SOC Analyst/SecOps Consultant - Remote with occasional trip to Farnborough

Must have an Active DV Clearance

An opportunity is available for an experienced SOC Analyst/SecOps Consultant to support and enhance Security Operations Centre capability within a highly secure environment. This role focuses on hands on SecOps delivery with a strong emphasis on Elastic Stack ownership, continuous improvement, and collaboration across multiple SOC functions.

About the Role - SOC Analyst/SecOps Consultant

• As a SOC Analyst/SecOps Consultant, you will deliver day to day SOC and SecOps operations in support of live security services.
• You will take ownership of administering and managing the Elastic Stack, including agent deployment and data onboarding.
• You will tune detection rules, build and maintain dashboards, and improve alert fidelity across the SOC.
• You will work closely with internal SOC teams, external SOCs, and end customers to support incident response and service improvement.
• You will maintain high quality SOC documentation and contribute to continuous improvement initiatives across processes and tooling.

Key Skills - SOC Analyst/SecOps Consultant

• Proven experience working in SOC or SecOps environments.
• Strong hands on expertise with Elastic Stack (ELK), including data ingestion and rule tuning.
• Experience integrating and managing security data sources.
• Ability to collaborate effectively across multi SOC environments.
• Strong written and verbal communication skills with a focus on clear documentation.

This role suits a delivery focused SOC Analyst/SecOps Consultant who enjoys deep technical ownership and driving measurable security improvements.

To apply, please send your CV by pressing the apply button

About the opportunity

Are you ready to launch a career in cyber security? Netcom Training’s fully-funded Cyber Security course (NCFE Certificate in Cyber Security Practices, Level 3) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast-growing cyber security and IT roles.

Our learners have gone on to roles such as IT support, second line support, junior development, cyber security analysis and business analyst positions, working with companies across tech, logistics, public services and digital sectors. Complete the course and gain a guaranteed interview with a leading employer, helping you start your career protecting businesses, data and digital systems.

Course Details

*

Start Date: 23/02

*

Duration: 10 weeks

*

Format: Online, pratical workshops

*

Schedule: Mon-Thur 6PM-9PM

What you’ll learn

*

Principles: Understand cyber security principles and core frameworks

*

Threat Intelligence: Develop expertise to identify risks

*

Testing: Conduct cyber security testing, identify vulnerabilities and implement controls

*

Incident Response: Prepare for and respond to cyber security incidents

*

Ethics: Understand legislation and ethical conduct within cyber security

*

Professional Skills: Build professional skills and behaviours for the sector

*

Protection: Gain practical knowledge to protect and secure digital environments

Career Pathway

Successful participants are guaranteed an interview with us or our network of UK-wide partners working with leading brands.

Potential Roles & Starting Salaries:

*

Cyber Security Analyst: £25,000 – £35,000

*

IT Support Technician: £22,000 – £26,000

*

Junior Penetration Tester: £24,000 – £30,000

*

SOC Analyst: £25,000 – £32,000

Eligibility

To apply, you must:

*

Live in the Sheffield area

*

Be aged 19 or over

*

Earn below the gross annual wage cap of £23,400

*

Not currently be undertaking other government-funded training

*

Not be in the UK on a student, graduate, postgraduate, or sponsored visa, or as a dependent

Cost

This is a fully-funded course with no fees – complete the training, gain essential cyber security skills and secure your guaranteed interview

About the opportunity
Are you ready to launch a career in cyber security? Netcom Training’s fully-funded Cyber Security course (NCFE Certificate in Cyber Security Practices, Level 3) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast-growing cyber security and IT roles.
Our learners have gone on to roles such as IT support, second line support, junior development, cyber security analysis and business analyst positions, working with companies across tech, logistics, public services and digital sectors. Complete the course and gain a guaranteed interview with a leading employer, helping you start your career protecting businesses, data and digital systems.
Course Details
*
Start Date: 23/02
*
Duration: 14 weeks
*
Format: Online, practical workshops
*
Schedule: Full-time (day) or evening options available
What you’ll learn
*
Principles: Understand cyber security principles and core frameworks
*
Threat Intelligence: Develop expertise to identify risks
*
Testing: Conduct cyber security testing, identify vulnerabilities and implement controls
*
Incident Response: Prepare for and respond to cyber security incidents
*
Ethics: Understand legislation and ethical conduct within cyber security
*
Professional Skills: Build professional skills and behaviours for the sector
*
Protection: Gain practical knowledge to protect and secure digital environments
Career Pathway
Successful participants are guaranteed an interview with us or our network of UK-wide partners working with leading brands.
Eligibility
To apply, you must:
*
Live in the West Midlands
*
Be aged 19 or over
*
Earn below the gross annual wage cap of £34,194
*
Not currently be undertaking other government-funded training
*
Not be in the UK on a student, graduate, postgraduate, or sponsored visa, or as a dependent
Cost
This is a fully-funded course with no fees – complete the training, gain essential cyber security skills and secure your guaranteed interview

A rapidly growing leader in proactive cybersecurity services is expanding its consulting team and seeking a Security Consultant with a strong background in mobile application penetration testing. This role is ideal for a hands-on penetration tester who enjoys uncovering complex vulnerabilities and delivering meaningful security improvements for enterprise clients.

You will work alongside experienced security professionals, leveraging advanced tooling, automation, and research-driven methodologies to perform deep technical testing across mobile applications and APIs. The focus of this role is on producing high-quality, actionable findings that help organizations strengthen their security posture.

Key Responsibilities

Perform penetration testing engagements on mobile applications (iOS and Android) and associated APIs

Identify weaknesses related to data storage, network communications, authentication, and cryptography

Analyze mobile application behaviour, sandboxing, and OS-level security controls

Produce clear, well-structured penetration testing reports aligned with client-specific standards and workflows

Collaborate with internal teams and clients to explain findings and recommend remediation strategies

Research and develop new tools, techniques, and testing methodologies to improve assessment quality

Support consulting operations through documentation, reporting, and engagement-related administrative tasks

Required Qualifications

2–3+ years of experience conducting application or mobile penetration testing

Hands-on experience with offensive security tools such as:

Kali Linux, Burp Suite, Metasploit, Nessus

Mobile-focused tools including Frida, Drozer, Objection, and Ghidra

Solid understanding of mobile data security, encryption, and secure communications

Strong working knowledge of Android and iOS operating systems

Familiarity with common offensive and defensive security concepts and network protocols

Deep understanding of the OWASP Top 10 and relevant security frameworks

Working knowledge of Windows, Linux, and macOS internals

Ability to work independently while collaborating effectively within a team

Strong written and verbal communication skills

Willingness to travel up to 5–10%

Ability to support an 8-hour workday, with occasional evenings or weekends as required by project timelines

Preferred Experience

Mentoring or coaching junior team members

Sharing security knowledge through blogs, webinars, or conference presentations

Experience with scripting or programming languages such as Python, Ruby, Perl, Java, C/C++, or C#

Industry-recognized offensive security certifications (e.g., OSCP, GPEN, GXPN, GWAPT, CISSP)

Experience with ARM reverse engineering

Development of Frida scripts or tools to bypass protections or exploit mobile application vulnerabilities

This is a fully remote positon within the UK

If interested please do apply

Senior Cybersecurity Analyst - Identity Governance & PAM

Remote Working

6 to 12 months Contract Inside IR35

£500 to £550 a day

A well established firm who are best known for bridging the gap between physical and digital worlds are urgently seeking a forward thinking cybersecurity identity governance specialist to join on a long term contract. You will play a key role in the organisation and control the architecture designs of a huge identity program driving the transition towards zero trust.

As a Cyber specialist you will be maturing Identity Governance (IGA) and Privileged Access Management (PAM) ecosystems, ensuring that global operations-spanning engineering and manufacturing-remain secure, automated, and compliant with international standards.

You will also be responsible for the following

Leading the move to a cloud-based system for managing super-user and high-level admin accounts, ensuring they are protected across all digital environments
Using tools like SailPoint to automate granting access for joiners / leavers
Acting as the technical expert during security checks (like SOX or ISO), making sure records are always accurate and easy to find
Using coding (PowerShell or Python) to replace repetitive manual tasks and connecting identity data with the wider security team to help spot and stop threats faster

Essential Skills

A minimum of 7-10 years in Cybersecurity, with a deep focus on Identity and Access Management.

Hands-on proficiency with SailPoint (or Saviynt) and enterprise PAM solutions (Delinea experience is highly advantageous).
A strong command of Microsoft Entra ID (Azure AD), Conditional Access policies, and modern MFA (Microsoft Authenticator/DUO).
Proven ability to align technical identity controls with global compliance mandates.

Remote Working | 6 to 12 months contract | £500 to £550 Inside IR35

If you want to work with cutting-edge security technology in an environment that values innovation over routine and offers clear pathways for professional growth and support for high-level certifications (CISSP, CISM, etc.). Then this is the right place for you if the above seems of interest to you then please apply directly to the AD or send your CV to (url removed)

Randstad Technologies is acting as an Employment Business in relation to this vacancy

About the opportunity
Send your CV to us, complete the fully-funded course and get a certified qualification.
Are you ready to launch a career in cyber security? Netcom Training’s fully-funded Cyber Security course (NCFE Certificate in Cyber Security Practices, Level 3) equips you with the practical skills employers in Greater Manchester are actively seeking.
From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast-growing cyber security and IT roles.
Our learners have gone on to roles such as Cyber Security Analyst, Junior Penetration Tester, SOC Analyst, and IT Support, working with companies across tech, logistics, public services, and digital sectors. Complete the course and gain a guaranteed interview with a leading employer, helping you start your career protecting businesses, data, and digital systems.
Course Details
Start Date: 16/02
Duration: 14 weeks
Format: Online, practical workshops
Schedule: Mon-Thurs 6-9PM
What you’ll learn
Cyber Principles: Understand core frameworks and security principles.
Threat Intelligence: Develop expertise to identify risks and analyze threats.
Vulnerability Testing: Conduct cyber security testing, identify vulnerabilities, and implement controls.
Incident Response: Prepare for and respond to live cyber security incidents.
Ethics & Law: Understand legislation and ethical conduct within the cyber security sector.
Professional Skills: Build the behaviours required for the modern cyber security workplace.
Career Pathway
Successful participants are guaranteed an interview with us or our network of UK-wide partners working with leading brands.
* Potential Roles: Trainee Cyber Security Analyst, SOC Analyst, Junior Information Security Officer
Eligibility
This is a government-funded opportunity. To apply, you must:
* Live in Greater Manchester.
* Be aged 19 or over.
* Earn below the gross annual wage cap of £32,400.
* Not currently be undertaking other government-funded training.
* Right to Work: You must have lived in the UK/EU for the last 3 years and have the right to work in the UK (Student/Graduate visas are not eligible).
Cost
This is a fully-funded course with no fees – complete the training, gain essential cyber security skills, and secure your guaranteed interview.
* IT Support: Manage helpdesk tickets, resolve technical issues, and configure operating systems.
* Network & Cloud: Configure network devices and explore cloud computing models like IaaS and SaaS.
* Digital Security: Learn to protect data using risk management, SIEM tools, and vulnerability assessments.
* Data Management: Source, cleanse, and analyse data to present actionable insights.
* Digital Transformation: Explore Agile project management and how to support digital change.
* Sector Skills: Understand IT policies, legislation, and industry structure.
Career Pathway
Successful participants are guaranteed an interview with our network of partners.
Potential Roles:
* IT Support Technician
* Cloud Support Assistant
* Junior Network Engineer
* Service Desk Analyst
Eligibility
This is a government-funded opportunity. To apply, you must:
* Live in Greater Manchester (GMCA region).
* Be aged 19 or over.
* Have lived in the UK/EU for a minimum of 3 years.
* Earn below the gross annual wage cap.
* Prerequisites: Basic IT skills are required.
Cost
This is a fully-funded course with no fees – complete the training, build your portfolio, and secure your guaranteed interview

Role Overview We are seeking a proactive and technical Data Governance Specialist to help build and scale our modern data governance framework. You will be at the intersection of data engineering and business strategy, ensuring our data assets in Azure Databricks (Unity Catalog) and Microsoft Fabric are secure, discoverable, and high-quality.

The ideal candidate isn’t just a strategist-they are a practitioner capable of implementing technical controls while bridging the gap between technical teams and business stakeholders.

Key Responsibilities

• Platform Implementation: Configure and maintain data governance controls within Azure Databricks (Unity Catalog) and Microsoft Purview.
• Ecosystem Integration: Manage the end-to-end integration of Microsoft Fabric and Power BI with Purview, ensuring seamless data lineage and cataloging of semantic models.
• Operational Governance: Design and operationalize access controls (RBAC/ABAC), sensitivity labels, and automated governance policies across various data products.
• Metadata & Quality: Build and manage metadata repositories, define data quality rules, and oversee automated lineage capture and classification workflows.
• Stakeholder Engagement: Act as a liaison between business units and IT to gather requirements, translate complex needs into technical specs, and drive the adoption of governance tools.
• Enablement: Lead workshops, create clear documentation, and support end-user training to foster a data-centric culture.

Technical Skills & Qualifications

• Governance Tooling: Deep hands-on experience with Microsoft Purview and Unity Catalog is essential.
• Fabric/Power BI: Proven track record of governing Microsoft Fabric environments and managing the lifecycle of Power BI semantic models.
• Security Frameworks: Strong understanding of Attribute-Based Access Control (ABAC) and Role-Based Access Control (RBAC) implementation.
• Data Lifecycle: Practical knowledge of data classification, lineage mapping, and data quality framework implementation.
• Standards: Familiarity with industry-standard data governance operating models and best practices (e.g., DAMA/DMBOK).

Soft Skills

• Communication: Ability to explain complex technical governance concepts to non-technical business owners.
• Collaboration: A ‘team-first’ mentality with experience running cross-functional workshops.
• Documentation: High attention to detail in producing technical standards and user-facing guides.

Threat Detection Engineer - Remote - SC Clearance - Contract

As a key member of the SOC Content Team, you will be responsible for developing, deploying, and fine-tuning threat detection content, as well as delivering proactive threat hunting activities. This role involves close collaboration with client Lead Analysts, threat intelligence teams, and wider SOC functions to ensure detection strategies are aligned with each client’s threat landscape and security objectives. You’ll enjoy a mix of hands-on technical work, teamwork, and knowledge sharing, with a strong focus on continuous learning and process improvement. ??

?? Key Responsibilities

??? Threat Detection & Use Case Development

• Design and build detection logic aligned to real-world threat scenarios, using frameworks such as MITRE ATT&CK.
• Manage detection content throughout its full lifecycle - development, testing, deployment, and tuning.
• Partner with client Lead Analysts to ensure content remains effective and relevant across multiple environments.

?? Proactive Threat Hunting

• Conduct hypothesis-driven threat hunts using client telemetry, threat intelligence, and anomalies.
• Identify suspicious or malicious activity that may bypass existing detection controls.
• Document and present findings clearly for both internal teams and clients.

?? Content Quality Assurance & Maintenance

• Review and validate detection content before deployment.
• Assist in updating runbooks, SOPs, and detection playbooks as tools, threats, or requirements evolve.
• Support efforts to maintain accuracy, consistency, and quality across all delivered content.

?? Collaboration & Knowledge Sharing

• Work closely with SOC, threat intelligence, and tooling teams to improve detection strategies.
• Share insights and best practices through documentation, workshops, or informal knowledge sessions.
• Contribute to cross-team initiatives and help foster continuous improvement and innovation.

?? Role Details

• ?? Location: Remote
• ? Duration: 4 Months
• ?? Holiday Entitlement: 33 Days
• ?? Pay Rate: £474 PAYE / £629 Umbrella
• SC Clearance required!!

If you are interested, please apply directly.

Randstad Technologies is acting as an Employment Business in relation to this vacancy.

Our global law firm client are currently looking to take on a new Senior Manager - Third Party Assurance (Security Suppliers, CISSP, CISM, ISO27001) on a contractual basis for 12 months. This role will be responsible for the production and championing the supplier assurance security model.

The firm are extremely laid back by law firm standards, though still expect and produce high quality work. The firm are forward-thinking and have a very anti-micromanaged and autonomous approach to the work life, with a healthy amount of flexible working.

This Senior Manager - Third Party Assurance (Security Suppliers, CISSP, CISM, ISO27001) role will require prior experience in an Information Security Assurance role, experience with Security Suppliers and ideally legal or financial services experience.

Duties, Responsibilities & Person Specification

• Producing, embedding and championing the Supplier Assurance Security Model.
• Producing management information for the CISO, including trends, process gaps, and recommendations for improvement.
• Managing client requests in a timely and professional manner.
• Leading Supplier Assurance governance forums.
• Tailoring and managing the Third-Party Security Schedule (including supplier negotiations).
• Providing excellent service to our clients through our interactions and responses to due diligence questionnaires.
• Negotiating security clauses in contracts for robustness.
• Providing evidence for audits and ISO 27001 certification from a Supplier Assurance perspective.
• Supporting other relevant internal and external audits when they arise.

A leading Internet Service Provider is seeking an experienced DDI and DNS specialist to support, enhance, and scale its critical network services platforms. This role sits at the heart of the provider’s IP services estate and will focus on the design, operation, optimisation, and troubleshooting of large-scale DNS, DHCP, IPAM, and authentication services.

This is a senior-level contract role requiring deep hands-on expertise, strong troubleshooting instincts, and the ability to operate independently in a high-availability, carrier-grade environment.

Key Responsibilities:

• Design, implement, and operate enterprise and service-provider-scale DDI platforms.
• Provide expert-level administration and optimisation of Infoblox DDI solutions.
• Own DNS architecture, including authoritative and recursive DNS services.
• Manage and optimise DHCP services across large IP estates.
• Deliver robust IP Address Management (IPAM) strategies and operational processes.
• Design, deploy, and support RADIUS-based authentication services for network access platforms.
• Troubleshoot complex DNS, DHCP, IPAM, and authentication issues across production environments.
• Support platform upgrades, migrations, and service improvements with minimal customer impact.
• Collaborate with network, security, and operations teams to ensure resilient service delivery.
• Produce and maintain clear technical documentation and operational runbooks.
• Act as a subject-matter expert for DDI and authentication services across the organisation.

Required Technical Skills & Experience:

• Proven contract experience delivering DDI services within ISP, carrier, or large enterprise environments.
• Strong hands-on experience with Infoblox DDI platforms (DNS, DHCP, IPAM).
• Deep understanding of DNS protocols, architectures, and operational best practices.
• Strong experience designing and supporting RADIUS authentication services.
• Experience operating highly available, distributed network services platforms.
• Excellent troubleshooting skills across Layer 3-7 network services.
• Comfortable working autonomously in remote, production-critical environments.
• Strong documentation and communication skills.

Desirable Skills:

• Experience in multi-vendor DDI or authentication environments.
• Exposure to automation, APIs, or Scripting around DDI platforms.
• Experience supporting ISP-scale or carrier-grade networks.
• Knowledge of security considerations related to DNS and authentication services.

Contract Details:

• Duration: 3 months
• Day Rate: £500 Per Day - £600 Per Day (Outside IR35)
• Location: Fully Remote
• Start Date: ASAP

Infoblox Consultant - 3 months - Fully Remote - Outside IR35

Lynx Recruitment are seeking an experienced Security Analyst with strong hands-on expertise in SSE platforms, Web DLP, and CASB. This role focuses on control hardening, security engineering, and continuous improvement of cloud-delivered security services protecting data, identities, and cloud applications.

Key Responsibilities

• Design and enhance controls within SSE platforms (eg Zscaler or similar).
• Develop and optimise Web DLP policies to reduce data exfiltration risk.
• Strengthen CASB configurations including app governance and data protection.
• Conduct control gap analyses and implement improvements.
• Support threat analysis, alert tuning, and investigations with SOC teams.
• Provide documentation and evidence for audit and compliance requirements.

Required Experience & Qualifications

• Hands-on experience with SSE, CASB, and Web DLP solutions.
• Strong understanding of cloud security and Zero Trust principles.
• Experience assessing and improving control effectiveness.
• Ability to collaborate across security, cloud, and network teams.
• Hold an active SC Clearance?
• IT or technology-related degree with a minimum 2:1 classification (or equivalent).

If you are a technically strong Security Analyst who enjoys engineering and optimising controls in cloud-first environments, we’d like to hear from you.

Senior Security Consultant – Governance & Risk

We’re seeking an experienced Security Consultant to join a high performing Security Practice, supporting clients across governance, risk management, and information assurance within complex and regulated environments. Due to the secure nature of the projects DV or SC Clearance is needed.

The Role

• Lead security governance and risk management activities
• Deliver information assurance support, including risk assessments, assurance reviews, and security documentation
• Support clients in defining business led security requirements and secure-by-design solutions
• Interpret and apply ISO 27001 / ISO 27002, NIST, NCSC CAF, and MOD security frameworks
• Engage confidently with technical and non-technical stakeholders, including senior leaders
• Contribute to bid support and presales activity where required

What You’ll Bring

• Strong experience in security governance, risk, and information assurance
• Deep understanding of ISO 27000-series standards and security risk frameworks
• Familiarity with NCSC guidance and legacy IA standards
• Experience operating within MOD / defence-aligned security frameworks (e.g. JSP 604, JSP 440, JSP 902)
• Ability to clearly articulate risk and assurance outcomes to diverse stakeholders

Qualifications

Essential:

• CISSP, CISM or equivalent recognised cyber security certification

Desirable:

• Full CIISec membership
• Chartered or Principal status via the UK Cyber Security Council (Risk Management)
• IEng or CEng registration
• BCS chartership

What’s On Offer

• Clear progression within a growing security consultancy
• Flexible working (including part-time or term-time options)
• Competitive pension and benefits package
• Private healthcare, EV scheme, and strong company culture
• Additional paid leave for Reservists and CFAVs

If you’re passionate about security governance, assurance, and risk led decision making, and want to work as a true customer-facing security consultant, we’d love to hear from you.

Job Description

Are you passionate about Cyber Security and providing exceptional user support?

West Dunbartonshire Council has an excellent opportunity for a motivated 3rd Line Support Analyst within our dynamic team. As a key member of our IT Security team, you’ll be dealing with escalated security issues across our organisation.

Why join us? Be part of a collaborative and forward-thinking IT team. Opportunity for professional growth and skill development. Competitive salary and benefits package including access to Local Government Pension Scheme. Utilise our highly recognised Flexible Working Scheme. Contribute to the technology-driven success of our organisation.

The purpose of the post is to provide a security response to the newly emerging cyber security threats facing West Dunbartonshire Council. The Security Analyst will put measures in place to protect the integrity of WDC data from unauthorised access, theft and misuse. They will investigate breaches of security from a technical perspective in accordance with defined council guidelines and in co-ordination with other Council officers and departments. They will be responsible for the security configuration of network infrastructure, developing the intrusion prevention and intrusion detection systems and the WDC technical response to any issues as and when they arise.

Requirements

The preferred candidate will be required to complete a Standard Disclosure (Level 2) prior to a formal offer being made by West Dunbartonshire Council.

The Individual

The successful candidate will benefit from the following:

WDC was voted one of the top ten flexible employers and prides itself in providing flexible working to support work life balance. In addition to this there are also additional benefits:

• Access to the Local Government pension scheme (LGPS) with an employer’s contribution of at least 19.3% and all associated benefits
• A minimum of 25 days annual leave, increasing a day each year up to 35 days as well as 8 fixed public holidays each year
• Access to employee wellbeing supports including occupational health & counselling if ever you need help and support
For information about West Dunbartonshire Council please click on the following link and see why we are an employer of choice: About Us
More information on the benefits of working within West Dunbartonshire Council, can be found using the following link: Benefits of Working with us

Position: GRC Analyst - Cyber Security

Type: Permanent

Location: Remote, UK-based

Salary: 50-60K

We’re seeking a GRC Analyst to strengthen pour client’s governance, risk and compliance capability. The organisation is committed to maintaining robust security standards and regulatory compliance across its operations.

This is a fully remote role offering real visibility and the opportunity to influence security maturity across a diverse environment.

The Role

As a Cyber Security GRC Analyst, you will support and enhance the organisation’s security governance framework, risk management processes, and compliance activities.

Working closely with IT, security and business stakeholders, you’ll help identify and mitigate risk, maintain compliance with key regulatory requirements (including PCI DSS and GDPR), and contribute to building a strong culture of security awareness.

Key Responsibilities

• Information Security Frameworks - Support ongoing alignment with ISO 27001, ISO 22301 and NIST standards.
• Risk Management - Conduct security risk assessments and contribute to the continuous improvement of the risk management framework.
• Third-Party Risk Management (TPRM) - Assist in overseeing supplier and supply chain security assurance processes.
• Security Awareness - Support initiatives that promote a positive and proactive security culture.
• Policy & Governance - Contribute to the development and maintenance of security policies, standards and procedures.
• Control Assurance - Assess security controls and provide recommendations for improvement.
• Compliance Activities - Support PCI DSS compliance requirements and collaborate with relevant stakeholders on GDPR adherence.
• Business Continuity & Disaster Recovery - Assist with BC/DR planning, testing and documentation.

About You

• Proven experience in a Cyber Security GRC or Information Security Analyst role
• Strong understanding of recognised security frameworks (ISO 27001, NIST, etc.)
• Experience supporting PCI DSS and GDPR compliance
• Exposure to third-party risk management processes
• Strong analytical skills with the ability to engage effectively with technical and non-technical stakeholders
• Relevant certifications such as CISM, CISSP or CISA (desirable but not essential)

Why Apply?

• Fully remote working
• Opportunity to develop within a growing and evolving security function
• Exposure to a complex, multi-site and digitally enabled environment
• A role offering genuine influence across governance, risk and compliance activities

If you’re looking to build your GRC career within a business that takes security seriously and offers real scope for progression, we’d be keen to speak with you.

Apply now or get in touch for a confidential discussion.

Vacancy Information

Hourly rate of pay: £19.45 - £21.75

Days and Hours of Work:
Monday - Friday, 09:00-17:00
Flexi time is applicable, and starting and finishing times are flexible.
To start asap.

If you’re an IT and Information Security professional who is passionate about being part of a team proud to deliver fantastic customer service, East Lothian Council has an exciting opportunity for you.

The work of a local authority is varied, challenging and essential to the lives of local people. The council provides a range of valued services to communities across one of Scotland’s fastest growing areas. Our IT Service plays a critical enabling role in the delivery of these services, supporting our people in carrying out their duties with safe and secure use of technology.

We are seeking to hire a Senior IT Analyst with an analytical mind, strong attention to detail and an inclination for problem solving to join our IT Infrastructure & Security team working out of our Headquarters at John Muir House in Haddington.

The team provides network, server, and security services and support to all service departments across the Council. In total, the team supports over 4000 users spread over 100 sites, including the Council’s 6 secondary schools and 36 primary schools.

The successful candidate will be mainly focused on supporting and developing our voice and data networks. There will also be opportunities to get involved in the other aspects of the teams work.

A good working knowledge and experience of data network technologies including enterprise wireless and SD-WAN solutions would be an advantage. Additional training will be provided as required.

By joining our team, you’ll be taking on a vital role which underpins our values of ‘Enabling, Leading and Caring’ - in a flexible working environment where we value individuality whilst focusing on maintaining an inclusive and collaborative culture.

Please note
Options for home, hybrid or office working are all available with this role. However you should be willing and able to visit our HQ in Haddington or other council sites as required.

Home / Hybrid Working Consideration
Applications for home or hybrid working will be considered for this post in accordance with East Lothian Council’s Home Working and Worksmart Policies which can be found here. Home or Hybrid working options can be discussed with candidates invited for interview.

Please Note:
All home/hybrid workers must live in the UK. Where an application for home-working is supported, it will be subject to a satisfactory trial period. Employees will be expected to attend Council offices for the duration of induction, and be on site in East Lothian workplaces, as required. Employees with a hybrid working arrangement in place will be office based and able to work from home, with permission, on an ad hoc basis.

Job Details

To work as a member of the IT Infrastructure and Security team with a primary focus on the effective use of the Council’s enterprise networks, servers, storage, and cloud facilities to bring about Council Wide digital transformation.

The key areas of responsibility are:

• Work with colleagues to ensure all aspects of the Council’s IT infrastructure operate efficiently and effectively.
• Assist with the evaluation, selection and standardisation of new technologies.
• Providing Level 2 IT Support.
• Provide professional advice and guidance to enable Council wide digital transformation.

The Jobholder will be a proactive and forward-thinking individual with experience of monitoring, evaluating, implementing and supporting enterprise wide IT infrastructure.

Please download the Job Outline/Person Specification (available under ‘Job Attachments’) for the full range of tasks and duties associated with this job. You will need to refer to these in order to complete the application form. You must ensure you meet every ‘essential’ criteria stated on the Person Specification to be considered for interview.

The ‘East Lothian Way’– values and behaviours we expect our employees to demonstrate in their everyday work. Should you be invited to interview, you may be asked questions based on these behaviours. Please refer to the document via the link to familiarise yourself with them.

Job Requirements

Relevant Qualifications
Relevant HND and/or able to demonstrate equivalent knowledge, skills and competencies gained through relevant experience.

Driving Licence
As the duties of this role require you to effectively travel to successfully undertake the full remit of the role, you must hold a current driving licence and have access to a vehicle.*
(*Where a disability precludes you from obtaining a driving licence, ELC will take into account its responsibility to make reasonable adjustments to allow for your disability.)

Level 1 Disclosure
This role requires Level 1 Disclosure Clearance to allow access to the Public Sector Network. ELC will submit a Police Act Disclosure application on behalf of the preferred candidate and receipt of the subsequent certificate will be required prior to commencement.

Please note:
If a Disclosure check is required and you have spent more than 3 months working or living outwith the UK in the last 5 years then you will also be required to present a copy of an overseas criminal record check. Details of how to apply and contact details can be found on the GOV.UK website.

Additional Information

For additional East Lothian Council employment information please click on the following link:
www.eastlothian.gov.uk/nonteachinginfo

If you have any difficulties creating an account on MyJobScotland or applying for this post please contact the MyJobScotland support team via this link https://www.myjobscotland.gov.uk/contact-us.

If you require further information about this vacancy, please call 01620 827868, or email us on recruitment@eastlothian.gov.uk

Please note: We do not accept CV’s (either electronically or by mail). All our vacancies must be applied for by fully completing the on-line application form. Although there is an ‘import data from my CV’ function on MyJobScotland, this only imports very limited data and should not be relied upon to complete the application form. If, for example, due to a disability, you are unable to complete the on-line application form you can contact us for a paper application via the telephone number or email address above.

Data Platform Engineer- 12 month contract - Warton Aerodrome (Remote) - 74.26 ph UMB or 55 ph PAYE (Inside IR35)

The Umbrella rate quoted above is the Gross Umbrella rate (i.e. the rate we pay to the Umbrella Company inclusive of ALL employment costs). Please note, the rate paid by the Umbrella will be less, as will a Limited Deemed rate or Agency PAYE rate. Please get in touch to discuss the rates via these different payment vehicles.

The Role

As a Data Platform Engineer in a highly regulated environment, you will be responsible for designing, building, and maintaining secure and scalable data infrastructure that supports both cloud and on premises platforms.

You will play a key role in ensuring that all data systems comply with industry regulations and security standards while enabling efficient access for analytics and operational teams.

A strong command of Apache NiFi is essential for this role.

You will be expected to design, implement, and maintain data flows using NiFi, ensuring accurate, efficient, and secure data ingestion, transformation, and delivery.

You should be adept at identifying and resolving issues within NiFi flows, managing performance bottlenecks, and implementing robust error handling strategies.

You’ll work closely with cross-functional teams including data architects, compliance officers, and cybersecurity specialists to integrate data from various systems such as databases, APIs, and cloud platforms.

Role Responsiblities:

Not limited to

• Design, develop, and maintain robust and secure data pipelines using NiFi and related big data technologies.
• Troubleshoot and optimize NiFi flows, including performance tuning, error resolution, and flow control.
• Integrate NiFi with cloud platforms, databases (SQL & NoSQL), APIs, and third-party systems.
• Ensure compliance with regulatory and security requirements across data storage, transfer, and access layers.
• Support data migration efforts and implement disaster recovery protocols.
• Continuously monitor data infrastructure performance and recommend improvements.
• Collaborate with cross-functional teams to align data platform capabilities with business needs and compliance requirements.
• Maintain documentation of data flows and processes, ensuring knowledge sharing and operational transparency.

What are BAE Systems looking for from you?

• Over 3 years of relevant experience in data engineering, platform engineering, or a related field.

• Proficiency in Java and SQL.

• Deep understanding of core NiFi concepts: FlowFiles, Processors, Controller Services, Schedulers, Web UI.

• Knowledge of data modeling, replication, and query optimization.

• Experience designing and optimizing data flows for batch, real-time streaming, and event-driven architectures.

Security Requirements: SC & UK EYES ONLY

This role will require the person to hold full Security Clearance (SC) prior to working onsite. You will need to obtain a BPSS check as part of this process. You must currently hold or be eligible and willing to obtain SC and you must be eligible to work in the UK without sponsorship and have lived and worked in the UK for a minimum 5 year period. If you are unsure as to whether you are eligible, please contact me to discuss.

This role also requires you to be a sole British national and therefore hold no other nationalities.

Forvis Mazars is a leading global professional services network providing audit & assurance, tax, and advisory services. Forvis Mazars in the UK spans 14 offices across the nation and has over 3,400 professionals, with 190 partners. We have a clear purpose and a shared commitment to shape a better future.

You’ll join a collaborative and inclusive team where you’re supported to grow your skills, explore new opportunities, and contribute from day one. You’ll work with a diverse client base, develop meaningful connections, and gain experience that extends beyond your local team. Together, we grow, belong and impact.

The Team

The Cyber Advisory team provides cyber security assurance, advice and guidance to clients on all aspects to help them build and maintain a robust security environment. We identify cyber risks and work closely with clients to understand their unique set of digital opportunities and challenges, providing tailored and strategic advice and guidance. We support our clients in assessing, building and managing their cyber security capabilities, from ensuring compliance with industry regulations, and mitigating potential risks to moving them towards a more mature security posture.

As a Manager within the national cyber security team you will be responsible for delivering cyber security assurance and advisory work to a range of clients nationally and internationally. Our broad range of clients, including those in FTSE 350, will allow you to gain experience across a range of sectors including:

• Financial Services, Banking, Insurance and Investment
• Corporates/Private Sector/Industry & Services
• Central and Local Government
• Retail and Consumer products organisations

Job Purpose

The role of a Cyber Advisory Manager is to support the team in delivering projects. This means assisting in all aspects of the project lifecycle; from the sales or ‘business development’ process, to project planning, execution of fieldwork and preparation of deliverables including actively contributing to final recommendations.

Your responsibilities include:

• Involvement in all aspects of the consulting sales cycle from lead qualification through to delivery assurance of cyber engagements
• Ability to think strategically and communicate in a business language
• Becoming a subject matter expert in various security and risk management domains (e.g., IT risk management, cyber risk, security target operating model, governance, compliance, cyber security maturity assessment, metrics and C-level dashboards ) and leading industry-based practices (e.g. NIST CSF, ISO 2700x )
• Managing the coordination and communication of key findings and results of engagements, producing written reports and supporting oral presentations to senior client management and key senior stakeholders
• Maintaining an expertise and currency in industry trends
• Managing and mentoring junior consultants assigned as members of engagements
• Contributing to the development of project management, quality assurance and professional consulting and auditing approaches/methodologies.

The Person

We’re looking for someone who is seriously interested in the cyber security area and wants to get first-hand experience in working in multiple industries with companies who need our help. We will help support you in every step of the way with on the job training as well as support for attaining industry professional certifications which will enhance your career in this field.

Skill, Knowledge and Experience

• Highly experienced and strong knowledge in cyber security advisory work
• Relevant security qualifications are preferable (e.g. MSC Information Security, CISSP, CISM, CCSP or ISO 27001 LA)
• Interpersonal skills; the ability to build client relationships with a foundation of trust and responsibility
• Analytical skills; the ability to think critically, research and solve problems.
• Attention to detail and strong time-management skills
• Commitment to self-development & learning
• Affinity with our values; in particular, respect for individuals, diversity and integrity.

Training

You will develop your expertise in cyber security as well as your business acumen to work with our clients to develop and implement pragmatic security solution. The experience gained will allow you to really understand how businesses across a range of sectors operate and manage cyber risk.

We will fund a training programme which includes industry leading certifications.

You will be supported by a mentor and an appraising manager to keep your career and aspirations on track.

Diversity, Equity & Inclusion

At Forvis Mazars diversity, equity and inclusion are central to our values. We value our people’s unique backgrounds, perspectives, and experience, and know this diversity create better outcomes for our clients.

We seek to attract, develop, and retain the best talent, inclusive of sex, ethnicity, disability, socio-economic background, sexual orientation, gender identity, nationality, and faith.

We select candidates based on skills, knowledge, qualifications, and experience and aim to support all our team members to reach their potential.

At Forvis Mazars, we promote an environment in which you can grow your skills, belong to a team that values your ideas, and make an impact that matters.

About the opportunity

Send your CV to us, complete the fully-funded course and get a certified qualification.

Are you ready to launch a career in cyber security? Netcom Training s fully-funded Cyber Security course (NCFE Certificate in Cyber Security Practices, Level 3) equips you with the practical skills employers in Greater Manchester are actively seeking.

From threat intelligence and security testing to incident response and ethical compliance, you ll gain hands-on experience that prepares you for today s fast-growing cyber security and IT roles.

Our learners have gone on to roles such as Cyber Security Analyst, Junior Penetration Tester, SOC Analyst, and IT Support, working with companies across tech, logistics, public services, and digital sectors. Complete the course and gain a guaranteed interview with a leading employer, helping you start your career protecting businesses, data, and digital systems.

Course Details

Start Date: 16/02

Duration: 14 weeks

Format: Online, practical workshops

Schedule: Mon-Thurs6-9PM

What you ll learn

Cyber Principles: Understand core frameworks and security principles.

Threat Intelligence: Develop expertise to identify risks and analyze threats.

Vulnerability Testing: Conduct cyber security testing, identify vulnerabilities, and implement controls.

Incident Response: Prepare for and respond to live cyber security incidents.

Ethics & Law: Understand legislation and ethical conduct within the cyber security sector.

Professional Skills: Build the behaviours required for the modern cyber security workplace.

Career Pathway

Successful participants are guaranteed an interview with us or our network of UK-wide partners working with leading brands.

• Potential Roles: Trainee Cyber Security Analyst, SOC Analyst, Junior Information Security Officer

Eligibility

This is a government-funded opportunity. To apply, you must:

• Live in Greater Manchester.
• Be aged 19 or over.
• Earn below the gross annual wage cap of £32,400.
• Not currently be undertaking other government-funded training.
• Right to Work: You must have lived in the UK/EU for the last 3 years and have the right to work in the UK (Student/Graduate visas are not eligible).

Cost

This is a fully-funded course with no fees complete the training, gain essential cyber security skills, and secure your guaranteed interview.

• IT Support: Manage helpdesk tickets, resolve technical issues, and configure operating systems.
• Network & Cloud: Configure network devices and explore cloud computing models like IaaS and SaaS.
• Digital Security: Learn to protect data using risk management, SIEM tools, and vulnerability assessments.
• Data Management: Source, cleanse, and analyse data to present actionable insights.
• Digital Transformation: Explore Agile project management and how to support digital change.
• Sector Skills: Understand IT policies, legislation, and industry structure.

Career Pathway

Successful participants are guaranteed an interview with our network of partners.

Potential Roles:

• IT Support Technician
• Cloud Support Assistant
• Junior Network Engineer
• Service Desk Analyst

Eligibility

This is a government-funded opportunity. To apply, you must:

• Live in Greater Manchester (GMCA region).
• Be aged 19 or over.
• Have lived in the UK/EU for a minimum of 3 years.
• Earn below the gross annual wage cap.
• Prerequisites: Basic IT skills are required.

Cost

This is a fully-funded course with no fees complete the training, build your portfolio, and secure your guaranteed interview.

Role description: (Please include a brief outline of the impact this role will have, including overview of customer industry and projects, access to cutting-edge technology etc.)

Security Architect - SailPoint IGA will lead the design, architecture, and implementation of enterprise-wide Identity Governance and Administration solutions. This role requires deep expertise in SailPoint Identity Security Cloud (ISC), with strong understanding of identity life cycle management, access governance, Zero Trust principles, and integration patterns across IT and OT environments. The architect will collaborate closely with cybersecurity, infrastructure, OT, and business teams to deliver a scalable, secure, and compliant identity governance platform.

Key responsibilities:

1. Architecture & Design

• Lead end-to-end architecture for SailPoint IGA platforms including SailPoint ISC, ensuring alignment with enterprise security frameworks.
• Define and validate solution blueprints, integration patterns, and deployment architectures across hybrid IT and OT environments.
• Architect automated JML (Joiner-Mover-Leaver) workflows, access certifications, SoD policies, role models, and identity life cycle processes.
• Design governance models supporting both human and machine identities, referencing patterns highlighted in enterprise evaluations.
• Create standardized design documents, patterns, and platform configuration guidance.

2. Implementation Leadership

• Drive the integration, transformation and migration of identity systems from Legacy platforms to SailPoint ISC.
• Lead application onboarding, access aggregation models, delegated administration, and time-bound access configurations.
• Oversee AI-driven features within SailPoint ISC such as entitlement insights, anomaly detection, and automated role recommendations.

3. Governance & Zero Trust Alignment

• Implement Zero Trust-aligned identity governance frameworks ensuring least privilege, continuous verification, and adaptive access controls.
• Define and enforce enterprise-wide RBAC, SoD, and policy-driven access governance across IT and OT.
• Integrate SailPoint with SIEM, SOAR, PAM (eg, BeyondTrust), and directory services as part of a Cybersecurity Mesh Architecture.

4. Stakeholder Engagement & Consulting

• Conduct workshops with cross-functional teams including OT stakeholders for requirement validation.
• Partner with cybersecurity leadership, platform owners, and vendor SMEs to align governance and compliance objectives.
• Support architecture review boards and contribute to enterprise security strategy documentation.

5. Operations & Continuous Improvement

• Define operational support models in collaboration with different business & technology teams.
• Establish monitoring, reporting, and continuous compliance dashboards for identity governance.
• Lead root-cause analysis for identity-related incidents and drive enhancements.

Key skills/knowledge/experience:

Aptitude for understanding both business and technical issues, and able to operate at both a detailed and strategic level.

Able to support identifying critical gaps in for specific,

Measurable, achievable, realistic requirements that can be realized in reasonable timescales.

Show the tenacity to drive and take architectural ownership of solutions through research, evaluation, recommendation/selection and then design and delivery.

Documentation creation to capture key architectural artefacts and decisions.

In-depth knowledge of SAP integration solutions, including PI/PO, HCI/CPI, Ariba, NetWeaver Gateway and SuccessFactors.

• The integration for Kraken will use SAP CPI as the Middleware so implementation experience in this platform is crucial for8-12+ years in Identity & Access Management with at least 5 years hands-on with SailPoint ISC.
• Proven experience designing and delivering large-scale SailPoint IGA programs.
• Strong in:
  • Identity life cycle orchestration
  • Application onboarding (connectors, REST, batch collectors)
  • Role engineering, SoD, access certifications
  • Workflow and policy authoring
  • Access modelling for both IT and OT environments
• Experience integrating SailPoint with BeyondTrust, Entra ID, Active Directory, ServiceNow, SIEMs, and cloud platforms.
• Familiar with AI/ML-driven IGA insights and automation features (SailPoint Identity AI).

Architecture & Leadership

• Ability to translate business needs into scalable identity governance architectures.
• Strong understanding of Zero Trust, security architectures, and compliance frameworks.
• Experience leading multi-vendor engagements and cross-functional design workshops. this role

Person specification: ie, negotiating, client facing, communication, assertive, team leading/team member skills, supportive.

Strong communication and teamwork abilities, as it is a client-facing role.

Ability to work independently and manage time effectively.

About the opportunity

Are you ready to launch a career in cyber security? Netcom Training s fully-funded Cyber Security course (NCFE Certificate in Cyber Security Practices, Level 3) equips you with the practical skills employers in Greater Manchester are actively seeking.

From threat intelligence and security testing to incident response and ethical compliance, you ll gain hands-on experience that prepares you for today s fast-growing cyber security and IT roles.

Our learners have gone on to roles such as Cyber Security Analyst, Junior Penetration Tester, SOC Analyst, and IT Support, working with companies across tech, logistics, public services, and digital sectors. Complete the course and gain a guaranteed interview with a leading employer, helping you start your career protecting businesses, data, and digital systems.

Course Details

• Start Date: 09/03
• Duration: 14 weeks
• Format: Online, practical workshops
• Schedule: Mon-Thurs6-9PM

What you ll learn

• Cyber Principles: Understand core frameworks and security principles.
• Threat Intelligence: Develop expertise to identify risks and analyze threats.
• Vulnerability Testing: Conduct cyber security testing, identify vulnerabilities, and implement controls.
• Incident Response: Prepare for and respond to live cyber security incidents.
• Ethics & Law: Understand legislation and ethical conduct within the cyber security sector.
• Professional Skills: Build the behaviours required for the modern cyber security workplace.

Career Pathway

Successful participants are guaranteed an interview with us or our network of UK-wide partners working with leading brands.

• Potential Roles: Trainee Cyber Security Analyst, SOC Analyst, Junior Information Security Officer.
• Starting Salaries: Typically £22,000 £35,000 (role dependent).

Eligibility

This is a government-funded opportunity. To apply, you must:

• Live in Greater Manchester.
• Be aged 19 or over.
• Earn below the gross annual wage cap of £32,400.
• Not currently be undertaking other government-funded training.
• Right to Work: You must have lived in the UK/EU for the last 3 years and have the right to work in the UK (Student/Graduate visas are not eligible).

Cost

This is a fully-funded course with no fees complete the training, gain essential cyber security skills, and secure your guaranteed interview.

Cyber Security and Compliance Analyst

Location: South East England (Remote - with occassional site visit)
Salary: Up to 48k

Contract Type: Permanent
A leading UK-based organisation is seeking a Cyber Security and Compliance Analyst to strengthen its cyber and information security capabilities. This role is ideal for someone passionate about protecting infrastructure, ensuring regulatory compliance, and promoting a culture of security awareness.

Key Responsibilities:

• Perform vulnerability assessments and penetration testing.
• Collaborate with technical teams to remediate risks.
• Maintain and evolve incident response plans and playbooks.
• Analyse security logs and threat intelligence feeds.
• Ensure compliance with GDPR, SOX, PCI, and internal policies.
• Lead security awareness initiatives and drills.
• Support day-to-day security operations and reporting.

Tech Environment: Microsoft stack including Azure, Dynamics 365, and Office 365. E5,

Requirements:

• Minimum 3 years in IT or ERP support within a service-focused environment.
• Strong understanding of service management frameworks.
• Excellent analytical and communication skills.
• Experience managing small to medium-sized technology projects.

This company are planning some exciting things for 2026 an beyond so there will be lots to get your teeth stuck in to. If you’re interested please apply!