Galliford Try

About the Company

Galliford Try is a leading UK contractor passionate about providing high quality buildings and infrastructure for communities across the nation. With expertise in providing whole life solutions to both private and public clients, we have a strong track record in our chosen sectors of Building, Highways and Environment. Our network of offices across England and Scotland, provide local delivery to their regional markets, all underpinned by the strength of a nationwide FTSE business.

Listed Jobs

Company Name

Galliford Try

Job Title

Security Vetting Administrator

Job Description

**Job Title**: Security Vetting Administrator **Role Summary**: Administer and process security vetting applications within defined timescales, ensuring compliance with legislation and company procedures. Liaise with candidates, contractors, and stakeholders to secure clearances promptly, support aftercare processes, and maintain data protection standards. **Expactations**: - Process new vetting applications accurately and timeli­ly. - Promote rapid clearance of candidates, including follow‑up for additional information. - Maintain confidentiality, accuracy, and data protection at all times. - Provide guidance on security vetting to internal business units. - Travel to sites as required (≈80% of the week). **Key Responsibilities**: - Review and process vetting applications against statutory and company timelines. - Coordinate with relevant personnel to ensure complete documentation. - Manage aftercare vetting for required clearance levels. - Communicate effectively with candidates, contractors, and stakeholders. - Uphold data protection and confidentiality standards. - Support other security management duties as directed. **Required Skills**: - Strong administrative and organisational abilities. - Experience handling sensitive personal data. - Excellent communication and stakeholder liaison. - Attention to detail and accuracy. - Ability to work independently and manage deadlines. **Required Education & Certifications**: - Minimum of a GCSE/High School equivalent. - Current security clearance (SC) or willingness to acquire within 5 years UK residency. - MOJ project experience is desirable but not mandatory.

Suffolk, United kingdom

On site

10-12-2025

Company Name

Galliford Try

Job Title

Senior Information Security Engineer

Job Description

Job title: Senior Information Security Engineer Role Summary: Lead the design, deployment, and maintenance of the organisation’s cybersecurity strategy. Partner with internal stakeholders and third‑party security providers to safeguard digital assets through threat detection, vulnerability management, incident response, and continuous improvement of security tools and policies. Expectations: - Maintain a robust, compliant security posture that aligns with ISO 27001, Cyber Essentials, UK GDPR, and NIST guidance. - Reduce the mean time to detect and contain incidents; provide actionable risk mitigation. - Deliver clear, audit‑ready documentation and evidence of controls, tools, and processes. - Mentor junior staff and foster a security‑aware culture across the business. Key Responsibilities: - Operate and monitor SOC/SIEM environments; analyse alerts for compromise. - Conduct regular vulnerability scans, risk assessments, and penetration test coordination. - Lead or support incident investigations, incident containment, and post‑incident reporting. - Draft, review, and enforce security policies, standards, and procedures. - Administer and optimise Microsoft Azure, Entra ID, Microsoft 365, Defender stack, and endpoint protection solutions. - Plan and run security awareness campaigns, phishing simulations, and training materials. - Support compliance audits, prepare evidence, and facilitate internal/external audit processes. - Advise on emerging threats, recommend tool and process enhancements, and document changes. Required Skills: - 5+ years in information security or related technical roles. - Experience managing outsourced SOC/SIEM services; hands‑on incident response and vulnerability management. - Proficiency with Microsoft 365, Azure security controls; knowledge of AWS/GCP desirable. - Strong documentation, communication, and stakeholder engagement abilities. - Ability to prioritise, adapt, and manage multiple concurrent projects. - Ethical mindset and commitment to continuous learning. Required Education & Certifications: - Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience). - Certifications such as CISSP, CISA, CRISC, ISO 27001 Lead Implementer/Lead Auditor, CEH, or Microsoft Certified: Azure Security Engineer Associate preferred.

Leicester, United kingdom

On site

Senior

11-12-2025