Cyber Security Technical Specialist (5479)
On site
Dartford, United Kingdom
Full Time
04-04-2025
Job Specifications
Cyber Security Technical Ops Specialist
Location: Dartford with Manchester and Worksop considered
Be part of transforming the construction industry, be part of our Cyber Security team.
Do you want to be part of something different? At Laing O'Rourke we have an opportunity for a Cyber Security Technical Specialist to join the team. Are you able to support comprehensive Cyber Security programs whilst optimising the operational performance and reliability of Infrastructure technologies? Then we need your expertise in controls and activities for the effective management of critical cyber security platforms.
Are you skilled with Privilege Access management, Application Control and Data Loss Prevention solutions? The we need you to help optimise performance and ensure compliance to our cyber security certification requirements.
This position requires a deep understanding of security protocols, risk management, and the ability to proactively identify and mitigate potential threats to the business, whilst delivering cyber security with a service mindset. You will work closely with cross-functional teams from infrastructure and network support analysts across the business units to ensure the integrity and security of our applications and data.
Key Accountabilities Include
Keeping abreast of potential and emerging cyber security threats, vulnerabilities, and control techniques and the trade-offs required to manage the different levels of risk appetite and risk exposure across the business.
Focused on day-to-day operational tasks and maintenance of core Cyber Security infrastructure service platforms, including but not limited to:
Manage and administer the Privileged Access Management (PAM) platform, including user access, permissions, audits and configurations.
Collaborate with IT and business teams to integrate and expand PAM controls into existing systems and applications.
Manage and administer the Application Control platform, including policy configuration, rule creation, and software whitelisting/blacklisting to prevent unauthorized software installations and executions.
Collaborate with IT teams to integrate Application Control mechanisms into existing systems and processes.
Work with cyber analysts and engineers to maintain and optimise other cyber security platforms and tools to improve performance and end-user experience. These include, but not limited to endpoint detection and response, network intrusion detection, patch management, web filtering and email security gateways.
Develop processes and procedures to manage, monitor and improve performance, reliability, recovery, capacity and user-experience of cyber security controls
Work with IT stakeholders to implement and test cyber security controls to ensure compliance with DR and BCP policies and scenaries.
Working with the Cyber and Infrastructure Engineering team to form SME relationships
To implement security best practices as directed by the Cyber Security Tech Ops Lead, Cyber Security Architect and Engineering teams.
Responsible for the quality and response time of support tickets
Ensure knowledge and information are documented and passed to the relevant Service delivery teams.
Researches and assesses new threats and security alerts and recommends remedial actions. Play an active part in responding to and resolving security incidents (Prepare, Identify, Contain, Remediate, Recover).
Work with key suppliers, partners and vendors to drive maximum value and security benefits from security services and solutions.
Work with Cyber Security leadership to develop plans to enforce security requirements and address identified risks.
You will need knowledge of Infrastructure and Cyber Security principles being able to create and develop operational process. Part of the role is to develop and maintain technical documentation, procedures, guidelines, and training. This means keeping a service management mindset to provide support and guidance to IT teams for best practice. Do you have experience in Security Incident Management tools (SIEM)? How about demonstrating excellent knowledge of security technologies, enterprise systems and cloud solutions? The join our Cyber Security team and showcase your knowledge of regulation standards, compliance and governance.
Essential Experience Includes
Around 5 years+ experience in IT including circa 3 years in an operational environment
Knowledge of best practices of IT security hardware and software, security suites, identity and access management, and encryption.
Experience in configuring and managing PAM solutions in enterprise environments.
Familiarity with identity and access management (IAM) principles, including role-based access control (RBAC) and least privilege.
Strong understanding of Application Control concepts, tools, and technologies (e.g., whitelisting, blacklisting, application allowlisting). Experience in configuring and managing Application Control solutions in enterprise environments preferred.
Understanding of security frameworks such as NIST, CIS Controls, or ISO 27001.
Formal industry recognised Cyber Security qualification such as ISC2 CISSP, ISC2 CISM or Certified Ethical Hacker (CEH) (desired).
Security and Network technology experience.
The position will required time in our Dartford office, due to the nature of the work and sensitive sites we wok on, this is an office based position. Need flexibility? Talk to the team about your current circumstances.
Please be aware that the business has a Christmas shutdown period. Please bear with us on your application as the team will be in contact after the 13th January.
About Us
We are an international engineering and construction company delivering state-of-the-art infrastructure and buildings projects for clients in the UK, Middle East and Australia.
Certainty, reliability, quality – this is what our clients want. And at Laing O'Rourke, we have more than 150 years of experience delivering it. Laing O'Rourke's story is one of energy, passion, ambition, people and teamwork. We harness the power of our experience, stretching back over a century and a half to deliver certainty for our clients.
As part of the Disability Confident scheme, we would like to enable access to candidates with long term health conditions and disabilities through the ‘Offer an interview scheme'. This supports applicants that meet the essential criteria by offering an interview for the advertised position. Please let us know prior to interview what adjustments are required as well as discussing how we can support you in the workplace.
We want to ensure our recruitment process is accessible to all. If you need the application form in an alternative format or you would like to know more about our recruitment process, please email resourcingteam@laingorourke.com
About the Company
Laing O’Rourke is an international engineering enterprise, with operations in Europe, Australia and the Middle East. Our purpose is to push the boundaries of what's possible in service of humanity. Together, with our values of care, integrity and courage, this is what makes us unique. We have a strong culture which stems from our family ownership and a passion to deliver projects that improve the lives of the communities they serve. Across our global business, we continue to build a reputation of adapting our business ... Know more
Related Jobs
- Company Name
- TieTalent
- Job Title
- Security Operations Analyst
- Job Description
- About Security Operations Analyst Salary: Competitive per annum plus bonus and Veolia benefits Location: Cannock / hybrid When you see the world as we do, you see the chance to help the world take better care of its resources, and help it become a better place for everyone. It's why we're looking for someone who's just as committed as we are, to push for genuine change and bring our ambition of Ecological Transformation to life. We know that everyone here at Veolia can help us work alongside our communities, look after the environment, and contribute to our inclusive culture. Are you an experienced IT professional with a passion for cybersecurity? If you're naturally curious about cyber threats and eager to build robust security solutions, this role offers an exciting pathway into Cybersecurity Architecture and we'd love to hear from you! What we can offer you; Access to our company pension scheme Discounts on everything from groceries to well known retailers Access to a range of resources to support your physical, mental and financial health; so you can lean on us whenever you need to 24 hour access to a virtual GP, 365 days a year, for you and family members in your household One paid days leave every year to volunteer and support your community Ongoing training and development opportunities, allowing you to reach your full potential What will you be doing? In this role, you won't be starting from scratch. We'll value your existing expertise and provide you with the support and opportunities to develop your cybersecurity skills further. You'll be working within the team to design and implement security architectures that protect our critical infrastructure, drawing on your understanding of network design, system hardening, cloud security best practices, and potential areas like identity management or data protection. What are we looking for? Experience in a senior infrastructure role with deep technical knowledge of one or more: Microsoft (Server, Azure, M365), Cisco networking, VMware, Linux, AWS, GCP, or enterprise storage. A natural problem solver with an understanding of complex systems and the ability to identify issues. Interest in cyber security and motivation to learn about risks, controls, and security frameworks. Eagerness to expand your skillset and transition into a highly sought-after career in cyber security architecture. This is your opportunity to leverage your valuable expertise and transition into a rewarding career, in a dynamic and critical field.We'll help you to thrive in a role where you can make a tangible impact on the security and resilience of our organisation. What's next? Apply today, so we can make a difference for generations to come. We're proud to be listed in The Sunday Times Best Places to Work 2024, being named as a Top 10 Very Big Organisation to work for two years in a row! This accolade further demonstrates our commitment to our people and our actions in creating an environment where everyone can be their true selves and enjoy working at Veolia. We want to ensure that you feel supported throughout the application process and provide reasonable adjustments where necessary and requested. If you require any reasonable adjustments as part of your application and interview process please do not hesitate to let us know. We know how important it is to be fully committed to building and maintaining a diverse and inclusive place to work for every one of our colleagues. We are committed to ensuring that all job applicants and members of staff are treated equally, without discrimination because of sex, gender, sexual orientation, marital or civil partner status, pregnancy or maternity, gender reassignment, race, nationality, ethnic or national origin, religion or belief, disability or age. We therefore welcome and encourage all candidates who meet the minimum requirements to apply Nice-to-have skills Network Design Cloud Security Azure VMWare Linux AWS GCP Cannock, England Work experience Cyber Security Specialist Security Architect Languages English
- Company Name
- Women in Data®
- Job Title
- Security Architect
- Job Description
- APPLY HERE: Security Architect What you'll be doing: Develop, deliver and continually enhance a coherent approach to the design of secure client end-to-end solutions Develop secure conceptual, logical and high level designs by identifying appropriate security controls to be embedded in solutions that meet business requirements whilst evidencing alignment to the target risk appetite. Own the design and be able to articulate and justify design recommendations at security architecture assurance gates Draft design documentation, options papers, risk assessments, stakeholder presentations and be able to effectively communicate these to both senior technical and non-technical stakeholders Contribute to a reference architecture of established patterns, principles and guidelines Research emerging technologies, new products and be able to position these in a coherent manner against the developing threat landscape and client risk appetite Ability to distil complex information and concepts into key discussion points that identifies a path to resolution rather than only the identification of challenges Contribute to the development of the Security Practice skills and capabilities to ensure consistent high quality of service delivery and expertise. Active coaching and mentoring of junior members of the team Leading in the development of collateral to support Security Consulting ‘go to market’ propositions and service offerings. Leading in the development and presentation of compelling client proposals collaborating with teams across our business. Strong stakeholder management and relationship building skills at senior levels that will enable consensus building in the shaping of secure client solutions Shaping, leading and delivering value through security advisory consultancy and through guiding secure transformational delivery engagements. Providing security expertise across security standards and accreditations, measure and control the effectiveness of the security controls framework and maintain the Information Security Management System. Deriving and delivering documented Information Security Management Plans which incorporate Regulatory, Legal and Compliance in relation to applicable security policies. Standards and guidelines Assiting with the identification of identified risks and emerging cyber security vulnerabilities and threats. The subsequent analysis to quantify and lead risk mitigation plans Work with Service Management to ensure that partners and suppliers adhere to agreed standards, policies and verify/evidence appropriate compliance and security KPIs Work closely with 1st, 2nd and 3rd lines of defence on all matters relating to cyber security, information assurance, cyber risk, data privacy including regulatory and compliance considerations Lead the development and enhancement of governance, risk and compliance aligned to policy, standards an industry good practice Ensure that continuous assessment, identification, analysis and reporting of useful metrics to enable informed risk based decisions to be taken Constructively challenge established processes and controls to identify, recommend and facilitate continuous improvement, ensuring that all personnel (including senior stakeholders) understand their responsibilities in relation to security risk mitigation and remediation Review and verify that documentation relating to process and technical security controls are maintained What experience you'll bring: Minimum of 5 years’ experience in a multi-tiered IT enterprise environment / Governance, Risk and Compliance role Minimum of 5 years’ experience in a Governance, Risk and Compliance role A track record of delivering security solutions for large-scale infrastructure, transformation or integration programmes Practical knowledge and understanding of industry security frameworks and guidance such as NIST CSF, NIST 800-53, NCSC CAF and other NCSC guidelines Good knowledge of networking (switching, routing, firewalls) Experience with the design concepts associated with adoption of Cloud platforms (AWS and/or Microsoft Azure) An understanding of the native security capabilities and good practice within Cloud platforms (AWS and/or Microsoft Azure) In-depth knowledge of modern security concepts, common attack vectors, malware, security analytics and threat intelligence. A good understanding of security testing and vulnerability management is important (including pen testing/ITHC, CVSS/CVE) Experience working with security standards such as ISO 27001, 27002, 27017, 27108 etc DESIRABLE SKILLS AND EXPERIENCE CISSP, CISM, CCSP, CRISC or equivalent experience Good knowledge covering several of the following examples (this list is not exhaustive): AD, Cryptography, End User Computing, IAM, PKI, Server hardening, SIEM, SOAR, virtualisation (VMware) Participate in pre-sales tasks and perform ongoing support of delivery collateral. Familiarity with MITRE ATT&CK Familiarity with ITIL Who we are: We’re a business with a global reach that empowers local teams, and we undertake hugely exciting work that is genuinely changing the world. Our advanced portfolio of consulting, applications, business process, cloud, and infrastructure services will allow you to achieve great things by working with brilliant colleagues, and clients, on exciting projects. Our inclusive work environment prioritises mutual respect, accountability, and continuous learning for all our people. This approach fosters collaboration, well-being, growth, and agility, leading to a more diverse, innovative, and competitive organisation. We are also proud to share that we have a range of Inclusion Networks such as: the Women’s Business Network, Cultural and Ethnicity Network, LGBTQ+ & Allies Network, Neurodiversity Network and the Parent Network. For more information on Diversity, Equity and Inclusion please click here: Creating Inclusion Together at NTT DATA UK | NTT DATA What we'll offer you: We offer a range of tailored benefits that support your physical, emotional, and financial wellbeing. Our Learning and Development team ensure that there are continuous growth and development opportunities for our people. We also offer the opportunity to have flexible work options. We are an equal opportunities employer. We believe in the fair treatment of all our employees and commit to promoting equity and diversity in our employment practices. We are also a Disability Confident Committed Employer - we want to see every candidate performing at their best throughout the job application and interview process, if you require any reasonable adjustments during the recruitment process, please let us know and we look forward to hearing from you. We are proud supporters of Women in Data®. Connect, engage and belong to the largest free female data community in the UK – visit: www.womenindata.co.uk to join our community. “Stay connected! Follow us on LinkedIn for updates on career opportunities and more.”
- Company Name
- iO Associates - UK/EU
- Job Title
- Cyber Security Architect Consultant
- Job Description
- Cyber Security Architect Consultant REMOTE Permanent Role Up to £80K per annum Drive innovation with a cybersecurity partner who is looking for a Security Architecture Consultant, that integrates security at every stage of your development lifecycle. Trusted by global enterprises, they deliver hands-on support that strengthens your cyber resilience. You will provide cybersecurity architecture guidance, ensuring design and delivery align with security standards and policies. They'll tailor these standards to the platform architecture and support compliance and resilience goals. The role also identifies capability gaps and advises on new service development. Skills: 10+ years of experience in Cyber Security CISSP or CISM certification Cloud Security Certifications (e.g., AWS Certified Security, Azure Security Engineer Associate, Google Cloud Security Engineer) ITIL, ISO27001, or other service delivery certifications Please reply with your updated CV if you want to apply for this role or if you want more information on the job and company. *PS: Company can't provide any sponsorship, so only candidates with the existing right to work in the UK will be considered for this role.
- Company Name
- UK Ministry of Defence
- Job Title
- Director Enable, Integrated Global Defence Network
- Job Description
- MOD Main Building London or MOD Northwood Headquarters. Job Summary The Integrated Global Defence Network (IGDN) Director Enable is one of two 2* Directors leading the delivery of business management activity, logistic, medical and personnel support, digital infrastructure, a robust governance, risk and assurance regime and portfolio management across the IGDN HQ and overseas locations. Supported by your Chief Operating Officer, you are accountable for the proper budget management of the IGDN, working with the finance business partners provided under Strategic Command’s finance transformation programme. You will be one of the figureheads of the organisation, responsible for leading and inspiring a wide range of staff, both at home and based overseas. You are a key part of the IGDN’s continued transformation, playing a vital role in the implementation of these changes to make the organisation stronger and better able to support Defence and His Majesty’s Government in a time of significant change, both domestically within the Department, but also across the international landscape. The IGDN is only at the start of its transformation journey and the Directors are at the heart of bringing the agreed vision to life. Director IGDN Enable is the lead on continual improvement and implementing wider Defence changes across the network, with the output of the Strategic Defence Review and Defence Reform set to shape the organisation. If you would like to understand a bit more about this important Director role and about working for the IGDN, we would encourage you to click on this link and listen to Lieutenant General Sir Tom Copinger-Symes' welcome message. Job Description Key Responsibilities One of two Directors across a global and diverse portfolio, leading business operations management and corporate policy, empowered to make resourcing and governance decisions on behalf of the Deputy Commander in line with their strategic direction. Advisor to the Command on all Integrated Global Defence Network (IGDN) facing issues through the IGDN Governance Board. Ensuring support activities are undertaken to enable the global network as well as the people deployed in these locations. Implementation of the direction from of the Military Strategic Headquarters through proper prioritisation of resources, set against Department of State policy. You will need to ensure the maintenance of an effective feedback mechanism from across the network to help inform future strategy and policy, providing intimate advice to Defence policy teams. Provide leadership, oversight and direction on all IGDN expenditure, accountable for the spend of the business area’s £450m annual budget. You will be accountable for effective decision making, the good management and scrutiny of this expenditure, working with the finance business partners and centres of excellence in the finance function to provide accurate reporting, financial accounting and transactions. You will need to balance resources across the overseas footprint and deliver capability through negotiating funding priorities from other budgetary areas including Infrastructure, capability and Senior Responsible Officers from across Government. You will make decisions on investment and disinvestment in line with Ministerial and Department priorities and seek increased efficiencies and improvement across IGDN. Corporate business and governance lead for the Higher-Level Budget and Senior Responsible Officer for workforce and infrastructure delivery programmes. This will include business planning, risk management & assurance; Safety, Health and Environmental Protection, Physical and Cyber security; business resilience and continuity. Lead the continuous improvement of IGDN’s assurance assessment such that it continues to strive for substantial assurance. Be ready to remedy issues and promote new ways of working as well as providing iterative and practical advice that is in line with other developments within the Headquarters to promote coherence. Lead a comprehensive risk management process to identify, mitigate and monitor the risks inherent in all elements of the overseas footprint. Support the ongoing transformation of the IGDN, delivering this change with the support of the Command’s Transformation SRO, as well as driving efficiency within the organisation and maintaining crucial relationships with national and international partners. Key Responsibilities One of two Directors across a global and diverse portfolio, leading business operations management and corporate policy, empowered to make resourcing and governance decisions on behalf of the Deputy Commander in line with their strategic direction. Advisor to the Command on all Integrated Global Defence Network (IGDN) facing issues through the IGDN Governance Board. Ensuring support activities are undertaken to enable the global network as well as the people deployed in these locations. Implementation of the direction from of the Military Strategic Headquarters through proper prioritisation of resources, set against Department of State policy. You will need to ensure the maintenance of an effective feedback mechanism from across the network to help inform future strategy and policy, providing intimate advice to Defence policy teams. Provide leadership, oversight and direction on all IGDN expenditure, accountable for the spend of the business area’s £450m annual budget. You will be accountable for effective decision making, the good management and scrutiny of this expenditure, working with the finance business partners and centres of excellence in the finance function to provide accurate reporting, financial accounting and transactions. You will need to balance resources across the overseas footprint and deliver capability through negotiating funding priorities from other budgetary areas including Infrastructure, capability and Senior Responsible Officers from across Government. You will make decisions on investment and disinvestment in line with Ministerial and Department priorities and seek increased efficiencies and improvement across IGDN. Corporate business and governance lead for the Higher-Level Budget and Senior Responsible Officer for workforce and infrastructure delivery programmes. This will include business planning, risk management & assurance; Safety, Health and Environmental Protection, Physical and Cyber security; business resilience and continuity. Lead the continuous improvement of IGDN’s assurance assessment such that it continues to strive for substantial assurance. Be ready to remedy issues and promote new ways of working as well as providing iterative and practical advice that is in line with other developments within the Headquarters to promote coherence. Lead a comprehensive risk management process to identify, mitigate and monitor the risks inherent in all elements of the overseas footprint. Support the ongoing transformation of the IGDN, delivering this change with t...