CareerAddict

System Engineer

Posted on Jul 10, 2026 by LA International Computer Consultants Ltd
Oxford, Oxfordshire, United Kingdom
IT
Immediate Start
£300 - £400 Daily
Contract/Project

System Engineer
6 months + contract initially + Extensions
Based: Onsite in Abingdon, Oxford
Rate - £300 - £400 p/d via Umbrella

We have a great opportunity with a world leading organisation where you will be provided with all of the support and development to succeed. A progressive organisation where you can really make a difference. We have a great opportunity for a number of System Engineer's on a long term program of work.

1. Key Responsibilities:
* Support the design, testing, and execution of the Non-Attributable Account (NAA) remediation program across RC4-dependent and non-RC4-dependent account types.
* Assist in building, maintaining, and activating host allow/deny lists within the Lab Organizational Unit (OU) in Active Directory.
* Coordinate with InfoSec and AD teams to execute password reset mechanisms and validate outcomes across pilot and full-rollout phases.
* Engage Business System Owners and lab staff to identify NAA usage patterns, confirm active engagements, and support transition to properly managed service accounts.
* Support deployment and configuration of Transparent Screen Lock and BeyondTrust (password management and remote access) as replacement mechanisms for NAA-dependent workflows.

2. Software Governance & Controls
* Assist in defining and implementing a policy-based software allow list across lab workstations and instrument PCs in the Lab OU.
* Identify currently installed unauthorized or unlicensed software across lab endpoints and support remediation planning.
* Develop and maintain a formal exception request process for legitimate scientific software deployment needs.

3. Vulnerability Management
* Support CrowdStrike EDR sensor deployment and gap closure across lab endpoints, coordinating with InfoSec and site partners.
* Identify and remediate open or misconfigured file shares presenting lateral movement and data exfiltration risk.
* Contribute to OS patching cadence and compliance tracking for lab workstations and instrument PCs.
* Assist in end-of-life operating system identification, remediation planning, and isolation strategies across lab infrastructure.
* Support server-level vulnerability triage and remediation in coordination with the infrastructure team.

4. USB & Data Transfer Controls
* Assess current USB usage patterns across lab sites and instrument workflows.
* Assist in defining and implementing a tiered USB restriction policy (block, monitor, allow-by-exception) that protects the environment without impeding legitimate scientific workflows.
* Manage the formal USB exception process for vendor-mediated access scenarios.

5. Cross-Site & Operational Support
* Serve as a hands-on technical resource for site partners across Boston/US, Oxford/UK, and other global lab locations.
* Maintain accurate documentation of system configurations, allow/deny lists, service account inventories, and workstream progress.
* Contribute to demand intake and ServiceNow-based request management for new service account and access requests.
* Participate in hypercare periods following major changes, providing rapid response to connectivity or authentication issues.
* Communicate clearly with both technical and non-technical stakeholders, including lab scientists, Business System Owners, and senior leadership.

Key Skills & Experience:
* Proficiency in Active Directory administration: OU structure, Group Policy Objects (GPOs), user/service account management, and authentication protocols including RC4/NTLM/Kerberos.
* Understanding of allow/deny list enforcement mechanisms within AD and Lab OU environments.
* Experience with service account life cycle management and privileged access controls.
* Understanding of enterprise Identity Management tools (Sailpoint)

Endpoint & OT Security:
* Working knowledge of endpoint detection and response (EDR) platforms, particularly CrowdStrike Falcon.
* Understanding of OT/lab network architecture, including isolated or semi-isolated lab network segments, instrument connectivity, and associated security risks.
* Familiarity with USB restriction and software control policies on Windows endpoints.
* Knowledge of vulnerability management concepts: OS patching, EOL systems, open file shares, and network-level exposure.

Lab & Instrument Environment Familiarity:
* Understanding of how lab instruments authenticate to networks and the dependencies that exist between shared accounts and instrument operation.
* Familiarity with Transparent Screen Lock (TSL) or similar technologies for instrument session management.
* Awareness of lab data systems such as NuGenesis (SDMS), Empower (Waters), or similar scientific data and chromatography platforms is a plus.
* Awareness of working in Biopharma Laboratory Environments
* Awareness of GxP and Information Security compliance constraints
* Familiarity with ITIL ITSM principles

Tools & Platforms:
* ServiceNow or equivalent ITSM platform for demand intake and ticket management.
* BeyondTrust or equivalent privileged access management and remote support tooling.
* Microsoft Windows Server and Windows 10/11 administration.
* Familiarity with network monitoring and log analysis tools.
* Proficiency in PowerShell preferred.

This is an excellent opportunity on a great project of work, If you are looking for your next exciting opportunity, apply now for your CV to reach me directly, we will respond as soon as possible.

LA International is an award-winning partner of choice for many of the world's most influential companies and government organisations. Holding Enhanced Government Security Accreditation, we are recognised as the European market leader in the delivery of Security Cleared talent to organisations that demand the very highest levels of security, compliance and assurance.

A multiple award-winning organisation, having secured the prestigious Queens Award for Enterprise: International Trade over consecutive years. We are committed to fostering an inclusive, equitable and accessible workplace where everyone feels valued and supported. We welcome applications from all individuals, regardless of background or identity, and we encourage candidates who may not meet every listed requirement to still apply. If you require any adjustments or support during the recruitment process, please let us know and we will work with you to ensure a fair and accessible experience.

Please Note: If a high volume of applications is received, only candidates shortlisted will be contacted.


Reference: 3137102142

https://jobs.careeraddict.com/post/113539369

System Engineer

Posted on Jul 10, 2026 by LA International Computer Consultants Ltd

Print
Oxford, Oxfordshire, United Kingdom
IT
Immediate Start
£300 - £400 Daily
Contract/Project

System Engineer
6 months + contract initially + Extensions
Based: Onsite in Abingdon, Oxford
Rate - £300 - £400 p/d via Umbrella

We have a great opportunity with a world leading organisation where you will be provided with all of the support and development to succeed. A progressive organisation where you can really make a difference. We have a great opportunity for a number of System Engineer's on a long term program of work.

1. Key Responsibilities:
* Support the design, testing, and execution of the Non-Attributable Account (NAA) remediation program across RC4-dependent and non-RC4-dependent account types.
* Assist in building, maintaining, and activating host allow/deny lists within the Lab Organizational Unit (OU) in Active Directory.
* Coordinate with InfoSec and AD teams to execute password reset mechanisms and validate outcomes across pilot and full-rollout phases.
* Engage Business System Owners and lab staff to identify NAA usage patterns, confirm active engagements, and support transition to properly managed service accounts.
* Support deployment and configuration of Transparent Screen Lock and BeyondTrust (password management and remote access) as replacement mechanisms for NAA-dependent workflows.

2. Software Governance & Controls
* Assist in defining and implementing a policy-based software allow list across lab workstations and instrument PCs in the Lab OU.
* Identify currently installed unauthorized or unlicensed software across lab endpoints and support remediation planning.
* Develop and maintain a formal exception request process for legitimate scientific software deployment needs.

3. Vulnerability Management
* Support CrowdStrike EDR sensor deployment and gap closure across lab endpoints, coordinating with InfoSec and site partners.
* Identify and remediate open or misconfigured file shares presenting lateral movement and data exfiltration risk.
* Contribute to OS patching cadence and compliance tracking for lab workstations and instrument PCs.
* Assist in end-of-life operating system identification, remediation planning, and isolation strategies across lab infrastructure.
* Support server-level vulnerability triage and remediation in coordination with the infrastructure team.

4. USB & Data Transfer Controls
* Assess current USB usage patterns across lab sites and instrument workflows.
* Assist in defining and implementing a tiered USB restriction policy (block, monitor, allow-by-exception) that protects the environment without impeding legitimate scientific workflows.
* Manage the formal USB exception process for vendor-mediated access scenarios.

5. Cross-Site & Operational Support
* Serve as a hands-on technical resource for site partners across Boston/US, Oxford/UK, and other global lab locations.
* Maintain accurate documentation of system configurations, allow/deny lists, service account inventories, and workstream progress.
* Contribute to demand intake and ServiceNow-based request management for new service account and access requests.
* Participate in hypercare periods following major changes, providing rapid response to connectivity or authentication issues.
* Communicate clearly with both technical and non-technical stakeholders, including lab scientists, Business System Owners, and senior leadership.

Key Skills & Experience:
* Proficiency in Active Directory administration: OU structure, Group Policy Objects (GPOs), user/service account management, and authentication protocols including RC4/NTLM/Kerberos.
* Understanding of allow/deny list enforcement mechanisms within AD and Lab OU environments.
* Experience with service account life cycle management and privileged access controls.
* Understanding of enterprise Identity Management tools (Sailpoint)

Endpoint & OT Security:
* Working knowledge of endpoint detection and response (EDR) platforms, particularly CrowdStrike Falcon.
* Understanding of OT/lab network architecture, including isolated or semi-isolated lab network segments, instrument connectivity, and associated security risks.
* Familiarity with USB restriction and software control policies on Windows endpoints.
* Knowledge of vulnerability management concepts: OS patching, EOL systems, open file shares, and network-level exposure.

Lab & Instrument Environment Familiarity:
* Understanding of how lab instruments authenticate to networks and the dependencies that exist between shared accounts and instrument operation.
* Familiarity with Transparent Screen Lock (TSL) or similar technologies for instrument session management.
* Awareness of lab data systems such as NuGenesis (SDMS), Empower (Waters), or similar scientific data and chromatography platforms is a plus.
* Awareness of working in Biopharma Laboratory Environments
* Awareness of GxP and Information Security compliance constraints
* Familiarity with ITIL ITSM principles

Tools & Platforms:
* ServiceNow or equivalent ITSM platform for demand intake and ticket management.
* BeyondTrust or equivalent privileged access management and remote support tooling.
* Microsoft Windows Server and Windows 10/11 administration.
* Familiarity with network monitoring and log analysis tools.
* Proficiency in PowerShell preferred.

This is an excellent opportunity on a great project of work, If you are looking for your next exciting opportunity, apply now for your CV to reach me directly, we will respond as soon as possible.

LA International is an award-winning partner of choice for many of the world's most influential companies and government organisations. Holding Enhanced Government Security Accreditation, we are recognised as the European market leader in the delivery of Security Cleared talent to organisations that demand the very highest levels of security, compliance and assurance.

A multiple award-winning organisation, having secured the prestigious Queens Award for Enterprise: International Trade over consecutive years. We are committed to fostering an inclusive, equitable and accessible workplace where everyone feels valued and supported. We welcome applications from all individuals, regardless of background or identity, and we encourage candidates who may not meet every listed requirement to still apply. If you require any adjustments or support during the recruitment process, please let us know and we will work with you to ensure a fair and accessible experience.

Please Note: If a high volume of applications is received, only candidates shortlisted will be contacted.

Print

Reference: 3137102142

Share this job:
CareerAddict

Alert me to jobs like this:

Amplify your job search:

CV/résumé help

Increase interview chances with our downloads and specialist services.

CV Help

Expert career advice

Increase interview chances with our downloads and specialist services.

Visit Blog

Job compatibility

Increase interview chances with our downloads and specialist services.

Start Test

Similar Jobs

Senior Systems Engineer

Oxford, Oxfordshire, United Kingdom

Senior Systems Engineer

Oxford, Oxfordshire, United Kingdom

Body Systems Engineer

Oxford, Oxfordshire, United Kingdom