Role Description Our team is continuously growing alongside our expanding client base, so we are looking for a SOC Incident Response Specialist who is eager to apply their technical expertise, develop in the field of security, and work with real incidents and modern tools. What you will do: - Manage security and operational incidents end-to-end, including investigation, coordination, and response; - Communicate directly with Clients and stakeholders during Data Breach incidents; - Conduct Root Cause Analysis, develop preventive measures, and prepare management reports; - Analyze Clients’ workflows and incident trends to identify risks and improve security processes; - Assess the security of software, platforms, and third-party vendors; - Review new hiring locations for compliance with data protection and security standards; - Develop incident response procedures and maintain internal security documentation and knowledge base. Qualifications - Proven experience in investigating and handling information security incidents (from 1 year); - Analytical mindset and the ability to make fast decisions to mitigate incident impact; - Strong self-organization skills and the ability to prioritize work independently; - Understanding of data privacy principles and breach notification requirements; - English proficiency at level B2 or higher. Requirements - Proficiency in OSINT methodologies for investigations; - Experience in the BPO or Customer Support industry; - Basic knowledge of security tools logic (SIEM, EDR, DLP, NGFW, VPN, VDI). Benefits - Providing services during business hours; - Opportunity to cooperate fully remotely; - Inclusive international environment; - Compensation in USD; - Rewards for referring friends; - Balance between project workload and personal time, but also – internal health policy; - Responsive leadership interested in your growth and long-lasting cooperation; - Greenhouse conditions for self-development; - A culture built on trust, with no time-tracking requirements. *The items listed in this section may vary depending on the terms of your engagement. Certain benefits and conditions typically apply to employees; independent contractors may not be eligible for all of these. The specific terms, including compensation, benefits, and work conditions, will be clearly defined in your agreement if selected.

• Own the day-to-day administration of CrowdStrike Falcon — prevention policies, detection tuning, custom IOAs, USB device control, and Real Time Response runbooks across the entire Branch endpoint fleet. • Operate and mature ThreatLocker — build and maintain application allowlisting, ringfencing, storage control, and elevation policies; reduce learning-mode exceptions over time and drive measurable hardening progress. • Administer Island Enterprise Browser — define and enforce browser-level policies for SaaS access, copy/paste, downloads, screenshot, and extension governance; align browser controls with insider risk and DLP objectives. • Drive endpoint hardening and configuration baselines for macOS and Windows. MDM (Jamf / Intune), patch SLAs, FileVault/BitLocker, and CIS-aligned benchmarks. • Maintain a defensible inventory of endpoints, agents, and coverage gaps, and drive remediation when devices fall out of compliance. • Own corporate-side incident response for endpoint, identity, email, and insider events — from initial triage through containment, eradication, recovery, and post-incident review. • Build and run Branch’s insider risk program — from defining risk indicators (data exfiltration, anomalous access, departing employee behavior) to building detections and response playbooks across endpoint, browser, and SaaS telemetry. • Operate Data Loss Prevention controls across Google Workspace (Drive, Gmail), Island Browser, and endpoint channels; investigate DLP events end-to-end, balancing user friction against data-protection outcomes. • Lead onboarding, offboarding, transitions security workflows in partnership with People Operations — enforce least-privilege access, data return at offboarding, and time-bounded monitoring of high-risk departures, ultimately skilling up our IAM team. • Triage and investigate insider risk cases with discretion, partnering with Legal, HR, and GRC on documentation, evidence handling, and outcomes; preserve chain-of-custody on every case. • Develop user-facing guidance and training that reduces accidental risk — phishing reporting, secure handling of customer data, and acceptable use of AI and SaaS tools. • Harden Google Workspace — admin role hygiene, context-aware access, OAuth third-party app governance, advanced phishing/malware protection, and audit logging into the SIEM. • Automate repetitive corporate security work using Python or Bash and orchestration platforms (e.g., Tines, Torq, XSOAR) — alert enrichment, user notifications, evidence collection, and offboarding checks. • Contribute to the corporate vulnerability management program for endpoints and SaaS — prioritization, SLA tracking, and cross-functional remediation. • Serve as a security consultant and escalation point for the broader business on secure configurations, patching, exception requests, and acceptable-use questions.

Role Description This role is for our partner. [the company]'s AI-powered identity platform manages and governs human and non-human access to all of an organization's applications, data, and business processes. Customers trust [the company] to safeguard their digital assets, drive operational efficiency, and reduce compliance costs. Built for the AI age, [the company] is today helping organizations safely accelerate their deployment and usage of AI. [the company] is recognized as the leader in identity security, with solutions that protect and empower the world's leading brands, Fortune 500 companies, and government institutions. [the company] is currently seeking a Sales Development Representative (SDR) to initiate sales cycles for our Enterprise Sales team. SDRs do this by: - Identifying and engaging the appropriate prospect personas across Federal Agencies - Inquiring into their IGA business and infrastructure challenges - Aligning [the company]'s value propositions to those challenges - Gaining the prospects' commitment to take a meeting with a Director of Sales to learn more Qualifications - 1+ year prospecting Enterprise SaaS - Federal agency software-procurement understanding - IGA knowledge - Phone-prospecting confidence - Salesforce required - Degree or equivalent Company Description

Title: IT Operations & Security Manager Location: Remote, UK Department: Operations Department Operations Employment Type Full Time Location Remote, UK Workplace type Fully remote Compensation £60,000 - £65,000 / year Reporting To Owen Bennett Job Description: We are seeking an IT Operations & Security Manager to own and operate Aptem’s Corporate IT environment. You will oversee the health, security, and lifecycle of our identity platforms, physical assets, and core operational services. Working closely with the Head of Infrastructure, you will help shape the direction and delivery of Corporate IT and Security roadmap. This is a technical, hands-on leadership role where you will solve problems, improve systems, and make decisions that move us forward. The role is central to ensuring that our internal technology estate remains secure, reliable, scalable, and aligned with business and compliance requirements. This is a remote role with one day per month on average spent at our London office requiring you to live within a reasonable commute to central London. Key Responsibilities You will be responsible for the day-to-day operation of Aptem’s Corporate IT systems. That means knowing what’s working, what’s not, where the risks are and delivering solutions to problems. You will remain hands-on, acting as the escalation point for complex issues while contributing directly to configuration, troubleshooting, and continuous improvement across our Microsoft 365 and SaaS estate. Corporate IT Operations & Service Delivery Own the performance and reliability of Corporate IT services, ensuring a high-quality experience for all users. You will manage support workloads and priorities, ensuring incidents and requests are handled efficiently, while maintaining strong visibility of service health and risks. You will also oversee project delivery within the IT function, balancing operational demand with improvement initiatives. Security & Compliance Take ownership of the Corporate IT security posture, ensuring controls remain effective and aligned with ISO 27001 and Cyber Essentials requirements. Work closely with Compliance and Platform teams to: - Manage identity and access controls (MFA, Conditional Access, least privilege) - Maintain endpoint security and device compliance - Respond to alerts, manage risks, and support audits Identity, Devices & Asset Lifecycle Own the lifecycle of identity, access, and physical IT assets across the organisation. This includes joiner, mover, and leaver processes, device provisioning and configuration, and refresh cycles for hardware. You will ensure asset inventory is accurate, access reviews are completed on schedule, and all devices meet defined security and compliance baselines. Microsoft 365 & SaaS Manage and optimise Aptem’s core IT platforms, including Microsoft 365, Entra ID, Exchange, Intune and other supporting SaaS platforms. You will ensure these platforms are well-configured, secure, recoverable and continuously improved, while also maintaining governance over the wider SaaS estate, including access control and integration with identity systems. Continuous Improvement & Automation Drive ongoing improvement across the IT function by identifying opportunities to automate processes, reduce manual effort, and enhance security and user experience. This includes implementing new policies, improving operational processes, and adopting Modern Workplace best practices. Documentation & Governance Own the documentation of IT systems, processes, and policies, ensuring they are clear, up to date, and maintained to an audit-ready standard. This supports internal governance, compliance requirements, and external due diligence activities. Leadership & Collaboration Lead the IT function day-to-day, providing clear objectives, performance feedback, and technical guidance to the IT Systems Administrator. You will work closely with senior business stakeholders to evolve Aptem’s IT strategy and ensure alignment with broader business goals. Required skills and technical knowledge Essential Skills - Proven experience in a senior, hands-on IT role (e.g. Senior IT Engineer, IT Manager, or equivalent) - Strong technical expertise across Microsoft 365, Entra ID, Intune, and Azure. - Strong understanding of identity and access management, MFA, and endpoint security - Experience operating within ISO 27001, Cyber Essentials, or similar frameworks - Experience mentoring or managing technical staff - Excellent communication and stakeholder management skills Desirable Skills - Cloud and Zero Trust Architecture - PowerShell scripting and automation technologies - Cyber security training - Experience using Agentic AI Benefits Aptem offers numerous benefits to support our staff. - 27 days annual leave - Option to buy up to 5 extra days’ annual leave - Life insurance - Optional comprehensive private medical insurance - Optional EV scheme with Octopus to make electric cars more affordable - Salary Extras: retail and gym discounts, plus Employee Assistance Programme - Summer hours for extra flexibility in warmer months - Birthday day off - Pension scheme to support your long‑term financial future - Aptem Neighbour Scheme to connect local remote colleagues - Up to two paid volunteering days each year - Biannual company social events - Virtual coffee networking to build connections across the business About Aptem Aptem are pioneers in developing technology solutions for the vocational training, further education and welfare to work sectors. Aptem's mission is to create innovations that unleash new levels of efficiency, productivity and personal growth – something that we have been achieving since 2009. Our commitment to quality has been recognised time and again by our customers, award wins, ISO 9001 and ISO 27001 accreditations, and Cyber Essentials Plus certification.