Senior Offensive Security Engineer

Salary: £90,000 - £110,000 per annum
Location: UK - Remote

You'll be responsible for identifying and mitigating security vulnerabilities across software products through a combination of secure code review, penetration testing, security assessments, and the development of custom tooling.

This role involves close collaboration with engineering teams to embed secure development practices throughout the software lifecycle - ensuring potential risks are addressed early in the development process.

Senior Offensive Security Engineer - Responsibilities:

• Conduct deep technical offensive security assessments against complex, distributed systems to uncover critical vulnerabilities across cloud, web applications, and internal services.
• Perform offensive testing throughout the software supply chain, including CI/CD pipelines, version control systems, and third-party integrations.
• Build and maintain automation and tooling to scale offensive testing across products and teams.
• Operate as a subject matter expert in offensive security, supporting risk-based product design decisions and architecture reviews.
• Contribute to threat modelling, red teaming strategy, and secure development practices throughout the product lifecycle.

Senior Offensive Security Engineer - Requirements:

• 5+ years of hands-on experience conducting offensive security testing in production cloud environments and highly scalable architectures.
• Strong technical knowledge of authentication/authorisation mechanisms, cloud security misconfigurations, multi-tenancy isolation issues, and API-level vulnerabilities.
• Experience testing and securing the software supply chain, including common attack paths within CI/CD, source control, and package dependencies.
• Proficiency in writing offensive tools and scripts (e.g., Python, Go, Java) to automate testing and exploit development.

Lawrence Harvey is acting as an Employment Business in regards to this position. Visit our website and follow us on Twitter for all live vacancies (lawharveyjobs)

Lawrence Harvey is delighted to be exclusively partnering with one of the most exciting companies in the Health-Tech space. They are leading in the software development space for healthcare, and looking to transform their Data Protection team with this brand-new position of Head of Data Protection and Data Protection Officer.

Responsibilities:

• Develop and transform the data protection framework internally,
• Working closely with the CISO, Product and Engineering teams to develop the privacy frameworks.
• Leverage and assist the key stakeholders in the business on AI and AI strategy.
• Lead on DPIAs and other complex elements of the development.
• Enable innovation in the existing privacy program
• Manage and upskill the existing small team.
• Experienced with total oversight/end-to-end management of a data protection function.

Requirements:

• Extensive experience with the healthcare sector, especially within the NHS. Whether this is currently or in your recent background, ideally as a Head of or DPO.
• Experience managing and developing teams.
• Confident in working with internal and external stakeholders to promote data protection and the business.
• Passionate about the healthcare/health-tech industry and data protection.
• 3 days a week in their Central London office.

Benefits:

• Salary between £100,000-£120,000 + £generous offering in shares.
• A Hybrid working model - 3 days in the office and 2 at home.
• Benefits Offering of £600 to use how you please.
• Working Abroad Policy
• Free breakfast and lunch in the office
• Fast growing and developing business.

Overall, it's an excellent time to join a business who is passionate about trust and development, with a lovely set of benefits in a brand-new position.

Candidates without healthcare/pharma/health-tech experience will not be considered at this time.

Lawrence Harvey is acting as an Employment Business in regards to this position. Visit our website and follow us on Twitter for all live vacancies (lawharveyjobs)

Data Protection Lead for a Global Insurance Company

Our client is seeking a dedicated and experienced Data Protection Lead to join their dynamic team. As the Data Protection Lead, you will be responsible for overseeing and ensuring compliance with data protection regulations across the business. You will play a key role in managing all data protection strategies, working closely with various departments to implement and maintain compliance.

• This position is based in Crewe, UK.
• This role is full-time, with 5 days a week on-site in the Crewe office.

Key Responsibilities:

• Lead the development, implementation, and management of data protection policies and practices across the company.
• Ensure compliance with ISO27001 standards and other relevant data protection regulations.
• Manage and optimize our OneTrust platform to monitor and maintain data protection compliance.
• Provide leadership and guidance to a small team of data protection specialists, ensuring effective collaboration and achievement of goals.
• Stay updated on the latest developments in data protection laws and regulations, particularly within the EMEA region.
• Work cross-functionally with various teams, including legal and compliance, to ensure data protection requirements are met.
• Develop and deliver training programs to enhance data protection awareness across the organization.
• You will be managing a small team of junior data protection specialists.

Requirements:

• 3-5+ years of extensive experience in data protection, with a strong understanding of data privacy laws and regulations.
• Proven experience working with ISO27001.
• Strong skills in using OneTrust for managing data protection compliance.
• Confident in managing a team, with the ability to motivate and develop team members.
• Self-driven and motivated to continuously improve.

Preferred Qualifications:

• Experience working across the EMEA region and familiarity with related privacy laws.
• Experience in a regulated environment such as insurance, financial services, or within the tech industry.

What We Offer:

• A competitive salary and benefits package
• The opportunity to work in a fast-paced, innovative global tech company.
• A collaborative and inclusive work environment with opportunities for professional growth and development.

Salary advertised is dependent on experience and is a rough estimate.

Unfortunately, our client cannot offer visa sponsorship for this role.

Lawrence Harvey is acting as an Employment Business in regards to this position. Visit our website and follow us on Twitter for all live vacancies (lawharveyjobs)

Senior Privacy Manager - Leading Financial Services Institution

A globally recognised bank is looking for a Senior Privacy Manager to lead their internal function, this is a unique opportunity to become embedded in a powerhouse within banking.

Your Day to Day

• You will be working end-to-end alongside the Head of Privacy on a variety of privacy areas, including breaches, DPIAs, managing incidents, owning controls/policies, and assisting with the digital/technology transformation internally.
• You will be assisting with setting strategy goals and working on an advisory basis.
• Demonstrate leadership skills by managing stakeholders from a variety of business units and other team members based across the country.
• Seeing the bigger picture, working on the development and growth of the privacy compliance team.

We are looking for:

• 5+ years experience working in data protection, ideally within financial services institutions in your career.
• Experience working at a senior level i.e. senior manager level or above in a smaller organisation looking to step up in this global conglomerate.
• Management experience, you will not be line managing but will be assisting with more junior members of the team and delegating work.
• 2-3 days a week in Glasgow office, this is a standard requirement across the business.

Benefits:

• c. £80,000 with discretionary bonus (depending on experience)
• Life, Health & Dental Insurance.
• Good Pension
• Gym Membership
• Hybrid working.

Unfortunately, we cannot provide sponsorship for this role - so you must have the right to work in the UK.

Lawrence Harvey is acting as an Employment Business in regards to this position. Visit our website and follow us on Twitter for all live vacancies (lawharveyjobs)

Data Protection Analyst - Leading Global Insurance Company

A global insurance provider is looking for another exceptional Data Protection Analyst to join their well-established team of 4 based in the City of London. You will be a paramount part of the team, working collaboratively with leadership and the rest of the business to ensure compliance.

Requirements:

• Experienced working in data protection, with a solid understanding of data protection regulations i.e. GDPR
• Confident working with DSARs in particular, but as well DPIAs, RoPA, and supplier due-diligence.
• Someone who is collaborative and hard-working.
• Good stakeholder management skills, or comfortable presenting to senior management.
• 3 days a week in their London office.

You will have the opportunity to expand your global reach, with the business actively expanding into the Europe and APAC regions, if you're keen to broaden your horizons outside of just the UK.

This is a unique role to be part of a close-knit team based in the heart of London in a rapidly growing insurance company. If you are looking for a fast-paced and interesting position to develop your skills in data protection - please do reach out.

There is no sponsorship available.

Lawrence Harvey is acting as an Employment Business in regards to this position. Visit our website and follow us on Twitter for all live vacancies (lawharveyjobs)