Exciting opportunity for an experienced Information Security Officer to join a global professional services organisation based in Glasgow. You will have a key role in ensuring the security of their systems and data by evaluating the risks associated with third-party vendors and internal projects and recommending appropriate … risk mitigation strategies. You will work closely with cross-functional teams across the organisation to ensure compliance with security standards and best practices. Key responsibilities: Assessing Security Risks (SCTY - Level 4, BURM - Level 4) Conduct vendor risk assessments and project security risk assessments based on established methodologies … and frameworks. Evaluate security risks associated with third-party vendors and internal projects, considering factors such as security, privacy, and compliance. Identify vulnerabilities and potential risks and provide recommendations for risk mitigation strategies. Apply knowledge of industry best practices and regulatory requirements to assess and mitigate securitymore »
allowance. Flexible working options. Fantastic Healthcare and Pension Scheme. About the Role As the DevSecOps Engineer you will work hands on in ensuring the security, stability and scalability of the softwareproducts, as well as contributing to the development of new and Innovative solutions. Operate Dynamic and Static Code Analysis … and Software Composition Analysis Integrate security tools into the development pipeline Monitor and manage the performance and tuning. Security Automation Support and integrate the results of traditional vulnerability scanning and Cloud SecurityPosture Management (CSPM) results into a consistent picture of risk for deployed applications About … You We are looking for an experienced DevSecOpes Engineer with a minimum of 3 years experience. Technical background in security technologies, including experience with DevSecOps practices Platform or Application Engineering and Operational Knowledge in any of the CI/CD Tooling Technologies (JIRA, ADO, Jenkins, Github) Proven Understanding & experience more »
allowance. Flexible working options. Fantastic Healthcare and Pension Scheme. About the Role As the DevSecOps Engineer you will work hands on in ensuring the security, stability and scalability of the software products, as well as contributing to the development of new and Innovative solutions. Operate Dynamic and Static Code … Analysis and Software Composition Analysis Integrate security tools into the development pipeline Monitor and manage the performance and tuning. Security Automation Support and integrate the results of traditional vulnerability scanning and Cloud SecurityPosture Management (CSPM) results into a consistent picture of risk for deployed applications … About You We are looking for an experienced DevSecOpes Engineer with a minimum of 3 years experience. Technical background in security technologies, including experience with DevSecOps practices Platform or Application Engineering and Operational Knowledge in any of the CI/CD Tooling Technologies (JIRA, ADO, Jenkins, Github) Proven Understanding more »
Glasgow, Lanarkshire, Scotland, United Kingdom Hybrid / WFH Options
Sopra Steria Limited
ADS SOC Service is a key leadership role responsible for overseeing day-to-day operations, managing the SOC team during shifts, and ensuring effective security analysis, incident response, and monitoring of client infrastructure. Reporting to the SOC Operations Manager, the Shift Lead is a critical escalation point during incidents … pivotal role in continual service improvement and staff development. What youll be doing: Team oversight - Directly manage and oversee all Analysts during assigned shifts. Security analysis and incident response - Lead security analysis efforts, incident classification, and incident response actions. Monitoring client security infrastructure - Oversee the continuous monitoring … cybersecurity threats What you will bring: Experience with SIEM tools including Splunk, QRadar, and Sentinel. Ability to assess and impact business changes on the security posture. Possess current certifications for enterprise level security platforms. Extensive experience in a SOC environment with a proven track record of incident response more »