Security Architect
On site
Newcastle Upon Tyne, United Kingdom
£ 90,000 / year
Full Time
11-04-2025
Job Specifications
Lorien are currently engaged with a leading Digital services business that offer innovative infrastructure solutions. They have a number of data centres strategically located across the UK and support into the 1000's of clients across various services within Cloud, connectivity and compute services.
This role would report into the Head of Cyber Security, the individual will be accountable for the design, development and ongoing maintenance of the organisations security infrastructure. Safeguarding the organisation against cyber threats is a top priority for the business due to the solutions they provide for their clients.
Additionally, you will:
Conduct risk assessments and vulnerability analysis
Develop and maintain security blueprints, standards and guidelines
Integrate and deploy security solutions across systems and networks
Lead incident response efforts and provide expert troubleshooting
Evaluate, recommend, and implement security tools and technologies.
Experience:
Demonstrative experience in Cyber Security and leading on security architecture
Cloud Security, Firewalls, Network security protocols, VPN's and encryption
DDoS, Access controls, systems logging, intrusion detection and prevention.
Risk Management - analysing and assessing security risks effectively
Able to design solutions and troubleshoot complex security issues
Explain security concepts to non technical stakeholders and collaboration across multi functional teams
Desirable
Certification - CISSP, CISM or GIAC - or relevant
Disaster recovery
Business continuity
Knowledge of UK information security laws and standards - NIS2/GDPR
Knowledge of security standards - Cyber essentials plus, ISO27001, PCI-DSS, NIST CSF, ISO
The salary on the role is paying up to £90,000 with additional benefits including
4x basic salary death in service benefit
Unlimited learning and development through the company LMS
Private medical (Bupa)
Health cash plan
33 days annual leave including bank holidays plus birthday off
Annual well-being day
Complementary breakfast onsite
The company have a 3 days per week in the office and 2 days a week from home policy.
If the role is of interest, please apply.
Please note: Our client does not offer sponsorship and candidates must be based in the UK within a commutable distance from the office.
Carbon60, Lorien & SRG - The Impellam Group STEM Portfolio are acting as an Employment Business in relation to this vacancy.
About the Company
Lorien is a technology, transformation and telecom talent solutions specialist. We combine tech expertise with the scope, depth and breadth of large-scale talent solutions. Driven by both clients and candidates, covering Europe and the US, we work with all sectors, sizes and tech needs – from start-up to established, tech companies and those who use tech to propel them further - we work with them all. Our unique position in the market means we have the insight to create tailored solutions – keeping our clients ahead of t... Know more
Related Jobs
- Company Name
- Integrity360
- Job Title
- OT Cyber Security Consultant
- Job Description
- About Us Integrity360 is one of Europe’s leading cyber security specialists operating from office locations spread out across Europe, providing a comprehensive range of professional, support and managed cyber security services for our 300+ clients. With four top-class Security Operation Centers, we offer a complete end-to-end security services covering our clients’ security from every angle. Our services include Managed Security, Cyber Security Testing, Incident Response, Security Integration, PCI Compliance and Cyber Risk & Assurance services. What sets Integrity360 apart is our excellent team of people that drive the business forward. The company was founded with a focus on technical expertise and that philosophy remains today. The skills and experience in our company are some of the greatest in the industry and clients remain with Integrity360 because they can rely on and trust us to go above and beyond to ensure their needs are met. Listed multiple times on Gartner Market Guides for Managed Security Services. Job Role / Responsibilities Assisting our clients in securing their information systems (defining target objectives, developing action plans, implementing actions (organizational or technical), coordination, monitoring and managing these plans) Assessing our clients' cybersecurity posture against current norms and regulations (ISO 27001, NIS 2, IEC 62443, Cyber Resilience Act...) and through cybersecurity risk analysis (ISO 27005 / EBIOS RM) Integrating cybersecurity into our clients' projects Supporting our clients' CISOs in their daily activities: defining cybersecurity processes, drafting policies and documentation, conducting awareness sessions, organizing cyber crisis exercises, animating the client's cyber community Leading or deploying cybersecurity solutions specific to industrial environments. We work under fixed-price projects and/or in Time and Material mode. The duration of assignments depends on client needs, topics, and consultant aspirations – ranging from a few days to several months. Our clients vary widely: large enterprises and SMEs, across private and public sectors – industry, energy, luxury, maritime, transportation, institutions... in France and Worldwide. Hard Skills Required: You understand basic security concepts (CIA triad, vulnerability, risk, threat…) You have a technical mindset and understand core security components, their principles: systems and networks, security devices (firewalls, AV/EDR, VPN...), cloud (AWS, Azure, Google…) Familiarity with industrial/OT environments (SCADA, ICS…) is a plus – it's our specialty (and if not, we’ll train you!) You master risk analysis methodologies (ISO 27005, EBIOS RM). Even better if you’re certified! You're curious and have already read cybersecurity frameworks and methodologies (ISO27001/2, IEC 62443, ANSSI, NIS, NIST…) Soft Skills Required: Mindset is key: you’re motivated, dynamic, and autonomous You enjoy teamwork and value mutual support and customer service You know how to organize your activities, multitask, prioritize, and raise alerts when needed You have good writing skills, good spelling, and you're comfortable with Microsoft Office You speak and write fluent French and English (you can understand conversations, lead meetings, and write reports…) Other Requirements: Master’s degree or equivalent Certifications such as IEC 62443, ISO27001/2/5, EBIOS EM, ISC2 are a plus! Driver's license (B), useful for some travel Integrity360 Employee Benefits (UK) At Integrity360 we aim to reflect what’s important through the benefits we offer. We survey our people regularly and encourage discussions around these tops so we can understand what really makes a difference. Our benefits priorities are physical, mental and financial wellbeing. Mental & Physical wellbeing: Health insurance Dental Cover Optical Cover Virtual GP, no need to see your GP first, our cover ensures fast access to appropriate care 24/7, this includes: Mental Health Physical Health Financial wellbeing benefits: We guarantee that every employee will have their pay reviewed at least once every year, if not more regularly. We aim to pay within the market range for all roles and keep pace with inflation on average. Other benefits include: 25 days’ annual leave, 1 extra day gained per year of service up to 28 days. Options to carry over 5 days. Our L&D program, we work with various platforms including Cybrary, Udemy, Preply, Pluralsight, Swift and HTB ensuring our people are up to date with their industry knowledge. Offering opportunities to further upskill and gain industry leading certifications.
London, United Kingdom
Hybrid
Full Time
25-04-2025
- Company Name
- Leidos
- Job Title
- Cyber Security Engineer
- Job Description
- Description Cyber Security Engineer Location: Farnborough, UK Looking for an opportunity to make an impact?.. Role Overview Everything we do is built on a commitment to do the right thing for our customers, our people and our community. Our mission and our values guide the way we do business. The foundation of our Leidos culture is our Values, Beliefs and Expectations by which we select, recognise and reward employees. They create the environment that drives us toward our mission. Inspired to make a difference, we are committed to solving the world’s toughest problems. Passionate about customer success by being determined to understand and respond to our customers’ needs as if they were our own. United as a team, we are bound together by our conviction that ethics and integrity is core to how we operate. Because of a key strategic development and a new exciting business opportunity, we have a requirement for a security-cleared Cyber Security Engineer based in the UK working at our Farnborough site and remotely. Leidos has more than 30 years’ experience of developing and running some of the largest government systems in the world. We are currently hiring to expand our UK based technical team who support our delivery for the UK Govt. Come join our team and further develop your skills as we deliver and support systems key to the defence of the UK and partner nations. Being part of the Leidos team is a commitment to push yourself and those around you to do better, constantly adapt and learn new technologies. We’re a passionate team and are committed to developing and growing our staff. Leidos is a global science and technology solutions leader working to solve the world's toughest challenges in the defence, intelligence, homeland security, civil, and health markets. The company's 33,000 employees support vital missions for government and commercial customers. What Will You Be Doing? As a result of some exciting programme wins, we currently have a permanent vacancy for a Cyber Security Engineer to support the development and transition into live of a new IT application and infrastructure solution providing support to a critical operational end user. Leidos is seeking an enthusiastic protective security specialist to lead the implementation and assurance of security within a key defence project. The incumbent will possess specialist skills in all areas of protective and information security and have demonstrable experience of applying security frameworks such as Government Functional Standard 007. You will be joining a team of highly skilled and highly motivated individuals who are working on one of the UKs leading programmes. Required Skills The Cyber Security Engineer plays a crucial role in protecting IT infrastructure by using a blend of technical expertise and strategic planning to ensure that the digital infrastructure remains secure from various types of attacks and vulnerabilities. You will be responsible for planning and implementing appropriate security controls to ensure that the information within is kept secure. Key Functions/outputs Vulnerability Scanning & Reporting Endpoint Security Incident Management & Tickets System Hardening Change Work Participation in Regular Meetings Documentation Main Objectives Vulnerability Scanning & Reporting Perform regular vulnerability scans and generate reports utilising the below tool sets or similar. The process should be focused on ensuring that the below tool sets are kept up to date and ensure that scans are performed regularly to help assist the Vulnerability and Patch Manager with identifying weaknesses in the system. Code Scans: perform regular code scans to audit code quality metrics, potential bugs, and security vulnerabilities. Vulnerability Management Tooling: perform regular Vulnerability Management Scans and ensure that the warehouse and plugins are kept up to date to capture new vulnerabilities. Reporting: assist the Vulnerability and Patch Manager with generating regular vulnerability management reports, which are to be provided to the cyber security and IA lead. Endpoint Security Endpoint Protection: perform regular updates to Endpoints to ensure the latest packages are applied and policies are amended to keep up to date with new and emerging threats. Antivirus and Anti-malware Protection: perform compliance checks to ensure that antivirus and anti-malware protection is deployed successfully and being kept up to date by the relevant team. Network Controls: perform compliance checks and regular audits of network controls (i.e. firewall rules) to ensure that unauthorised access and threats are being blocked. Access Control: ensuring that access controls have been implemented correctly to only allow authorised users to gain access to certain data and systems. Incident Management & Tickets Incident Identification: help to recognise and confirm potential incidents through alerts, logs and user reports. This includes distinguishing between true threats and false positives. Incident Response: respond to potential security breaches or cyber-attacks. The main effort should focus on containment, mitigating the damage, investigation of the root cause of the incident and restoring to normal operations. Ticket Requests: respond to and resolve any tickets raised to the Leidos Security group on SD+ that require Cyber Security Engineering input. System Hardening Patch Updates to Security Products: ensure that the security tool sets are kept up to date with regular security patches and software updates to fix vulnerabilities and improve system security. System Compliance: perform regular system compliance audits and updates to ensure that the systems are compliant with industry best practices. This includes CIS, STIG, NIST etc. Security Enforcing Function Configuration: Assist in the design, reviews and updates to security enforcing functions (i.e. GPOs or System Policies) and system controls to ensure that they are compliant and fit for purpose. Vulnerability Assessments: conduct periodic assessments to identify and address potential vulnerabilities. Change Work Security Impact Triage Tool (SITT): Assist in evaluation and impact assessment of system change to security posture of the environments. Security Evaluation, Testing and Assurance (ST&V): perform Security, Evaluation, Testing and Assurance activities for any new changes that are planned in as part of PI Planning. Participation In Regular Meetings Cyber Security Engineers are expected to lead or attend numerous meetings that require their input. This may include the following depending on work activity. Security Working Group (SWG Vulnerability Triage Security Workshop PI Planning Daily Standups (Blue/Green Team) Documentation Cyber Security Engineers are responsible for creating, maintaining and reviewing detailed documentation. This includes High-Level & Low-Level Designs (HLD/LLD), Standard Operating Procedures (SOP) and comp...
Farnborough, United Kingdom
Hybrid
Full Time
25-04-2025
- Company Name
- Yolo Group
- Job Title
- Application Security Engineer
- Job Description
- Our Cyber Security team is growing, and we are looking for new talent to join us on our journey! As an Application Security Engineer, you'll strengthen application security using SAST, DAST, and SCA, automate tasks with Python, Bash, and Go, and manage infrastructure with Terraform and Ansible. You'll collaborate with pentesters, handle vulnerabilities, and lead security initiatives independently while working closely with cross-functional teams to enhance overall security. Your day-to-day Ensure strong application security by overseeing the security framework and mitigating vulnerabilities; Automate security in CI/CD pipelines, integrating SAST, DAST, and SCA for seamless protection; Provide expert guidance to product engineers, enhancing application security with best practices; Manage penetration testing and bug bounty programs, identifying and addressing security risks; Develop engaging security training programs to foster awareness and best practices among engineers; Collaborate with cross-functional teams, including developers and system administrators, to strengthen security; Stay ahead of emerging security trends and propose innovative solutions to enhance secure development processes. Your background and mindset At least 5 years of experience in cybersecurity engineering; Expert knowledge of SAST, DAST, and SCA; Proficient in scripting and automation, using languages like Python, Bash, and Go; Experience with infrastructure management, including Terraform and Ansible; Strong knowledge of AWS, microservices, and CI/CD solutions; Experience collaborating with pentesters, researchers, and bug bounty programs; Self-driven and able to prioritize tasks, managing them independently while delivering on commitments; Excellent communication and teamwork skills, capable of working with project teams, employees, and managers; In-depth understanding of cybersecurity best practices and processes; Fluent in English, both written and verbal; Experience with languages like Elixir and Erlang is a plus. Benefits for you Learning & Growth. Personal L&D budget, internal and external training, company-wide knowledge-sharing sessions, smooth onboarding experience through Yolo Takeoff, and plenty of career development opportunities. Slice of Yolo. A unique chance to invest in Yolo Group's venture fund, support the startups shaping our ecosystem, and grow alongside the businesses you believe in. Wellbeing. Monthly sports allowance, paid wellness days, private health insurance, and mental health support - a balanced work-life approach to support both physical and mental wellbeing. Milestones & Moments. Extra paid time off for your birthday, work anniversaries, marriage, child’s first school day, and other personal and professional milestones. Workplace Experience. Modern offices, top-notch equipment, and all the coffee, snacks, and drinks you need to stay fueled and perform at your best, whether you’re remote or in-office. Legendary Events. Annual Yolo Gala, summer parties, quarterly Meet & Mingle and regular team events - a mix of formal gatherings and spontaneous celebrations to keep the team spirit high.
London, United Kingdom
Hybrid
Full Time
24-04-2025
- Company Name
- Arm
- Job Title
- Functional Safety and Cybersecurity Manager
- Job Description
- Job ID 2025-13556 Date posted 19/02/2025 Location Cambridge, United Kingdom; Austin, Texas Category Security Fixed Term - 9 Months Job Overview This exciting new role is for the FuSa and Cybersecurity Manager fixed-term position within the Arm Quality Group. You will be ensuring the safety of best-in-class products for one of the most extraordinary and successful companies! Your ideas will make a difference. You will have the opportunity to ultimately improve how Functional Safety, Automotive quality, and cybersecurity are integrated into the Arm products. Join us to shape the future of the Automotive industry together! Responsibilities You will support Arm Automotive projects from early development to successful assessment and certification. This will involve working closely with engineering, product security, and functional safety experts. You will have the unique opportunity to establish an aligned and seamless workflow between the multiple subject areas, processes, and requirements. You will help the teams to develop robust development processes, achieving efficiency and excellence across Arm solutions, hardware, and software. In your role, you will manage functional safety and cybersecurity external assessments, conduct internal audits, and drive open actions to closure, meeting Arm customer requirements and industry standards. You will foster a Safety culture, deliver training, improve frameworks, manage risks, and monitor performance. You will communicate progress to various team members and Arm leadership. Required Skills And Experience Extensive practical knowledge of one or more functional safety, quality, and cybersecurity standards, such as ISO 26262, ISO/SAE 21434, IEC 61508, ASPICE, etc. This includes the ability to produce and review functional safety documentation, providing the teams with opportunities for improvement as well as with relevant training and guidelines. Great understanding of Soft-IP (Software, Hardware) development lifecycle from a Functional Safety perspective. Experience in performing audits in Functional Safety, Automotive Cybersecurity, or Quality for at least three years, experience in facilitating root cause analyses, applying, facilitating, and guiding quality processes and methodologies. Strong interpersonal skills to help develop relationships and network with internal customers and champion quality, safety, and cybersecurity culture. In Return Accommodations at Arm At Arm, we want our people to Do Great Things. If you need support or an accommodation to Be Your Brilliant Self during the recruitment process, please email Hybrid Working at Arm Arm’s approach to hybrid working is designed to create a working environment that supports both high performance and personal wellbeing. We believe in bringing people together face to face to enable us to work at pace, whilst recognizing the value of flexibility. Within that framework, we empower groups/teams to determine their own hybrid working patterns, depending on the work and the team’s needs. Details of what this means for each role will be shared upon application. In some cases, the flexibility we can offer is limited by local legal, regulatory, tax, or other considerations, and where this is the case, we will collaborate with you to find the best solution. Please talk to us to find out more about what this could look like for you. Equal Opportunities at Arm Arm is an equal opportunity employer, committed to providing an environment of mutual respect where equal opportunities are available to all applicants and colleagues. We are a diverse organization of dedicated and innovative individuals, and don’t discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Cambridge, United Kingdom
Hybrid
Full Time
25-04-2025