technology job

Splunk Engineer

  • Posted September 11, 2024
  • £700.00 - £800.00 per day
  • Full Remote Working
  • Contract

Splunk Engineer

£700-800/pd-Inside IR35

6-month initial (12-month extension)

Fully remote

*** Active SC Clearance Required***

I’m currently working with a key client seeking a Splunk Engineer for a high-profile contract.

Requirements:

  • Strong hands-on experience with Splunk
  • 5+ years in Security Engineering
  • Active SC clearance

If this opportunity aligns with your expertise and aspirations, please connect with me at [email protected] or call 0117 313 7583.

Ref: JD028

Apply for this Job

    technology job

    Cyber Security Architect

    • Posted September 10, 2024
    • £70000 - £80000 per annum + + benefits
    • Melksham / Hybrid Working
    • Permanent

    Cyber Security Architect

    Melksham / Hybrid Working

    £75,000 – £85,000 + benefits

    Are you an experienced Cyber Security Architect looking for your next challenge? If so, this could be the ideal opportunity for you. My client, a world-leading specialist design and manufacturing business with an excellent reputation are currently looking to recruit a Cyber Security Architect to join the team.

    Reporting directly into the CISO you will be a key player in the ongoing IT Cybersecurity (NIST/CMMC/CE+ and other relevant standards) compliance efforts and apply expertise and experience in the information security field as a senior member of the Cybersecurity team. You will lead the plan, build and run phases of the Secure Architecture pillar of the Information Security landscape. Working directly with the Cybersecurity team and alongside the wider IT team, this role will provide support across the entire Cybersecurity landscape, with a strong bias on Security Architecture.

    Key responsibilities

    • Develop a complete understanding of the company’s technology and information systems.
    • Design, build, implement, and support enterprise-class security systems.
    • Align organizational security strategy and infrastructure with overall business and technology strategy.
    • Identify and communicate current and emerging security threats.
    • Design security architecture elements to mitigate threats as they emerge.
    • Plan, research, and design robust security architectures for IT infrastructure and systems.
    • Perform or supervise vulnerability testing, risk analyses and security assessments.
    • Create solutions that balance business requirements with information and cybersecurity requirements.
    • Identify security design gaps in existing and proposed architectures and recommend changes or enhancements.
    • Review and approve configuration and installation of all network infrastructure, security devices, and any systems or services as it pertains to risk, security, and compliance.
    • Test security systems to ensure they behave as expected.
    • Provide supervision and guidance to the security team, including coaching and mentoring for more junior team members.
    • Define, implement, and maintain corporate security policies and procedures.
    • Respond immediately to security-related incidents and provide thorough remedial solutions and analysis.
    • Regularly communicate vital information, security needs and priorities to upper management.

    Skills and Experience required

    • Proven previous experience within a similar Security Architecture position.
    • Strong working knowledge of IT risks, cyber security, and computer operating software.
    • Advanced understanding of security protocols, cryptography, and security.
    • Experience implementing multi-factor authentication.
    • Experience implementing security solutions.
    • Experience with the NIST Cyber Security Framework or similar.
    • Good interpersonal skills including ability to communicate (verbal and written) technical solutions.
    • Involvement in technical projects and changes in area of specialisation.
    • Good general IT skills including use of general office applications.
    • Appreciation of support of IT systems in a large organisation, using the ITIL framework.
    • Capable of maintaining technical documentation.
    • Be able to demonstrate a proactive and creative problem-solving aptitude and team working within a diverse multi-disciplined team.
    • Energetic, enthusiastic, and driven to learn new skills and applying them to meet organisational needs.
    • Ability to work under own initiative within established procedures.

    For more information or to apply please send a copy of your CV to [email protected]

    Apply for this Job

      technology job

      Senior Cyber Security Analyst

      • Posted
      • £45000 - £55000 per annum + + benefits
      • Bristol - Hybrid Working / 2 days per week onsite
      • Permanent

      Senior Cyber Security Analyst

      Bristol – Hybrid Working / 2 days per week onsite

      £45,000 – £55,000 + benefits

      Fantastic new permanent opportunity for an experienced Cyber Security Analyst with this large financial services company based in Bristol.

      As a key member of the Planning, Architecture & Security services team, the role will be at the forefront of the company’s security strategy, ensuring the confidentiality, integrity and availability of all their information and information systems.

      This role will focus on security and quality control in the IT department and will include designing, building and securing, scalable and robust systems. This role will help the company understand security threats and help create strategies to protect the businesses assets and interests.

      Main responsibilities:

      • Proactively identify information security deficiencies or opportunities for improvement and facilitate development of pragmatic solutions.
      • Plan, implement and upgrade security measures and controls.
      • Establish plans and protocols to protect digital files and information systems against unauthorized access, modification and/or destruction.
      • Contribute to the IT Strategy planning process with regards to Information Security, ISO27001/27002 developments.
      • Provide advisory and consulting support to help the Company improve its security posture and adhere to security policies, expected controls and regulatory requirements.
      • Maintain data and monitor security access.
      • Perform vulnerability testing, risk analyses and security assessments.
      • Define, implement and maintain corporate security policies.
      • Anticipate security alerts, incidents and disasters and reduce their likelihood.
      • Perform information security reviews of the core business and group business as well as third parties.
      • Identify and document areas of IT Risk related to Information/Cyber Security.
      • Support IT Risk Management by proposing appropriate risk mitigation and control measures.

      Skills Required:

      • A proven background within Security Operations / Network Security and Security Analysis/Engineering.
      • Able to demonstrate a good understanding of information security frameworks, standards and security best practice (ISO27001, NIST CSF, Mitre Att&ck Framework, OWASP).
      • Experience in designing secure components (e.g. networks, systems, applications, security technologies)
      • Knowledge of network design, defence-in-depth principles and network security architecture.
      • Experience and understanding of security analysis tools, defensive technologies and other security technologies (e.g. SIEM, VAS, IDS/IPS, Firewalls, IAM, PAM, NAC, Email Security, Web filtering, Patch management, Anti-malware).
      • Experience in identifying, detecting, applying protection, responding and remediating to security incidents to within business risk appetite.
      • Strong working knowledge of authentication technologies (e.g. two-factor, multifactor).
      • Strong proficiency in using the Microsoft Ecosystem such as Active Directory and MS Entra ID, including GPO, DNS, DHCP.
      • Knowledge of endpoint security solutions (e.g. HIDS, anti-malware, file integrity, DLP).
      • AWS, Azure and other cloud platforms, including hybrid cloud (e.g. SaaS, IaaS, PaaS).
      • System administration, supporting multiple platforms and applications.
      • Skilled in conducting vulnerability scans and identifying vulnerabilities in systems.
      • Effective technical and non-technical communication skills to provide security support for colleagues, at all levels, across the business.

      For any further queries regarding the role or to apply, please contact Danny Palmer on at danny.palmer@sandersonplc.com

      Apply for this Job

        technology job

        IT Security Engineer

        • Posted September 3, 2024
        • £50000 - £55000 per annum + + benefits
        • Bristol - Hybrid Working / 2 days per week onsite
        • Permanent

        IT Security Engineer

        Bristol – Hybrid Working / 2 days per week onsite

        £50,000 – £55,000 + benefits

        Fantastic new permanent opportunity for an experienced Cyber Security Engineer with this large financial services company based in Bristol.

        As a key member of the Planning, Architecture & Security services team, the role will be at the forefront of the company’s security strategy, ensuring the confidentiality, integrity and availability of all their information and information systems.

        This role will focus on security and quality control in the IT department and will include designing, building and securing, scalable and robust systems. This role will help the company understand security threats and help create strategies to protect the businesses assets and interests.

        Main responsibilities:

        • Proactively identify information security deficiencies or opportunities for improvement and facilitate development of pragmatic solutions.
        • Plan, implement and upgrade security measures and controls.
        • Establish plans and protocols to protect digital files and information systems against unauthorized access, modification and/or destruction.
        • Contribute to the IT Strategy planning process with regards to Information Security, ISO27001/27002 developments.
        • Provide advisory and consulting support to help the Company improve its security posture and adhere to security policies, expected controls and regulatory requirements.
        • Maintain data and monitor security access.
        • Perform vulnerability testing, risk analyses and security assessments.
        • Define, implement and maintain corporate security policies.
        • Anticipate security alerts, incidents and disasters and reduce their likelihood.
        • Perform information security reviews of the core business and group business as well as third parties.
        • Identify and document areas of IT Risk related to Information/Cyber Security.
        • Support IT Risk Management by proposing appropriate risk mitigation and control measures.

        Skills Required:

        • A proven background within Security Operations / Network Security and Security Engineering.
        • Able to demonstrate a good understanding of information security frameworks, standards and security best practice (ISO27001, NIST CSF, Mitre Att&ck Framework, OWASP).
        • Experience in designing secure components (e.g. networks, systems, applications, security technologies)
        • Knowledge of and skills in at least one scripting language such as PowerShell.
        • Comprehensive knowledge of network design, defence-in-depth principles and network security architecture.
        • Extensive experience and understanding of security analysis tools, defensive technologies and other security technologies (e.g. SIEM, VAS, IDS/IPS, Firewalls, IAM, PAM, NAC, Email Security, Web filtering, Patch management, Anti-malware).
        • Experience in identifying, detecting, applying protection, responding and remediating to security incidents to within business risk appetite.
        • Strong working knowledge of authentication technologies (e.g. two-factor, multifactor).
        • Strong proficiency in using the Microsoft Ecosystem such as Active Directory and MS Entra ID, including GPO, DNS, DHCP.
        • Knowledge of endpoint security solutions (e.g. HIDS, anti-malware, file integrity, DLP).
        • AWS, Azure and other cloud platforms, including hybrid cloud (e.g. SaaS, IaaS, PaaS).
        • System administration, supporting multiple platforms and applications.
        • Skilled in conducting vulnerability scans and identifying vulnerabilities in systems.
        • Effective technical and non-technical communication skills to provide security support for colleagues, at all levels, across the business.

        For any further queries regarding the role or to apply, please contact Danny Palmer on at danny.palmer@sandersonplc.com

        Apply for this Job

          technology job

          IT Security Engineer

          • Posted September 2, 2024
          • £45000 - £55000 per annum
          • Bristol, South West
          • Permanent

          Aiming to establish a new team, they are looking for multiple IT Security Engineers to join them on a permanent basis to support their projects.

          I want to talk to anyone with:

          • Specialist knowledge including information security frameworks, data protection legislation and regulatory frameworks.
          • Experience working within security, including identifying and responding to security incidents, and knowledge of endpoint security solutions.
          • Involvement in engineering projects, including an understanding of reverse engineering, designing secure components, and scripting languages.
          • Experience and understanding of security analysis tools, defensive technologies, and other security technologies.

          If you have any further questions at all, please don’t hesitate to contact [email protected]

          Apply for this Job

            technology job

            Threat Intelligence Analyst

            • Posted
            • £45000 - £55000 per annum + Pension, hybrid
            • Reading, Berkshire
            • Permanent

            Responsibilities include:

            • Develop and maintain customised threat intelligence for BMI
            • Provide analytical support for incident response and risk management
            • Identify threats and vulnerabilities by conducting comprehensive research and analysis
            • Establish mechanisms and processes to gather and disseminate threat intelligence insights, best practice, and mitigation strategies
            • Brief decision-makers, including c-suite and other business leaders, on the threat landscape

            Skills and Experience Required:

            • Background working within security, including previous experience within a security operations center and threat intelligence analysis
            • Strong understanding of cyber threats, TTPs (Tactics, Techniques and Procedures), and MITRE ATT&CK framework
            • Strong verbal and written communication skills to effectively report findings and collaborate with teams

            This role is available on a full-time, permanent basis, offering a starting salary up to £55,000 (Depending upon experience) and a hybrid model offering 2 days working from home.

            Apply here, or contact [email protected] for more information.

            Apply for this Job

              technology job

              SOC Analysts L1 and L2 (Secuirty Cleared)

              • Posted August 21, 2024
              • £300 - £800 per day
              • Andover
              • Contract

              SOC Analysts (L1 & L2)
              2 – 3 year contract
              £300 – £800 a day
              On-site work in Andover
              Must hold an active Security Clearance

              Our client are an international IT consultancy, looking for SOC Analysts to join a project, supplying into the Government.

              You will need to be an experienced SOC Analyst, with an active Security Clearance. Due to the Government department this role will be working for, we can only consider Sole British nationals.

              This is a 24/7 SOC so you will be expected to be on shift, and all shifts must be on-site with no remote working.

              If this role is of interest please contact me on [email protected] (REF:ZSDE1)

              Apply for this Job

                technology job

                L2 SOC Analyst

                • Posted
                • £600.00 - £700.00 per day
                • Fully Remote
                • Contract

                X2 L2 SOC Analyst

                £600-700/pd-Inside IR35

                6-month initial (12-month extension)

                Fully REMOTE

                ***Active DV clearance REQUIRED***

                I’m looking for x2 SOC Analysts to conduct investigations of host and network security events for my client’s critical infrastructure.

                Requirements:

                • Proven experience in Security Operations Centre.
                • Experience with SIEM tooling specifically – Splunk
                • Hold an active SC

                If this opportunity aligns with your expertise and aspirations, please connect with me at [email protected] or call 0117 313 7583.

                Ref: JD026

                Apply for this Job

                  technology job

                  Network Security Engineer (SC Cleared)

                  • Posted
                  • £500 - £600 per day
                  • Remote
                  • Contract

                  Network Security Engineer
                  SC Cleared and / or NPPV2
                  6 Month Contract
                  Remote
                  £500 – £600 a day
                  Starting ASAP

                  Our client are an international IT consultancy, working with the government on secret projects.

                  They are looking for a Network Security Engineer to support with Administering and Troubleshooting Firewalls and Routing and Switching.

                  The ideal candidate will have experience with Palo Alto Firewalls.

                  If this role is of interest please apply online, or email a CV through to [email protected] (REF: ZSNE1)

                  Apply for this Job

                    technology job

                    Senior Cloud Security Analyst

                    • Posted August 20, 2024
                    • £55000 - £65000 per annum + + benefits
                    • Bristol - Mainly Remote site visits once per month
                    • Permanent

                    Senior Cloud Security Analyst

                    Bristol – Mainly Remote site visits once per month

                    £55,000 – £65,000 + benefits

                    Fantastic new permanent opportunity for an experienced Cloud Security Analyst with this market leading financial services business based in Bristol.

                    As a Senior Cloud Security Analyst and a member of the Information Security team, you will provide specialist support focusing on Cloud Security Governance, Risk & Compliance. You will be supporting the Information Security function to ensure the business remains effective in protecting critical information assets within risk appetite. You will be configuring, maintaining and managing a range of cloud security tools to provide strong risk and compliance.

                    Main responsibilities:

                    • Leading the technical aspects of cloud security risk and controls by overseeing and conducting, as necessary, Cloud Compliance assessments for AWS and Azure risk assessments.
                    • Assisting the Senior Information Security Team in ensuring the Information Security Management System remains effective in protecting critical information assets within risk appetite.
                    • Conducting analysis of cloud-based assets pertaining to information security incidents, audits, and testing while adhering to best practices.
                    • Leading in the identification and reporting of remediation and mitigation activities related to cloud security findings across multiple cloud platforms (AWS and Azure).
                    • Identifying gaps in cloud security posture and prioritise remediation efforts.
                    • Approve within delegated limits risk assessments and 3rd party due diligence assessments that have been carried out by analysts and apprentices and provide guidance where needed.
                    • Building relationships across multiple business functions, locations, and technical stakeholders to accomplish goals. You will help deliver the strategy by emphasising the importance of AWS Well Architected Framework, Shared responsibility model and good cloud governance.

                    Skills Required:

                    • Proven background within a GRC focussed Cloud Security Analyst position.
                    • Previous experience in Information Security, with demonstrable experience of cloud security risks and controls in a DevSecOps cloud context.
                    • Strong knowledge of common web technologies, cloud technologies, enterprise, and network architecture.
                    • Experience in a regulated environment.
                    • Certified to advanced security standards, for example CISSP, CCSP, CCSK, CRISC.
                    • Practical work-based experience across the areas of security policy, culture, audit, and risk management.
                    • Good exposure to and experience of carrying out security reviews against recognised security control frameworks such as ISO27017/27001, NIST CSF, or PCI-DSS.
                    • Ability to evaluate the adequacy of cloud security controls, and how they are applied in a business context. Familiarity and use of some of the following tools is a must: AWS Audit Manager, AWS Security Hub, Macie, Wiz, Microsoft Compliance Portal/Purview, Azure Information Protection (AIP), Azure Security Centre.
                    • Experience of carrying out security reviews against recognised security control frameworks such as NIST CSF.
                    • Effective interpersonal skills to engage and collaborate with multiple internal and external stakeholders.

                    For any further queries regarding the role, please contact Danny Palmer at danny.palmer@sandersonplc.com

                    Apply for this Job