Platform Engineer (Cyber security experience)
Hybrid
London, United Kingdom
Full Time
20-03-2025
Job Specifications
Company Description
Genomics Englandpartners with the NHS to provide whole genome sequencing diagnostics. We also equip researchers to find the causes of disease and develop new treatments – with patients and participants at the heart of it all.
Our mission is to continue refining, scaling, and evolving our ability to enable others to deliver genomic healthcare and conduct genomic research.
We areaccelerating our impactand working with patients, doctors, scientists, government and industry to improve genomic testing, and help researchers access the health data and technology they need to make new medical discoveries and create more effective, targeted medicines for everybody.
Job Description
As a Platform Engineer (Security) within the Cyber Security squad, you will contribute to the standardisation of security best practices across Genomics England, using Automation and Configuration as Code to achieve this.
Working closely with our Platform Engineers and Solution Architects, you will ensure the fast, smooth rollout of new designs and products, as well as assist with the deployment and maintenance of new security tools.
You will also be responsible for automating security processes and ensuring AWS best practices are upheld across the Engineering Chapter ensuring AWS best practice throughout the Engineering Chapter.
Skills and Experience for Success:
AWS Security Services (AWS Config, AWS Inspector, AWS Security Hub, AWS Guard Duty, AWS CloudTrail).
Experience managing, building, and operation 3rd Party Security Software including: DarkTrace, CrowdStrike, CloudFlare.
Hands-on experience monitoring, detecting, analysing, and investigating cyber threats.
Knowledge of Terraform & Ansible.
Experience with CI / CD – ideally GitLab CI.
Previous experience working in a DevOps / Squad Culture.
Good Scripting skills - Language here is not important but what is important is that candidates are comfortable with writing AWS Lambda’s in a language of their choosing (i.e. Python or other) .
Qualifications
Qualifications are not essential but any AWS, Terraform or Ansible Certifications are always helpful!
For this role being Certified in ‘AWS Certified Security – Specialty’ (https://aws.amazon.com/certification/certified-security-specialty) would be highly desirable
Additional Information
Salary from £71,000
Being an integral part of such a meaningful mission is extremely rewarding in itself, but in order to support our people, we’re continually improving our benefits package. We pride ourselves on investing in our people and supporting them to achieve their career goals, as well as offering a benefits package including:
30 days’ holiday (plus bank holidays), with additional days for long service awards
A generous pension scheme of up to 15% combined contribution
Life Assurance (3 x salary)
Individual learning budgets for every colleague, a Blinkist account and a wide variety of courses on our portal
A wide variety of wellness benefits including Gympass, a Headspace account, free weekly Yoga classes
Enhanced maternity & paternity benefits
Blended working arrangements
Talk to our Talent Team and find out how a career with Genomics England will benefit you.
Equal opportunities and our commitment to a diverse and inclusive workplace
Genomics England is actively committed to providing and supporting an inclusive environment that promotes equity, diversity and inclusion best practice both within our community and in any other area where we have influence. We are proud of our diverse community where everyone can come to work and feel welcomed and treated with respect regardless of any disability, ethnicity, gender, gender identity, religion, sexual orientation, or social background.
Genomics England’s policies of non-discrimination and equity and will be applied fairly to all people, regardless of age, disability, gender identity or reassignment, marital or civil partnership status, being pregnant or recently becoming a parent, race, religion or beliefs, sex or sexual orientation, length of service, whether full or part-time or employed under a permanent or a fixed-term contract or any other relevant factor.
Genomics England does not tolerate any form of discrimination, harassment, victimisation or bullying at work. Such behaviour is contrary to our virtues, undermines our mission and core values and diminishes the dignity, respect and integrity of all parties. Our People policies outline our commitment to inclusivity.
We aim to remove barriers in our recruitment processes and to be flexible with our interview processes. Should you require any adjustments that may help you to fully participate in the recruitment process, we encourage you to discuss this with us.
Blended working model
Genomics England operates a blended working modelas we know our people appreciate the flexibility that hybrid working can bring.We expect most people to come into the office a minimum of 2 times each month.However, this will vary according to role and will be agreed with your team leader. There is no expectation that people will return to the office full time unless they want to, however, some of our roles require full time on site attendancee.g., lab teams, reception team.
Our teams and squads have, and will continue to reflect on what works best for them to work together successfully and have the freedom to design working patterns to suit, beyond the minimum.Our office locations are: Canary Wharf, Cambridge and Leeds.
Onboarding background checks
As part of our recruitment process, all successful candidates are subject to a Standard Disclosure and Barring Service (DBS) check. We therefore require applicants to disclose any previous offences at point of application, as some unspent convictions may mean we are unable to proceed with your application due to the nature of our work in healthcare.
About the Company
Genomics England works with the NHS to bring forward the use of genomic healthcare and research in Britain to help people live longer, healthier lives. Genomics is a ground-breaking area of medicine that uses our unique genetic code to help diagnose, treat and prevent illnesses. Thanks to advanced technology, scientists can now compare many people’s genetic code to make new discoveries that continually improve genomic healthcare. In 2013, Genomics England and the NHS launched the 100,000 Genomes Project, demonstrating h... Know more
Related Jobs
- Company Name
- RedRock Resourcing
- Job Title
- Graduate Cyber Security Consultant x 3 - Graduate Scheme - Bristol - New! (REFBJ14)
- Job Description
- Graduate Cyber Security Consultant x 3 - Graduate Scheme - Bristol - New! (REFBJ14) Up to £28,000 + Graduate Scheme - Training & Progression (Rising to £45k) ** 2/3 days per week on site in Bristol ** A leading consultancy in Bristol requires a number of Graduate Cyber Security Consultants to join its growing team. Successful candidates will work in project teams to design, implement and cyber security solutions. This will involve learning about and working with a variety of technologies as well as developing professional consulting and problem-solving skills. Engagements will involve building insightful analytics from client requirements to enable them to make evidence-based decisions based in real time. Suitable candidates will have At least a 2.1 in a Security or STEM related degree ideally from a Russell Group university coupled with strong A Level results Demonstrable technical competence and analytical approach to problem solving Flexible and adaptable, with ability to work well in a team Good communication skills, both written and verbal, and professional approach Eligible for SC clearance Additionally, any experience of working with customers / stakeholders would be advantageous, as would exposure to any of Splunk, Sentinel, AWS, Azure, networking, system administration, data analytics tools. Please send CV for job description and an informal chat. Excellent opportunity to kick start your career!
- Company Name
- Lorien
- Job Title
- Cyber Security Consultant
- Job Description
- Cyber Security Consultant Portsmouth - Hybrid working pattern Salary – Up to £60,000 + Additional Corporate Benefits Package The Client: A leading boutique cyber security firm requires a security consultant! The Role: As a Cyber Security Consultant, your role will involve assisting clients in tackling various Cyber Security challenges, from clearly defining Cyber Security policies and strategies to recognizing their vulnerability to Cyber Security threats/risks and implementing practical and cost-effective measures. You will be responsible for advising and executing the identification, management, and mitigation of risks to a client’s information and information technology assets. Key Skills: Comprehending the business and information risk context (typical business motivators, cyber security threats, and implementation obstacles) of our clients Evaluating risk at both a technical and business process level and clearly communicating findings both verbally and in writing to key stakeholders Assessing the level of cyber security maturity within an organization and formulating maturity enhancement strategies Reviewing the efficiency of controls (in relation to recognized controls frameworks as applicable) and recommending appropriate security improvements Investigating and analysing security technologies to facilitate the creation of innovative solutions Evaluating risk at the business function or process level leading client interviews or minor investigations to gauge business impact Performing site visits and threat evaluations Applying standard frameworks or relevant standard methodologies Leading the development of risk assessment/reports Collaborating with account teams to discover new work opportunities and assist in the creation of high-quality proposals Requirements: You should possess a degree related to cyber security or equivalent training or have 3 years of experience in similar positions with A-levels being a minimum. You must have the capability to convey and present security advice, often at a technical level, directly to key customer stakeholders; possess outstanding interpersonal skills as well as strong written and verbal communication and presentation abilities. Experience in a commercial sector such as financial services, banking, insurance, the energy industry, or telecoms is preferred. Desirable Skills: CISM, CISMP, or equivalent certifications are advantageous Given the nature of the role, all employees must undergo a DBS and Security Check. To qualify for full SC Clearance, you must have resided in the UK for the past five years. Additionally, you may not spend more than 30 consecutive days outside of the UK. So, if you feel your skills and experience align with the prerequisites for this role, then please get in touch, and apply directly.
- Company Name
- Stealth IT Consulting
- Job Title
- Cyber Security Consultant
- Job Description
- Senior Cyber Security Engineer Hybrid remote – London, Glasgow or Manchester HQ’s We are looking for candidates with 2 years - 5 years experience - £45k-£88k A leading Digital Consultancy are looking to onboard multiple Cyber Security Engineers to support the growing Cyber Security division. The ideal candidate will be CISSP/CISM or CompTIA certified, although this is not essential, although it is essential you are either holding or are eligible form security clearance. Key skills: Security cleared or security clearance eligible (This is essential) Experience in any of these Security domains (Security and Risk Management, Security architecture, IAM or similar. NIST CSF, ISO27001 and any experience with financial regulations such as DORA, FCA or BOE Experience of Gen Ai security Any Cyber Security certifications such as CISSP/CISM/CompTIA would be desirable We partner with clients to transform their Cybersecurity, Architecture, and Operational Resilience, empowering them to reduce business and technology risks while ensuring long-term success. Our expertise spans across the strategic, organizational, and human aspects of Cybersecurity—beginning with high-level security strategy and operating model design. These foundational steps help influence key decision-makers, including board members and CxOs, ensuring top-down buy-in and comprehensive understanding of the security landscape. We provide invaluable insights in threat modelling, risk management, and security overlay strategies through thorough security maturity assessments, enabling clients to make data-driven, informed decisions. By demystifying technical domains and tailoring solutions, we help our clients maximize value and seize quick wins throughout their transformation journey. We engage directly with business, IT, and security teams, effectively guiding senior stakeholders toward achieving their desired outcomes. Collaboration is at the heart of what we do—we work closely with teams to deliver robust security strategies, governance, comprehensive security testing, IAM, privacy solutions, security architecture, and cutting-edge cyber data analytics. Get in touch for a discussion about how you can join a growing Cyber Security team.
- Company Name
- Tata Communications
- Job Title
- Associate Director - Cyber Security (Europe & UK)
- Job Description
- Purpose of your role The purpose of this role is to have a seasoned CyberSecurity professional oversee and drive the cybersecurity, privacy, and regulatory strategies for our organization across the UK and EU region. This individual will hold end-to-end responsibility for security governance, privacy compliance, and risk management, ensuring alignment with both local and international regulations (including GDPR and UK data protection laws). The ideal candidate will have strong expertise in cybersecurity frameworks (e.g., ISO 27001) and healthcare regulatory requirements (e.g., HIPAA), along with demonstrated experience managing security programs, audits, and cross-functional teams. You will be accountable for Strategic Leadership & Governance: Develop, implement, and maintain a comprehensive cybersecurity strategy for the UK and EU region, aligned with global organizational objectives. Serve as the primary point of contact for all security and privacy matters, providing regular updates to executive leadership and board-level stakeholders. Establish and oversee robust governance frameworks, policies, and procedures to ensure the confidentiality, integrity, and availability of corporate information assets. Regulatory Compliance & Privacy: Oversee compliance with relevant EU and UK privacy regulations (GDPR, UK Data Protection Act, etc.) in partnership with legal and regulatory teams. Drive compliance with ISO 27001 and HIPAA standards, ensuring ongoing certification readiness and alignment with best practices. Lead privacy management efforts, including data classification, data governance, consent management, and breach notification processes. Risk Management & Incident Response: Develop and maintain risk management programs, identifying, assessing, and remediating cybersecurity and privacy risks. Oversee the development and execution of incident response plans, including timely reporting and mitigation strategies. Conduct regular risk assessments, vulnerability scans, and penetration tests to ensure continuous improvement of the security posture. Audit & Certification Management: Serve as the primary owner of all customer security and compliance audits, addressing inquiries and ensuring timely and effective closure of findings. Coordinate with internal and external auditors to demonstrate compliance with established standards (ISO 27001, HIPAA). Maintain comprehensive documentation and evidence of compliance activities and security controls. Team Leadership & Development: Build, mentor, and lead a high-performing security, privacy, and risk management team. Establish training and awareness programs to ensure all employees understand security policies, privacy obligations, and data protection best practices. Foster a culture of security and privacy by design, working cross-functionally with product, engineering, and operations teams. Stakeholder Collaboration: Work closely with cross-functional teams (Legal, Regulatory, IT, HR, etc.) to align business objectives with security imperatives. Act as a trusted advisor to internal stakeholders, providing guidance on security requirements, best practices, and potential impacts on business operations. Engage with external partners, vendors, and industry peers to stay current on emerging threats, compliance updates, and innovative security solutions. Business Security & Privacy Alignment: Ensure that business units across the UK and EU region adhere to the organization’s Business Security and Privacy Officer (BSPO) framework. Collaborate with business leaders to integrate security and privacy considerations into strategic initiatives, product roadmaps, and operational processes. Continuously monitor and evaluate the effectiveness of BSPO-aligned programs, recommending improvements to maintain a robust security and privacy posture. You Are Strategic Thinker: Able to translate complex security challenges into actionable strategies aligned with business goals. Results-Driven: Committed to achieving objectives, delivering measurable outcomes, and continuously improving processes. Collaborative Leader: Works effectively with cross-functional teams and external partners, building trust and cooperation. Ethical & Integrity-Focused: Upholds the highest standards of professionalism, confidentiality, and ethics. You have At least 10+ years of progressive experience in information security and privacy, with a significant portion leadership roles. Demonstrated track record of building and managing comprehensive security and privacy programs at enterprise scale. Proven experience implementing and maintaining ISO 27001, HIPAA, and other relevant regulatory frameworks (e.g., PCI-DSS, NIST). Strong knowledge of cybersecurity technologies (firewalls, IDS/IPS, SIEM, encryption, endpoint protection) and best practices. In-depth understanding of privacy regulations including GDPR and UK Data Protection Act, with experience in designing and implementing privacy frameworks. Knowledge in DORA and Ofcom Regulation Familiarity with cloud security concepts (IaaS, SaaS, PaaS) and best practices for securing hybrid environments. Excellent analytical, problem-solving, and decision-making skills to drive effective risk management. Bachelor’s degree in Computer Science, Information Security, or a related field (Master’s degree preferred). Professional certifications such as CISSP, CISM, CISA, or CRISC are highly desirable. Leadership & Soft Skills: Exceptional communication and presentation skills, with the ability to influence stakeholders at all levels, including C-suite and board members. Demonstrated ability to mentor and grow teams, fostering a positive and collaborative work environment. Strong organizational skills, able to prioritize and manage multiple projects and deadlines in a fast-paced environment