Contract Security Engineer Jobs

Make yourself visible and let companies apply to you.

Roles

Overview

Find top CONTRACT Security Engineer jobs on Haystack – your go-to IT job board for flexible, high-paying contract roles. Explore the latest opportunities to secure your next contract position in cybersecurity, network security, and information security engineering. Start your search today and connect with leading employers seeking skilled Security Engineers for short-term and project-based contracts.

Splunk Enterprise and ITSI Expert

Stealth IT Consulting Limited

Location: Hybrid 3 days onsite per week Sheffield, Birmingham, or London (UK)

Contract Duration:8 months

Day Rate: £450 £500 per day (Inside IR35)

Role Overview

This is a specialist role focused on designing, deploying, and optimising Splunk Enterprise and Splunk IT Service Intelligence (ITSI) in complex hybrid Kubernetes/OpenShift environments. You will handle large-scale data onboarding, build advanced ITSI service models and monitoring views, tune platform performance, implement secure governance, and integrate with modern observability pipelines. The position supports critical observability, reliability, and cost management for containerised workloads in a high-stakes enterprise setting.

Key Responsibilities

Design, deploy, and operate Splunk Enterprise and ITSI in hybrid Kubernetes/OpenShift environments.
Onboard data at scale using HEC, Universal Forwarders/Deployment Server; align to Common Information Model (CIM); enforce RBAC, retention policies, and cost guardrails.
Build ITSI service decompositions, KPIs (including multi-KPI), adaptive/time-based thresholds, NEAP policies, glass tables, deep dives, and service health scoring.
Create OpenShift-specific executive and operations views: cluster health (API/etcd), node readiness/pressure, pod restart hotspots, network/storage errors, capacity, quotas, and bursting visibility.
Tune search/platform performance: workload rules, concurrency limits, Data Model Acceleration (DMA), summary indexing, and scheduling optimisation.
Implement alerting, event enrichment, routing to ITSM/ChatOps, suppression windows, maintenance schedules, and runbook automation.
Govern data ingest and security: allow/deny lists, PII handling, TLS/mTLS, token/cert governance, index/role mapping, and data quality SLAs.
Integrate upstream sources/pipelines: OpenTelemetry (OTLP), Prometheus exporters, Fluentd/Fluent Bit/Vector, Kafka (with TLS), CMDB/ITSM enrichments, and AIOps/ML anomaly detection.

Essential Skills & Experience

Deep Splunk Enterprise expertise: SPL mastery, CIM alignment, KV stores/lookups/macros, saved searches, index/retention/RBAC design, search performance tuning.
Advanced Splunk ITSI knowledge: Service trees/decompositions, KPIs/thresholds (adaptive/time-based), NEAP tuning, glass tables, deep dives, Service Analyzer configuration.
Strong OpenShift/Kubernetes observability: Cluster/control-plane metrics, kube events/logs, workload/node/network/storage correlations, capacity/noisy-neighbor detection.
Experience with data pipelines/collectors: OpenTelemetry, Prometheus scraping, Fluentd/Fluent Bit/Vector, Kafka (TLS-secured), HEC/UF/DS onboarding.
Reliability & SLOs: Golden signals, rollout/rollback health checks, SLO/KPI mapping to namespaces/apps, executive/ops dashboards.
Performance & cost optimisation: Workload rules, DMA, summary indexing, schedule hygiene, license/cost guardrails.
Security & compliance: TLS/mTLS, token/cert management, PII controls, auditability, role/index mappings.
Automation & integrations: ITSM/ChatOps routing, runbooks, CMDB enrichment, webhook/AIOps integrations.

Preferred / Desirable

Hands-on experience in regulated/financial services environments.
Certifications: Splunk Enterprise Certified Architect, Splunk ITSI Certified Admin, or equivalent.
Familiarity with AIOps/ML features in Splunk for anomaly detection.
Previous work with container platforms (Kubernetes/OpenShift) for observability at scale.

Success Measures

High-quality, scalable Splunk/ITSI deployments with optimised performance and cost controls.
Effective service health monitoring via ITSI (accurate KPIs, glass tables, deep dives).
Reduced alerting noise, improved incident response through enriched routing and automation.
Strong governance, security compliance, and traceability in data ingest/observability pipelines.

This role is ideal for a Splunk specialist with proven expertise in ITSI and container observability, who can deliver robust, production-grade monitoring solutions in dynamic hybrid environments. Applications must be PAYE via Umbrella.

Cyber Incident Response Consultant

Job title: Cyber Incident Response Consultant (Contractor)
Contract: Six Months (possibility of extension)
Location: Basingstoke (X3 days onsite; X2 working remote)

Role Overview
We are seeking an experienced Cyber Incident Response Consultant to support our cybersecurity function on a contract basis. The consultant will be responsible for collaborating with organisation stakeholders in developing, updating, and enhancing a comprehensive set of tactical and operational cyber incident response documents, including the Incident Response Plan, Communication Plan, Incident Response Playbooks, and Containment & Eradication procedures.

This engagement is focused on delivering high-quality, actionable documentation and strengthening the organisation’s overall incident response capability. The consultant will work closely with internal stakeholders to ensure alignment with business operations, technology, and regulatory requirements.

IR Technical Capability Maturity Assessment
* Evaluate and report on the organisation’s technical capabilities and maturity against IR Detection & Analysis, Containment, Eradication, & Recovery domains using industry maturity model.
Develop & Maintain Incident Response Documentation
* Produce and refine the organisation’s Incident Response Plan (IRP).
* Build clear and consistent internal and external incident communication workflows.
* Develop detailed incident response playbooks, such as ransomware, business email compromise (BEC), data breach, insider threat, malware outbreak, DDoS attack, cloud service compromise. (Final scenarios to be agreed during discovery.)

Strengthen Organisational Incident Preparedness
* Conduct discovery sessions with technical and non-technical stakeholders.
* Review existing security processes, tools, and architecture to ensure documentation reflects current environments.
* Support tabletop exercise planning and incorporate lessons learned into documentation.
* Provide expert guidance and recommendations to improve cyber readiness.

Build Containment & Eradication Frameworks
* Develop clear, structured containment strategies for different incident types.
* Create eradication and recovery guidance aligned with operational capabilities.
* Ensure all procedures support legal, compliance, and evidence-preservation requirements.

Align with Standards & Regulatory Expectations
* Ensure all documentation aligns with CIS Controls.
* Ensure materials support relevant legal and regulatory expectations as appropriate for the organisation.
Collaborate Across the Business
* Work closely with SOC staff, IT teams, legal, risk, compliance, communications, and senior leadership.
* Convert technical details and threat intelligence into clear, actionable steps appropriate for operational use.

Required Experience & Skills
* Proven experience (typically 5+ years) in incident response, SOC operations, cybersecurity consulting, or GRC.
* Demonstrated ability to produce high-quality IR documentation and playbooks for medium-to-large organisations.
* Deep understanding of modern threat actors, attack methodologies, and incident response lifecycle.
* Experience across cloud (Azure, AWS) and on-premise enterprise environments.
* Exceptional written communication skills and ability to deliver polished, structured documentation.
* Ability to work independently, meet deadlines, and drive deliverables with minimal supervision.

Preferred Qualifications and Experience
* GCIH, GCFA, CISSP, or equivalent security certifications.
* Experience working within regulated sectors (financial services, healthcare, government, critical infrastructure).
* Prior participation in or leadership of real-world cyber incident response activities.
* Familiarity with identity governance, EDR platforms, SIEM tooling, and cloud security architecture.

Why This Engagement Matters
The Cyber Incident Response Preparation Consultant plays a crucial role in elevating the organisation’s cyber maturity and readiness. Through the development of robust documentation and playbooks, the consultant will help ensure the organisation can respond rapidly, effectively, and consistently to modern cyber threats

Solution Architect (SC Cleared)

Your new company
A renowned global consultancy is seeking a Solution Architect to design and deliver secure, reliable dental IT solutions for a national defence organisation.

Your new role

The role focuses on creating systems that work in disconnected or low-connectivity environments, such as deployed or remote military locations. What You’ll Do:

Lead solution architecture for dental systems used in remote, mobile, or intermittently connected settings.
Design secure, resilient platforms
Translate clinical and operational needs into scalable technical designs.
Produce architectural documentation (HLDs, LLDs, data flows, security models, integration designs).
Support procurement, vendor evaluation, and assurance/accreditation activities.
Work with clinical teams, engineers, security specialists, and procurement stakeholders.

What you’ll need to succeed

Strong background as an Architect
Experience with dental IT systems (PMS/EHR, imaging, workflows).
Hands-on experience designing offline-first or edge-based solutions.
Understanding of defence or highly secure environments.
Knowledge of cloud, hybrid, and data architecture.
Ability to explain technical concepts to both technical and non-technical audiences.

What you’ll get in return
Flexible working options available.

What you need to do now
If you’re interested in this role, click ‘apply now’ to forward an up-to-date copy of your CV, or call us now.

Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C’s, Privacy Policy and Disclaimers which can be found at hays.co.uk

Security Engineer - SC cleared

Evodia Limited is supporting a key defence client in their search for a Security Engineer. This is an exciting opportunity to contribute to a high-profile project delivering vital Air Defence capabilities to UK allies, based in Bristol, with flexible remote working (1-2 days onsite). If you are an experienced Security Engineer with a current SC clearance, adept at working with assurance authorities and managing security within DE&S, we want to hear from you.

The Role

You will be instrumental in developing and delivering critical security documentation aligned with the MOD and DE&S security policies. Your role will involve engaging with assurance authorities, liaising with suppliers, and ensuring all security standards are met to support successful project trials and delivery.

Key Responsibilities

Creating and tailoring security documentation such as Security Cases, SyOps, Risk Treatment Plans, Security Grading Guides, and Cyber Risk Profiles to fit project and procurement needs.
Managing security Liaison with suppliersreviewing bids, quotes, and contracts to ensure compliance with security standards.
Acting as the focal point for security within the project team, providing guidance and ensuring all DE&S security processes are followed.

What We’re Looking ForEssential Experience:

Proven experience engaging with assurance authorities and managing security within DE&S environment.
Deep understanding of MOD and DE&S policies, particularly in cyber security related to supplier engagement.

Desirable Experience:

Experience working on GK or rapid procurement projects.
Track record delivering security aspects within trial projects.
Knowledge of DE&S Secure by Design practices.

Details

Location: Bristol (1-2 days per week onsite) with flexible remote working options.
Contract: Until 30 June 2026, with scope for extension.
Daily Rate: Up to £570 (inside IR35).
Start: ASAP

This role offers a fantastic chance to apply your security expertise within a major defence programme that directly contributes to national and international security. We understand your skills are valuable, and we support you throughout the process. If this aligns with your experience and career aspirations, we encourage you to get in touch with Evodia Limited to discuss your fit for this important role.

Location: Wokingham Hybrid - 50/50
Duration: 25/09/2026 / role starts with a 6 months contract
Rate 644
MUST BE PAYE THROUGH UMBRELLA

MUST HOLD A ACTIVE SC CLEARANCE
Role Description:

Qualifications

Relevant certifications (e.g., CyberArk Defender, CISSP, CISM)
Experience in cloud environments (AWS, Azure, GCP) and hybrid infrastructures
Knowledge of DevSecOps practices and CI/CD pipeline integration

Key Responsibilities

Design, deploy, and manage PAM solutions (e.g., CyberArk, BeyondTrust, Delinea)
Implement least privilege access models and enforce secure credential management
Monitor and audit privileged access activities across systems and applications
Integrate PAM tools with SIEM, IAM, and other security platforms
Develop and maintain policies, procedures, and documentation for PAM operations
Conduct regular access reviews, privilege audits, and risk assessments
Collaborate with IT, DevOps, and Security teams to ensure seamless PAM integration
Provide technical support and troubleshooting for PAMrelated issues
Stay current with industry trends, threats, and best practices in access management

Required Skills & Qualifications

Experience in PAM engineering or cybersecurity roles
Proficiency with PAM tools such as CyberArk, BeyondTrust, or Delinea
Strong understanding of Active Directory, LDAP, and authentication protocols
Experience with scripting (PowerShell, Python) for automation and reporting
Familiarity with compliance frameworks (ISO 27001, NIST, GDPR)
Excellent problemsolving, communication, and documentation skills

Fire and Security Engineer

An excellent opportunity has arisen for an experienced Fire & Security Engineer to join one of the country’s leading facilities management companies. This will be a mobile role working on a supermarket contract.

Ideal candidate location - Maidstone or any of the below sites:
Ashford, Swanley, Broadstairs, Canterbury, Chatham, Gillingham, St Leonards on Sea, Maidstone, Eastbourne, Ramsgate, Sittingbourne, Rochester

Key Responsibilities:

Servicing and maintenance of Fire Alarms, Intruder Alarms, CCTV Systems and Access Control.
Providing callout response for the client as per callout rota.
Representing the company in a way which ensures customer satisfaction and professionalism.
Taking a pro-active approach to client liaison and ensuring that concerns are dealt with or relayed to management as necessary.
Ensuring that administration requirements are actioned on time and all necessary documentation and records are maintained accurately.
Staying in compliance with Company Policy & Health and Safety legislation.
Installing and servicing fire and security systems.

Experience/skills required:

Experience with Access control, CCTV, Intruder and Fire alarm systems
Full, valid UK driving licence
Experience in Notifier by Honeywell, Paxton Systems, and designing security systems would be an advantage
Thorough understanding of relevant fire and intruder alarm standards
CSCS/ ECS/ IPAF desirable
Excellent customer service skills
Good interpersonal skills and the ability to work as part of a team
A genuine interest in your work with an enthusiasm and willingness to learn.
Exceptional knowledge within the security sector.

Package:

Salary: 35946 basic + 2535 in standby payments = 38,481 total
Travel time paid after first 30m at overtime rate
Overtime
Call Out - 1 in 4 weeks
Private Health Care
33 days holiday inclusive of banks
Life Insurance
Company vehicle with private use

Schedule:

Monday - Friday 42.5 hrs per week
1 week in 4 standby

Licence/Certification:

UK Driving Licence (required)
Electrical Competency Qualification (NVQ/City & Guilds)

Fire and Security Engineer - Maidstone

Fire & Security Engineer - Kent

Fire and Security Engineer

Calibre Search promote equality in the workplace and we welcome applications from all suitably skilled or qualified candidates regardless of their sex, race, disability, religion/beliefs, sexual orientation or age. We act as both an employment agency and employment business.

Senior M365 Engineer

Randstad Technologies

Senior M365 Engineer (12-Month Contract)

Location: London, UK (Local SME for PL Re)
Duration: 12 Months
Work Mode: 4 Days in Office

Role Overview

We are seeking a Senior M365 Engineer for a 12-month contract to serve as a Subject Matter Expert (SME) in our London office. You will lead critical migrations, manage local stakeholder governance for our PL Re division, and partner with global engineering on Copilot and new feature adoption.

Key Initiatives & Responsibilities

Migrations & Projects: Lead Mimecast-to-M365 and home drive-to-OneDrive migrations; manage retention/compliance policy rollouts.
Network & Performance: Resolve Teams and network-related issues for London and international offices.
Security & Mail Flow: Act as Line 1 security expert (EOP, mail flow rules, routing, encryption) and manage Proofpoint integrations.
Architecture & Strategy: Design and implement M365 solutions in a global environment, assist with the enterprise roadmap, and provide expert technical assistance to business units.
Compliance: Participate in security reviews and manage e-discovery, legal holds, and archived solutions.
Operations: Support core services (Teams, OneDrive, Exchange, SPO), monitor service updates/roadmaps, and handle escalated incidents.

Required Experience

8+ years: SME-level experience in M365 security, architecture, and design (Exchange Online, SPO, Intune, Azure AD, OneDrive, Teams).
5+ years: Exchange Admin in large-scale, 24/7 environments.
5+ years: Expertise with Azure AD, Intune, and Microsoft EMS security.
5+ years: Experience with Microsoft and Proofpoint e-discovery/compliance processes.

Randstad Technologies is acting as an Employment Business in relation to this vacancy.

IAM Technical Delivery Lead - Hybrid / Sheffield - Market Umbrella Rate - 6 months+

Overview
We are seeking an experienced IAM Technical Delivery Lead to join an established Identity team, supporting a major IAM Service Transformation programme. You will work across multiple teams and stakeholders to deliver enterprise-wide improvements, ensuring high-quality outcomes across identity, access, and related systems.

This is a delivery-focused role, ideal for someone who understands what “good” looks like and can drive workstreams to successful completion.

Key Responsibilities:
Lead and deliver identified improvements across a range of applications and systems
Be involved in pre market consultations for third-party partners
Support transformation and modernisation initiatives
Oversee systems integration, automation, and governance projects
Work closely with Cyber Security teams, applying strong security principles
Build and maintain strong relationships with stakeholders across the business
Collaborate with multiple departments, including HR and Finance
Experience & Skills Required:

Proven experience delivering IAM and identity-related transformation initiatives
Have a solid Technical Identity & Access Management background and be able to ‘talk the tech talk’
Strong stakeholder management and communication skills
Solid understanding of cyber security concepts and best practices
Experience working in complex, multi-department environments
Higher Education sector experience is desirable but not essential
Technical Platform Environment:

Azure AD / Entra ID
Active Directory (on-prem) with a strong cloud-first strategy
SQL Querying and SQL Administration
Oracle integrations (Customer Journey and HR systems)
Interviews: Week commencing 16th February
Start Date: 2nd March

This role requires a safe, delivery-focused IAM professional who can take ownership and ensure high-quality outcomes across the IAM landscape.

Stuart Graham
Click Recruitment
(url removed)

Network Architect

eTeam Workforce Limited

We are a Global Recruitment specialist that provides support to the clients across EMEA, APAC, US and Canada. We have an excellent job opportunity for you.

Role Title: Network Architect
Location: Knutsford - Hybrid 60% office-40% remote
Duration: 30/10/2026

Role Description:
Overview:

The Network Architect ensures the design and governance of secure, scalable, and resilient connectivity across cloud and on-premise environments. The role focuses on network segmentation, Firewalling, routing, and containment patterns to support secure operational states.

Key Responsibilities:

Design network architectures across cloud, hybrid, and on-prem environments, ensuring secure connectivity and operational stability.
Define Firewall rulesets, segmentation patterns, and isolation design across multiple zones.
Enable containment strategies to support cyber resilience, including rapid isolation, controlled recovery, and blast-radius reduction.
Oversee routing, load balancing, VPN/ExpressRoute, and secure edge patterns.
Validate network changes through governance, assurance, and architectural review.
Collaborate with Security, Identity, and Infrastructure teams to ensure network designs align with Zero Trust principles.
Conduct capacity planning, performance optimisation, and telemetry integration.

Technical Components:

Strong expertise in Firewalls, WAFs, proxying, micro-segmentation, network monitoring, and packet inspection.
Experience designing network topologies including hub-and-spoke, mesh, private endpoints, and SD-WAN.
Familiarity with network security and resilience certifications, compliance, and best practice frameworks."

If you are interested in this position and would like to learn more, please send through your CV and we will get in touch with you as soon as possible. Please note, candidates are often Shortlisted within 48 hours.

Level 2 SME (Internet gateway security -Netskope & ZTNA)

LA International Computer Consultants Ltd

6 Month contract initially + Extensions
Based: Onsite in Coventry
Rate: £400 - £500 p/d - (via Umbrella company)

We have a great opportunity with a world leading organisation where you will be provided with all of the support and development to succeed. A progressive organisation where you can really make a difference. We have a great opportunity for a Level 2 SME (Internet gateway security -Netskope & ZTNA) to join the team.

Individual responsibility (T&M)
Need experience on the CASB and Internet Gateway security tools especially Netskope & ZTNA.

Key Responsibilities;
Public Key Infrastructure:

* Work with project team and stakeholders for design and build of new Internal Public Key Infrastructure that is possibly Quantum proof
* Understand the gaps identified in the existing PKI and to define solutions to address them in new PKI
* Build and integrate the PKI with new Certificate Life Cycle Management solution
* Understand the concept of cloud Hardware Security Module and integration of it with the Certificate Authorities
* Understand and define the certificate template requirements for the internal PKI certificate consumer services

Zero Trust Network Access (ZTNA):

* Infrastructure requirements and Definition of rulesets for future VPN - ZTNA solution
* Build necessary infrastructure to support ZTNA
* Discovery of VPN dependent applications and plan for the Firewall changes as needed
* Collaborate with multiple stakeholders along with the application support team for the delivery of ZTNA solution

Networks and Other activities:

* Work with the product team to understand requirements and the discovery activities for Network Segmentation built with Kill Switch requirement for cyber security
* Collaborate with the networks team for any Network change requirement/network related issues for any product within the product team
* Understand requirements for the Proxy Access Control file, necessary changes to it to be raised appropriately with Networks team
* Connect with the Enterprise compute team for deployment of Internet Security tool to endpoints, upgrades to the tools and maintenance of the tools
* Management of the EntraID enterprise apps which are required for the Internet Security tool to function with SSO, SCIM, IDP features

Key Skills & experience:
Internet Gateway Security:

* Work with the team to understand the product requirements to build Internet Security policies as necessary to protect the corporate user endpoints
* Define, enable, review Internet security policies and the traffic steering configurations in the tool sets - Secure Web Gateway, Cloud Access Security Broker
* Understand data exfiltration possibilities and to build Data Loss Prevention policies as needed
* To work closely with the Security Operations team to enhance security requirements, apply adhoc denies to risky sites, Exception requirements from colleagues
* High knowledge on the SSL inspection concept to define SSL decryption bypass policies without compromising security features
* Work closely with the end users for any website exception requirements in line with SOC requirements, to resolve DLP/SSL inspection related problems
* Complete administration of the Netskope tenant

This is an excellent opportunity on a great project of work, If you are looking for your next exciting opportunity, apply now for your CV to reach me directly, we will respond as soon as possible.

LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds.

Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.

Role Title: Security Architect

Duration: contract to run until 30/09/2026

Location: London or Southampton hybrid working 3 days per week onsite

Rate: up to £503.24 p/d Umbrella inside IR35

Role purpose/summary

Architecture & Design: Develop secure architectures and reference patterns across cloud, infrastructure, applications, and data platforms. Ensure alignment with business goals, risk appetite, and regulatory requirements.
Solution Delivery: Provide architectural guidance during project life cycle (HLD/LLD), review designs, and ensure solutions meet security requirements.
Risk & Threat Management: Conduct threat modelling, assess vulnerabilities, and ensure appropriate mitigating controls are designed and implemented.
Governance & Standards: Define and maintain security policies, standards, and guardrails. Ensure adherence to architectural principles and regulatory obligations (eg, GDPR, FCA).
Collaboration: Partner with engineering, cloud, network, IAM, and operational teams to embed secure by design principles and resolve architecture level issues.
Security Tooling & Controls: Evaluate and guide the adoption of security technologies including IAM, encryption, network security, detection/response, and cloud-native controls.
Incident Support: Provide architectural expertise during incidents, investigations, and post incident reviews.
Continuous Improvement: Monitor emerging threats, technologies, and patterns to enhance the organisation’s security posture.

Required Skills & Experience:

5+ years in security architecture or security engineering roles.
Strong understanding of security protocols, authentication/authorization models, encryption, identity management, and cloud security patterns.
Experience producing high quality architecture documentation (HLD/LLD, patterns, data flows).
Hands on understanding of cloud environments (Azure/AWS/GCP), networks, applications, and data protection.
Familiarity with threat modelling, risk assessment, and regulatory compliance.
Excellent communication skills, able to explain complex security topics to technical and non technical audiences.

Preferred Qualifications:

Certifications such as CISSP, CISM, SABSA, AWS/Azure Security, or Cybersecurity Architect Expert.
Experience in financial services or other regulated industries.
Knowledge of DevSecOps, API security, and secure software delivery.

All profiles will be reviewed against the required skills and experience. Due to the high number of applications we will only be able to respond to successful applicants in the first instance. We thank you for your interest and the time taken to apply!

OT Architect - DV Cleared

CBSbutler Holdings Limited trading as CBSbutler

Rate: 700 - 850 a day
Location: Preston, Lancashire
Duration: 12 months +
Clearance: UKSV Developed Vetting (DV)
Work Pattern: On-site / Preston

The Opportunity
We are working exclusively with a globally recognised prime defence contractor to identify experienced OT Architects for a critical, long-running programme based in Preston. This is a technically demanding role embedded within a complex, highly secure programme environment supporting some of the UK’s most sensitive national infrastructure.

You will operate at the intersection of Operational Technology, cybersecurity architecture, and systems engineering - shaping the OT landscape across a multi-platform, safety-critical programme. The work is genuinely consequential and the technical challenge significant.

What You’ll Be Doing

Designing and owning end-to-end OT architecture across complex, multi-domain systems
Developing reference architectures, patterns, and standards aligned to programme requirements
Leading OT/IT boundary definition and network segmentation design (Purdue model / IEC 62443)
Providing architectural assurance and technical governance across the programme
Engaging with cross-functional engineering, security, and programme leadership teams
Driving OT cyber security strategy and NCSC-aligned secure-by-design principles
Supporting DRACAS, configuration management, and architecture change control processes
Interfacing with MOD stakeholders and contributing to technical reviews and audits

What We’re Looking For

Active, current Developed Vetting (DV) clearance
Proven background in OT architecture within a defence, CNI, or regulated industrial environment
Strong familiarity with IEC 62443, NIST SP 800-82, and/or equivalent OT security frameworks
Experience with SCADA, ICS, PLC, or embedded/real-time systems architecture
Solid understanding of OT/IT convergence, network segmentation, and secure system design
Comfortable operating within formal systems engineering environments (e.g. MBSE, DODAF, NAF)
Ability to communicate complex architectural concepts to both technical and non-technical audiences
Experience in safety-critical or high-integrity systems is highly desirable

Cross Domain SME - DV Cleared

CBSbutler Holdings Limited trading as CBSbutler

CROSS DOMAIN SME

RATE: 700 - 850 a day
LOCATION: Preston, Lancashire
DURATION: 12 Months +
SECTOR: Defence & CNI
CLEARANCE: Active DV Required

THE OPPORTUNITY
We are working exclusively with a globally recognised prime defence contractor to identify a subject matter expert in Cross Domain Solutions (CDS) for a complex, high-assurance programme based in Preston. This is a senior, technically demanding role at the heart of a programme operating across multiple security domains and classification levels.
You will provide deep technical expertise across the design, implementation, and assurance of cross domain transfer mechanisms - working closely with architects, security teams, and accreditors to ensure solutions meet the stringent requirements of a highly classified defence environment.

WHAT YOU’LL BE DOING

Acting as the programme’s technical authority on all Cross Domain Solution matters
Defining and owning CDS architecture, design patterns, and security controls
Leading the evaluation, selection, and integration of accredited CDS products and technologies
Working with security architects and accreditors to achieve and maintain system accreditation
Providing SME input to risk assessments, HMG/MOD security reviews, and technical audits
Developing and reviewing CDS-related security documentation (RMADS, SyOps, TRA)
Advising on data guard design, content filtering, and information flow policy enforcement
Liaising with NCSC, DSTL, and other government bodies as required by the programme
Supporting transition and integration activity across classification boundaries

WHAT WE’RE LOOKING FOR

Active, current Developed Vetting (DV) clearance - non-negotiable
Demonstrable SME-level expertise in Cross Domain Solutions within a UK defence or government environment
Deep understanding of HMG information assurance policy, JSP 440, JSP 604, and SPF requirements
Hands-on experience with accredited CDS products (e.g. Nexor, Owl, Forcepoint, or equivalent)
Strong understanding of data guard architectures, content inspection, and policy enforcement engines
Familiarity with MOD/DSTL accreditation and risk management processes (RMADS, ISO 27001)
Experience producing and reviewing security case documentation for high-classification systems
Ability to engage credibly with senior stakeholders, accreditors, and government technical authorities
Prior experience on UK defence programmes at SECRET or above is highly desirable

Cyber Incident Response Consultant

Job title: Cyber Incident Response Consultant (Contractor)
Contract: Six Months (possibility of extension)
Location: Basingstoke (X3 days onsite; X2 working remote)

Develop & Maintain Incident Response Documentation
* Produce and refine the organisation’s Incident Response Plan (IRP).
* Build clear and consistent internal and external incident communication workflows.
* Develop detailed incident response playbooks, such as ransomware, business email compromise (BEC), data breach, insider threat, malware outbreak, DDoS attack, cloud service compromise. (Final scenarios to be agreed during discovery.)

Required Experience & Skills
* Proven experience (typically 5+ years) in incident response, SOC operations, cybersecurity consulting, or GRC.
* Demonstrated ability to produce high-quality IR documentation and playbooks for medium-to-large organisations.
* Deep understanding of modern threat actors, attack methodologies, and incident response life cycle.
* Experience across cloud (Azure, AWS) and on-premise enterprise environments.
* Exceptional written communication skills and ability to deliver polished, structured documentation.
* Ability to work independently, meet deadlines, and drive deliverables with minimal supervision.

Contract Role - Security Architect

Location: Hybrid - Wokingham or Warwick (1-2 days onsite per week)
Contract: 6 months (likely extension)
IR35: Inside IR35
Security Clearance: Active SC Clearance Required

Role Overview

Our client is seeking an experienced Security Architect to support a major internal programme responsible for delivering capabilities that underpin critical infrastructure operations.

This role will embed within an agile delivery programme while also contributing to the wider Security Architecture Community of Practice, working alongside enterprise and domain security architects to strengthen security architecture practices across the organisation.

The successful candidate will provide security architecture leadership for an internal application within the programme, ensuring security is Embedded throughout the development life cycle using secure-by-design and shift-left principles.

You will work closely with engineering, architecture, and delivery teams to ensure security risks are identified early, appropriate controls are designed, and systems are resilient against evolving threats.

Key Responsibilities

Programme Security Architecture

Own the security architecture for an internal application supporting critical infrastructure programmes.
Embed secure-by-design and shift-left practices within agile delivery teams.
Work closely with engineers and product teams to ensure security is integrated into design and development activities.
Provide architectural guidance across agile sprints and feature releases.

Security Risk & Threat Analysis

Conduct threat modelling independently across application and platform designs.
Perform risk assessments to identify vulnerabilities and architectural weaknesses.
Design appropriate security controls, including identifying where compensating controls may be required.
Provide security architecture input into release planning and technical decision making.

Security Architecture Governance

Ensure solutions align with organisational security policies, regulatory obligations, and industry best practice.
Maintain clear and accessible security architecture documentation.
Support security-related incident response activities where architectural insight is required.

Community of Practice Contribution

Contribute to the Security Architecture Community of Practice, supporting the maturity of the clients security architecture capability.
Help identify capability gaps and support the development of consistent approaches across teams, including:

Threat modelling frameworks
Secure development life cycle practices
Security architecture standards

Provide ad-hoc security architecture support across other programmes where needed.

Essential Skills & Experience

Active SC Clearance (recently lapsed clearance may be considered for exceptional candidates).
Strong experience as an application or Software Security Architect.
Demonstrable experience embedding security within agile development environments.
Proven ability to conduct threat modelling independently.
Strong experience in designing security controls (architectural level rather than hands-on implementation).
Strong expertise in containerised services and container security.
Experience working with DevSecOps practices and secure SDLC frameworks.
Ability to communicate complex security concepts clearly to both technical and non-technical stakeholders.
Experience supporting systems operating within regulated or high-assurance environments.

Desirable Experience

Experience within the energy, utilities, or similar highly regulated sectors.
Experience supporting systems related to critical infrastructure operations.
Familiarity with large-scale enterprise transformation programmes.

Working Model

This role follows a hybrid working model, with 1-2 days per week onsite in either:

Wokingham
Warwick

Attendance onsite may vary depending on team collaboration needs and programme milestones.

Interview Process

The recruitment process consists of two stages conducted via Microsoft Teams:

Stage 1 - Informal/Cultural Fit Interview
Discussion around experience, approach to security architecture, and team fit.

Stage 2 - Technical Competency Interview
Panel interview assessing practical capability in areas such as:

Threat modelling
Secure architecture design
DevSecOps practices
Security risk management

We use generative AI tools to support our candidate screening process. This helps us ensure a fair, consistent, and efficient experience for all applicants. Rest assured, all final decisions are made by our hiring team, and your application will be reviewed with care and attention.

Pontoon is an employment consultancy. We put expertise, energy, and enthusiasm into improving everyone’s chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities, and more. We do this by showcasing their talents, skills, and unique experience in an inclusive environment that helps them thrive. If you require reasonable adjustments at any stage, please let us know and we will be happy to support you.

Please be advised if you haven’t heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly.

Please email me

Security Officer - Birmingham - B3 - England

Security Officer - Birmingham - B3 - England, B3 3AY

Do you have previous security experience and looking for a new challenge? Do you provide exceptional customer service and maintain a professional demeanour?

…Apply now!

We are seeking an experienced and adaptable Security Officer to safeguard a prominent facility in Birmingham. Excellent communication skills are essential. Within this you will carry out ID checks, respond to emergencies and provide information to all staff and visitors. The successful candidate will be responsible for providing exceptional customer service, ensuring a clean and professional environment, and maintaining a high level of security. You will possess a robust background in the security sector, demonstrate proficiency in IT systems, excel in multitasking, and maintain a professional and polished demeanour and excellent personal presentation.

Role : Security Officer
Pay Rate: £14.50 per hour
Shift Pattern: 4 on 4 off Days and Nights 12 hours a day Location : Birmingham, B3, 3AX
Role Requirements:   Door Supervisor and CCTV SIA licence

Benefits include:

Financial support for SIA Licensing and renewal
Cycle to work salary sacrifice scheme
Company Pension scheme
Life Assurance benefits
Employee referral scheme
Progression, training, and development opportunities

Additional benefits we offer via our ReWard membership :

Discounted gym membership
Discounts at major retailers and travel suppliers
Restaurant and Supermarket vouchers
Cinema tickets
Access to 24/7 free Employee Assistance programme

Main Duties:

Act as a point of contact and information centre to staff and visitors
Always conduct yourself in a professional manner
Ensure all instructions, both written and verbal are adhered to
Guard access points, permitting or refusing entry, restraining trespassers
Conduct foot patrols within defined areas as an effective deterrent in the protection of the client’s property and assets.
Investigate and take the appropriate lawfully action as authorized by the corporate policy on accidents, incidents, trespassing, suspicious activities, safety and fire incidents
Complete daily reports, including relevant information, observations, surveillance footage, and signatures
Excellent communication skills to all levels – verbally, written, phone and by security radios
Effective operation of all pass systems relevant to an assignment
Lawful searches of vehicles and persons in accordance with instructions issued.
Practical working knowledge of all current and applicable firefighting equipment.
Sound working knowledge of health and safety instructions pertaining to assigned duties.
The ability to operate basic switchboard equipment effectively

Must Haves:

Valid SIA licence
CCTV Licence
Proven work experience as a Security Officer (minimum 2 years)
Excellent customer service and communication skills
High level of self-presentation
IT literate- Ability to operate detecting systems and emergency equipment
Quick thinking and problem-solving skills
A positive attitude to dealing with people and taking on challenges

Security Officer - EC3M, London - England

Security Officer - EC3M, London - England,

Do you have previous security experience and excellent communication skills? Do you provide exceptional customer service and maintain a professional demeanour at all times? Can you keep a positive mindset with any challenge that comes your way?

…Apply now!

Security Officer

Location: London, EC3M
Pay Rate: £15.58 per hour
Shift Pattern: Monday – Friday (60 hours per week)
Requirement: Valid SIA Licence

Join the Security Team

Are you an experienced Security Officer with a passion for delivering outstanding customer service? Do you take pride in your appearance, professionalism, and ability to remain calm under pressure?

We are recruiting a highly motivated and professional Security Officer to support operations at a prestigious, fast-paced corporate environment in the heart of the City of London.

This is a high-profile role within a landmark building, where presentation, communication, and professionalism are just as important as security expertise. You will be part of a team responsible for maintaining a safe, secure, and welcoming environment for tenants, visitors, and contractors.

If you thrive in a dynamic corporate setting and enjoy being part of a client-focused, front-facing team — we want to hear from you.

Key Responsibilities

Operational Support

Report directly to the Security Control Room and operate under the direction of the Duty Shift Manager (or CCTV Supervisor in their absence).
Act as a key point of contact during shifts, supporting colleagues and site management.
Maintain high visibility across the building and respond promptly to operational requirements.
Proactively identify and escalate any security or safety concerns.

Patrolling & Site Coverage

Conduct regular internal and external patrols in line with site assignment instructions.
Provide break relief to ensure seamless security coverage.
Identify and report maintenance, safety, or security issues.

Front of House & Visitor Management

Deliver a professional and welcoming front-of-house presence.
Manage access control and visitor procedures in line with client expectations.
Support events and high-profile visits in collaboration with the Control Room.
Ensure all staff and visitors experience a safe and well-managed environment.

Security Control Room Support

Assist with monitoring alarms, CCTV systems, and incidents as required.
Maintain accurate, concise written and verbal reports.
Communicate effectively with internal teams and external stakeholders.

Loading Bay Operations

Support secure and efficient loading bay activities during peak periods.
Monitor contractor access, deliveries, and vehicle movements.
Work closely with site teams to maintain safe operational flow.

Presentation & Client Standards

Maintain exceptional personal presentation in line with site expectations.
Demonstrate a positive, confident, and approachable attitude at all times.
Represent both the security team and building with professionalism and integrity.

What We’re Looking For

Valid SIA Licence
Minimum 1 year corporate security experience
Minimum 1 year proven Security Officer experience
Excellent customer service and communication skills
Professional appearance and demeanour
Strong written and verbal reporting skills
Proactive and solution-focused mindset
IT literate (CCTV, access control, emergency systems)
Surveillance awareness and strong attention to detail
Excellent organisational skills
5-year checkable work history

Benefits

Financial support for SIA licensing and renewals
Cycle to Work salary sacrifice scheme
Company pension scheme
Life assurance
Employee referral programme
Ongoing training, development, and progression opportunities

ReWard Membership Benefits:

Discounted gym membership
Retail and travel discounts
Restaurant and supermarket vouchers
Cinema tickets
24/7 Employee Assistance Programme

Cyber Security Consultants - DV Cleared

CBSbutler Holdings Limited trading as CBSbutler

Senior Security & Technology Consultants

Location: Warton, UK (On-Site - 5 Days per Week)

Overview

We are seeking experienced Security & Technology Professionals to support critical programmes in a secure defence environment. These roles span architecture, assurance, operations, and technical delivery disciplines and require individuals who can operate effectively within highly regulated, mission-critical settings.

All positions are based full-time on-site in Warton (5 days per week) and require candidates to hold a current and valid MOD DV clearance at the time of application.

Scope of Opportunities

We are hiring across multiple security and technology disciplines, including:

Security Architects
Security Assurers
Information Security Consultants
SOC Analysts
OT Architects
Cross Domain SMEs
IT Administrators
Service Managers
Product Security Managers
Penetration Testing Specialists
Technical Project / Programme Managers

Key Responsibilities (Role Dependent)

Security Architecture & Design

Define and review secure architectures across enterprise IT and OT environments.
Act as technical authority for secure system design and implementation.
Lead threat modelling, risk assessments, and security design reviews.
Ensure compliance with defence security standards and secure-by-design principles.

Security Assurance & Governance

Deliver independent security assurance across programmes.
Support accreditation activities and compliance reviews.
Develop and maintain security documentation, standards, and risk registers.

Security Operations & SOC

Monitor, analyse, and respond to security events and incidents.
Strengthen detection, response, and resilience capabilities.
Support vulnerability management and remediation activities.

OT & Cross Domain Security

Provide expertise in Operational Technology environments.
Design and assure secure cross-domain solutions and data transfer mechanisms.
Evaluate network segregation and high-assurance controls.

Penetration Testing & Vulnerability Management

Conduct or oversee penetration testing engagements.
Assess vulnerabilities and validate remediation strategies.
Support red/blue team activities where required.

Service & Product Security

Embed security into live service management processes.
Act as Product Security lead across development lifecycles.
Integrate DevSecOps controls and secure SDLC practices.

Technical Delivery & Programme Support

Manage security-focused technical workstreams.
Provide governance reporting to senior stakeholders.
Translate technical risks into business impact and mitigation plans.

Essential Requirements

Valid and transferable MOD DV clearance (mandatory).
Availability to work on-site in Warton, 5 days per week.
Strong background in one or more of the listed security disciplines.
Experience working in secure, defence, or highly regulated environments.
Relevant certifications (e.g., CISSP, CISM, TOGAF, CREST, cloud certifications).

Security Architect

CBSbutler Holdings Limited trading as CBSbutler

Preston

In office

Senior - Leader

£800/day - £1,000/day

TECH-AGNOSTIC ROLE

months +

+On site in Warton

+Inside IR35

+DV cleared role

Skills:

+Security Architect

+MOD

+DV clearance

Location: On-site, Warton
Clearance: DV (Developed Vetting) - mandatory

We are looking for a DV-cleared Security Architect to work on a high-profile defence programme on site in Warton. You will lead the design and assurance of secure systems, ensuring compliance with MOD security standards and embedding security by design across infrastructure, applications, and networks.

Key Requirements:

Proven experience as a Security Architect in defence, government, or secure environments.
Strong knowledge of security architecture, risk management, and secure system design.
Experience with secure networks, classified systems, and system accreditation.
Excellent stakeholder engagement and documentation skills.
Active DV clearance required.

Desirable:

Experience with MOD/aerospace programmes, cloud security in secure contexts, and zero trust architectures.

If you’d like to discuss this role in more detail, please send your updated CV to (url removed) and I will get in touch.

Cybersecurity Consultant

Job Description: Cybersecurity Consultant (Cloud, Data, AI & Microsoft Security)

Department: Information Security - (Data & AI team)

Duration: Duration 4 months

Location: London (Hybrid)

Role Overview

We are looking for a highly skilled Cybersecurity Consultant with strong expertise across Microsoft Security, Cloud Security, Data Protection, and emerging AI/LLM security and governance. The role focuses on identifying security gaps, defining secure-by-design patterns, supporting product and platform teams, and strengthening enterprise security posture-particularly across Microsoft 365, Azure, data platforms, and AI-enabled solutions.

You will play a key role in threat modelling, risk assessments, guardrail design & implementation, and delivering practical security guidance for engineering, data, and application/product teams.

Rationale/deliverables:

Contribute to the Operating Securely program by providing information security advice and support to product and engineering teams and validate that security controls are in place and issues / vulnerabilities remediated
Perform technical risk assessments for proposed new and changing systems, including products that are designed and built by the client as well as the secure deployment and configuration of business applications that report on and analyse data, e.g. Power BI
Perform technical risk assessments and advise product and engineering teams on the secure implementation of AI based solutions, e.g. autonomous AI agents, LLMs, LRMs, and AI-enhanced productivity systems
Support the roll-out of the new AI information security control framework
Support the Data governance team

Key Responsibilities

Perform threat modelling(STRIDE), guardrail definition, and security posture assessments across applications, data platforms, APIs, cloud services, and SaaS ecosystems.
Identify security control gaps, especially around data pipelines, repositories, network security, API security, middleware, and cloud architectures.
Conduct technical security risk assessments, produce risk statements/reports, and support teams with remediation and mitigation strategies.
Develop security controls, standards, and documentationfor product teams, platform engineering, and data services (e.g., pipelines, warehouses, data sources).
Provide expert guidance on Microsoft Security Stack, including:
- Microsoft Defender (XDR, MDE, MDI)
- Microsoft Entra ID (SSO, MFA, Conditional Access, PIM)
- Microsoft Purview (DLP, Information Protection, Data Governance, DSPM)
- Microsoft 365 Copilot & GitHub Copilot security enablement
Partner with data governance, platform engineering, DevOps, and architecture teams to embed secure-by-design
Support secure adoption of cloud-native technologies(Azure), DevSecOps pipelines, GitOps practices, and GitHub Advanced Security (GHAS).
Oversee security controls for cryptography, key management, secrets management, HSM/Key Vault configurations, and cloud network security (firewalls, proxies, segmentation).
Drive secure integration of AI/LLM tools, including Copilot, Azure OpenAI, and agentic systems-ensuring proper guardrails, risk assessments, and data protection.
Participate in cloud monitoring, detection & incident response, working with SIEM/XDR tooling and platform/application teams.
Collaborate closely with data governance to ensure appropriate classification, labeling, access control, and lifecycle managementof sensitive data.

Essential Skills & Experience

Strong understanding of security frameworks(CIS), MITRE ATT&CK, and AI/LLM security frameworks.
Hands-on experience with Azure cloud security, DevSecOps, and cloud-native architectures.
Expertise with Microsoft 365 Securityand Azure Security
Strong knowledge of IAM(SSO, MFA, Conditional Access, AAD/Entra, PIM).
Experience delivering data security, DLP, DSPM, and governance controls using Microsoft Purview.
Practically skilled in AI security, including risk identification, secure integration patterns, and AI governance models.
Experience with cloud monitoring, incident response, SIEM/XDR operations.
Ability to translate complex security risks into clear business language and actionable recommendations.

Desirable Skills

Experience with secure data platforms (Azure Data Factory, Data Lake, SQL, or similar).
Knowledge of API, container security, Kubernetes, and infrastructure-as-code security.
Familiarity with PCI, GDPR, data privacy requirements, and compliance frameworks.
Exposure to adaptive protection, insider risk management, and automated DLP frameworks.

Personal Attributes

Strong communicator able to work across engineering, data, product, and business teams.
Highly analytical with a structured approach to problem-solving.
Comfortable in fast-paced environments undergoing modernization and AI adoption.
Ability to influence teams and drive secure-by-design culture across the organization

Security Architect

Summer Browning Associates

Summer-Browning Associates is currently supporting our central government client, who is seeking a Security Architect for an initial twelve-month assignment with the option to extend.

Location: Hybrid working - East Kilbride

About the role: You will be responsible for leading the security design of a modern and innovative IT platform.

The ideal candidate will hold Active SC clearance and have a strong background in delivery Security Architecture support, with the following skills and experience:

Experience in technical and security architecture and design within a secure environment.
Experience operating within a security architecture function.
Knowledge of a broad range of industry-standard technologies, both proprietary and open source, across a diverse range of Microsoft and Linux-based deployments.
Knowledge of software and infrastructure design considerations and be comfortable working with engineers to understand and guide the datacentre environment.
Experience architecting and securing solutions within highly sensitive and classified environments.
Knowledge of operating in cloud environments eg AWS, Azure, GCP etc (Desirable)
Experience of establishing security standards, patterns, reference architectures, and assurance frameworks that enable secure-by-design outcomes across multiple services (Desirable)

Page 3 of 9

Frequently asked questions

Haystack offers a wide range of contract Security Engineer positions, including roles in network security, application security, cloud security, and compliance across various industries.

Contract roles are typically short to medium-term engagements with a fixed duration, offering flexibility and often higher hourly rates, while permanent positions provide long-term employment with benefits.

Yes, Haystack features both on-site and remote contract Security Engineer opportunities to suit different preferences and circumstances.

Employers often look for experience with security tools and protocols, and certifications such as CISSP, CISM, CEH, or CompTIA Security+ are highly valued for contract Security Engineer roles.

You can search and filter contract Security Engineer jobs on Haystack, submit your application directly through the platform, and communicate with recruiters or hiring managers to move forward in the hiring process.