Senior Operational Security Analyst

Hybrid

Skipton, United Kingdom

Full Time

16-04-2025

Share this job:

Score my CV Apply

Job Specifications

Hours

35 hours per week, hybrid

Salary

£45,000 Per Annum

Closing Date

Sun, 6 Apr 2025

We are recruiting for the latest member of our Operational Security Team. If you enjoy working in a fast-paced fun environment where the customer is at the heart of everything we do. You need a keen eye for detail, great time management and skills within Active directory then this may be the job for you.

Who Are We?

Not just another building society. Not just another job.

We're the fourth biggest building society in the UK and what makes us a bit different is that we're a mutual organisation. We don't have shareholders; we're owned by our members.

Our colleagues say Skipton's a great place to work, and you could be one of them, bringing with you new ideas on how we can keep customers at the heart of what we do.

Whatever your background, and whatever your goals, we'll help you take the next step towards a better future.

You will be joining the Operational Security team, which consists of 3 Seniors and 2 Analysts. We provide support to all areas of the business with Windows access requests. We work closely with all teams across the TTR function. Our core role is to manage, maintain and g overn access to Windows for colleagues across the society whilst also managing security alerts from our monitoring tools. Working closely with our Managed Service Provider.

What’s In It For You?

Skipton values work/life balance and we are proud to support hybrid and flexible working, where possible. We have a newly refurbished head office which offers a vibrant and collaborative working space.

We have a range of other benefits available to you including

Annual discretionary bonus scheme
25 days standard annual leave + bank holidays + rising 1 day per year of service to a maximum of 30 days
Holiday trading scheme allowing the ability to buy and sell additional annual leave days
Matching employer pension contribution (up to 10% per annum)
Colleague mortgage (conditions apply)
Salary sacrifice scheme for hybrid & electric car
A commitment to training and development
Private medical insurance for all our colleagues
3 paid volunteering days per annum
Diverse and inclusive colleague networks available for you to join including our Carers and Pride Alliance groups
We care about your health and wellbeing – we provide a range of benefits that support this including cycle to work initiative and discounted gym membership

What Will You Be Doing?

Lead the provision of all Identity and Access Management (IAM) activities,
Identity Governance tasks
Implementation and audit of IAM designs.
Support Privileged Access Management (PAM) processes and services.
Action and respond to alerting from our SIEM tool and other threat activities.
Support the resolution of Incidents and Service requests to agreed service levels.

What Do We Need From You?

You’ll need a minimum of 4 years’ experience supporting IT systems and IAM activities using Microsoft Technologies, including Active Dir ectory and Entra.
A good understanding of IT processes together with security concepts and best practices. Experience of leading on IAM Support activities.
Awareness of Identity Governance.
Another key element of the role is strong analytical/problem solving skills together with excellent written and verbal communication.

About the Company

Not just another building society. Not just another job. Imagine how good it would feel to help someone choose the mortgage they’ll use to buy their first home. Or the account they’ll use to save for it. We’ve been helping people make big financial decisions since 1853. It’s why over a million customers trust us as a good place for their money, and why our colleagues say we’re a good place to work. The Bailey (our head office) The Bailey is the vibrant hub where you’ll find all our central functions. We’re always looking fo... Know more

Related Jobs

Company Name: Funding Circle UK
Job Title: Junior Security Engineer
Job Description: Description Junior Security Engineer We are seeking an enthusiastic and motivated Junior Security Engineer to join our dynamic Security Team. This is an excellent opportunity to kick-start or develop your career in cybersecurity within a fast-paced FinTech environment. You will support our Cloud and Application Security initiatives, learning from experienced engineers and contributing to the protection of our platform and customer data. You will assist in implementing security controls, supporting the secure software development lifecycle (SSDLC), helping to strengthen our security posture. This role is ideal for someone passionate about security and eager to develop their skills in AWS, DevSecOps, and Application Security, quickly becoming a productive member of the team, taking ownership of specific security tasks and helping to implement robust security solutions in our fast-paced FinTech environment. Who are we? We’re Funding Circle. We back small businesses to succeed. At Funding Circle, we believe the world needs small businesses. That’s why we’ve made it our mission to help them get the finance they need to grow. With more than a decade of expertise under our belt, we’ve built a game-changer of a platform with cutting-edge data and technology that’s reshaping the landscape of SME lending. Say goodbye to lengthy applications and hello to lightning-fast decisions! In just minutes, SMEs across the UK can get a decision, giving them access to competitive funding in a flash. We know that good business is about good people. So we pride ourselves on providing meaningful, human support as well as fast, hassle free processes to deliver an unbeatable customer experience. The role Support the implementation and adoption of secure software development lifecycle (SSDLC) practices and secure coding standards across engineering teams through collaboration, training, and tooling. Assist with configuring, managing and monitoring automated security controls, tooling, and "security rails" within CI/CD pipelines to ensure secure and efficient deployments. Collaborate closely with Cloud Platform Engineers, DevX and Product Engineering to ensure security requirements are integrated into system designs and technology choices from the outset. Participate in threat modelling exercises for cloud-native applications, microservices, and infrastructure components. Support internal and external penetration testing engagements for Funding Circle applications, services, and cloud infrastructure. Contribute to vulnerability management processes, focusing on strategic remediation, root cause analysis, and preventative measures. Assist in developing and implementing security automation across cloud infrastructure configuration, vulnerability management, and compliance monitoring. Contribute to the implementation of robust security architectures, controls, and best practices within our AWS cloud environment. Grow your expertise in cloud security (AWS), DevSecOps, and application security, becoming a key contributor in these areas. Proactively identify areas for security improvement and contribute to security initiatives. Proactively monitor the threat landscape, evaluate emerging cloud security risks and trends, and translate them into actionable security improvements. What we’re looking for Hands-on experience (e.g. 1+ years) in Information Security, with a demonstrable keen interest in AWS cloud security and application/product security. Proven ability to learn technical concepts quickly and apply them effectively. Hands-on experience with cloud platforms (AWS strongly preferred), including basic infrastructure and security concepts (e.g., IAM, VPC, Security Groups). Familiarity with core application security principles (e.g., understanding OWASP Top 10 vulnerabilities) Experience with or strong aptitude for learning security tools (e.g., Wiz, SAST, DAST, SCA, vulnerability scanners). Knowledge of or familiarity with Infrastructure as Code (IaC), particularly Terraform, is a plus. Familiarity with container technologies (Docker, Kubernetes) is a bonus. Good knowledge of relevant security frameworks and standards (e.g., NIST CSF, CIS Benchmarks, OWASP ASVS). Exposure and knowledge of the MITRE ATT&CK framework. Strong communication skills, with the ability to articulate complex security concepts clearly to technical audiences. Strong analytical and problem-solving skills with attention to detail. Nice to have Foundational or Associate-level certifications (e.g., AWS Certified Solutions Architect - Associate, AWS Certified Security - Specialty (or willingness to obtain), CompTIA Security+, relevant SANS certs). Experience with specific security platforms/tools (e.g., Wiz, Snyk, Checkmarx, Veracode). Basic scripting skills (e.g., Python, Bash) for automation tasks are highly desirable. Experience working in FinTech or other highly regulated environments. Experience with mobile application security principles and testing. At Funding Circle we are committed to building diverse teams so please apply even if your past experience doesn’t align perfectly with the requirements. Want to learn more? We have a huge impact on the businesses that borrow through our platform, the communities they serve and the overall economy (last year £6.9bn of GDP generated). You can read our full Impact Report here: https://www.fundingcircle.com/uk/impact To see what our customers think, visit our Trustpilot page: https://uk.trustpilot.com/review/fundingcircle.com And we’re still evolving! Our award-winning multi-product platform is solving more SME finance challenges than ever before. We think big, rally together and meet the needs of SME customers like no other. Why join us? At Funding Circle, we celebrate and support the differences that make you, you. We’re proud to be an equal-opportunity workplace and affirmative-action employer. We truly believe that diversity makes us better. As a flexible-first employer we offer hybrid working at Funding Circle, and we've long believed in a 'best of both' approach to in-office collaboration and non-office days. We expect our teams to be in our London office two times a week, where you can take advantage of our newly refurbished hybrid working space, barista made coffee and subsidised lunches (via JustEat) every day! We back our Circlers to build their own incredible career, making a difference to small businesses every day. Our Circler proposition is designed to support employees both in and out of work, and it is anchored around four pillars: Health, Wealth, Development & Lifestyle. A Few Highlights Health: Private Medical Insurance through Aviva, Dental Insurance through Bupa, MediCash, access to free online therapy sessions and exclusive discounts with Hertility for reproductive health support. Wealth: Octopus Money Coach, free mortgage advisor partnership and discounts across numerous retailers through Perks at Work. Development: Dedicated annual learn...

London, United Kingdom

Hybrid

Full Time

07-05-2025

Company Name: Pharmacy2U Ltd
Job Title: Network & Security Architect
Job Description: Role: Network & Security Architect Location: Leeds/hybrid Salary: Up to £90K DOE, plus extensive benefits Contract type: Permanent Employment type: Full time Working hours: 37.5 hours per week, Mon-Fri Do you want to work for the nation’s largest online pharmacy ensuring excellence for all our patients? We’re a market leader in the pharmacy world, with 25 years’ experience, helping over 1.4 million patients in England manage their NHS prescriptions from request through to delivery. We are Great Place to Work certified as we consider colleague experience a top priority every day. Our people are fundamental to our success and ensuring we achieve our vision to be a world leading, patient-centric digital healthcare provider. We are committed to continuing to develop a positive, open and honest working environment for all. The Network and Security Architect plays a pivotal role in designing, implementing, and maintaining secure, scalable, and high-performing network and security solutions. This role ensures that network architectures meet business needs while complying with stringent security standards and regulatory requirements. The Network and Security Architect will for gather business and technical requirements, create robust network and security designs (on-premises and cloud-based), and act as the subject matter expert for identity, access management, and cybersecurity strategies across the enterprise. In addition to supporting implementation teams, this role ensures successful project delivery through technical leadership, governance, documentation, and handover to operational support teams. What’s in it for you? Occupational sick pay Enhanced maternity and paternity pay Contributory pension Discounted insurance (Aviva) Employee discount site Discounted gyms (via our blue light card and benefits schemes) Employee assistance programme In-house mental health support Free onsite parking Health and wellbeing initiatives Social events throughout the year Cycle to work scheme Green car scheme*(subject to minimum earnings) Registration fees paid (GPhC, NMC, CIPD etc) Long service bonus Refer a friend bonus Blue light card Hybrid working Commitment to CPD/training 25 days annual leave increasing with service Annual leave buy and sell scheme Discounts & Exclusive offers at The Springs, Leeds 25% Discount & health & beauty purchases 25% Discount on Pharmacy2U Private Online Doctor Services What you’ll be doing? Define, create, and implement secure network and security architectures for enterprise environments, including hybrid cloud deployments. Implement advanced identity and access management (IAM) and privilege management solutions across large-scale organisations. Integrate security controls within network designs, including network segmentation, firewalls, VPNs, and secure connectivity models. Deliver network authentication solutions such as 802.1x to enhance enterprise network security. Design and implement security frameworks aligned with business objectives and compliance requirements (e.g., ISO 27001, NIST). Act as the primary design authority on network and security solutions across projects. Gather and interpret business and technical requirements to develop appropriate security and network architectures. Engage and collaborate with technical teams, business stakeholders, and security governance bodies. Support implementation teams, ensuring delivered solutions meet security, performance, and compliance standards. Establish and enforce network and security best practices, standards, and guidelines. Conduct security assessments and architecture reviews to ensure solutions are resilient against cyber threats. Implement network and security monitoring strategies to proactively identify and remediate risks. Drive adoption of Sero Trust principles and secure-by-design methodologies. Create detailed design documentation and operational guides for support teams. Ensure successful knowledge transfer and support readiness for deployed solutions. Continuously evaluate and optimise network and security architectures to adapt to evolving threats and technologies. Who are we looking for? Extensive expertise in enterprise network architecture, with hands-on experience in Azure networking, firewalls, VPNs, SD-WAN, and network security tools. In-depth knowledge of network authentication protocols, especially 802.1x. Proven experience implementing identity and access management (IAM) and privileged access management (PAM) solutions. Strong understanding of cybersecurity principles, network segmentation, and Zero Trust Architecture. Knowledge of integrating Linux systems with enterprise security and Active Directory environments. Certified Data and Cloud Architect on Azure What happens next? Please click apply and if we think you are a good match, we will be in touch to arrange an interview. Applicants must prove they have the right to live in the UK. All successful applicants will be required to undergo a DBS check. Unsolicited agency applications will be treated as a gift. #INDTECH

Leeds, United Kingdom

Hybrid

Full Time

07-05-2025

Company Name: HomeServe UK
Job Title: Cyber Security Engineer
Job Description: Cyber Security Engineer As part of our continued growth and commitment to safeguarding our digital landscape, we're excited to introduce a brand-new opportunity for an IT Security Engineer to join our dynamic team. This is a pivotal moment for our business as we embark on the next phase of our cyber security roadmap—investing in cutting-edge solutions and enhancing our resilience. This is a hands-on, technically challenging role that reports directly to the Head of Cyber Security and offers significant autonomy and the chance to make a real impact. You'll work with industry-leading tools and technologies, helping to shape and strengthen our security posture, maintain service and keep our customer’s data safe. We’re seeking a proactive and accountable individual—someone who takes full ownership of security challenges and drives improvements from concept to completion. You’ll be trusted to see actions through every stage of the lifecycle: from initial design and testing, through to approval and successful implementation. Collaboration with Infrastructure, Network, Architecture, Application, Service and Project Delivery teams will be key. You’ll thrive in this role if you’re a self-starter who enjoys solving complex problems, working collaboratively, and taking pride in delivering secure, scalable solutions and smaller incremental improvements that make a real impact. What You Will Bring A solid background in IT security, with hands-on experience protecting systems, networks, and cloud environments. A proactive mindset, with a drive to identify, own, and solve security challenges end-to-end. Strong technical skills across areas like threat detection, vulnerability management, identity and access control, and incident response. Familiarity with a range of security tools and platforms—such as SIEM, EDR, firewalls, and cloud security solutions. A clear understanding of security frameworks and best practices (e.g., NIST, ISO 27001, PCI). The ability to translate complex risks into practical actions and communicate them effectively across technical and non-technical teams A collaborative approach, with the confidence to contribute ideas and the openness to learn from others. A commitment to continuous improvement—both in your own development and in the evolution of our security practices Why Join Us? Make Your Mark – This is a newly created role with real autonomy, where your ideas and initiative will shape our future security posture. Cutting-Edge Tools – You’ll work hands-on with market-leading technologies in a forward-thinking environment. Supportive Culture – We foster an inclusive, respectful workplace where teamwork is key and success is shared. We are proud of our vibrant culture and the strides we've made on engagement, just ask the team what we've been up to recently! Growth & Development – We’re committed to your professional development, with opportunities for training, certification, and career progression. Flexible Working – We support flexible and hybrid working, giving you the autonomy to work where you’re most effective. While much of the role can be done remotely, we value in-person connection and the team choose to come together two days a week for key meetings, team collaboration, and company events. If you're passionate about cyber security and looking for a role where your expertise will be valued and your contribution visible, we’d love to hear from you.

Walsall, United Kingdom

Hybrid

Full Time

07-05-2025

Company Name: IP-People
Job Title: Senior Security Consultant (OT)
Job Description: Senior Security Consultant (OT) A leading and expanding network and security solutions provider is seeking an Operational Technology (OT) Security Consultant to join its growing team. This is a new position within the organisation and an excellent opportunity to join a company at the forefront of securing and connecting digital infrastructure for organisations worldwide. About the Role As an OT Security Consultant, you’ll act as a trusted advisor to clients, leveraging your industry knowledge and expertise to help them design, implement, and secure Operational Technology environments. You’ll engage throughout the full solution lifecycle—from pre-sales consultation through to delivery and handover. Key Responsibilities Define and execute OT security strategies aligned with wider GTM objectives. Engage directly with customers to deliver consultancy and build strong, trusted relationships. Maintain deep technical expertise in OT technologies, trends, and vendor solutions. Deliver technical solutions and security projects, including assessments, designs, and implementations. Support business development through pre-sales activities and proposal contributions. Collaborate across internal departments Develop and maintain relationships with key OT security vendors. Key Skills & Experience: OT Architecture & Operations Background within industrial control environments e.g. SCADA, ICS. Deep knowledge of IT/OT security challenges, protocols (Modbus, DNP3, OPC), and risk landscapes. OT Consultancy Delivered cyber readiness and strategy assessments. Familiarity with frameworks like NIST, IEC 62443, ISO 27001, and regulatory standards. Produced security documentation (risk assessments, security plans, etc.). OT Security Solutions Designed and implemented cybersecurity controls for OT environments. Hands-on experience with OT-focused technologies e.g., Fortinet, Armis, Claroty, Nozomi). If this could be of interest, please get in touch or apply for full details. I look forward to speaking soon.

England, United Kingdom

Hybrid

Full Time

07-05-2025