Security Analyst
Hybrid
Coventry, United Kingdom
Freelance
04-03-2025
Job Specifications
Hello Network,
I hope you're doing well today!
We are recruiting a freelance Security Analyst role for HCL's Client in Coventry, United Kingdom:
Duration: 6-12 months + extensions
Location: Coventry (3 days onsite per week)
Pay Rate: Negotiable
Work Location – Coventry (First Preference) , Birmingham (Second Preference)
Inside IR35
Key Responsibilities:
SAP Identity and Access Management:
Support the integration and configuration of SAP SuccessFactors into the broader IAM landscape, ensuring seamless user provisioning, deprovisioning, and role management.
Work with the SAP GRC team to design, implement, and maintain SAP IAM solutions that align with organizational security and compliance requirements.
Manage user access control across SAP environments, ensuring compliance with internal security policies and external regulations.
Provide expertise on SAP Identity solutions, ensuring they are optimized for security, performance, and efficiency.
Tool Evaluation and Procurement:
Support the analysis, evaluation, and procurement of new IAM tools and technologies to meet the evolving needs of the organization’s SAP security and identity management requirements.
Work closely with internal teams and vendors to assess and select tools that complement existing IAM solutions and enhance overall security posture.
Assist in the integration of new IAM tools into the SAP environment, ensuring smooth deployment and minimizing disruptions to ongoing operations.
Identity Governance and Compliance:
Ensure that IAM policies, procedures, and solutions for SAP systems adhere to governance and compliance standards.
Participate in the development and enforcement of role-based access controls (RBAC) within SAP environments to ensure users have appropriate access rights based on their roles.
Support regular audits and assessments of user access and security controls to ensure compliance with internal policies and regulatory requirements.
Monitoring and Maintenance:
Regularly monitor and maintain SAP IAM systems to ensure optimal performance, security, and reliability.
Troubleshoot and resolve issues related to SAP Identity management, including user access, roles, and security incidents.
Apply patches, updates, and security configurations to SAP IAM systems as needed, ensuring that security vulnerabilities are mitigated.
Skills and Experience:
Proven experience in Identity and Access Management (IAM), with a focus on SAP environments (SAP SuccessFactors, SAP GRC, etc.).
Strong expertise in SAP SuccessFactors integration and user provisioning.
Knowledge of role-based access control (RBAC) and identity governance frameworks within SAP environments.
Familiarity with SAP GRC (Governance, Risk, and Compliance) and its integration with IAM solutions.
Experience with security and compliance standards (e.g., GDPR, SOX, ISO 27001) as they relate to IAM.
Strong understanding of IAM tools and platforms, including SAP Identity solutions and third-party IAM technologies
If you are interested, or you know someone that could be please reach out and we can arrange a time to speak?
About the Company
Digisourced is a premier global recruitment firm specialising in connecting top talent with industry-leading organizations across a wide range of sectors. With a team of experienced consultants, we leverage our extensive network and in-depth market knowledge to deliver tailored recruitment solutions that drive success for our clients Our personalised approach focuses on understanding each client's unique needs and corporate culture, allowing us to identify and attract the most suitable candidates. We take pride in our con... Know more
Related Jobs
- Company Name
- TalentHawk
- Job Title
- Security Architect
- Job Description
- Overview: We are an experienced Security Architect to join our clients Cyber Programme on a contract basis. These roles will support security architecture across IT and OT environments, ensuring security designs align with enterprise security standards and frameworks. The IT-focused role will concentrate on corporate IT security, while the OT-focused role will require experience in industrial control systems (ICS) and SCADA security. These roles have been introduced to alleviate pressure on the Lead Security Architect and provide security architecture expertise across various projects. Key Responsibilities: Develop and maintain security architecture designs for all ongoing IT and OT projects. Ensure security designs conform to enterprise security architecture, information security standards, and best practices. Collaborate with Project Managers, Solution Designers, and technical teams to integrate security into solution designs. Conduct security reviews and assurance activities to validate security compliance across IT and OT systems. Provide security guidance and direction to stakeholders, ensuring alignment with security frameworks and risk management practices. Participate in cyber analysis activities, assessing outputs to help shape security direction and strategy. Implement security tools and technologies, supporting their integration into existing security architecture. Engage with key stakeholders, including operational technology teams, business units, and third-party vendors, to enhance security postures. Conduct technical documentation reviews, ensuring security considerations are well-defined and implemented. Skills & Experience: Enterprise Security Architecture Expertise: Experience in security design and assurance, particularly within large-scale IT and OT environments. Security Frameworks: Strong understanding of security frameworks such as NIST, ISO 27001, IEC 62443 (for OT), TOGAF, or SABSA. IT & OT Security: IT Role: Expertise in securing enterprise IT environments, cloud security, and network security. OT Role: Experience working with industrial control systems (ICS), SCADA security, and operational technology security. Stakeholder Engagement: Ability to communicate effectively with technical and non-technical stakeholders, providing security direction and guidance. Technical Documentation: Strong documentation skills for security designs, policies, and procedures. Cybersecurity Tooling: Familiarity with security tools and technologies, including SIEM, firewalls, endpoint protection, and industrial cybersecurity solutions. Regulatory & Compliance Awareness: Understanding of industry regulations and compliance requirements relevant to IT and OT security. Preferred Experience: Experience in the utilities sector or similar critical infrastructure environments. Strong understanding of how enterprise security architecture fits into broader business and IT strategies. Hands-on experience conducting security assessments and risk analysis within IT and OT environments.
- Company Name
- Ampstek
- Job Title
- Cyber security Tester
- Job Description
- SIEM Project Tester-Birmingham (Hybrid) Functional Testing: · Perform functional testing for new and existing features, ensuring they meet business requirements and specifications. · Develop and execute test plans, test cases, and test scripts for the SIEM solution. · Verify that all system components (data ingestion, correlation, alerting, reporting, etc.) function as expected. · Identify, report, and track defects and issues, ensuring they are resolved. · Collaborate with developers, product managers, and other stakeholders to ensure the correct implementation of requirements. · Test interactive features, visualizations, and data representations within dashboards. · Conduct regression testing to ensure that new features do not negatively impact existing functionality. · Hands-on experience with Elasticsearch, Kibana, and related technologies. Non-Functional Testing: · Conduct performance testing to evaluate system scalability, reliability, and response times. · Perform security testing to identify and mitigate vulnerabilities. · Execute load and stress tests to determine system limits and improve robustness. · Validate compliance with industry standards and security best practices. · Monitor and analyze system performance using relevant tools and metrics. Additional Responsibilities: · Document test results and provide clear, actionable feedback to the development team. · Contribute to the continuous improvement of testing processes and methodologies. · Stay up-to-date with the latest trends and advancements in SIEM and Elastic Search technologies. · Assist with the automation of testing processes where applicable. Collaboration: · Work closely with developers, DevOps, and product teams to ensure the system meets both functional and non-functional requirements. · Actively participate in sprint planning, grooming sessions, and retrospective meetings to provide QA input and identify potential risks. Tools: · Experience with CI/CD tools such as Jenkins, GitLab CI, Travis CI, etc. · Proficiency with version control tools like Git. · Familiarity with Agile methodologies and tools (e.g., JIRA, Confluence). Qualifications: · Bachelor’s degree in Computer Science, Information Technology, or a related field. · Proven experience in testing SIEM solutions, particularly those based on Elasticsearch. · Strong understanding of functional and non-functional testing methodologies. · Proficiency in testing tools and frameworks such as TestNG, JMeter, Selenium, RestAssured, or others. · Knowledge of using Postman for API testing, including creating collections, writing test scripts, and validating API responses for both functional and performance aspects. · Experience with security testing tools and techniques. · Excellent analytical, problem-solving, and communication skills. · Ability to work collaboratively in a team environment and manage multiple tasks effectively. · Understanding of Helm for managing Kubernetes deployments and configurations.
- Company Name
- Sanderson
- Job Title
- IT Security Manager
- Job Description
- Umbrella Engagement Hybrid working - expectation to be on site in Kent two days per week - this is due to the level of role Must have worked within a regulated environment - preferably Financial Services. Role is to manage a small team of IT Security specialists whilst there is a secondment - KSOR but look at improvements. Must have significant operational management experience of security team - not looking for a Project Manager. Ideally worked within an Azure and Agile environment and Small/Medium sized Organisations. Large part of Security remit is working with Third Parties and integration of new ones etc.
- Company Name
- Deliveroo
- Job Title
- Security Risk Manager (12 month FTC)
- Job Description
- At Deliveroo, it is our mission to build the definitive food company. To do that, we’re building mature security capabilities that support our ambitious growth. We are looking for an experienced and outcome-driven Security Risk Manager with excellent stakeholder management skills to join our fast-growing Security function as a 12 month maternity leave cover from 1st May 2025. In this role you’ll be primarily responsible for improving and implementing Deliveroo’s Security Risk Framework for managing security risks, setting out appropriate governance structures and driving appropriate risk reporting. You’ll manage a small team to drive the underlying activities. You’ll directly impact how Deliveroo manages its security risk across the business. As we continue to increase our security maturity, your role in driving sound risk management practices will play a major part in our story and enable us to deliver on our mission. What you’ll be doing. You will: Manage a small team of security risk analysts Develop, implement and manage a scalable security risk management framework, taking into account business context and relevant industry standards, regulatory requirements and stakeholder expectations Manage a security risk acceptance process and relevant governance structures Assess security risks and track exposure and remediation activities Operate and maintain GRC tooling, including a register of security risks Produce and deliver management reporting of security risks and metrics to relevant committees and stakeholders Oversee the ongoing maturity of the NIST Cybersecurity Framework Requirements. You are or have: Significant experience in security risk management in a fast paced business, ideally a public technology company or in a regulated industry Expertise in performing security risk assessments in a cloud environment Previously been responsible for defining security metrics and producing security risk management reporting Good people management skills, preferably having worked with a mixture of on site and off shore team members Comfortable having difficult risk management conversations with different stakeholders across the business in both technical/engineering and non-technical role Experience working with enterprise-grade integrated risk management or GRC solutions Familiar with security standards such as PCI-DSS, NIST, ISO27001 and SOC2 Preferred, but not required: A mix of consulting and industry experience in a relevant role Relevant industry certifications such as CISM, CRISC, CISA, CISSP Why Deliveroo? Our mission is to be the definitive food company. We are transforming the way the world eats by making food more convenient and accessible. We give people the opportunity to eat what they want, when and where they want it. We are a technology-driven company at the forefront of the most rapidly expanding industry in the world. We are still a small team, making a very large impact, seeking to answer some of the most interesting questions out there. We move fast, value autonomy and ownership, and we are always looking for new ideas. Workplace & Diversity At Deliveroo we know that people are the heart of the business and we prioritise their welfare. We offer a wide range of competitive benefits in areas including health, family, finance, community, convenience, growth and relocation. We believe a great workplace is one that represents the world we live in and how beautifully diverse it can be. That means we have no judgement when it comes to any one of the things that make you who you are - your gender, race, sexuality, religion or a secret aversion to coriander. All you need is a passion for (most) food and a desire to be part of one of the fastest growing startups in an incredibly exciting space. Please click here to view our candidate privacy policy.