1 to 25 of 63 Permanent Zero Trust Jobs in England

remote access infrastructure. This role focuses on delivering secure, reliable, and high-performance connectivity for over 50,000 users and their devices through the implementation of VPN, SASE, and Zero-Trust Network Access (ZTNA) technologies. With a focus on automation, observability, and user experience, this position plays a vital role in ensuring seamless and secure connectivity across third … lead the strategy and roadmap for remote connectivity services, including VPNs, ZTNA, and SASE. Architect solutions that combine performance, resilience, and security using modern software-defined networking principles. Embed zero-trust principles and user-centric design into all remote connectivity services. Align remote connectivity architecture with broader enterprise network, security, and cloud strategies. Engineering & Operations: Lead the engineering … access solutions such as Cisco AnyConnect, Zscaler, and other mainstream VPN platforms. Drive automation of remote access provisioning, policy enforcement, and configuration management through Infrastructure as Code (IaC) and zero-touch deployment practices. Apply Site Reliability Engineering (SRE) principles to improve performance, availability, and troubleshooting. Establish observability practices across all access points with real-time metrics, logs, and telemetry. More ❯

in support and architecture. Robust networking background, with experience in managing multiple sites from firewalls to edge switches (Cisco Meraki), and familiarity with SD-WAN, IPv6, VPN, BGP, and Zero Trust/Zero Trust Network Access (ZT/ZTNA). Experience with on-premise solutions, e.g. VMware. Proficiency in managing enterprise storage solutions across on-prem More ❯

controls into CI/CD pipelines, cloud-native services, and on-prem platforms to enforce security-by-design principles. Deliver security capabilities that support modern work scenarios, remote access, zero-trust networking, and AI/ML workloads. Leverage automation frameworks and IaC to improve scalability and reduce manual intervention. Operational Security, SRE & Assurance: Ensure security platforms are resilient … ability to design and scale global solutions. Experience with security engineering in hybrid and cloud-native environments (AWS, Azure, GCP). Proven track record in automating security controls, implementing zero-trust models, and supporting 24x7 security operations. Strong understanding of compliance frameworks and risk management strategies. Preferred Qualifications: Certifications such as CISSP, CCSP, CISM, AWS/Azure Security More ❯

Center, Defender for Cloud, Key Vault, and Backup/Recovery Services. Implement hybrid cloud connectivity and Azure Virtual Desktop where required. Partner with the Cyber Security team to ensure Zero Trust principles and best practice are embedded across infrastructure and M365. Monitor and manage firewalls (Cisco, Meraki, WatchGuard), VPNs, and endpoint protection. Oversee enterprise LAN, WAN, VPN, VLAN … platforms (VMware/Hyper-V) and SAN/NAS storage solutions. Skilled in network administration (LAN, WAN, VPN, VLANs, routing, firewalls). Strong background in cybersecurity practices, compliance, and Zero Trust frameworks. Automation/scripting experience (PowerShell, Bash, or Python preferred). Excellent communication and leadership skills, able to translate technical requirements for senior stakeholders. Desirable but not More ❯

globally. By driving scalable, automated, and user-focused security engineering-and by embedding security into modern engineering and operational practices-this role ensures BCG can innovate securely while maintaining trust, compliance, and operational excellence. The Global Delivery Director - Secure Data is responsible for leading the design, delivery, and continuous evolution of BCG's data security strategy and controls. This … role is accountable for embedding security within DevSecOps practices, applying Site Reliability Engineering (SRE) principles across all security services, and aligning with privacy, compliance, and business leaders to maintain trust and regulatory compliance. Key Responsibilities: Strategic Leadership & Transformation: Define and execute a unified security engineering strategy that addresses data protection across all environments and data lifecycle stages. Lead the … and classification. Collaborate with the IAM team to align authentication, authorization, and privileged access policies with data security controls. Deliver security capabilities that support modern work scenarios, remote access, zero-trust networking, and protection of sensitive data in AI/ML workloads. Leverage automation frameworks and IaC to improve scalability and reduce manual intervention. Operational Security, SRE & Assurance More ❯

troubleshoot Cisco and Meraki devices (routers, switches, firewalls). Administer firewall solutions using Fortinet and Palo Alto, and manage the decommissioning of legacy equipment. Implement and maintain SASE, CASB, Zero Trust, and CATO/SASE security solutions. Utilise network visualization tools and virtualization platforms (VMware) for enhanced monitoring and flexibility. Automate infrastructure provisioning and management using Python, PowerShell … WAN, Wi-Fi). Hands-on experience with Cisco and Meraki networking hardware. Proficiency in firewall technologies (Fortinet, Palo Alto) and legacy infrastructure decommissioning. Demonstrable knowledge of SASE solutions, Zero Trust security models, CASB, and CATO or SASE. Familiarity with network visualization tools and VMware virtualization. Relevant certifications (CCNP, CCIE, SASE Certified Architect, or similar). Advanced configuration More ❯

across the organization by managing our network and security platforms in a hybrid environment. Working within the Network Operations team, you'll oversee switching, routing, internet connectivity, firewalls, and Zero Trust solutions across multiple vendor technologies. This role is essential to supporting and protecting our growing infrastructure. Key Responsibilities: Balance project work and operational support as part of … regulated sectors. Hands-on experience with automation and monitoring tools. Skilled in configuring, managing, monitoring, and troubleshooting Cisco Nexus, firewalls, Meraki switches, and WiFi networks. Knowledge and experience with Zero Trust networking environments. Experience configuring, supporting, and maintaining monitoring solutions such as SolarWinds. Degree or equivalent qualification in a technical field. Network administration certification at CCNP level or … being Just and delivering the best outcomes for our customers. We're committed to building a more sustainable business, and we're working hard to make progress against ourNet Zero targets . We're reducing our reliance on fossil fuels in our offices, switching to more sustainable sources of energy and we're investing more of our money in More ❯

of cyber security architects and engineers dedicated to helping clients secure their technology ecosystems. Our work spans the breadth of the commercial sector covering areas such as cloud security, Zero Trust, DevSecOps, data protection, and identity security. We partner with organisations to design and implement security solutions that are practical, scalable, and aligned with business goals. As a … you thrive: Cyber Security Architecture - Designing and securing cloud, applications, networks, data, or identity systems. Secure by Design & DevSecOps - Embedding security in CI/CD pipelines and development lifecycles. Zero Trust & Risk Management - Applying security frameworks and risk-based approaches. Thought Leadership - Engaging in research and publishing in recognised forums. Stakeholder Influence - Engaging with technical teams, business leaders More ❯

of cyber security architects and engineers dedicated to helping clients secure their technology ecosystems. Our work spans the breadth of the commercial sector covering areas such as cloud security, Zero Trust, DevSecOps, data protection, and identity security. We partner with organisations to design and implement security solutions that are practical, scalable, and aligned with business goals. As a … you thrive: Cyber Security Architecture - Designing and securing cloud, applications, networks, data, or identity systems. Secure by Design & DevSecOps - Embedding security in CI/CD pipelines and development lifecycles. Zero Trust & Risk Management - Applying security frameworks and risk-based approaches. Thought Leadership - Engaging in research and publishing in recognised forums. Stakeholder Influence - Engaging with technical teams, business leaders More ❯

of cyber security architects and engineers dedicated to helping clients secure their technology ecosystems. Our work spans the breadth of the commercial sector covering areas such as cloud security, Zero Trust, DevSecOps, data protection, and identity security. We partner with organisations to design and implement security solutions that are practical, scalable, and aligned with business goals. As a … you thrive: Cyber Security Architecture - Designing and securing cloud, applications, networks, data, or identity systems. Secure by Design & DevSecOps - Embedding security in CI/CD pipelines and development lifecycles. Zero Trust & Risk Management - Applying security frameworks and risk-based approaches. Thought Leadership - Engaging in research and publishing in recognised forums. Stakeholder Influence - Engaging with technical teams, business leaders More ❯

Jenkins, and ArgoCD Embed security scanning and compliance tools (Snyk, Trivy, Checkov, SonarQube) into automated workflows Manage authentication, access control, and secrets using Vault, AWS Secrets Manager, OAuth2.0, and Zero Trust principles Monitor environments with ELK Stack, Splunk, and Prometheus to ensure visibility, auditing, and compliance Collaborate with engineering, operations, and security teams to promote DevSecOps best practices … in cloud platforms, particularly AWS and Kubernetes (OpenShift experience advantageous) Proven expertise in IaC, automation, and modern CI/CD practices Deep knowledge of application security, access management, and Zero Trust Networking Hands-on experience with vulnerability scanning, policy-as-code, and automated compliance tooling Proficiency in building secure, reliable, and scalable pipelines and platforms Excellent collaboration skills More ❯

Jenkins, and ArgoCD Embed security scanning and compliance tools (Snyk, Trivy, Checkov, SonarQube) into automated workflows Manage authentication, access control, and secrets using Vault, AWS Secrets Manager, OAuth2.0, and Zero Trust principles Monitor environments with ELK Stack, Splunk, and Prometheus to ensure visibility, auditing, and compliance Collaborate with engineering, operations, and security teams to promote DevSecOps best practices … in cloud platforms, particularly AWS and Kubernetes (OpenShift experience advantageous) Proven expertise in IaC, automation, and modern CI/CD practices Deep knowledge of application security, access management, and Zero Trust Networking Hands-on experience with vulnerability scanning, policy-as-code, and automated compliance tooling Proficiency in building secure, reliable, and scalable pipelines and platforms Excellent collaboration skills More ❯

Jenkins, and ArgoCD Embed security scanning and compliance tools (Snyk, Trivy, Checkov, SonarQube) into automated workflows Manage authentication, access control, and secrets using Vault, AWS Secrets Manager, OAuth2.0, and Zero Trust principles Monitor environments with ELK Stack, Splunk, and Prometheus to ensure visibility, auditing, and compliance Collaborate with engineering, operations, and security teams to promote DevSecOps best practices … in cloud platforms, particularly AWS and Kubernetes (OpenShift experience advantageous) Proven expertise in IaC, automation, and modern CI/CD practices Deep knowledge of application security, access management, and Zero Trust Networking Hands-on experience with vulnerability scanning, policy-as-code, and automated compliance tooling Proficiency in building secure, reliable, and scalable pipelines and platforms Excellent collaboration skills More ❯

Jenkins, and ArgoCD Embed security scanning and compliance tools (Snyk, Trivy, Checkov, SonarQube) into automated workflows Manage authentication, access control, and secrets using Vault, AWS Secrets Manager, OAuth2.0, and Zero Trust principles Monitor environments with ELK Stack, Splunk, and Prometheus to ensure visibility, auditing, and compliance Collaborate with engineering, operations, and security teams to promote DevSecOps best practices … in cloud platforms, particularly AWS and Kubernetes (OpenShift experience advantageous) Proven expertise in IaC, automation, and modern CI/CD practices Deep knowledge of application security, access management, and Zero Trust Networking Hands-on experience with vulnerability scanning, policy-as-code, and automated compliance tooling Proficiency in building secure, reliable, and scalable pipelines and platforms Excellent collaboration skills More ❯

Jenkins, and ArgoCD Embed security scanning and compliance tools (Snyk, Trivy, Checkov, SonarQube) into automated workflows Manage authentication, access control, and secrets using Vault, AWS Secrets Manager, OAuth2.0, and Zero Trust principles Monitor environments with ELK Stack, Splunk, and Prometheus to ensure visibility, auditing, and compliance Collaborate with engineering, operations, and security teams to promote DevSecOps best practices … in cloud platforms, particularly AWS and Kubernetes (OpenShift experience advantageous) Proven expertise in IaC, automation, and modern CI/CD practices Deep knowledge of application security, access management, and Zero Trust Networking Hands-on experience with vulnerability scanning, policy-as-code, and automated compliance tooling Proficiency in building secure, reliable, and scalable pipelines and platforms Excellent collaboration skills More ❯

health monitoring. Ensure endpoint telemetry is integrated with SIEM platforms and observability stacks. Partner with platform and infrastructure teams to enforce secure device baselines and policies. Build self-healing, zero-trust-aligned architectures for secure device management. Observability & Event Management: Implement real-time observability of endpoint health, risk exposure, and threat posture. Integrate with cybersecurity event and incident … endpoint protection, mobile security, and compliance tooling. Strong background in automation, scripting, and observability practices. Experience working with large, global device fleets and BYOD models. Preferred Qualifications: Familiarity with zero-trust security models and endpoint detection and response (EDR). Certifications such as CISSP, CISM, Microsoft Security certifications, or equivalent. Experience integrating device telemetry into SIEM and SOAR … of up to 30% and a generous retirement contribution that starts at 5% and moves to 10% after 2 years. All of our plans provide best in class coverage: Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children Low $10 (USD) copays for trips to the doctor, urgent care visits and prescriptions for generic drugs Dental More ❯

for Endpoint Strong experience with Entra ID/Active Directory, Conditional Access, and PIM Hands-on with PowerShell and Microsoft Graph API for security automation Familiarity with M365 security, Zero Trust models, and Microsoft Information Protection Knowledge of compliance tools and frameworks (e.g. GDPR, ISO 27001, NIS2) Experience with Azure Firewall, NSGs, ASGs, and endpoint management Certifications (Required More ❯

for Endpoint Strong experience with Entra ID/Active Directory, Conditional Access, and PIM Hands-on with PowerShell and Microsoft Graph API for security automation Familiarity with M365 security, Zero Trust models, and Microsoft Information Protection Knowledge of compliance tools and frameworks (e.g. GDPR, ISO 27001, NIS2) Experience with Azure Firewall, NSGs, ASGs, and endpoint management Certifications (Required More ❯

for Endpoint Strong experience with Entra ID/Active Directory, Conditional Access, and PIM Hands-on with PowerShell and Microsoft Graph API for security automation Familiarity with M365 security, Zero Trust models, and Microsoft Information Protection Knowledge of compliance tools and frameworks (e.g. GDPR, ISO 27001, NIS2) Experience with Azure Firewall, NSGs, ASGs, and endpoint management Qualifications Microsoft More ❯

Microsoft Entra ID (AAD) for secure access through SAML SSO. Maintain the lifecycle of Enterprise Application and App registration certificate. Closely working With Security Architect and Team to adhere zero-trust architecture by securing server policy, group policy, defender etc. Tenant security – DDOS, Azure Firewall policy creation and maintain of Application, Network rule along with IDPS to ensure More ❯

Microsoft Entra ID (AAD) for secure access through SAML SSO. Maintain the lifecycle of Enterprise Application and App registration certificate. Closely working With Security Architect and Team to adhere zero-trust architecture by securing server policy, group policy, defender etc. Tenant security – DDOS, Azure Firewall policy creation and maintain of Application, Network rule along with IDPS to ensure More ❯

Microsoft Entra ID (AAD) for secure access through SAML SSO. Maintain the lifecycle of Enterprise Application and App registration certificate. Closely working With Security Architect and Team to adhere zero-trust architecture by securing server policy, group policy, defender etc. Tenant security – DDOS, Azure Firewall policy creation and maintain of Application, Network rule along with IDPS to ensure More ❯

Microsoft Entra ID (AAD) for secure access through SAML SSO. Maintain the lifecycle of Enterprise Application and App registration certificate. Closely working With Security Architect and Team to adhere zero-trust architecture by securing server policy, group policy, defender etc. Tenant security – DDOS, Azure Firewall policy creation and maintain of Application, Network rule along with IDPS to ensure More ❯

Microsoft Entra ID (AAD) for secure access through SAML SSO. Maintain the lifecycle of Enterprise Application and App registration certificate. Closely working With Security Architect and Team to adhere zero-trust architecture by securing server policy, group policy, defender etc. Tenant security – DDOS, Azure Firewall policy creation and maintain of Application, Network rule along with IDPS to ensure More ❯

procedures, runbooks, and environment configurations. Mentor and support colleagues in technical skill development. Education and Qualifications Microsoft Certified: Azure Administrator Associate (AZ-104) or higher. Desirable Qualifications: Understanding of Zero Trust, cloud security practices, and compliance frameworks (ISO 27001, Cyber Essentials, NIST). Experience with backup and disaster recovery technologies (Azure Backup, Redstor etc). Knowledge of endpoint More ❯