Cyber Security Lead required for global name in Financial Services.

The Cyber Security Lead will lead a team of individuals who are responsible for protecting the organisations people and information from cyber-attacks. The team’s focus is to serve as the single point of contact for all Information Security & IT Security related queries, concerns and technologies.

The successful candidate will come with a strong blend of technical ability and effective soft management and mentoring skills, with Cyber Security experience a must. The Cyber Security Lead will be business facing , a strong communicator, a leader, and possess first class stakeholder management skills.

The Cyber Security Lead will come with the following technical skills ; Experience with the latest information security threats & vulnerabilities and appropriate countermeasures, Extensive experience with attack monitoring and Intrusion Detection (IDS/IPS), SIEM, Anti-Virus, WAF, Firewalls, patch management, and encryption, Extensive experience with, and in-depth understanding of security vulnerability tools, techniques, and standards used to conduct penetration testing best practices for Incident handling security investigation processes and techniques.

Experience in IT Security/Information Security field, especially cloud, analytics, secure coding, application security and security monitoring is essential

Applications from candidates with security related degrees and relevant industry qualifications such as CISSP, CISA, CISM , CEH and OSCP are invited to apply.

For a more detailed job spec please contact Neil Morgan at McGregor Boyall.

McGregor Boyall is an equal opportunity employer and do not discriminate on any grounds.

Cyber Defence Lead required. A technically minded Cyber Defence Lead is required for a premier financial services name.

The Cyber Defence Lead will sit within the Cyber Defence Operations team has a requirement for day-to-day management of security tools used to respond to malware and other security related incidents. The technologies include, but are not limited to, Advanced malware detection, SIEM, DDoS, IPS, threat intelligence and logging/analytics capabilities. The ideal candidate has experience of not only using a wide range of technologies to respond to security events, but also supporting ongoing maintenance of the tools. They will also lead and mentor a small internal , Insider Risk team.

In additional, the Cyber Defence Lead will work with global stakeholders to continually identify information that requires protection, this includes ISO’s, 1^st & 2^nd Risk and Data Protection. Develop and improve the DLP / Insider Risk strategy to continually improve our capability in this area and Implement said strategy

The Cyber Defence Lead will come with at least 2 years of previous experience working in a SOC or Incident Response position. Knowledge of, or experience working with security (SIEM, NetFlow, IDS/IPS, Anti-Virus) is welcome along with Knowledge of or experience working with security tooling (DLP, SIEM, SOAR) programming experience (PowerShell, Bash, Python, JavaScript etc is highly preferred

The Cyber Defence Lead will be a strong communicator, comfortable dealing with C-Level stakeholders and discussing the latest threats to technical audiences.

My client welcomes relevant Security Industry qualifications such as CISSP, GCIA, GCIH, GCFA, GMON, GNFA, SSCP, OSCP

For a more detailed job spec please contact Neil Morgan at McGregor Boyall.

McGregor Boyall is an equal opportunity employer and do not discriminate on any grounds.

Senior IAM Directory Services Architect required for blue chip organisation. This is a crucial hire for my client and the successful candidate will play a lead role in designing and developing first class Directory Services capability with oversight on Identity Governance and Privileged Access Management, the solution architects assigned to each workstream will report to you and you will collaborate with colleagues and key stakeholders globally to ensure effectiveness and service delivery is of the highest standards.

The Senior Identity Access Management Architect will come with proven technical expertise designing, piloting, deploying and transitioning Microsoft Active Directory & Azure Active Directory products to operational teams with a focus on AD, AAD, ADFS, AD Connect, Conditional Access, MFA, Self-Service Password Reset & Password Less.

As a Senior Directory Services Architect, you will have extensive experience in designing, governing, implementing, documenting and operating IAM solutions for a large enterprise. Experience as a Team Lead or other supervisory role is strongly preferred with a history of designing and/or implementing PAM/IGA solutions desirable. Relevant Microsoft certifications, particularly around Microsoft Enterprise Mobility and Security (EMS) are welcomed.

The Senior Identity Access Management architect will have excellent skills in communication, writing, and the ability to collaborate across multiple departments internally, and internationally.

For a more detailed job description please contact Neil Morgan at McGregor Boyall.

McGregor Boyall is an equal opportunity employer and do not discriminate on any grounds.

Cyber Security Lead required for global name in Financial Services.

The Cyber Security Lead will lead a team of individuals who are responsible for protecting the organisations people and information from cyber-attacks. The team’s focus is to serve as the single point of contact for all Information Security & IT Security related queries, concerns and technologies.

The successful candidate will come with a strong blend of technical ability and effective soft management and mentoring skills, with Cyber Security experience a must. The Cyber Security Lead will be business facing , a strong communicator, a leader, and possess first class stakeholder management skills.

The Cyber Security Lead will come with the following technical skills ; Experience with the latest information security threats & vulnerabilities and appropriate countermeasures, Extensive experience with attack monitoring and Intrusion Detection (IDS/IPS), SIEM, Anti-Virus, WAF, Firewalls, patch management, and encryption, Extensive experience with, and in-depth understanding of security vulnerability tools, techniques, and standards used to conduct penetration testing best practices for Incident handling security investigation processes and techniques.

Experience in IT Security/Information Security field, especially cloud, analytics, secure coding, application security and security monitoring is essential

Applications from candidates with security related degrees and relevant industry qualifications such as CISSP, CISA, CISM , CEH and OSCP are invited to apply.

For a more detailed job spec please contact Neil Morgan at McGregor Boyall.

McGregor Boyall is an equal opportunity employer and do not discriminate on any grounds.

Lead Application Security Architect required to join a top financial services organisation based in London. The Lead Application Security Architect will evaluate, design and implement new technology and processes to help the group whilst adopting a risk based design methodology.

The Lead Application Security Architect will be comfortable working with Software Developers and Software Development teams to advise and guide them on Application Security best practice within the Software Development Life Cycle while facing off to C-Level stakeholders.

The Lead Application Security Architect will come with sound knowledge of enterprise security concepts/ frameworks and products. The Lead Application Security Architect will ideally come with experience of working in the financial services sector (especially banking) and knowledge of the security requirements for this sector and associated standards and frameworks.

Additional Responsibilities:

• The role will focus on shaping and defining standards and best practice for securing a diverse environment of Java, .Net, and C++ application against security standards
• Authentication: Kerberos, SAML using ADSF2 implementation and standard smartcard PKI technologies
• Authorisation: Web federation based on CA Siteminder and LDAP repositories
• Code Security: Fortify Source Code Analysis (360) on developer’s workstations and build servers
• The expert security developer will work in conjunction with a security project manager in the same team

Required skills:

• Strong technical background and security focused
• Excellent understanding of authentication related mechanisms (Kerberos, PKI)
• Solid practical experience of using Windows Kerberos to secure custom service endpoints in C++, Java and C#
• Experienced in C++ development
• Experience of a wide range of communication technologies used in the financial enterprise, e.g. C++ Sockets, Java

Candidates with Security related degrees and relevant industry qualifications including CISSP, CISA, CISM are desired.

For more information on the role please contact Neil Morgan at McGregor Boyall.

McGregor Boyall is an equal opportunity employer and do not discriminate on any grounds.

Senior IAM Directory Services Architect required for blue chip organisation. This is a crucial hire for my client and the successful candidate will play a lead role in designing and developing first class Directory Services capability with oversight on Identity Governance and Privileged Access Management, the solution architects assigned to each workstream will report to you and you will collaborate with colleagues and key stakeholders globally to ensure effectiveness and service delivery is of the highest standards.

The Senior Identity Access Management Architect will come with proven technical expertise designing, piloting, deploying and transitioning Microsoft Active Directory & Azure Active Directory products to operational teams with a focus on AD, AAD, ADFS, AD Connect, Conditional Access, MFA, Self-Service Password Reset & Password Less.

As a Senior Directory Services Architect, you will have extensive experience in designing, governing, implementing, documenting and operating IAM solutions for a large enterprise. Experience as a Team Lead or other supervisory role is strongly preferred with a history of designing and/or implementing PAM/IGA solutions desirable. Relevant Microsoft certifications, particularly around Microsoft Enterprise Mobility and Security (EMS) are welcomed.

The Senior Identity Access Management architect will have excellent skills in communication, writing, and the ability to collaborate across multiple departments internally, and internationally.

For a more detailed job description please contact Neil Morgan at McGregor Boyall.

McGregor Boyall is an equal opportunity employer and do not discriminate on any grounds.

Senior Cyber Threat Intelligence Analyst required for global name in Financial Services. The Senior Cyber Threat Intelligence Analyst will play a crucial role in protecting the organisation from cyber security threats by delivering a range of highly effective information security technology services.

The Senior Cyber Threat Intelligence Analyst will also be required to act as a part of the incident response team where appropriate , perform technical research into advanced, targeted attacks, malware campaigns, malware and other emerging technologies that could endanger networks and applications.

The Senior Cyber Threat Intelligence Analyst will also produce reports based on intelligence gatherings and feedback to key business stakeholders up to CISO level as well as other stakeholders in IT Operational risk. They will also work closely with trusted, external security service providers and international teams.

Experience with Splunk , Threat Intelligence Platforms and tools including Yara, STIX/TAXII, command line, packet analysis, network forensics, malware analysis or reverse engineering, MITRE ATT&CK framework and Kill Chain is strongly preferred.

Technical skills and knowledge requirements for The Senior Cyber Threat Intelligence Analyst include ; Experience in writing intelligence reports , at least five years of experience in Information security, preferably in the financial services sector. We would also welcome hands-on experience in audit engagement and risk management while previous experience in SOC analysis and investigations is advantageous as is experience with Linux/Unix.

Applications from candidates with Security related certifications such as CISSP, SANS GIAC , GCTI are welcomed as is a security related degree

For more information please contact Neil Morgan at McGregor Boyall.

McGregor Boyall is an equal opportunity employer and do not discriminate on any grounds.

The role will be to identify and secure new clients by supplying the company's solution to improve clients understanding of their customers’ accounts. This will involve you bringing new clients onboard across a potential sector where Investigate can add benefit; this role will be targeting the financial services sector.

The Role

Working closely with the Business Unit Sales Director, this role will entail:

1. Delivering the new business sales results

• Ensure the UK revenue and profit margin targets are achieved through a direct value-based sales approach of selling data as services through the overarching Investigate solution.
• Provision of accurate and timely management reporting of sales forecasts, pipeline, platform and performance.
• Understand the specific areas within a sector who could benefit from the Investigate solution and help grow the new and exciting solutions which intern will help grow the overall proportion within the Investigate team.
• Selling to new logo businesses but also establishing warm leads through collaboration internally and “Cross Sell” opportunities where other areas of the business could already be within these sectors.

2. Sales strategy and planning

• Working with the Sales Director, review, execute and develop the sales strategy in line with the business strategy, with the expectation of no less than 20% growth
• Identify larger opportunities for the sale of Investigate as a proportion. To pro-actively self-generate new business leads to build and develop the company’s business margin stream for Investigate software and data enhancement services
• Target those prospects who need to contact or investigate individuals that they have either lost contact with or that require further investigation
• Identify opportunities for the company’s products and services required by these organisations
• To establish and maintain awareness of the company’s products and services as leaders in the marketplace
• Build a pipeline, which should be three times the target given by cold calling, using LinkedIn and other marketing activity to drive revenue.
• Operate proactively at senior level within prospect accounts to provide maximum exposure and credibility in exploiting the opportunities identified

The Candidate:

• Experience of the Financial Services/ Fraud sector is a MUST
• Natural leader
• Not afraid to build business relationships

This role will provide product tranining but naturally someone who comes from within Industry is highly sought after. Equally this role is remote based with frequent travel and and when required.

McGregor Boyall is an equal opportunity employer and do not discriminate on any grounds.

Network Security Engineer - Liverpool - Up to £50k

A great opportunity has arisen to join a cybersecurity team in the centre of Liverpool. The team provides a wide range of computing and network support, delivering and supporting IT equipment, specialist software, services and networking supporting in support of the activities for the company.

The Network Security engineer will be responsible for providing excellent IS Security support for the business, possess an in-depth knowledge on network, endpoint, threat intelligence, and forensics.

Some of the roles and responsibilities are below:

• Investigation of security incidents to determine route cause, ensuring the timely and accurate communication of incidents to relevant teams, and the co-ordination of remediation activities
• Tuning preventive and detective security systems in response to emerging threats
• Scheduling vulnerability scans, interpreting results, undertaking and/or monitoring any remedial actions
• Developing day-to-day operational IT procedures to maintain and improve our security position
• Performing regular security and configuration checks, and capturing associated metrics
• Delivering technical projects of work to improve internal systems and processes
• Be responsible for the timely creation and maintenance of quality documentation for both users and IT colleagues
• Work with the IS Support Manager and other IS Managers to identify trends and proactive improvement opportunities and make IT operations more efficient

Experience required :-

• Strong experience in a security role such as Security or Network Engineer.
• Security Information & Event Management (SIEM) solutions
• Firewall/Web Content Filtering solutions.
• Federated Identity Solutions for cloud/SaaS applications.
• Active Directory.
• Web server software such as Microsoft IIS.

Additionally, The role will have a lot of influence in regards to the Cyber Security roadmap and the tools, products, procedures, and policies to drive that and in addition helping implement all of those. The current security posture is very good due to Azure being some of the backbone technologies allowing the usage of:

• MFA (Multi Factor Authentication)

• Intune MDM for IOS devices

• Defender ATP for all devices

• Conditional Access Policies

Please get in touch via email in the first instance and we can arrange a commitment free introductory call to provide more background. The role is working in a hybrid capacity (1-2 days in the office per week) for now and in the longer term the company will look at the situation on a periodic basis.

McGregor Boyall is an equal opportunity employer and do not discriminate on any grounds.

McGregor Boyall is acting as an Employment Agency in relation to this vacancy.

Windows Security Engineer - Glasgow - Up to £60k

A great opportunity has arisen to join a cybersecurity team within financial services. The team provides solutions that protect Desktops, Laptops, Servers and Cloud resources from threats. This has additionally progressesed to Cloud platforms (Azure/AWS).

We're looking for an experienced Windows Security / Endpoint engineer but an engineer that is comfortable writing Powershell scripts from the ground up therefore being able to authenticate and consume a rest API using Powershell.

The role will involve working as part of a Global security team and therefore a strong Windows Infrastructure / Security knowledge is essential as is previous experience working in enterprise on premisses and cloud environments.

As working in a global team a good collaborative approach is required as a requirement will be to work as a platform security engineer to architect, engineer and support primarily Microsoft Azure Centric security controls for Desktops, Servers and Containers.

Experience required :-

• Ability to write robust code in Powershell from ground up
• Microsoft Cloud App Security
• Strong Windows OS and Advanced troubleshooting skills
• Microsoft Cloud App Security
• Good working knowledge of containerisation such as docker
• Windows Defender Advanced Threat Protection / Defender for Endpoint & latest Microsoft Azure Security Product set

Skills Desired

• Experience working in a DevOps/SRE aligned team
• Powershell Scripting
• Good knowledge of Azure and AWS
• Effective troubleshooting skills across hardware, OS, network and storage
• Experience of platform design, build and deployment, with a focus on continual service improvement
• Experience of working in an Agile environment

Please get in touch via email in the first instance and we can arrange a commitment free introductory call to provide more background. The role is fully remote for now and in the longer term the company will look at the situation on a periodic basis.

McGregor Boyall is an equal opportunity employer and do not discriminate on any grounds.

McGregor Boyall is acting as an Employment Agency in relation to this vacancy.