We are looking for a Cybersecurity Specialist Training Delivery Lead to design, deliver, and govern a global learning and development programme for cybersecurity teams. This role will strengthen skills, drive capability uplift, and foster a culture of continuous learning across the organisation. Key Responsibilities: Lead the design and delivery of certification, accreditation, and specialist learning programmes. Develop career-aligned learning pathways and targeted training initiatives. Oversee learning platforms, governance, and programme effectiveness. Partner with stakeholders to ensure learning aligns with industry frameworks and business priorities. Manage vendor relationships, budgets, and learning resources. Use data and reporting to measure impact and continuously improve learning outcomes. Lead a small team to execute training programmes and initiatives. Champion a culture of continuous learning and knowledge sharing across cybersecurity teams. Requirements: Proven experience leading learning and development programmes, ideally for specialist roles. Strong knowledge of cybersecurity concepts, frameworks, and processes (advantageous). Excellent leadership, stakeholder management, and communication skills. Experience translating complex technical concepts into accessible learning solutions. Ability to work with data, reporting, and metrics to drive programme improvements. Bachelor's degree in Cybersecurity, Technology, Learning & Development, or related field.
Mar 18, 2026
Contractor
We are looking for a Cybersecurity Specialist Training Delivery Lead to design, deliver, and govern a global learning and development programme for cybersecurity teams. This role will strengthen skills, drive capability uplift, and foster a culture of continuous learning across the organisation. Key Responsibilities: Lead the design and delivery of certification, accreditation, and specialist learning programmes. Develop career-aligned learning pathways and targeted training initiatives. Oversee learning platforms, governance, and programme effectiveness. Partner with stakeholders to ensure learning aligns with industry frameworks and business priorities. Manage vendor relationships, budgets, and learning resources. Use data and reporting to measure impact and continuously improve learning outcomes. Lead a small team to execute training programmes and initiatives. Champion a culture of continuous learning and knowledge sharing across cybersecurity teams. Requirements: Proven experience leading learning and development programmes, ideally for specialist roles. Strong knowledge of cybersecurity concepts, frameworks, and processes (advantageous). Excellent leadership, stakeholder management, and communication skills. Experience translating complex technical concepts into accessible learning solutions. Ability to work with data, reporting, and metrics to drive programme improvements. Bachelor's degree in Cybersecurity, Technology, Learning & Development, or related field.
Overview We are seeking an experienced Security Purple Team Lead to support a leading financial services organisation in enhancing its advanced threat defence capability. This contract role will focus on driving collaboration between Red and Blue teams, executing adversary simulation exercises, and improving detection and response effectiveness across a complex, regulated environment. The role will also play a key part in integrating AI-driven security techniques into threat detection, hunting, and response strategies. Key Responsibilities Lead and deliver Purple Team engagements, aligning offensive and defensive security capabilities Design and execute adversary simulation exercises mapped to MITRE ATT&CK Translate Red Team findings into enhanced detection use cases, controls, and playbooks Partner with SOC, Threat Intelligence, and Incident Response teams to improve detection and response maturity Develop and optimise SIEM/XDR detection rules and threat hunting capabilities Apply AI/ML techniques to improve threat detection, anomaly identification, and response automation Provide expertise in securing AI/LLM environments, including identifying emerging risks such as prompt injection and model abuse Deliver clear reporting and metrics to demonstrate improvements in security posture Support regulatory, audit, and risk requirements within a financial services context Mentor internal teams and uplift Purple Team capability Key Skills & Experience Proven experience in a Purple Team, Red Team, or advanced Blue Team role within enterprise environments Strong knowledge of MITRE ATT&CK, adversary simulation, and detection engineering Hands-on experience with SIEM and EDR/XDR platforms such as Splunk, Microsoft Sentinel, or Elastic Experience in threat hunting, incident response, and security operations Exposure to cloud security across AWS, Azure, or GCP AI & Emerging Technology Experience (Desirable) Practical experience applying AI/ML in cybersecurity, including behavioural analytics and anomaly detection Understanding of AI/LLM security risks and appropriate controls Experience with AI-assisted SOC or security tooling Domain Experience Strong background within banking or financial services Understanding of regulatory frameworks, operational resilience, and risk management Experience working in highly regulated, complex environments Certifications Relevant certifications such as OSCP, Crest, GIAC, CISSP or equivalent experience Key Deliverables Successful execution of Purple Team exercises with measurable improvements in detection coverage Enhanced threat detection use cases and response playbooks Improved SOC effectiveness and threat hunting capability Clear reporting and metrics demonstrating security uplift Integration of AI-driven approaches into security operations Why This Role Opportunity to work on a cutting-edge Purple Team programme within a Tier 1 financial environment Exposure to AI-driven cybersecurity innovation High-impact role with visibility across security leadership and engineering teams Immediate start on a critical security transformation initiative
Mar 18, 2026
Contractor
Overview We are seeking an experienced Security Purple Team Lead to support a leading financial services organisation in enhancing its advanced threat defence capability. This contract role will focus on driving collaboration between Red and Blue teams, executing adversary simulation exercises, and improving detection and response effectiveness across a complex, regulated environment. The role will also play a key part in integrating AI-driven security techniques into threat detection, hunting, and response strategies. Key Responsibilities Lead and deliver Purple Team engagements, aligning offensive and defensive security capabilities Design and execute adversary simulation exercises mapped to MITRE ATT&CK Translate Red Team findings into enhanced detection use cases, controls, and playbooks Partner with SOC, Threat Intelligence, and Incident Response teams to improve detection and response maturity Develop and optimise SIEM/XDR detection rules and threat hunting capabilities Apply AI/ML techniques to improve threat detection, anomaly identification, and response automation Provide expertise in securing AI/LLM environments, including identifying emerging risks such as prompt injection and model abuse Deliver clear reporting and metrics to demonstrate improvements in security posture Support regulatory, audit, and risk requirements within a financial services context Mentor internal teams and uplift Purple Team capability Key Skills & Experience Proven experience in a Purple Team, Red Team, or advanced Blue Team role within enterprise environments Strong knowledge of MITRE ATT&CK, adversary simulation, and detection engineering Hands-on experience with SIEM and EDR/XDR platforms such as Splunk, Microsoft Sentinel, or Elastic Experience in threat hunting, incident response, and security operations Exposure to cloud security across AWS, Azure, or GCP AI & Emerging Technology Experience (Desirable) Practical experience applying AI/ML in cybersecurity, including behavioural analytics and anomaly detection Understanding of AI/LLM security risks and appropriate controls Experience with AI-assisted SOC or security tooling Domain Experience Strong background within banking or financial services Understanding of regulatory frameworks, operational resilience, and risk management Experience working in highly regulated, complex environments Certifications Relevant certifications such as OSCP, Crest, GIAC, CISSP or equivalent experience Key Deliverables Successful execution of Purple Team exercises with measurable improvements in detection coverage Enhanced threat detection use cases and response playbooks Improved SOC effectiveness and threat hunting capability Clear reporting and metrics demonstrating security uplift Integration of AI-driven approaches into security operations Why This Role Opportunity to work on a cutting-edge Purple Team programme within a Tier 1 financial environment Exposure to AI-driven cybersecurity innovation High-impact role with visibility across security leadership and engineering teams Immediate start on a critical security transformation initiative
Contract - Inside IR35 Software Licensing Specialist - Financial Services Client The Opportunity Our financial services client is seeking a Software Licensing Specialist to support the governance, processes and controls surrounding the consumption and contribution of Free and Open Source Software (FOSS). This role sits within an international team and involves close collaboration with Engineering, Tooling and Legal functions. It is well suited to candidates with strong expertise in open-source licensing, or those with a background in Software Asset Management (SAM)/IT Asset Management (ITAM) within a commercial environment. The successful candidate will be a proactive self-starter, comfortable working independently and delivering to tight deadlines in a fast-paced environment. Key Responsibilities Provide guidance to engineering teams on the implications of FOSS licensing for their applications. Analyse licence and copyright considerations for new open-source software requests. Use FOSS scanning and licensing tools to identify risks and coordinate remediation actions. Contribute to the continuous improvement of FOSS governance and control processes. Review and categorise open-source licences, including those not recognised by automation tools. Support training and awareness initiatives on licensing obligations. Guide and mentor FOSS licensing analysts within the team. Support the evaluation and development of licence assessment tooling. Essential Experience Strong knowledge of open-source licences, obligations and risk implications. Experience analysing open-source components and their licensing models. Hands-on experience with at least one open-source scanning tool. Understanding of software licensing agreement terminology. Experience working with Legal teams to interpret licence agreements. Strong communication and stakeholder management skills. Familiarity with collaboration tools such as Confluence, JIRA and SharePoint. Desirable Experience engaging with Legal and Engineering stakeholders. Knowledge of software development life cycle and DevSecOps practices. Experience working in Agile environments. Exposure to tools such as Nexus IQ Server, FOSSology or similar. Legal or copyright training would be advantageous. More details available on successful application.
Mar 13, 2026
Contractor
Contract - Inside IR35 Software Licensing Specialist - Financial Services Client The Opportunity Our financial services client is seeking a Software Licensing Specialist to support the governance, processes and controls surrounding the consumption and contribution of Free and Open Source Software (FOSS). This role sits within an international team and involves close collaboration with Engineering, Tooling and Legal functions. It is well suited to candidates with strong expertise in open-source licensing, or those with a background in Software Asset Management (SAM)/IT Asset Management (ITAM) within a commercial environment. The successful candidate will be a proactive self-starter, comfortable working independently and delivering to tight deadlines in a fast-paced environment. Key Responsibilities Provide guidance to engineering teams on the implications of FOSS licensing for their applications. Analyse licence and copyright considerations for new open-source software requests. Use FOSS scanning and licensing tools to identify risks and coordinate remediation actions. Contribute to the continuous improvement of FOSS governance and control processes. Review and categorise open-source licences, including those not recognised by automation tools. Support training and awareness initiatives on licensing obligations. Guide and mentor FOSS licensing analysts within the team. Support the evaluation and development of licence assessment tooling. Essential Experience Strong knowledge of open-source licences, obligations and risk implications. Experience analysing open-source components and their licensing models. Hands-on experience with at least one open-source scanning tool. Understanding of software licensing agreement terminology. Experience working with Legal teams to interpret licence agreements. Strong communication and stakeholder management skills. Familiarity with collaboration tools such as Confluence, JIRA and SharePoint. Desirable Experience engaging with Legal and Engineering stakeholders. Knowledge of software development life cycle and DevSecOps practices. Experience working in Agile environments. Exposure to tools such as Nexus IQ Server, FOSSology or similar. Legal or copyright training would be advantageous. More details available on successful application.
Cryptography Infrastructure Engineer We are looking for a Cryptography Infrastructure Engineer to join a financial services client based in Sheffield. There will be a requirement to be in the office once every two-weeks. The contract is also inside IR35. The Role The objective will be to support the Cryptography team who are responsible for protecting the identity, confidentiality and authenticity of trillions of dollars of transactions globally. We are looking for an SME in cyber security and cryptography who can help improve their HSM observability for their entire encryption estate. The existing HSM observability is ready to be taken to the next level, improving its resilience, increased monitoring capabilities and faster alerting. We specifically require someone with expertise in either Thales Luna, nShield or payShield HSMs. Key Responsibilities: Be part of a team that implements a new monitoring and alerting solution based upon Splunk Have specific knowledge about Entrust nShield HSMs, payShield HSMs or Luna HSMs, and pulling relevant data from the device (via SNMP) Closely collaborate with team members - as SME for HSMs, but also other HSMs. Work closely with stakeholders to understand requirement details. Write a design and test specification for your responsibility in the observability project Contribute to documentation of the project Help define the roadmap for continual improvements in the management of cryptographic services Flag potential issues timely, think outside the box and be creative in finding solutions. Experienced required: Good knowledge about HSMs, specifically Entrust nShield, payShield and/or Luna. Understand how monitoring for HSMs work with expertise in the technologies such as SNMP Stakeholder management skills, with experience of understanding and meeting the needs of multiple stakeholders Knowing what it means to be part of a team, not only being a team player. Contribute to discussions, allow others to speak. Innovative mindset, we are doing something completely new, inhouse. This requires to speak up when it comes to innovations/new ideas. Understanding of cybersecurity principles, global financial services business models, as well as regional compliance standards, relevant local regulations, and applicable laws Knowledge of cryptographic modules and solutions, eg TPMs, Good understanding on IT Infrastructure technical platforms/technologies Understanding of SSH/SSL functionality and usage Experience interfacing with technology teams to bring lab concepts to market within an organization and building effective operational models to ensure capabilities are able to be fully utilized and grow to meet the needs of the team Understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, PCI DSS, GLBA, GDPR, Global data security and privacy acts, FFIEC guidelines, CIS and NIST standards. Windows and Linux Servers administration Strong Documentation skills More details available on successful application.
Oct 02, 2025
Contractor
Cryptography Infrastructure Engineer We are looking for a Cryptography Infrastructure Engineer to join a financial services client based in Sheffield. There will be a requirement to be in the office once every two-weeks. The contract is also inside IR35. The Role The objective will be to support the Cryptography team who are responsible for protecting the identity, confidentiality and authenticity of trillions of dollars of transactions globally. We are looking for an SME in cyber security and cryptography who can help improve their HSM observability for their entire encryption estate. The existing HSM observability is ready to be taken to the next level, improving its resilience, increased monitoring capabilities and faster alerting. We specifically require someone with expertise in either Thales Luna, nShield or payShield HSMs. Key Responsibilities: Be part of a team that implements a new monitoring and alerting solution based upon Splunk Have specific knowledge about Entrust nShield HSMs, payShield HSMs or Luna HSMs, and pulling relevant data from the device (via SNMP) Closely collaborate with team members - as SME for HSMs, but also other HSMs. Work closely with stakeholders to understand requirement details. Write a design and test specification for your responsibility in the observability project Contribute to documentation of the project Help define the roadmap for continual improvements in the management of cryptographic services Flag potential issues timely, think outside the box and be creative in finding solutions. Experienced required: Good knowledge about HSMs, specifically Entrust nShield, payShield and/or Luna. Understand how monitoring for HSMs work with expertise in the technologies such as SNMP Stakeholder management skills, with experience of understanding and meeting the needs of multiple stakeholders Knowing what it means to be part of a team, not only being a team player. Contribute to discussions, allow others to speak. Innovative mindset, we are doing something completely new, inhouse. This requires to speak up when it comes to innovations/new ideas. Understanding of cybersecurity principles, global financial services business models, as well as regional compliance standards, relevant local regulations, and applicable laws Knowledge of cryptographic modules and solutions, eg TPMs, Good understanding on IT Infrastructure technical platforms/technologies Understanding of SSH/SSL functionality and usage Experience interfacing with technology teams to bring lab concepts to market within an organization and building effective operational models to ensure capabilities are able to be fully utilized and grow to meet the needs of the team Understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, PCI DSS, GLBA, GDPR, Global data security and privacy acts, FFIEC guidelines, CIS and NIST standards. Windows and Linux Servers administration Strong Documentation skills More details available on successful application.
About the Role We are seeking a highly skilled WAF Engineer to join our security engineering team and take responsibility for the configuration, tuning, monitoring, and optimisation of our Web Application Firewall (WAF). The successful candidate will work closely with developers, security analysts, and infrastructure teams to ensure applications remain protected against advanced web threats while minimising false positives and supporting business operations. This role requires deep hands-on expertise in WAF technologies, advanced knowledge of application security threats (OWASP Top 10, XSS, SQLi, XXE, etc.), and the ability to fine-tune WAF rules without compromising overall security posture. Key Responsibilities Configure, manage, and tune WAF rules to balance strong security controls with minimal false positives. Collaborate with development teams to create precise parameter-level exceptions and avoid unnecessary rule suppression. Monitor WAF logs, identify potential threats, and respond to security incidents in Real Time. Analyse traffic patterns and investigate anomalies, such as spikes in error codes or unusual request behaviour. Develop and implement strategies to mitigate attacks, including automated threats, scraping, path traversal, XXE, and SQL injection. Document WAF policies, exceptions, and processes, ensuring knowledge is shared across the team. Partner with security operations, SOC analysts, and developers to ensure WAF is aligned with application updates and new releases. Support threat modelling, security testing, and vulnerability assessments with a WAF focus. Required Skills & Experience Strong expertise with Web Application Firewalls (eg, F5 ASM/Advanced WAF, Imperva, Akamai Kona, Cloudflare, AWS WAF, Azure WAF). Deep understanding of OWASP Top 10 and web attack techniques, including XSS, SQLi, XXE, SSRF, and path traversal. Hands-on experience tuning WAFs to allow business functionality while preventing exploitation. Solid knowledge of HTTP, HTTPS, XML, JSON, REST APIs, and web application behaviours. Experience in analysing logs and traffic anomalies to detect attacks or misconfigurations. Familiarity with secure SDLC processes and working with DevOps teams. Strong communication and stakeholder management skills. Certifications such as GIAC GWAPT, CEH, OSWE, or vendor-specific WAF certifications are desirable
Sep 25, 2025
Contractor
About the Role We are seeking a highly skilled WAF Engineer to join our security engineering team and take responsibility for the configuration, tuning, monitoring, and optimisation of our Web Application Firewall (WAF). The successful candidate will work closely with developers, security analysts, and infrastructure teams to ensure applications remain protected against advanced web threats while minimising false positives and supporting business operations. This role requires deep hands-on expertise in WAF technologies, advanced knowledge of application security threats (OWASP Top 10, XSS, SQLi, XXE, etc.), and the ability to fine-tune WAF rules without compromising overall security posture. Key Responsibilities Configure, manage, and tune WAF rules to balance strong security controls with minimal false positives. Collaborate with development teams to create precise parameter-level exceptions and avoid unnecessary rule suppression. Monitor WAF logs, identify potential threats, and respond to security incidents in Real Time. Analyse traffic patterns and investigate anomalies, such as spikes in error codes or unusual request behaviour. Develop and implement strategies to mitigate attacks, including automated threats, scraping, path traversal, XXE, and SQL injection. Document WAF policies, exceptions, and processes, ensuring knowledge is shared across the team. Partner with security operations, SOC analysts, and developers to ensure WAF is aligned with application updates and new releases. Support threat modelling, security testing, and vulnerability assessments with a WAF focus. Required Skills & Experience Strong expertise with Web Application Firewalls (eg, F5 ASM/Advanced WAF, Imperva, Akamai Kona, Cloudflare, AWS WAF, Azure WAF). Deep understanding of OWASP Top 10 and web attack techniques, including XSS, SQLi, XXE, SSRF, and path traversal. Hands-on experience tuning WAFs to allow business functionality while preventing exploitation. Solid knowledge of HTTP, HTTPS, XML, JSON, REST APIs, and web application behaviours. Experience in analysing logs and traffic anomalies to detect attacks or misconfigurations. Familiarity with secure SDLC processes and working with DevOps teams. Strong communication and stakeholder management skills. Certifications such as GIAC GWAPT, CEH, OSWE, or vendor-specific WAF certifications are desirable
IT Service Manager - Luxury Cruise Liner (3-Month Rotational Overseas Work) TAX-FREE | Living Expenses Covered When Working Away Join a world-class luxury cruise liner as an IT Service Manager , overseeing IT service delivery, stakeholder engagement, and technical operations to ensure a seamless digital experience for guests and crew. This dynamic role involves a three-month rotational overseas assignment , where you will lead IT service management, drive operational excellence, and collaborate with key stakeholders to enhance IT performance onboard. Why Join? All living expenses covered while working overseas Opportunity to travel the world while advancing your IT leadership career Work in a prestigious, multicultural environment, delivering exceptional IT services aboard a luxury cruise liner Key Responsibilities: Service Management & Delivery: Oversee IT service operations, ensuring high availability, performance, and seamless user experiences for guests and crew. Stakeholder Engagement: Act as the primary IT point of contact for senior leadership, department heads, and external vendors, ensuring alignment with business needs. IT Strategy & Continuous Improvement: Develop and implement IT service strategies to enhance operational efficiency, minimize downtime, and drive innovation. Leadership & Team Management: Mentor and manage onboard IT support staff, fostering a culture of excellence, continuous learning, and proactive problem-solving. Incident & Problem Management: Ensure swift resolution of IT issues through structured processes, clear escalation paths, and robust service management frameworks. Compliance & Security: Ensure IT operations comply with maritime regulations, cybersecurity policies, and data protection standards. Performance Monitoring & Reporting: Track IT service metrics, analyse trends, and provide data-driven recommendations for improving system reliability and user satisfaction. Qualifications & Requirements: 5+ years of experience in IT service management, IT operations, or technology leadership roles ITIL Certification required (experience implementing ITIL best practices preferred) Strong leadership and stakeholder management skills, with the ability to communicate technical concepts to non-technical audiences Proven experience managing IT support teams, vendors, and service contracts Expertise in enterprise IT infrastructure, including Servers, networks, and end-user computing (EUC) Hospitality, cruise, or travel industry experience preferred Marine Training (STCW) or willingness to complete it before starting work Ability to travel and work overseas on a three-month rotational basis Work Environment: Lead IT service management onboard a luxury cruise liner, ensuring seamless technology operations across multiple locations. Work in a fast-paced, customer-facing environment, collaborating with diverse international teams. Adapt to varying time zones and operational needs while maintaining high service standards. If you are a strategic IT leader with a passion for service excellence , stakeholder management, and global operations, this is your opportunity to take your career to the next level while exploring the world!
Sep 25, 2025
Full time
IT Service Manager - Luxury Cruise Liner (3-Month Rotational Overseas Work) TAX-FREE | Living Expenses Covered When Working Away Join a world-class luxury cruise liner as an IT Service Manager , overseeing IT service delivery, stakeholder engagement, and technical operations to ensure a seamless digital experience for guests and crew. This dynamic role involves a three-month rotational overseas assignment , where you will lead IT service management, drive operational excellence, and collaborate with key stakeholders to enhance IT performance onboard. Why Join? All living expenses covered while working overseas Opportunity to travel the world while advancing your IT leadership career Work in a prestigious, multicultural environment, delivering exceptional IT services aboard a luxury cruise liner Key Responsibilities: Service Management & Delivery: Oversee IT service operations, ensuring high availability, performance, and seamless user experiences for guests and crew. Stakeholder Engagement: Act as the primary IT point of contact for senior leadership, department heads, and external vendors, ensuring alignment with business needs. IT Strategy & Continuous Improvement: Develop and implement IT service strategies to enhance operational efficiency, minimize downtime, and drive innovation. Leadership & Team Management: Mentor and manage onboard IT support staff, fostering a culture of excellence, continuous learning, and proactive problem-solving. Incident & Problem Management: Ensure swift resolution of IT issues through structured processes, clear escalation paths, and robust service management frameworks. Compliance & Security: Ensure IT operations comply with maritime regulations, cybersecurity policies, and data protection standards. Performance Monitoring & Reporting: Track IT service metrics, analyse trends, and provide data-driven recommendations for improving system reliability and user satisfaction. Qualifications & Requirements: 5+ years of experience in IT service management, IT operations, or technology leadership roles ITIL Certification required (experience implementing ITIL best practices preferred) Strong leadership and stakeholder management skills, with the ability to communicate technical concepts to non-technical audiences Proven experience managing IT support teams, vendors, and service contracts Expertise in enterprise IT infrastructure, including Servers, networks, and end-user computing (EUC) Hospitality, cruise, or travel industry experience preferred Marine Training (STCW) or willingness to complete it before starting work Ability to travel and work overseas on a three-month rotational basis Work Environment: Lead IT service management onboard a luxury cruise liner, ensuring seamless technology operations across multiple locations. Work in a fast-paced, customer-facing environment, collaborating with diverse international teams. Adapt to varying time zones and operational needs while maintaining high service standards. If you are a strategic IT leader with a passion for service excellence , stakeholder management, and global operations, this is your opportunity to take your career to the next level while exploring the world!
Cryptography Infrastructure Engineer We are looking for a Cryptography Infrastructure Engineer to join a financial services client based in Sheffield. There will be a requirement to be in the office once every two-weeks. The contract is also inside IR35. The Role The objective will be to support the Cryptography team who are responsible for protecting the identity, confidentiality and authenticity of trillions of dollars of transactions globally. We are looking for an SME in cyber security and cryptography who can help improve their HSM observability for their entire encryption estate. The existing HSM observability is ready to be taken to the next level, improving its resilience, increased monitoring capabilities and faster alerting. We specifically require someone with expertise in either Thales Luna, nShield or payShield HSMs. Key Responsibilities: Be part of a team that implements a new monitoring and alerting solution based upon Splunk Have specific knowledge about Entrust nShield HSMs, payShield HSMs or Luna HSMs, and pulling relevant data from the device (via SNMP) Closely collaborate with team members - as SME for HSMs, but also other HSMs. Work closely with stakeholders to understand requirement details. Write a design and test specification for your responsibility in the observability project Contribute to documentation of the project Help define the roadmap for continual improvements in the management of cryptographic services Flag potential issues timely, think outside the box and be creative in finding solutions. Experienced required: Good knowledge about HSMs, specifically Entrust nShield, payShield and/or Luna. Understand how monitoring for HSMs work with expertise in the technologies such as SNMP Stakeholder management skills, with experience of understanding and meeting the needs of multiple stakeholders Knowing what it means to be part of a team, not only being a team player. Contribute to discussions, allow others to speak. Innovative mindset, we are doing something completely new, inhouse. This requires to speak up when it comes to innovations/new ideas. Understanding of cybersecurity principles, global financial services business models, as well as regional compliance standards, relevant local regulations, and applicable laws Knowledge of cryptographic modules and solutions, eg TPMs, Good understanding on IT Infrastructure technical platforms/technologies Understanding of SSH/SSL functionality and usage Experience interfacing with technology teams to bring lab concepts to market within an organization and building effective operational models to ensure capabilities are able to be fully utilized and grow to meet the needs of the team Understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, PCI DSS, GLBA, GDPR, Global data security and privacy acts, FFIEC guidelines, CIS and NIST standards. Windows and Linux Servers administration Strong Documentation skills More details available on successful application.
Sep 25, 2025
Contractor
Cryptography Infrastructure Engineer We are looking for a Cryptography Infrastructure Engineer to join a financial services client based in Sheffield. There will be a requirement to be in the office once every two-weeks. The contract is also inside IR35. The Role The objective will be to support the Cryptography team who are responsible for protecting the identity, confidentiality and authenticity of trillions of dollars of transactions globally. We are looking for an SME in cyber security and cryptography who can help improve their HSM observability for their entire encryption estate. The existing HSM observability is ready to be taken to the next level, improving its resilience, increased monitoring capabilities and faster alerting. We specifically require someone with expertise in either Thales Luna, nShield or payShield HSMs. Key Responsibilities: Be part of a team that implements a new monitoring and alerting solution based upon Splunk Have specific knowledge about Entrust nShield HSMs, payShield HSMs or Luna HSMs, and pulling relevant data from the device (via SNMP) Closely collaborate with team members - as SME for HSMs, but also other HSMs. Work closely with stakeholders to understand requirement details. Write a design and test specification for your responsibility in the observability project Contribute to documentation of the project Help define the roadmap for continual improvements in the management of cryptographic services Flag potential issues timely, think outside the box and be creative in finding solutions. Experienced required: Good knowledge about HSMs, specifically Entrust nShield, payShield and/or Luna. Understand how monitoring for HSMs work with expertise in the technologies such as SNMP Stakeholder management skills, with experience of understanding and meeting the needs of multiple stakeholders Knowing what it means to be part of a team, not only being a team player. Contribute to discussions, allow others to speak. Innovative mindset, we are doing something completely new, inhouse. This requires to speak up when it comes to innovations/new ideas. Understanding of cybersecurity principles, global financial services business models, as well as regional compliance standards, relevant local regulations, and applicable laws Knowledge of cryptographic modules and solutions, eg TPMs, Good understanding on IT Infrastructure technical platforms/technologies Understanding of SSH/SSL functionality and usage Experience interfacing with technology teams to bring lab concepts to market within an organization and building effective operational models to ensure capabilities are able to be fully utilized and grow to meet the needs of the team Understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, PCI DSS, GLBA, GDPR, Global data security and privacy acts, FFIEC guidelines, CIS and NIST standards. Windows and Linux Servers administration Strong Documentation skills More details available on successful application.