Sanderson are working with a consultative client who are looking to grow their Cyber Security function. The client is looking across all skills and expertise of Cyber Security and seeking enthusiastic and competent individuals to join their team.

The core responsibilities / skills of the role will include:

• Identify and deploy innovative security solutions to real world problems, across a variety of industries
• How to work with both clients and internal stakeholders, across a wide range of disciplines, providing expert input and influencing design of large and complex IT solutions
• How to apply a range of risk methodologies, advising both internal and external stakeholders on risk mitigations.
• How to work with a wide range of security technologies, including new and emerging technologies
• Design security architectures for a range of IT solutions, including large digital transformational programmes
• Provide advisory to wider complex transformation programmes that shape the future of the UK
• Advise clients on regulatory compliance
• Identify security vulnerabilities in system architectures
• Strong understanding of cybersecurity principles and risk management
• Experience applying security technologies to architectures and solution designs
• Understanding of IT infrastructure, technical concepts, and design methodologies
• Understand threat modelling and development of reference architecture
• Preferred hands-on experience in Network and/or Cloud security

This role will require you to be willing and eligible to undergo UK security clearance.

If you’re interested in the above, apply or reach out to [email protected]

Reasonable Adjustments:

Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients.

If you need any help or adjustments during the recruitment process for any reason, please let us know when you apply or talk to the recruiters directly so we can support you.

Sanderson are working with a consultative client who are looking to grow their Cyber Security function. The client is looking across all skills and expertise of Cyber Security and seeking enthusiastic and competent individuals to join their team.

The core responsibilities / skills of the role will include:

• Identify and deploy innovative security solutions to real world problems, across a variety of industries
• How to work with both clients and internal stakeholders, across a wide range of disciplines, providing expert input and influencing design of large and complex IT solutions
• How to apply a range of risk methodologies, advising both internal and external stakeholders on risk mitigations.
• How to work with a wide range of security technologies, including new and emerging technologies
• Design security architectures for a range of IT solutions, including large digital transformational programmes
• Provide advisory to wider complex transformation programmes that shape the future of the UK
• Advise clients on regulatory compliance
• Identify security vulnerabilities in system architectures
• Strong understanding of cybersecurity principles and risk management
• Experience applying security technologies to architectures and solution designs
• Understanding of IT infrastructure, technical concepts, and design methodologies
• Understand threat modelling and development of reference architecture
• Preferred hands-on experience in Network and/or Cloud security

This role will require you to be willing and eligible to undergo UK security clearance.

If you’re interested in the above, apply or reach out to [email protected]

Reasonable Adjustments:

Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients.

If you need any help or adjustments during the recruitment process for any reason, please let us know when you apply or talk to the recruiters directly so we can support you.

Role Title: Lead Security Architect

Duration: 1 Year

Location: Remote / London

Pay :£600 per day inside IR35

Role Description:

The successful candidate will be responsible for developing and reviewing secure architecture patterns and principles, ensuring security requirements are embedded throughout delivery. They will research and apply innovative security solutions, balancing business, technical, and security requirements while clearly communicating design decisions to both technical and non-technical stakeholders.

The role will also act as a point of escalation for lower-grade architects and provide leadership across enterprise security architecture activities within the NHS programme.

Key Responsibilities:

• Lead the technical security design of systems and services across the NHS App estate
• Develop and review secure architecture patterns, standards, and principles
• Work with senior stakeholders to communicate security risks and design decisions
• Assess and advise on complex or high-impact security risks and tolerances
• Contribute to security strategy, transformation activities, and enterprise architecture decisions
• Research and apply emerging security technologies and innovative solutions
• Support quality assurance and governance across security architecture deliverables
• Influence security best practice across technical and non-technical teams

Required Skills:

• Strong experience in enterprise and security architecture within large, complex environments
• Ability to design and review secure systems and services at scale
• Experience managing and communicating complex security risks
• Strong stakeholder management and communication skills across technical and non-technical audiences
• Deep understanding of modern security technologies, vulnerabilities, and architecture principles
• Experience working within transformation or cloud-based programmes

Nice to Have Skills:

• Experience within healthcare or public sector environments
• Knowledge of NHS or government security standards and frameworks
• Experience influencing enterprise security strategy and governance
• Familiarity with large-scale digital transformation programmes

Reasonable Adjustments:

Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients.

If you need any help or adjustments during the recruitment process for any reason, please let us know when you apply or talk to the recruiters directly so we can support you.

Security OT Engineer

Rate: £500 – £550 Inside IR35
Duration: 6 months
Location: South West (Bristol) – 2 days per week onsite

The Role:

We’re hiring an experienced Security OT Engineer to support the protection and evolution of complex Operational Technology (OT) and industrial control system environments.

This role sits within a Security Operations function but is heavily engineering focused, combining hands on OT security tooling, detection engineering and incident response to strengthen resilience across critical infrastructure.

Key Responsibilities:

• Act as the OT security engineering SME, supporting both operational and project based activities
• Engineer, configure and optimise OT security platforms (e.g. OT NDR tools such as Claroty or equivalent)
• Develop and refine detection rules, alerting logic and monitoring coverage across OT and IT/OT convergence points
• Lead technical investigations and incident response for OT-related cyber events
• Analyse industrial network traffic to identify anomalies, threats and protocol misuse
• Integrate OT telemetry into SIEM and EDR platforms to enhance visibility and correlation
• Support secure by design initiatives for new OT systems, including segmentation and access control validation
• Assess vulnerabilities in OT systems and implement practical, risk-based remediation strategies
• Drive continuous improvement in OT security posture, tooling effectiveness and detection capability
• Maintain and enhance OT security documentation, playbooks and engineering standards

Experience Required:

• Proven experience in a Security OT Engineer / OT Cyber Security role
• Strong understanding of industrial control systems (ICS) – including SCADA, PLCs, DCS
• Hands-on experience with OT security tools (e.g. Claroty, Nozomi, Dragos or similar NDR platforms)
• Experience with SIEM, EDR and network traffic analysis
• Background in incident response, threat detection and security monitoring within OT or converged environments
• Understanding of network segmentation, secure remote access and OT architecture design

Desirable:

• Certifications such as GICSP, ISA/IEC 62443, Security+ or CEH
• Experience working in critical infrastructure or regulated environments
• Exposure to threat hunting and purple team activities within OT environments

Key Skills & Attributes:

• Strong engineering mindset with a focus on building and improving security capability
• Ability to balance security requirements with operational safety and uptime
• Analytical, detail-oriented and comfortable working with complex OT environments
• Confident communicator, able to engage across security, IT and engineering teams
• Proactive and solution-driven with a focus on continuous improvement

Reasonable Adjustments:

Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients.

If you need any help or adjustments during the recruitment process for any reason, please let us know when you apply or talk to the recruiters directly so we can support you.

InfoSec Analyst – Risk Management (Third Party)

Rate: £450 – £500 Inside IR35
Duration: 6 months
Location: South London (once a week minimum on site)

Job Summary:

We are looking for an experienced Information Security Analyst with a strong focus on third-party cyber risk management. This role centres on conducting detailed vendor risk assessments, analysing findings and presenting clear, actionable insights to stakeholders.

You’ll play a key role in translating complex infosec concepts into business-friendly language, enabling informed decision-making across the organisation.

Key Responsibilities:

Third-Party Cyber Risk

• Conduct in-depth third-party cyber risk assessments across vendors and partners
• Analyse security controls, identify vulnerabilities and assess overall risk exposure
• Proactively identify and flag emerging risks before they impact the business

Risk Analysis, Reporting & Stakeholder Engagement

• Produce high quality assessment reports with clear findings and recommendations
• Present risk insights to both technical and non-technical stakeholders
• Translate infosec “technical speak” into clear business risk language to support decision-making
• Track remediation activities and ensure timely resolution of identified risks

Collaboration

• Work closely with procurement, legal and business teams to embed security into third-party processes
• Act as a key contact for vendors regarding security assessments and risk queries

Key Skills & Experience:

• Proven experience in third-party risk management / vendor security assessments
• Strong risk analysis and proactive risk identification capability
• Ability to communicate complex security concepts to business stakeholders
• Experience producing detailed reports and presenting findings confidently
• Solid understanding of cybersecurity frameworks and risk methodologies

Key Competencies:

• Analytical & detail oriented
• Strong communicator (Tech to Business translation)
• Proactive & risk focused
• Collaborative & stakeholder facing

Reasonable Adjustments:

Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients.

If you need any help or adjustments during the recruitment process for any reason, please let us know when you apply or talk to the recruiters directly so we can support you.

Cyber GRC – DV – Inside IR35

• Initial 6 months (High likelihood of extension)
• Clearance: DV
• Location: London
• Inside
• Type: 3 days on-site
• Rate: £650 – £750

Role Overview

Cyber Security Governance & Risk Management specialist, accountable for ensuring cyber security governance and risk management is embedded across the Service Group ensuring that cyber risks are identified, assessed, managed, and accepted in line with policy and risk appetite.

Responsibilities:

o Own and maintain visibility of cyber risks across the Service Group.
o Accept cyber risks within delegated authority or escalate risks exceeding tolerance to appropriate senior forums.
o Monitor compliance with agreed cyber security policies and standards.
o Ensure Secure by Design principles are applied consistently.
o Provide governance oversight of security architecture decisions.
o Ensure design approaches align with policy and risk appetite (without designing systems).
o Act as primary interface to formal assurance, audit, and external assessment activities.

Key Skills:

o Information risk assessment and risk management
o Applied security capability
o Protective security
o Threat understanding

Reasonable Adjustments:

Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients.

If you need any help or adjustments during the recruitment process for any reason, please let us know when you apply or talk to the recruiters directly so we can support you.

The successful applicant will join teams working at the forefront of AI/DS, Cyber, Cloud, DevOps/SRE and Platform Engineering. With long‑term programmes secured across the latest frameworks, this position offers the chance to be part of an exciting growth journey with significant technical depth and variety.

As a Cyber Software Engineer, you will contribute to the research, design and development of critical systems in support of National Security missions. You will apply secure coding practices, maintain high standards of software quality and work closely with operating systems at a low level.

Key Requirements

* Strong experience with C or C++

* Familiarity with Python

* Comfortable working with Linux or Windows operating systems

* Knowledge of version control tools and experience in agile delivery environments

* An interest in the Cyber domain

* Understanding of common software design and testing patterns

* Ability to build systems and support continuous integration pipelines

Clearance

Due to the nature of the work, applicants must be eligible to obtain DV clearance. This requires being a British Citizen and having lived in the UK for the past 10 years.

Next Steps

To apply, please submit an up‑to‑date CV.

Reasonable Adjustments:

Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients.

If you need any help or adjustments during the recruitment process for any reason, please let us know when you apply or talk to the recruiters directly so we can support you.

The successful persons will join teams working at the forefront of AI/DS, Cyber, Cloud, DevOps/SRE and Platform Engineering. With long‑term programmes secured across the latest frameworks, this position offers the chance to be part of an exciting growth journey with significant technical depth and variety.

As a Cyber Software Engineer, you will contribute to the research, design and development of critical systems in support of National Security missions. You will apply secure coding practices, maintain high standards of software quality and work closely with operating systems at a low level.

Key Requirements

* Strong experience with C or C++

* Familiarity with Python

* Comfortable working with Linux or Windows operating systems

* Knowledge of version control tools and experience in agile delivery environments

* An interest in the Cyber domain

* Understanding of common software design and testing patterns

* Ability to build systems and support continuous integration pipelines

Clearance

Due to the nature of the work, applicants must be eligible to obtain DV clearance. This requires being a British Citizen and having lived in the UK for the past 10 years.

Next Steps

To apply, please submit an up‑to‑date CV. The team looks forward to hearing from you.

Reasonable Adjustments:

Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients.

If you need any help or adjustments during the recruitment process for any reason, please let us know when you apply or talk to the recruiters directly so we can support you.

Head of Information Security (Contract)

Rate: Negotiable based on experience circa £850 – £1,000 per day (Inside IR35 – total to umbrella)
Duration: 3 months initial
Location: London (2 days onsite per week)

Overview:

We’re supporting a major organisation undergoing a critical phase of security uplift and transformation who’re looking for an experienced Head of Information Security to take immediate ownership of their security function.

This is a hands-on leadership role suited to a contractor who can quickly assess the current landscape, stabilise risk and deliver a clear, actionable security roadmap. You’ll be expected to operate at both strategic and operational levels, engaging senior stakeholders while driving tangible security improvements at pace.

Key Responsibilities:

• Rapidly assess current security posture, risks and gaps across the organisation
• Define and implement a pragmatic, business aligned security roadmap
• Lead GRC, security operations and architecture oversight
• Drive improvements across identity & access management, cloud security and incident response
• Act as the senior escalation point for security incidents and risk decisions
• Engage with C-suite and board stakeholders, providing clear, commercially focused risk insight
• Support or lead audit and compliance activities (ISO 27001, NIST, GDPR)
• Stabilise and where needed, restructure internal teams and third-party suppliers

Skills & Experience:

• Proven experience operating as a Head of Security / Security Director / Interim CISO
• Strong track record delivering security transformation or uplift in contract roles
• Ability to hit the ground running in complex, ambiguous environments
• Deep understanding of security frameworks (ISO 27001, NIST, CIS)
• Experience across cloud environments (Azure/AWS), enterprise architecture and cyber operations
• Strong stakeholder management – comfortable challenging and influencing at exec level
• Background in regulated environments (Financial Services, Insurance, etc.) highly desirable

Reasonable Adjustments:

Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients.

If you need any help or adjustments during the recruitment process for any reason, please let us know when you apply or talk to the recruiters directly so we can support you.