Job Search

Location: Remote / UK-based
Contract Length: 6-12 months (initial)
Start Date: ASAP

We're looking for a Contract Java Engineer to join the team - a high-performing, cross-functional team of UX Designers, Software Engineers, QA Engineers, and Technical Writers.

You'll be contributing to the Engagement Banking Platform, delivering new features, proof-of-concepts, and technical improvements across a suite of digital banking products. This is a hands-on engineering role where you'll take ownership from design through to release, working within a modern microservices environment.

As part of an autonomous Agile team, you'll:

Design, build, and deliver new product features and enhancements.

Collaborate closely with Architects, QA Engineers, and Product teams to ensure solutions meet technical standards and best practices.

Participate in the full software development lifecycle - from ideation to deployment.

Contribute to continuous integration and delivery pipelines and help shape technical direction.

The platform is built using microservices architecture and leverages modern engineering practices - including CI/CD, Kubernetes-based deployments, and a strong DevOps culture.

Languages/Frameworks: Java, Spring Boot, Maven

Architecture: Microservices, REST APIs, Cloud-native design

Tools: Jenkins, GitLab CI/CD, Docker, Kubernetes (K8s)

Databases: Relational (e.g., PostgreSQL, MySQL)

Practices: Agile, CI/CD, Continuous Improvement, Test Automation

Domain: Digital Banking / Fintech

Strong background in Java development and software design principles

Proven experience with Spring Boot, microservices, and containerized applications

Hands-on experience with Kubernetes and CI/CD pipelines

Understanding of non-functional requirements (security, performance, scalability)

Excellent communication skills and a collaborative, proactive mindset

Experience in banking or fintech domains is a plus

Join a collaborative product team delivering impactful banking software

Opportunity to own your work end-to-end in an Agile, autonomous setup

Competitive day rate with long-term contract potential

GCS is acting as an Employment Business in relation to this vacancy.

Microsoft Entra and Defender Engineer - Remote - 12-month Outisde IR35

The successful candidate will bring deep technical expertise across Microsoft security technologies, with the ability to define and execute IAM strategies, ensure compliance, and strengthen enterprise-wide security posture.

Key Responsibilities

Act as SME for hybrid Microsoft Entra ID, delivering strategic guidance, technical leadership, and hands-on implementation.

Configure and manage Conditional Access, PIM, RBAC, and identity governance aligned with modern security frameworks.

Troubleshoot and configure SSO, MFA integrations, and provisioning across enterprise applications.

Lead operational improvements by analysing incident/security trends and evolving IAM posture.

Maintain and optimise:

Microsoft Intune - device compliance, configuration profiles, and endpoint security.

Microsoft Defender for Endpoint - threat protection, attack surface reduction, and EDR.

Microsoft Sentinel - analytics rules, playbooks, workbooks, and incident workflows.

Perform cloud security reviews, configuration assessments, and deliver tailored recommendations.

Leverage KQL for reporting and advanced troubleshooting.

Provide design, implementation, and optimisation support for Microsoft 365 E5 security services.

Produce and maintain technical documentation, SOPs, and runbooks.

Mentor colleagues and deliver knowledge-sharing sessions across global teams.

Required Skills & Experience

5+ years in IT Security, IAM, or Cloud Security roles.

Proven experience architecting and implementing IAM strategies.

Strong skills in KQL, PowerShell, and automated policy deployment.

In-depth knowledge of O365 tenant security, Conditional Access, MFA, PIM, and logging/auditing.

Microsoft Entra and Defender Engineer - Remote - 12-month Outisde IR35

GCS is acting as an Employment Business in relation to this vacancy.

Incident Response Consultant - Cybersecurity Services

Our client, a leading consulting firm, is expanding their Cyber Incident Response practice and seeking experienced professionals with strong Forensics and eDiscovery expertise.

Responsibilities

Lead and manage cyber incident response engagements, providing both technical expertise and guidance.

Support clients in preparing, detecting, analysing, containing, and recovering from a wide range of threats such as ransomware, data breaches, and account compromise.

Deliver compromise assessments and proactive threat hunting services.

Contribute to the design of realistic incident response simulations and tabletop exercises.

Help evolve the incident response practice and service offerings by identifying emerging technologies and methodologies.

Stay current with the latest cyber threats, trends, and regulatory requirements affecting clients.

Mentor and support team growth, ensuring consistent delivery of high-quality outcomes.

Requirements

Extensive experience in crisis management and incident response.

Proven ability to lead technical teams during high-pressure investigations.

Strong digital forensics knowledge with hands-on experience across endpoints, servers, cloud, and mobile.

Familiarity with malware analysis, network forensics, and memory forensics (desirable).

Experience with SIEM, EDR, and MDR tools.

Background in red teaming/penetration testing is an advantage.

Excellent problem-solving, communication, and report-writing skills, with the ability to present complex technical findings to varied audiences.

Security certifications are highly desirable (e.g., GIAC, Offensive Security, ISC², ISACA).

5+ years' experience in cybersecurity, digital forensics, or a related field, with a strong focus on incident response.

Degree in Computer Science, Engineering, Mathematics, or equivalent professional experience.

GCS is acting as an Employment Agency in relation to this vacancy.

CyberArk Engineer - Banking - London/Hybrid

A leading UK Bank is seeking a CyberArk Engineer to support the delivery of a major Privileged Access Management (PAM) programme. You'll be responsible for engineering, configuring, and optimising CyberArk solutions within a complex, regulated environment.

Key Skills & Experience:

Proven hands-on expertise in CyberArk implementation and administration (Vault, PSM, CPM, PVWA).

Strong background in PAM, security hardening, and privileged account onboarding.

Experience in financial services or other regulated environments.

Ability to work closely with security and infrastructure teams to deliver robust PAM controls.

CyberArk Engineer - Banking - London/Hybrid

GCS is acting as an Employment Business in relation to this vacancy.

SailPoint Architect - Inside IR35 - London/Hybrid

Leading UK Bank seeks a SailPoint Architect to join a strategic Identity & Access Management (IAM) transformation programme. You will play a key role in designing and delivering SailPoint IIQ solutions across complex enterprise environments.

Key Skills & Experience:

Proven expertise as a SailPoint Architect, designing and implementing enterprise-scale IAM solutions.

Strong knowledge of identity lifecycle management, RBAC, workflows, and connector integrations.

Experience working in regulated financial services environments.

Ability to engage with stakeholders, solution architects, and security teams to define scalable IAM strategies.

SailPoint Architect - Inside IR35 - London/Hybrid

GCS is acting as an Employment Business in relation to this vacancy.

A leading [Financial Services / SaaS / Analytics / Enterprise] firm is seeking an experienced Information Security Analyst SME to join their growing cybersecurity team. This is a hands-on role for a candidate who excels in penetration testing, threat hunting, and incident response-bringing deep expertise in vulnerability assessment and strategic threat defence.

You'll work at the cutting edge of cybersecurity, helping to protect high-value assets through proactive identification and mitigation of evolving threats.

Perform web application and network penetration testing using manual and automated tools (e.g. Burp Suite, Metasploit, Qualys, Python, Kali Linux).

Collaborate with engineering and DevOps teams to triage, prioritise, and remediate vulnerabilities.

Simulate real-world attack scenarios using open-source tooling and custom scripts to assess system resilience.

Support third-party penetration tests and ensure alignment with compliance frameworks and regulatory requirements.

Use the MITRE ATT&CK framework to assess advanced persistent threats (APTs), model risks, and enhance defensive measures.

Implement and manage SIEM solutions (e.g. Splunk, QRadar), performing daily log analysis and threat investigations.

Lead vulnerability scanning, patch management, and remediation using tools like Nessus and Qualys.

Conduct proactive threat hunting across assets to detect and mitigate suspicious activities.

Respond to security incidents, perform forensic investigations, and reduce downtime and impact.

Analyse and reverse-engineer malware, producing detailed intelligence reports for internal stakeholders.

Drive internal phishing campaigns and user awareness training, increasing employee resilience to social engineering.

Strong background in penetration testing, threat detection, and incident response

Hands-on experience with Burp Suite, Kali Linux, Metasploit, Python, and Qualys/Nessus

Familiarity with frameworks such as MITRE ATT&CK, NIST, and regulatory standards (e.g. ISO 27001, PCI-DSS)

Experience with SIEM implementation and analysis

Comfortable working in fast-paced, cross-functional environments

Excellent documentation and reporting skills for audit, compliance, and remediation tracking

CEH, OSCP, CISSP, GIAC, or equivalent (not mandatory but a strong plus)

GCS is acting as an Employment Business in relation to this vacancy.