1 to 25 of 84 Permanent Zero Trust Jobs in the UK

looking to recruit for a proactive, detail-driven 3rd Line Technology Specialist to help shape, secure, and continually improve a growing cloud and Zero Trust environment.This is an exciting opportunity to join a busy technical team delivering a cloud-first strategy and supporting a modern, security-focused infrastructure … coupled with genuine career development plan.In this role, you’ll take ownership of AWS environments, lead Cloudflare Zero Trust initiatives, provide high-level technical escalation, and work closely with an external managed service provider to deliver exceptional service across the business. What you’ll be doing Lead ...

Architecture Document for cloud edge and DMZ hosting (including diagrams, logical and physical topology). · Hybrid Connectivity Design Principles and Standards (DNS-based policy, Zero Trust segmentation, firewalling). · Detailed Bill of Materials (vendor/platform options, sizing, licence models, costs to Class 4 estimate). · Delivery Project … Architecture Document for cloud edge and DMZ hosting (including diagrams, logical and physical topology). · Hybrid Connectivity Design Principles and Standards (DNS-based policy, Zero Trust segmentation, firewalling). · Detailed Bill of Materials (vendor/platform options, sizing, licence models, costs to Class 4 estimate). · Delivery Project ...

Architecture Document for cloud edge and DMZ hosting (including diagrams, logical and physical topology). · Hybrid Connectivity Design Principles and Standards (DNS-based policy, Zero Trust segmentation, firewalling). · Detailed Bill of Materials (vendor/platform options, sizing, licence models, costs to Class 4 estimate). · Delivery Project … Architecture Document for cloud edge and DMZ hosting (including diagrams, logical and physical topology). · Hybrid Connectivity Design Principles and Standards (DNS-based policy, Zero Trust segmentation, firewalling). · Detailed Bill of Materials (vendor/platform options, sizing, licence models, costs to Class 4 estimate). · Delivery Project ...

Cyber Security teams (approx. 5 people). This is a broad, hands-on role split between Security Operations and project-based work across Azure, Zero Trust, DLP, and IAM. You’ll play a pivotal role in both the day-to-day running of security operations and the strategic … security best practices across the organisation. Key Responsibilities Split focus: 50% on Security Operations (monitoring, threat detection, incident response) 50% on project delivery (Azure, Zero Trust, DLP, IAM) Embed security controls and guardrails within Azure environments Ensure compliance with internal policies and external assurance frameworks Support deployment ...

practices Conduct security risk assessments, architecture reviews and produce high-level and low-level security designs Advise engineering and product teams on identity, encryption, zero trust, network security and data protection approaches Work alongside client CISOs, architects and delivery teams, providing strategic security guidance Support bid work, proposals … APIs, CI/CD pipelines and DevOps workflows Knowledge of identity and access management (OAuth2.0, OpenID Connect, SSO), encryption, container security (Docker, Kubernetes) and zero trust principles Strong stakeholder engagement skills able to influence technical and non-technical audiences Experience in consultancy or client-facing environments would ...

service teams with expert security guidance Technical Delivery & Implementation Lead the end-to-end delivery of complex security transformation programmes, including identity re-architecture, Zero Trust alignment, and phased implementation of modern security controls across multi-tenant estates Design and implement Conditional Access frameworks that account for risk … based policies, break-glass strategy, device trust, session controls, privileged access scenarios, and operational edge-cases Oversee full Intune security baselining, including secure device provisioning, compliance models, remediation scripts, endpoint hardening, managed configurations, and integration with incident response Architect and tune the Microsoft Defender XDR stack, including advanced hunting ...

user-focused security engineering-and by embedding security into modern engineering and operational practices-this role ensures BCG can innovate securely while maintaining trust, compliance, and operational excellence. The Global Delivery Director - Secure Data is responsible for leading the design, delivery, and continuous evolution of BCG's data security … security within DevSecOps practices, applying Site Reliability Engineering (SRE) principles across all security services, and aligning with privacy, compliance, and business leaders to maintain trust and regulatory compliance. Key Responsibilities: Strategic Leadership & Transformation: Define and execute a unified security engineering strategy that addresses data protection across all environments ...

Guide solution evaluation and vendor selection for IAM technologies such as IGA, PAM, SSO/MFA, federation, and directory services. Provide expert advisory on Zero Trust models, least privilege, and identity-driven security strategies. Support incident response and architecture reviews related to identity threats, misuse, or vulnerabilities. Mentor … improvement programmes in mid-to-large enterprise environments. Strong understanding of IAM frameworks and best practices, including NIST, ISO 27001/27701, CIS, and Zero Trust Architecture (ZTA). Hands-on exposure to IGA, PAM, SSO/MFA, federation, and directory technologies (e.g., Azure AD/Entra ...

deep expertise with Cisco Appliances, AWS and/or GCP networking, and a strong proficiency with Infoblox DNS, Palo Alto Firewalls, VeloCloud SD-WAN, Zero Trust solutions like Zscaler, and Azure networking. The role requires a strategic thinker that can translate business needs into secure, scalable, and resilient … Firewall Rules Azure: Express Routes, VNET, Security Groups, Load Balancing, vWAN Security Expertise in Palo Alto Firewalls including policy configuration, threat prevention Network segmentation, zero-trust frameworks, and IAM integration Cloud native Web Application Firewalls Tools and Monitoring Monitoring solutions: Datadog, Stackdriver, PA Panorama, or equivalent Has strong ...

SECURITY ARCHITECT ESSENTIAL SKILLS Strong background in enterprise security architecture and cloud security (Azure or AWS) Experience working in multi-tenant environments Understanding of Zero Trust, NIST, ISO 27001, and CIS benchmarks Strong technical capability across identity management, network security, encryption, and secure onboarding processes Ability to conduct … required skills) your application to our client in conjunction with this vacancy only. KEY SKILLS Cyber Security Architect, Cloud Security, Azure, AWS, Security Architecture, Zero Trust, NIST, ISO 27001, CIS, Identity Management, Network Security, Encryption, Risk Assessment, Onboarding, SC, NPPV3 ...

continuously improve detection and response capabilities. Manage hybrid environments, including Azure, AWS, Nutanix, and on-premise infrastructure. Support SD-WAN, cloud firewalls, CASB, Zero Trust, and SASE architectures. Own enterprise security risk assessments, track key risk indicators (KRIs), and report on cyber maturity to executive leadership. Drive security … NIST, PCI DSS, and Cyber Essentials Plus. Hands-on experience with cloud platforms (Azure, AWS), on-premise networks, and hybrid architectures. Strong experience in Zero Trust security models. Experienced in security tooling selection and implementation. Deep understanding of data protection legislation, risk management frameworks, and compliance requirements. Exceptional ...

Management solutions. Define certificate templates and integrate cloud Hardware Security Modules (HSM) with Certificate Authorities for enhanced cryptographic security. Establish infrastructure and rulesets for Zero Trust Network Access (ZTNA) and future VPN solutions. Discover VPN-dependent applications and plan firewall changes to support ZTNA implementation. Collaborate with stakeholders … Netskope administration, and EntraID integration. Skilled in PKI design and lifecycle management, with knowledge of quantum-resistant cryptography and cloud HSM integration. Experience in Zero Trust Network Access (ZTNA) implementation, network segmentation, and VPN migration planning. Collaborative and detail-oriented, with a track record of working across security ...

Management solutions. Define certificate templates and integrate cloud Hardware Security Modules (HSM) with Certificate Authorities for enhanced cryptographic security. Establish infrastructure and rulesets for Zero Trust Network Access (ZTNA) and future VPN solutions. Discover VPN-dependent applications and plan Firewall changes to support ZTNA implementation. Collaborate with stakeholders … administration, and EntraID integration. Skilled in PKI design and life cycle management, with knowledge of quantum-resistant cryptography and cloud HSM integration. Experience in Zero Trust Network Access (ZTNA) implementation, network segmentation, and VPN migration planning. Collaborative and detail-oriented, with a track record of working across security ...

Google Workspace and Apple device management. Key responsibilities include: Designing Azure and Microsoft 365 architectures Acting as technical escalation point for complex issues Implementing Zero Trust and Microsoft Defender security solutions Supporting mixed environments (Windows, macOS, iOS, Google Workspace) Providing architectural guidance and technical leadership Engaging with clients … sales activity Required experience: MSP background Expert-level Azure and Microsoft 365 knowledge Strong security architecture experience Experience with Intune, Defender, Entra and Zero Trust Working knowledge of Google Workspace and Apple Business Manager Exposure to AI tools such as Microsoft Copilot or Azure OpenAI Preferred certifications ...

Google Workspace and Apple device management. Key responsibilities include: • Designing Azure and Microsoft 365 architectures • Acting as technical escalation point for complex issues • Implementing Zero Trust and Microsoft Defender security solutions • Supporting mixed environments (Windows, macOS, iOS, Google Workspace) • Providing architectural guidance and technical leadership • Engaging with clients … sales activity Required experience: • MSP background • Expert-level Azure and Microsoft 365 knowledge • Strong security architecture experience • Experience with Intune, Defender, Entra and Zero Trust • Working knowledge of Google Workspace and Apple Business Manager • Exposure to AI tools such as Microsoft Copilot or Azure OpenAI Preferred certifications ...

high-growth consultancy.? Role overview Hybrid (South East/Central London base), you will lead solution design from RFP through to deployment, ensuring zero-trust security, scalability and TCO optimisation across MSP service towers. Leverage your defence/MSP background to architect for cleared clients requiring SC compliance … workshops, crafting HLDs/LDLs for cloud-native (Azure/AWS), hybrid infra, SD-WAN and managed security solutions.? Design secure, compliant architectures with zero-trust, IAM, endpoint protection and SIEM integrations for SC-cleared environments.? Support pre-sales with TCO models, PoCs and RFI responses; collaborate with ...

Palo Alto Networks, Check Point, Cisco, Fortinet, CrowdStrike, Netskope, F5, Akamai, and CyberArk Familiarity with security frameworks (ISO 27001, NIST, GDPR) and concepts like Zero Trust, SASE, SIEM/SOAR Familiarity with leading vendors and solutions across security, networking, and compliance frameworks Ability to engage confidently with … just sell technology – we enable transformation. Our cyber security portfolio spans network security, cloud security, endpoint protection, identity and access management, and zero trust architectures, backed by partnerships with world-leading vendors including Microsoft, Palo Alto Networks, Check Point, Cisco, Fortinet, CrowdStrike, Netskope, F5, Akamai, CyberArk, and Commvault. ...

Palo Alto Networks, Check Point, Cisco, Fortinet, CrowdStrike, Netskope, F5, Akamai, and CyberArk Familiarity with security frameworks (ISO 27001, NIST, GDPR) and concepts like Zero Trust, SASE, SIEM/SOAR Familiarity with leading vendors and solutions across security, networking, and compliance frameworks Ability to engage confidently with … just sell technology – we enable transformation. Our cyber security portfolio spans network security, cloud security, endpoint protection, identity and access management, and zero trust architectures, backed by partnerships with world-leading vendors including Microsoft, Palo Alto Networks, Check Point, Cisco, Fortinet, CrowdStrike, Netskope, F5, Akamai, CyberArk, and Commvault. ...

Responsibilities Develop and implement network architecture for Cisco ACI and NSX-T environments. Design and optimize Firewall solutions (Cisco ASA & Checkpoint) aligned with Zero Trust principles. Assess current Firewall rule base and migrate to NSX Distributed Firewall (DFW). Consolidate physical to virtual Firewall environments. Utilize tools such … Cisco ACI: Architecture, Design, and Operations VMware NSX-T: Architecture, Design, and Operations Firewalls: Cisco ASA & Checkpoint expertise Routing: Strong understanding of BGP Security: Zero Trust principles Automation: Familiarity with Scripting and IaC tools Excellent communication and stakeholder management skills Strong technical writing and documentation abilities Ability ...

secure, high-performance networks across hybrid environments. Responsibilities: Manage LAN/WAN, SD-WAN, Wi-Fi 6/6E, and VPN solutions. Implement SDN, Zero Trust, and cloud networking (AWS/Azure/GCP). Automate tasks using Python, Ansible, and APIs. Monitor performance with advanced tools … Skills & Tech: Routing protocols (OSPF, BGP), VLANs, TCP/IP. SD-WAN, SASE, cloud networking, Wi-Fi 6/6E. Security: Firewalls, VPN, Zero Trust frameworks. Tools: SolarWinds, Wireshark, Git, automation frameworks. Qualifications: Degree in IT or related field. CCNA/CCNP or equivalent; cloud certs preferred. ...

operate alongside the existing Network Architect and play a key role in proof of concepts, pilot programmes, BAU transitions, and new initiatives like Zero Trust, NAC, and SD-WAN. If you're a Senior Network Engineer ready to make the step into architecture or a hands-on Network … engineering or network architecture Strong expertise with Cisco Meraki – design, rollout, and troubleshooting Experience producing high-quality network documentation (HLD, LLD, Confluence) Familiarity with Zero Trust, SD-WAN, or NAC principles Experience supporting large, distributed network environments (ideally multi-site or retail) Salary: £70,000–£80,000 (depending ...

operate alongside the existing Network Architect and play a key role in proof of concepts, pilot programmes, BAU transitions, and new initiatives like Zero Trust, NAC, and SD-WAN. If you're a Lead Network Engineer ready to make the step into architecture or a hands-on Network … DHCP, TCP, and BGP Strong expertise with Cisco Meraki – design, rollout, and troubleshooting Experience producing high-quality network documentation (HLD, LLD, Confluence) Familiarity with Zero Trust, SD-WAN, or NAC principles Experience supporting large, distributed network environments (ideally multi-site or retail) The role is remote with ...

Endpoint Security Architect, you will: Act as the technical lead in customer-facing engagements, translating complex security needs into effective solution architectures Design Zero Trust-aligned network and endpoint architectures, including segmentation, micro-segmentation, NAC, and DNS-layer threat protection Lead conversations around network modernization, helping clients evolve … Defender, or Tanium Familiarity with DNS security tools and strategies (e.g., Zscaler, Cisco Umbrella, Infoblox) and their role in threat containment Deep knowledge of Zero Trust Architecture, lateral movement prevention, and alignment to frameworks like MITRE ATT&CK and NIST CSF Excellent communication skills with the ability ...

global law firm, focused on protecting client data, intellectual property, and business operations while enabling secure innovation. Through four key pillars Digital Trust, Technical Assurance, Security Operations, and Governance, Risk and Compliance (GRC) the team delivers comprehensive security solutions that align with our firms strategic objectives as well … systems and data. This collaborative model allows us to stay ahead of evolving threats while supporting the firms digital transformation initiatives and maintaining the trust of our clients and stakeholders. ROLE PURPOSE The AI Security Senior Architect will be part of the Digital Trust team and will ...

Groups, Azure Firewall, route tables, VNet peering, Azure VPN Gateway, ExpressRoute, and Azure Bastion. Knowledge of SASE frameworks with Azure integration, Azure Virtual WAN, zero-trust network architecture, and experience with solutions such as CATO, Zscaler or Palo Alto integrated with Azure. Identity & Access Management - Expert knowledge ...