standards * Coordinating compliance activities across each delivery support function, who are to set internal controls and monitor their effectiveness. * Engage upwards and outwards with stakeholders in DSIT and across government to ensure alignment to assurance and compliance requirements. Internal Audit: * Oversee internal and external audit exercises. * Create a central repository for all audit actions, coordinating their enactment with relevant teams. Primary/general responsibilities: * Ensuring that the client has appropriate plans, standards and practices for managing corporate risk and conducting corporate assurance and internal audit activities. Corporate Risk Management: * Coordinate a programme of regular assurance reviews with key Corporate and Portfolio stakeholders in accordance with the Integrated Assurance Map Support maintenance of and champion the Policy, Framework and Appetite Statement in accordance with best practice and Departmental policy. * Provision of advice to risk practitioners in using standards and processes through Risk Champion Working Groups. * Support the maintenance of the risk system/log, with the support of a technical development team * Develop and coordinate a programme of regular risk and issue reviews with key stakeholders * Analysing trends and performance to provide insightful recommendations to senior leaders to improve risk management Corporate Assurance & Compliance: * Supporting the maintenance of, and championing, the clients Assurance Strategy and Assurance Framework * Maintaining the Integrated Assurance Map * Provision of advice to those involved in assurance on using standards and * Preparing reports highlighting insight from assurance interventions for senior leaders. * Coordinating compliance activities across each delivery support function, who are to set internal controls and monitor their effectiveness. * Engage upwards and outwards with stakeholders in DSIT and across government to ensure alignment to assurance and compliance requirements. Daily rate: £380pd IR35: outside IR35 Duration: March 26 Travel: Hybrid. Travel to London or Oxford once a month Start: ASAP LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.

Data Architect - 12 months - Brussels Our important client is currently looking for a Data Architect for a 12-month contract based in Brussels. Hybrid with 2 to 3 days onsite mandatory. Please find the description below: This role involves designing and maintaining the enterprise architecture framework, guiding digital transformation, and overseeing enterprise data architecture to ensure data is treated as a strategic asset. Key Responsibilities Enterprise strategy Participate in strategic discussions on company level. Have a clear overview of business units, their functions and processes. Impact estimation of possible strategic decisions on the organisation, processes and technology Architecture Strategy & Governance Define and maintain enterprise architecture principles, standards, and roadmaps. Ensure architectural alignment with business objectives and regulatory requirements. Design and maintain the overall application landscape and the mapping of these applications with their business functionalities Ensure there is a design of an integration framework through which data flows between these applications Solution Design & Integration Design scalable, secure, and cost-effective solutions in collaboration with business and IT stakeholders. Oversee integration of systems across business units and platforms. Evaluate emerging technologies and recommend adoption strategies. Enterprise Data Architecture Define and maintain the enterprise data architecture roadmap aligned with business and IT strategies. Establish data standards, principles, and best practices for modeling, integration, mastar data management and governance. Integration & Interoperability Design data integration patterns (ETL/ELT, APIs, Service bus, streaming) for on-premises and cloud environments. Enable interoperability between transactional- and operational systems but also analytics systems (data warehouse, data lake,...) Lifecycle Management Manage the lifecycle of applications, platforms, and infrastructure. Define modernization and cloud migration strategies. Stakeholder Engagement Translate business needs into architectural requirements and technical solutions. Communicate architectural decisions and their impact clearly to non-technical stakeholders. Governance & Compliance Identify architectural risks and propose mitigation strategies. Ensure compliance with data protection, cybersecurity, and industry standards. Required Skills & Qualifications Education: Master’s in Computer Science, Information Systems, or related field. Experience: 10+ years in data architecture, data engineering, or enterprise architecture roles. Technical Expertise Strong knowledge of relational and NoSQL databases, data modeling, and data integration, Experience with Azure and Microsoft related data technologies (Azure synapse, data lake storage, Fabric), Experience with integration technologies in Azure like Logic apps, Azure functions,... Soft Skills: Excellent communication and stakeholder management. Strategic thinking with hands-on problem-solving ability. Ability to integrate into an organisation and identify skills and characters in order to outline governance models. If you are interested please send me your CV and I will contact you as soon as possible with further details.

Notre client, acteur international majeur du secteur pharmaceutique , mène une transformation profonde de sa posture cybersécurité afin de garantir la résilience, la conformité et la continuité de ses opérations critiques à l’échelle mondiale. Dans ce cadre, il recherche un Directeur de Programme Cybersécurité expérimenté, capable de piloter un portefeuille complexe de projets stratégiques et d’appels d’offres dans un environnement fortement réglementé et multi-partenaires. 📌 Missions principales 1. Pilotage global du programme cybersécurité Définir et mettre en œuvre la stratégie de cybersécurité et la feuille de route associée. Piloter la trajectoire pluriannuelle de projets (IAM, SOC, GRC, Cloud Security, OT Security, Data Protection, etc.). Garantir la cohérence, la qualité et la rentabilité du portefeuille de projets. Identifier et gérer les interdépendances entre projets et programmes transverses (IT, Digital, Qualité, Compliance). 2. Gestion de projets majeurs & pilotage d’appels d’offres Conduire les appels d’offres cybersécurité : Rédaction de cahiers des charges et RFP techniques/fonctionnels. Analyse des offres, organisation des soutenances et sélection des prestataires. Négociation des contrats, SLA et gouvernance fournisseur. Superviser la mise en place opérationnelle des solutions retenues : cadrage, planification, suivi, acceptation et transfert vers les opérations. Coordonner les partenaires intégrateurs et éditeurs (infogérance, SOC, cloud providers, IAM vendors, etc.). S’assurer du respect des engagements contractuels, financiers et techniques. 3. Gouvernance, conformité et risk management Piloter la gouvernance cybersécurité en lien avec la DSI, la direction de la conformité, la qualité et les métiers. Garantir la conformité réglementaire (ISO 27001, NIST, GxP, GDPR, FDA 21 CFR Part 11). Assurer la traçabilité et l’auditabilité des actions de cybersécurité. Contribuer à la gestion des risques et à la mise à jour des politiques de sécurité du groupe. 4. Communication & accompagnement du changement Animer les comités de pilotage et de direction . Fournir un reporting régulier au CISO, CIO et à la direction générale. Accompagner les équipes métiers et IT dans la montée en maturité et la sensibilisation à la cybersécurité. Assurer la vulgarisation des enjeux techniques auprès des décideur

Role: Security tester Rate: Outside IR35 Location: 1-2 day a week onsite Croydon (maybe less) Duration: 6 months initially SC clearance required Security Tester - Job Description The Security Tester will play a key role in delivering robust application security testing aligned with Secure-by-Design (SbD) principles and compliance frameworks such as NIST, CAF, and CAT. This role supports the Home Office's strategic aim to scale enterprise security testing capabilities, reduce outsourcing reliance, and embed security into the software development lifecycle. Key Responsibilities Conduct Security Testing using SAST and DAST tools Collaborate with Cyber Security Managers and Governance teams to ensure alignment with organisational security policies and standards Mentor and upskill team testers in application security testing and automation Track and report on security metrics and KPIs, including vulnerability trends and remediation outcomes. Integrate security testing into CI/CD pipelines, supporting shift-left strategies and DevSecOps practices. Required Skills & Experience Strong understanding of security standards including OWASP, NIST SP 800-53, ISO 27001, and CIS Benchmarks. Experience with SAST/DAST tools and Cloud Security platforms (AWS, Azure). Familiarity with Secure-by-Design principles and organisational security policies. Experience with penetration testing, risk assessment, and compliance testing. Proficiency in tools such as JIRA, SharePoint, and vulnerability management platforms. Desirable Attributes Ability to interpret and apply OWASP and NIST security principles across diverse project environments. Strong stakeholder engagement and communication skills. Experience in developing deployment checklists and decision trees for secure tool usage. Certifications such as CREST CRT, OSCP, CEH, or SANS are highly desirable. Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take up to a minimum 10 weeks. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.

Remediation Manager/Senior Leader - Financial Services 6 Month Contract - Inside IR35 Location: Warwickshire - Hybrid working Shape and lead a high-profile remediation strategy, ensuring fair customer outcomes and regulatory excellence Influence at senior levels, working closely with executives, risk committees, and regulators Hybrid role, with upto 80% from home and the rest from HQ in Warwickshire As our leading financial services client continues to strengthen their approach to customer remediation, they're establishing a dedicated, structured capability to ensure they resolve issues effectively, enhance their control environment, and drive long-term improvements across the business. As Remediation Manager, you'll take ownership of this critical function, shaping the strategy, frameworks, and governance that underpin their remediation approach. You'll work closely with senior stakeholders across Customer Services, Finance, IT, Compliance, and Risk to embed best practices, establish robust reporting mechanisms, and ensure clear oversight of remediation activities at the highest levels, including risk committees and regulatory reporting. This is a role with real influence! Required Knowledge & Experience - Strong background in Remediation & Regulatory Compliance within Financial Services Proven experience as a senior leader with the ability to influence at the highest levels, balancing strategic vision with operational delivery Understand the complexities of managing high-impact issues that affect customers and reputations alike Commercially astute, able to set direction, and bring a forward-thinking approach to embedding long-term solutions that enhance customer outcomes and strengthen business resilience Adept at working with senior stakeholders, you're comfortable presenting at executive level, shaping strategy, and leading with confidence in a high-profile, fast-moving environment Strategic Leadership - Proven ability to set and drive the direction of customer remediation or similar large-scale, customer-focused programmes within financial services Stakeholder Influence - Strong experience working with and influencing senior leaders, risk committees, and regulators, ensuring buy-in and alignment across multiple business areas Remediation Expertise - A deep understanding of remediation principles, regulatory requirements, and best practices, with experience shaping policies, frameworks, and processes to deliver fair customer outcomes If you have proven experience in the above areas, please submit your application to Jackie Dean at TXP for consideration TXP takes great pride in representing socially responsible clients who not only prioritise diversity and inclusion but also actively combat social inequality. Together, we have the power to make a profound impact on fostering a more equitable and inclusive society. By working with us, you become part of a movement dedicated to promoting a diverse and inclusive workforce.

Consultant / Expert GRC (IT & OT) – Mission Audit et Conformité Contexte : Au sein de l’équipe GRC (Governance, Risk & Compliance), le consultant sera chargé de mettre en place et de dérouler des inventaires et audits IT/OT pour les différentes entités du client. Missions principales : Définir les plans d’audit et de contrôle de sécurité (IT et OT) au sein de l’organisation. Réaliser et documenter les audits et contrôles périodiques ou ponctuels. Analyser et traiter les demandes sur le périmètre IT/OT en garantissant la qualité et les délais des réponses. Évaluer la conformité des entités aux normes et référentiels en vigueur (ISO 27001, NIS2, etc.). Contribuer à la mise à jour et à l’amélioration continue du socle documentaire existant (procédures, politiques, guides). Profil recherché : Expérience : 5 à 7 ans minimum en audit, conformité ou cybersécurité, idéalement avec une exposition aux environnements industriels (OT). Compétences techniques : Maîtrise des référentiels de sécurité et de conformité (ISO 27001, NIST, NIS2, ANSSI, etc.). Connaissances solides des environnements IT et OT. Expérience en audits de sécurité, contrôle interne et conformité réglementaire. Compétences transverses : Capacité à piloter un plan d’audit et à formaliser des livrables clairs et exploitables. Rigueur documentaire et esprit de synthèse. Bon relationnel, capacité à interagir avec des interlocuteurs variés (IT, métiers, filiales internationales). Langues : anglais professionnel indispensable (audit des filiales à l’international). Lieu : Mission basée à Bruz (région rennaise) ou Paris

Description At Engine by Starling , we are on a mission to find and work with leading banks all around the world who have the ambition to build rapid growth businesses, on our technology. Engine is Starling's software-as-a-service (SaaS) business, the technology that was built to power Starling, and two years ago we split out as a separate business. Starling has seen exceptional growth and success, and a large part of that is down to the fact that we have built our own modern technology from the ground up. This SaaS technology platform is now available to banks and financial institutions all around the world, enabling them to benefit from the innovative digital features, and efficient back-office processes that has helped achieve Starling's success. As a company, everyone is expected to roll up their sleeves to help deliver great outcomes for our clients. We are an engineering led company and we're looking for people who are will be excited by the potential for Engine's technology to transform banking in different markets around the world. Our purpose is underpinned by five values: Listen, Keep It Simple, Do The Right Thing, Own It, and Aim For Greatness. Hybrid Working We have a Hybrid approach to working here at Engine - our preference is that you're located within a commutable distance of our offices so that we're able to interact and collaborate in person. Role Purpose This role is part of the Risk & Compliance team. The purpose of this role is to be a key player in the delivery of Engine's Risk Management Framework, to ensure that Engine: Is effectively identifying and managing risk across all its activities (both in the UK and internationally) Operates within the agreed risk appetite(s) Continues to meet the Group risk standards, Engine's risk standards, relevant industry standards and that our clients can be confident in our ability to identify and mitigate risk in a clear and timely manner. The role works with the Compliance Director, the Risk & Compliance Team and our Information Security and Legal colleagues to ensure that Engine is identifying and managing risk in the jurisdictions in which we are currently or in which we are planning to operate, in a clear, transparent and repeatable manner within our own and Group Policies and Risk Appetites. Key Accountabilities or Responsibilities: Embed and then mature the operation of Engine's Risk Management Framework, including Engine's Risk Appetite Framework, capturing and mitigating Enterprise risks, and ongoing Operational Risk Management. Facilitate the implementation of a risk management tool to enable more effective tracking, Management Information and aggregated Group reporting as appropriate. Build out Engine's RCSA process, and run it (including tracking actions to completion and reporting on progress). As part of this, support wider business areas with identifying, understanding and documenting risks across all current and planned activities. Work with the wider team to carry out Risk Assessments relating to business change, global expansion etc. Contribute to risk assessments and risk reporting to the Engine Management Team, Committees and Board as required. Work closely with the Starling Group and Engine Risk functions, Engine's management team, Information Security team, legal team and other key stakeholders to achieve all of the above.

Deputy Money Laundering Reporting Officer - DMLRO Our Client a bank based in the City of London are looking to recruit a DMLRO – a Deputy Money Laundering Reporting Officer. The Deputy Money Laundering Reporting Officer (DMLRO) within the Bank supports the MLRO to provide an expert advisory and monitoring service to ensure compliance with relevant rules, regulations and codes of conduct relating to Fraud and Financial Crime (F&FC). You will support the MLRO in the design, development and ongoing monitoring of Banks Group's Fraud and Financial Crime Risk Management arrangements ensuring these are aligned with the Bank's Risk Appetite and applicable legal and regulatory requirements. Lead the design, development and ongoing review of the Bank's Fraud and Financial Crime (F&FC) Risk Management Policies and associated standards covering: Money Laundering and Countering Terrorist Financing, Sanctions, Tax Evasion, Market Abuse, Bribery & Corruption and Fraud. Provide regular reports and management information to the MLRO, Chief Risk Officer and Board on the Bank's F&FC Risk profile outlining the adequacy of F&FC systems and controls. Support delivery of the annual MLRO report to the relevant Board Committee. Design and facilitate a group-wide F&FC risk assessment including an assessment of control effectiveness. Undertake investigations regarding potential cases of suspected fraud and financial crime as and when required. As subject matter expert, work closely with the first line of defense, and any agents of the bank, to review escalations (eg Sanctions / PEPs and Adverse media) to the MLRO and where necessary make recommendations to approve/decline in line with the Bank's AML Policy and Risk Appetite. Suspicious activity report investigation, discounting and submission of suspicious activity reports to the relevant Reporting Authority on behalf of the MLRO/Nominated Officer. Review suspected cases of fraud raised by bank colleagues and investigate to determine if referral to law enforcement agencies such as Action Fraud, NCA or Serious Fraud Office is necessary. Provide oversight and challenge to the business unit/team Risk and Control Self Assessment's to ensure fraud and financial crime risks and controls are appropriately identified and evaluated. Design and delivery of F&FC Training content and provision. Monitor and report on staff compliance with F&FC training requirements. Support the MLRO to maintain an effective bank-wide forum/committee for the oversight and monitoring of F&FC risk management. Recognized as a trusted point of contact for internal/external stakeholders (including regulators and law enforcement) Quality assurance sampling of F&FC activity and control testing conducted in the 1 LOD. Deliver thematic reviews of F&FC policies and controls to provide 2 LoD opinion on the Bank's compliance with its policies and applicable legal and regulatory obligations. Monitor, assess and report on emerging legislative and regulatory developments relating to F&FC. Work collaboratively with other Risk & Compliance team members to provide data, insight and analytical expertise on risk management and compliance across BBB to internal and external stakeholders. Must have experience in a financial crime senior management position within financial services, with proven experience including acting as a Money Laundering Reporting Officer/SMF17 for an FCA regulated firm. Educated to a degree level (or equivalent experience) is highly desirable. • Hold a Fraud and/or Financial Crime qualification at a professional level (eg ICA Diploma or Certified Anti-Money Laundering Specialist) • Experience in a risk management, compliance or a fraud/financial crime prevention role in the financial services sector. This a hybrid position at least 3 days a week based in the City of London with bank. The salary range, depending on experience, will be in the range £90K - £105K plus benefits. Do send your CV to us in Word format along with your salary and notice period.