IT Security Engineer

Glasgow – Hybrid working 3 days per week in the office

£60,000 – £65,000 + benefits

Fantastic new permanent opportunity for an experienced IT Security Engineer with a broad background within IT Infrastructure, Security Engineering and Operations for this specialist technology business based in Glasgow.

As a specialist IT Security Engineer, you will work as part of their DevSecOps team based in Glasgow. The role will involve working closely with the wider technology teams to enhance their cyber maturity. Furthermore, it provides the opportunity to contribute towards the implementation and management of various security technologies.

Main responsibilities:

• Analysing security events and incidents relating to internal and customer assets.
• Designing and developing SIEM security use cases.
• Designing and implementing security controls and secure configurations.
• Maintaining proactive vulnerability scanning ensuring that all known vulnerabilities are addressed in line with policy.
• Collaborating with development teams to implement secure development practices.
• Configuring and maintaining security tooling across the infrastructure.
• Collaborating on maturing security incident management processes and playbooks.
• Collaborating with third-party led security tests, assessments and audits of our information security information security policies, procedures, and systems.
• Identifying, assessing, managing, remediating, and tracking information security risks through our risk management framework and ensuring key risks are reported to the CISO.
• Performing regular internal security audits aligned to ISO/IEC 27001 and SOC2 controls.
• Developing our security awareness training programme aligned with internal security policies.
• Comfortable engaging with customers and internal stakeholders to discuss security related matters.

Skills Required:

• Proven hands-on experience as a Security Engineer or similar working with tools such as SIEM, vulnerability management, endpoint detection & response (EDR), applications security, identity, and access management, etc.
• Ability to work in a small high performing team, collaborating with other technical resources whilst aligning to the security strategy.
• A security engineer with experience of learning, adapting and utilising different security technologies, including but not limited to private and cloud infrastructure.
• Technical knowledge and experience with SIEM, SOAR, IDPS, DDoS, Malware Protection, Vulnerability Management, and Application Security tooling, etc.
• Knowledge of Information Security frameworks (CIS, NIST, NCSC CAF), supporting processes and toolsets.
• Ability to breakdown and solve complex problems across multiple domains and successfully lead the recovery of major and / or complex security incidents.
• Knowledge and experience of threat hunting and problem-solving through reviewing logs and identifying anomalous activities.

For any further queries regarding the role, please contact Danny Palmer at danny.palmer@sandersonplc.com

Senior SOC Analyst (DV Clearance Required)

Hemel Hempstead (Onsite)
12 Hour Shifts (2x Days, 2x Nights, 4 Days Off)

£700/day – £900/day DOE (Inside IR35)
Initial 6 Month contract

Role details:

We are working with a global consultancy and recognised expert in defence and security. They are looking for a Senior SOC Analyst to support on a key project in Hemel Hempstead.

Responsibilities:

• Monitor, triage, and investigate security incidents on critical client infrastructure.
• Perform in-depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities.
• Provide Incident Response support when required, providing guidance on containment, eradication and recovery activities.
• Maintain and, where appropriate, improve and develop team knowledge of SOC tools, security operations and triage.
• Prepare reports for managed clients to both technical and non-technical audiences and continuously improve their content and presentation.

Requirements:

• Proven experience in Security Operations Centre.
• Demonstrable experience of using Microsoft Sentinel and Splunk.
• Knowledge and experience with Mitre Att&ck Framework.
• Strong knowledge of client-server applications, multi-tier web applications, relational databases, firewalls, VPNs, and enterprise AntiVirus products.
• Strong understanding of networking principles including TCP/IP, WANs, LANs, and commonly used Internet protocols such as SMTP, HTTP, FTP, POP, LDAP

Eligibility:

To be considered for the role, you must have active MOD DV Clearance and be a Sole UK National.

Senior SOC Analyst (DV Clearance Required)

Gosport (Onsite)
Mon – Fri 37.5 Hours
£500/day – £750/day DOE (Inside IR35)
Initial 6 Month contract

Role details:

We are working with a global consultancy and recognised expert in defence and security. They are looking for a Senior SOC Analyst to support on a key MOD project in Gosport.

As an L2 SOC Analyst, you’ll be the escalation point from L1, supporting security monitoring and incident response activities. The team is transitioning to Splunk, so experience with it is a plus.

Requirements:

• L1 SOC experience – ready to take on L2 responsibilities
• Knowledge of Splunk (or willingness to learn)
• Strong security monitoring & incident response skills
• Certifications (e.g., Security+, GCIH, or similar) are beneficial but not essential
• Threat detection experience is a nice-to-have

Eligibility:

To be considered for the role, you must have active MOD DV Clearance and be a Sole UK National.

IDAM Architect

Active DV or SC Clearance (Sole UK National)

Basingstoke (Onsite)

£75k – £85K Base + Annual Bonus, Clearance Allowance, Car Allowance

Role details:

We’re partnering with a global consultancy who’ve been a key player in the UK’s ICT landscape for the last 50 years. They deliver highly secure network services into high profile Central Government and Defence customers.

They are looking for an IDAM Architect work in close partnership with their delivery teams to deliver cutting-edge solutions to a key customer.

Requirements:

• Extensive experience in Identity and Access Management technologies.
• Experience in MS Windows Enterprise technologies and architectures, along with Powershell scripting and automation of these technologies.
• Some experience or awareness of Automated testing.
• Experience of agile delivery methodologies.

Benefits:

• 26 Days annual leave
• Pension – Double matching contributions of up to 10%
• 10% Annual Bonus
• 10% DV Clearance Bonus (Paid monthly)
• Car Allowance
• Life assurance & Medical cover

Eligibility:

To be considered for the role, you must have active DV Clearance OR SC Clearance + eligibility for DV clearance (Sole UK National + Resident in the UK for the past 10 years).

PKI Architect
Active DV or SC Clearance Required

Basingstoke or Bracknell (Hybrid – 2/3 days per week)

Up to £95k Base + Annual Bonus, Clearance Allowance, Car Allowance

Role details:

We’re partnering with a global consultancy who’ve been a key player in the UK’s ICT landscape for the last 50 years. They deliver highly secure network services into high profile Central Government and Defence customers.

They are looking for a PKI Architect to play a key role in the design and delivery of a MOD cryptography project.

Requirements:

• Extensive knowledge of PKI and Cryptography solution design (HLD & LLD)
• Experience in MS Certificate Management Services, Active Directory Domain Services and certificate management solutions.
• Experience with SSL certificate management (OpenSSL and Certutil).
• Experience with Hardware security module (HSM) technology and Key Management Server (KMS) technology.
• Experience with Azure or AWS architectures for PKI management.

Benefits:

• 26 Days annual leave
• Pension – Double matching contributions of up to 10%
• 10% Annual Bonus
• 10% DV Clearance Bonus (Paid monthly)
• Car Allowance
• Life assurance & Medical cover

Eligibility:

To be considered for the role, you must have active DV Clearance OR SC Clearance + eligibility for DV clearance (Sole UK National + Resident in the UK for the past 10 years).

Graduate Consultant – Data Engineering & Analytics

Are you a recent STEM graduate with a passion for data engineering and cybersecurity? Join a growing B2B data consultancy based in Clifton, offering exceptional opportunities for career progression and hands-on experience in a dynamic, client-facing environment.

Salary: £28-35k + up to 15% bonus
Location: Clifton, 2-3 days per week

What We’re Looking For:

• A 2:1 or higher in a STEM-related degree or equivalent experience.
• Interest in data engineering, with a strong technical background.
• An eagerness to learn and develop in a consultancy environment.

About the Role:
In this entry-level role, you’ll gain practical experience in data management and security, working with tools like Splunk and Cribl. You’ll learn to design data models, build analytics, and create data pipelines, while enhancing your consulting and problem-solving skills.

Key Responsibilities:

• Collect and analyse data from various sources.
• Translate client needs into technical solutions.
• Assist with problem-solving and demonstrate data-driven approaches.
• Develop reports and client-facing documents.
• Continuous learning on emerging technologies and security trends.

Career Progression:

• Year 1: Learn technical and consulting skills.
• Year 2: Support engineering projects, focusing on product configuration and deployment.
• Progress to Consultant / Senior Consultant with more client-facing responsibility.

Ready to kick-start your career in data engineering and consultancy in a growing organisation? Apply today.

IAM Analyst

£450 Inside IR35 (total to umbrella)

3 months

Gloucester area – twice a week on site

A complex, financial organisation that we work with extensively is looking for an IAM Analyst to perform the required analysis to support a logical access controls framework project. This will require engagement with multiple departments from within to identify requirements through workshops, create and present the solution design and support through the delivery lifecycle ensuring the required outcomes.

Skills / Experience

• Previous experience of delivering Access Controls / IAM related projects – Desirable
• Ability to learn a complex systems estate and quickly map dependencies and integrations in order to define solutions or identify issues that could occur in the IAM system.
• Strong written and verbal communication skills, production of HLD / LLD design documentation.
• Ability to engage effectively with multiple stakeholders, to include the facilitation of workshops.

CIAM (ForgeRock) Architect

Up to £640/day (Inside IR35)

Fully Remote
Initial 6 Month Contract

Role details:

We’re partnering with a global consultancy who are market leaders in Cybersecurity. They are looking for an experienced CIAM (ForgeRock) Architect to lead the design and integration of two key applications into their healthcare clients identity ecosystem. This role requires strong expertise in ForgeRock Cloud (SaaS) and API-driven identity integrations.

Key Responsibilities:

• Architect and lead the onboarding of applications.
• Integrate ForgeRock Cloud (SaaS) solutions via APIs.
• Define and implement authentication, authorization, and RBAC strategies.
• Ensure API security best practices are met.
  

Essential Skills & Experience:

• Strong hands-on ForgeRock Cloud (SaaS) experience.
• Experience integrating applications via APIs.
• Deep understanding of RBAC (Role-Based Access Control) and security principles.
• Ability to lead design and work independently in a remote environment.
  

Eligibility:

To be considered for the role, you must have UK right to work.

Senior Security Analyst – Microsoft E5 / Sentinel

Rate – £400 / £450 Inside IR35 (Total to umbrella)

Duration – 6 months

Location – Hybrid into London or Middlesbrough (Infrequent travel per month)

A complex organisation that we work with extensively is looking for a Senior Security Analyst proficient in Microsoft E5, Sentinel and Defender (security operations perspective) to join them and work on triage incidents and optimisation to improve processes and detection rules.

You will:

• Handle triage incidents.
• Understand Microsoft E5, Sentinel and Defender capabilities (Automation, Threat, Rules, Access).
• Assist with Microsoft E5, Sentinel and Defender optimisation.
• Use previous experiences to ensure best practices are upheld and improve processes.
• Liaise and escalate with stakeholders and team members regarding incidents.

Skills and Experience required:

• Microsoft E5, Sentinel, Defender configuration and optimisation.
• Security analysis.
• Stakeholder management.
• Sentinel SOC experience – implementation, triage, security, utilisation, deploy controls, maintenance.

Please apply in the link provided if suitable.

Cyber Risk Consultant (SC Cleared)

Remote (travel to customer site as required)

£45k – £65k DOE

Role details:

We’ve partnered with a growing cyber security consultancy who have market-leading accreditations and 20+ years of expertise. They offer NCSC assured consultancy, identification and protection and proactive detection and response services to a variety of clients.

They are looking for a Cyber Risk Consultant to support clients across various sectors to define and implement security risk assessment and best practice solutions.

Essential Requirements:

• Excellent understanding of risk management and assessment principles and frameworks: ISO27005 and NIST Cyber Security Framework
• Customer-focused with strong verbal and written communication skills.
• Hands-on experience with: Reviewing security project delivery plans, Evaluating network and cloud security designs, Creating secure architectures and solutions.
• Strong knowledge of cybersecurity industry trends.

Benefits:

• 25 days annual holiday
• Birthday off in addition and option to buy/sell additional 5 days
• Private medical Cover
• Life Assurance
• Extensive non-taxable benefits

Eligibility:

To be considered for the role, you must have active SC Clearance.