Cryptography Infrastructure Engineer We are looking for a Cryptography Infrastructure Engineer to join a financial services client based in Sheffield. There will be a requirement to be in the office once every two-weeks. The contract is also inside IR35. The Role The objective will be to support the Cryptography team who are responsible for protecting the identity, confidentiality and authenticity of trillions of dollars of transactions globally. We are looking for an SME in cyber security and cryptography who can help improve their HSM observability for their entire encryption estate. The existing HSM observability is ready to be taken to the next level, improving its resilience, increased monitoring capabilities and faster alerting. We specifically require someone with expertise in either Thales Luna, nShield or payShield HSMs. Key Responsibilities: Be part of a team that implements a new monitoring and alerting solution based upon Splunk Have specific knowledge about Entrust nShield HSMs, payShield HSMs or Luna HSMs, and pulling relevant data from the device (via SNMP) Closely collaborate with team members - as SME for HSMs, but also other HSMs. Work closely with stakeholders to understand requirement details. Write a design and test specification for your responsibility in the observability project Contribute to documentation of the project Help define the roadmap for continual improvements in the management of cryptographic services Flag potential issues timely, think outside the box and be creative in finding solutions. Experienced required: Good knowledge about HSMs, specifically Entrust nShield, payShield and/or Luna. Understand how monitoring for HSMs work with expertise in the technologies such as SNMP Stakeholder management skills, with experience of understanding and meeting the needs of multiple stakeholders Knowing what it means to be part of a team, not only being a team player. Contribute to discussions, allow others to speak. Innovative mindset, we are doing something completely new, inhouse. This requires to speak up when it comes to innovations/new ideas. Understanding of cybersecurity principles, global financial services business models, as well as regional compliance standards, relevant local regulations, and applicable laws Knowledge of cryptographic modules and solutions, eg TPMs, Good understanding on IT Infrastructure technical platforms/technologies Understanding of SSH/SSL functionality and usage Experience interfacing with technology teams to bring lab concepts to market within an organization and building effective operational models to ensure capabilities are able to be fully utilized and grow to meet the needs of the team Understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, PCI DSS, GLBA, GDPR, Global data security and privacy acts, FFIEC guidelines, CIS and NIST standards. Windows and Linux Servers administration Strong Documentation skills More details available on successful application.
Oct 02, 2025
Contractor
Cryptography Infrastructure Engineer We are looking for a Cryptography Infrastructure Engineer to join a financial services client based in Sheffield. There will be a requirement to be in the office once every two-weeks. The contract is also inside IR35. The Role The objective will be to support the Cryptography team who are responsible for protecting the identity, confidentiality and authenticity of trillions of dollars of transactions globally. We are looking for an SME in cyber security and cryptography who can help improve their HSM observability for their entire encryption estate. The existing HSM observability is ready to be taken to the next level, improving its resilience, increased monitoring capabilities and faster alerting. We specifically require someone with expertise in either Thales Luna, nShield or payShield HSMs. Key Responsibilities: Be part of a team that implements a new monitoring and alerting solution based upon Splunk Have specific knowledge about Entrust nShield HSMs, payShield HSMs or Luna HSMs, and pulling relevant data from the device (via SNMP) Closely collaborate with team members - as SME for HSMs, but also other HSMs. Work closely with stakeholders to understand requirement details. Write a design and test specification for your responsibility in the observability project Contribute to documentation of the project Help define the roadmap for continual improvements in the management of cryptographic services Flag potential issues timely, think outside the box and be creative in finding solutions. Experienced required: Good knowledge about HSMs, specifically Entrust nShield, payShield and/or Luna. Understand how monitoring for HSMs work with expertise in the technologies such as SNMP Stakeholder management skills, with experience of understanding and meeting the needs of multiple stakeholders Knowing what it means to be part of a team, not only being a team player. Contribute to discussions, allow others to speak. Innovative mindset, we are doing something completely new, inhouse. This requires to speak up when it comes to innovations/new ideas. Understanding of cybersecurity principles, global financial services business models, as well as regional compliance standards, relevant local regulations, and applicable laws Knowledge of cryptographic modules and solutions, eg TPMs, Good understanding on IT Infrastructure technical platforms/technologies Understanding of SSH/SSL functionality and usage Experience interfacing with technology teams to bring lab concepts to market within an organization and building effective operational models to ensure capabilities are able to be fully utilized and grow to meet the needs of the team Understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, PCI DSS, GLBA, GDPR, Global data security and privacy acts, FFIEC guidelines, CIS and NIST standards. Windows and Linux Servers administration Strong Documentation skills More details available on successful application.
About the Role We are seeking a highly skilled WAF Engineer to join our security engineering team and take responsibility for the configuration, tuning, monitoring, and optimisation of our Web Application Firewall (WAF). The successful candidate will work closely with developers, security analysts, and infrastructure teams to ensure applications remain protected against advanced web threats while minimising false positives and supporting business operations. This role requires deep hands-on expertise in WAF technologies, advanced knowledge of application security threats (OWASP Top 10, XSS, SQLi, XXE, etc.), and the ability to fine-tune WAF rules without compromising overall security posture. Key Responsibilities Configure, manage, and tune WAF rules to balance strong security controls with minimal false positives. Collaborate with development teams to create precise parameter-level exceptions and avoid unnecessary rule suppression. Monitor WAF logs, identify potential threats, and respond to security incidents in Real Time. Analyse traffic patterns and investigate anomalies, such as spikes in error codes or unusual request behaviour. Develop and implement strategies to mitigate attacks, including automated threats, scraping, path traversal, XXE, and SQL injection. Document WAF policies, exceptions, and processes, ensuring knowledge is shared across the team. Partner with security operations, SOC analysts, and developers to ensure WAF is aligned with application updates and new releases. Support threat modelling, security testing, and vulnerability assessments with a WAF focus. Required Skills & Experience Strong expertise with Web Application Firewalls (eg, F5 ASM/Advanced WAF, Imperva, Akamai Kona, Cloudflare, AWS WAF, Azure WAF). Deep understanding of OWASP Top 10 and web attack techniques, including XSS, SQLi, XXE, SSRF, and path traversal. Hands-on experience tuning WAFs to allow business functionality while preventing exploitation. Solid knowledge of HTTP, HTTPS, XML, JSON, REST APIs, and web application behaviours. Experience in analysing logs and traffic anomalies to detect attacks or misconfigurations. Familiarity with secure SDLC processes and working with DevOps teams. Strong communication and stakeholder management skills. Certifications such as GIAC GWAPT, CEH, OSWE, or vendor-specific WAF certifications are desirable
Sep 25, 2025
Contractor
About the Role We are seeking a highly skilled WAF Engineer to join our security engineering team and take responsibility for the configuration, tuning, monitoring, and optimisation of our Web Application Firewall (WAF). The successful candidate will work closely with developers, security analysts, and infrastructure teams to ensure applications remain protected against advanced web threats while minimising false positives and supporting business operations. This role requires deep hands-on expertise in WAF technologies, advanced knowledge of application security threats (OWASP Top 10, XSS, SQLi, XXE, etc.), and the ability to fine-tune WAF rules without compromising overall security posture. Key Responsibilities Configure, manage, and tune WAF rules to balance strong security controls with minimal false positives. Collaborate with development teams to create precise parameter-level exceptions and avoid unnecessary rule suppression. Monitor WAF logs, identify potential threats, and respond to security incidents in Real Time. Analyse traffic patterns and investigate anomalies, such as spikes in error codes or unusual request behaviour. Develop and implement strategies to mitigate attacks, including automated threats, scraping, path traversal, XXE, and SQL injection. Document WAF policies, exceptions, and processes, ensuring knowledge is shared across the team. Partner with security operations, SOC analysts, and developers to ensure WAF is aligned with application updates and new releases. Support threat modelling, security testing, and vulnerability assessments with a WAF focus. Required Skills & Experience Strong expertise with Web Application Firewalls (eg, F5 ASM/Advanced WAF, Imperva, Akamai Kona, Cloudflare, AWS WAF, Azure WAF). Deep understanding of OWASP Top 10 and web attack techniques, including XSS, SQLi, XXE, SSRF, and path traversal. Hands-on experience tuning WAFs to allow business functionality while preventing exploitation. Solid knowledge of HTTP, HTTPS, XML, JSON, REST APIs, and web application behaviours. Experience in analysing logs and traffic anomalies to detect attacks or misconfigurations. Familiarity with secure SDLC processes and working with DevOps teams. Strong communication and stakeholder management skills. Certifications such as GIAC GWAPT, CEH, OSWE, or vendor-specific WAF certifications are desirable
IT Service Manager - Luxury Cruise Liner (3-Month Rotational Overseas Work) TAX-FREE | Living Expenses Covered When Working Away Join a world-class luxury cruise liner as an IT Service Manager , overseeing IT service delivery, stakeholder engagement, and technical operations to ensure a seamless digital experience for guests and crew. This dynamic role involves a three-month rotational overseas assignment , where you will lead IT service management, drive operational excellence, and collaborate with key stakeholders to enhance IT performance onboard. Why Join? All living expenses covered while working overseas Opportunity to travel the world while advancing your IT leadership career Work in a prestigious, multicultural environment, delivering exceptional IT services aboard a luxury cruise liner Key Responsibilities: Service Management & Delivery: Oversee IT service operations, ensuring high availability, performance, and seamless user experiences for guests and crew. Stakeholder Engagement: Act as the primary IT point of contact for senior leadership, department heads, and external vendors, ensuring alignment with business needs. IT Strategy & Continuous Improvement: Develop and implement IT service strategies to enhance operational efficiency, minimize downtime, and drive innovation. Leadership & Team Management: Mentor and manage onboard IT support staff, fostering a culture of excellence, continuous learning, and proactive problem-solving. Incident & Problem Management: Ensure swift resolution of IT issues through structured processes, clear escalation paths, and robust service management frameworks. Compliance & Security: Ensure IT operations comply with maritime regulations, cybersecurity policies, and data protection standards. Performance Monitoring & Reporting: Track IT service metrics, analyse trends, and provide data-driven recommendations for improving system reliability and user satisfaction. Qualifications & Requirements: 5+ years of experience in IT service management, IT operations, or technology leadership roles ITIL Certification required (experience implementing ITIL best practices preferred) Strong leadership and stakeholder management skills, with the ability to communicate technical concepts to non-technical audiences Proven experience managing IT support teams, vendors, and service contracts Expertise in enterprise IT infrastructure, including Servers, networks, and end-user computing (EUC) Hospitality, cruise, or travel industry experience preferred Marine Training (STCW) or willingness to complete it before starting work Ability to travel and work overseas on a three-month rotational basis Work Environment: Lead IT service management onboard a luxury cruise liner, ensuring seamless technology operations across multiple locations. Work in a fast-paced, customer-facing environment, collaborating with diverse international teams. Adapt to varying time zones and operational needs while maintaining high service standards. If you are a strategic IT leader with a passion for service excellence , stakeholder management, and global operations, this is your opportunity to take your career to the next level while exploring the world!
Sep 25, 2025
Full time
IT Service Manager - Luxury Cruise Liner (3-Month Rotational Overseas Work) TAX-FREE | Living Expenses Covered When Working Away Join a world-class luxury cruise liner as an IT Service Manager , overseeing IT service delivery, stakeholder engagement, and technical operations to ensure a seamless digital experience for guests and crew. This dynamic role involves a three-month rotational overseas assignment , where you will lead IT service management, drive operational excellence, and collaborate with key stakeholders to enhance IT performance onboard. Why Join? All living expenses covered while working overseas Opportunity to travel the world while advancing your IT leadership career Work in a prestigious, multicultural environment, delivering exceptional IT services aboard a luxury cruise liner Key Responsibilities: Service Management & Delivery: Oversee IT service operations, ensuring high availability, performance, and seamless user experiences for guests and crew. Stakeholder Engagement: Act as the primary IT point of contact for senior leadership, department heads, and external vendors, ensuring alignment with business needs. IT Strategy & Continuous Improvement: Develop and implement IT service strategies to enhance operational efficiency, minimize downtime, and drive innovation. Leadership & Team Management: Mentor and manage onboard IT support staff, fostering a culture of excellence, continuous learning, and proactive problem-solving. Incident & Problem Management: Ensure swift resolution of IT issues through structured processes, clear escalation paths, and robust service management frameworks. Compliance & Security: Ensure IT operations comply with maritime regulations, cybersecurity policies, and data protection standards. Performance Monitoring & Reporting: Track IT service metrics, analyse trends, and provide data-driven recommendations for improving system reliability and user satisfaction. Qualifications & Requirements: 5+ years of experience in IT service management, IT operations, or technology leadership roles ITIL Certification required (experience implementing ITIL best practices preferred) Strong leadership and stakeholder management skills, with the ability to communicate technical concepts to non-technical audiences Proven experience managing IT support teams, vendors, and service contracts Expertise in enterprise IT infrastructure, including Servers, networks, and end-user computing (EUC) Hospitality, cruise, or travel industry experience preferred Marine Training (STCW) or willingness to complete it before starting work Ability to travel and work overseas on a three-month rotational basis Work Environment: Lead IT service management onboard a luxury cruise liner, ensuring seamless technology operations across multiple locations. Work in a fast-paced, customer-facing environment, collaborating with diverse international teams. Adapt to varying time zones and operational needs while maintaining high service standards. If you are a strategic IT leader with a passion for service excellence , stakeholder management, and global operations, this is your opportunity to take your career to the next level while exploring the world!
Cryptography Infrastructure Engineer We are looking for a Cryptography Infrastructure Engineer to join a financial services client based in Sheffield. There will be a requirement to be in the office once every two-weeks. The contract is also inside IR35. The Role The objective will be to support the Cryptography team who are responsible for protecting the identity, confidentiality and authenticity of trillions of dollars of transactions globally. We are looking for an SME in cyber security and cryptography who can help improve their HSM observability for their entire encryption estate. The existing HSM observability is ready to be taken to the next level, improving its resilience, increased monitoring capabilities and faster alerting. We specifically require someone with expertise in either Thales Luna, nShield or payShield HSMs. Key Responsibilities: Be part of a team that implements a new monitoring and alerting solution based upon Splunk Have specific knowledge about Entrust nShield HSMs, payShield HSMs or Luna HSMs, and pulling relevant data from the device (via SNMP) Closely collaborate with team members - as SME for HSMs, but also other HSMs. Work closely with stakeholders to understand requirement details. Write a design and test specification for your responsibility in the observability project Contribute to documentation of the project Help define the roadmap for continual improvements in the management of cryptographic services Flag potential issues timely, think outside the box and be creative in finding solutions. Experienced required: Good knowledge about HSMs, specifically Entrust nShield, payShield and/or Luna. Understand how monitoring for HSMs work with expertise in the technologies such as SNMP Stakeholder management skills, with experience of understanding and meeting the needs of multiple stakeholders Knowing what it means to be part of a team, not only being a team player. Contribute to discussions, allow others to speak. Innovative mindset, we are doing something completely new, inhouse. This requires to speak up when it comes to innovations/new ideas. Understanding of cybersecurity principles, global financial services business models, as well as regional compliance standards, relevant local regulations, and applicable laws Knowledge of cryptographic modules and solutions, eg TPMs, Good understanding on IT Infrastructure technical platforms/technologies Understanding of SSH/SSL functionality and usage Experience interfacing with technology teams to bring lab concepts to market within an organization and building effective operational models to ensure capabilities are able to be fully utilized and grow to meet the needs of the team Understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, PCI DSS, GLBA, GDPR, Global data security and privacy acts, FFIEC guidelines, CIS and NIST standards. Windows and Linux Servers administration Strong Documentation skills More details available on successful application.
Sep 25, 2025
Contractor
Cryptography Infrastructure Engineer We are looking for a Cryptography Infrastructure Engineer to join a financial services client based in Sheffield. There will be a requirement to be in the office once every two-weeks. The contract is also inside IR35. The Role The objective will be to support the Cryptography team who are responsible for protecting the identity, confidentiality and authenticity of trillions of dollars of transactions globally. We are looking for an SME in cyber security and cryptography who can help improve their HSM observability for their entire encryption estate. The existing HSM observability is ready to be taken to the next level, improving its resilience, increased monitoring capabilities and faster alerting. We specifically require someone with expertise in either Thales Luna, nShield or payShield HSMs. Key Responsibilities: Be part of a team that implements a new monitoring and alerting solution based upon Splunk Have specific knowledge about Entrust nShield HSMs, payShield HSMs or Luna HSMs, and pulling relevant data from the device (via SNMP) Closely collaborate with team members - as SME for HSMs, but also other HSMs. Work closely with stakeholders to understand requirement details. Write a design and test specification for your responsibility in the observability project Contribute to documentation of the project Help define the roadmap for continual improvements in the management of cryptographic services Flag potential issues timely, think outside the box and be creative in finding solutions. Experienced required: Good knowledge about HSMs, specifically Entrust nShield, payShield and/or Luna. Understand how monitoring for HSMs work with expertise in the technologies such as SNMP Stakeholder management skills, with experience of understanding and meeting the needs of multiple stakeholders Knowing what it means to be part of a team, not only being a team player. Contribute to discussions, allow others to speak. Innovative mindset, we are doing something completely new, inhouse. This requires to speak up when it comes to innovations/new ideas. Understanding of cybersecurity principles, global financial services business models, as well as regional compliance standards, relevant local regulations, and applicable laws Knowledge of cryptographic modules and solutions, eg TPMs, Good understanding on IT Infrastructure technical platforms/technologies Understanding of SSH/SSL functionality and usage Experience interfacing with technology teams to bring lab concepts to market within an organization and building effective operational models to ensure capabilities are able to be fully utilized and grow to meet the needs of the team Understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, PCI DSS, GLBA, GDPR, Global data security and privacy acts, FFIEC guidelines, CIS and NIST standards. Windows and Linux Servers administration Strong Documentation skills More details available on successful application.