DevSecOps Consultant Sheffield (3 days per week onsite) Inside IR35 We're partnering with a leading financial services client to appoint a DevSecOps Consultant to drive secure engineering practices across large-scale, cloud-based platforms. This role is ideal for someone who has come from a hands-on DevSecOps Engineering background and has since transitioned into architecture/design and advisory, while still retaining strong technical depth. Key Responsibilities: Define and implement secure architecture patterns across engineering platforms (CI/CD, build systems, runtime environments) Conduct security assessments, threat modelling, and gap analysis across platforms and pipelines Develop and embed DevSecOps best practices, including secure pipeline design and automated controls Establish and enforce security baselines using policy-as-code Build and deliver security roadmaps, prioritising risk and regulatory requirements Partner with engineering and platform teams to remediate vulnerabilities and improve security posture Act as a trusted advisor to senior stakeholders, translating technical risks into business impact Key Requirements: Proven background in hands-on DevSecOps Engineering, now operating in a design/architecture-focused role Strong experience across both AWS and GCP (essential) Deep understanding of CI/CD pipelines, build tools, artifact repositories, and developer platforms Expertise in secure software delivery, vulnerability management, and platform security Experience with threat modelling, security frameworks, and maturity assessments Strong knowledge of application security, network security, and cloud security principles Excellent stakeholder management and communication skills Desirable: Experience in financial services or regulated environments Knowledge of Kubernetes and container security Familiarity with supply chain security, SBOM, and secure development practices Relevant certifications (eg CISSP, CISM, CCSP) This is a key role focused on shaping and embedding secure-by-design engineering practices across a complex, enterprise environment, with strong influence across both technology and security functions. More details available on successful application.
May 12, 2026
Contractor
DevSecOps Consultant Sheffield (3 days per week onsite) Inside IR35 We're partnering with a leading financial services client to appoint a DevSecOps Consultant to drive secure engineering practices across large-scale, cloud-based platforms. This role is ideal for someone who has come from a hands-on DevSecOps Engineering background and has since transitioned into architecture/design and advisory, while still retaining strong technical depth. Key Responsibilities: Define and implement secure architecture patterns across engineering platforms (CI/CD, build systems, runtime environments) Conduct security assessments, threat modelling, and gap analysis across platforms and pipelines Develop and embed DevSecOps best practices, including secure pipeline design and automated controls Establish and enforce security baselines using policy-as-code Build and deliver security roadmaps, prioritising risk and regulatory requirements Partner with engineering and platform teams to remediate vulnerabilities and improve security posture Act as a trusted advisor to senior stakeholders, translating technical risks into business impact Key Requirements: Proven background in hands-on DevSecOps Engineering, now operating in a design/architecture-focused role Strong experience across both AWS and GCP (essential) Deep understanding of CI/CD pipelines, build tools, artifact repositories, and developer platforms Expertise in secure software delivery, vulnerability management, and platform security Experience with threat modelling, security frameworks, and maturity assessments Strong knowledge of application security, network security, and cloud security principles Excellent stakeholder management and communication skills Desirable: Experience in financial services or regulated environments Knowledge of Kubernetes and container security Familiarity with supply chain security, SBOM, and secure development practices Relevant certifications (eg CISSP, CISM, CCSP) This is a key role focused on shaping and embedding secure-by-design engineering practices across a complex, enterprise environment, with strong influence across both technology and security functions. More details available on successful application.
Overview We are supporting a major, enterprise-scale Identity & Access Management (IAM) transformation programme, redefining how authentication, privileged access, secrets management, and API security are delivered across a complex, highly regulated environment. At the heart of this programme sits a strategic Privileged Access Management (PAM) capability - and RabbitMQ plays a critical role in enabling secure, scalable communication across distributed systems and regions. We are looking for a RabbitMQ SME to join an established engineering function, driving the design, build, and deployment of RabbitMQ across both non-production and production environments. This is a hands-on, high-impact role where you will shape architecture, engineer solutions end-to-end, and work alongside some of the most experienced security and platform teams in the market. The Role Design and implement RabbitMQ solutions as part of a large-scale PAM ecosystem Contribute to architecture and low-level design (LLD) in collaboration with internal design teams and SMEs Build and deploy RabbitMQ across multi-site, highly regulated environments Engineer clustered RabbitMQ environments , ensuring resilience, scalability, and performance Work across Kubernetes-based platforms , leveraging containers and modern deployment practices Develop and utilise automation scripts (Python/PowerShell) to support deployment and operations Document designs, configurations, and processes to a high standard Collaborate with engineering, security, and vendor teams to validate and test solutions Essential Skills & Experience Strong commercial experience with RabbitMQ (queues, exchanges, shovels) Proven ability to configure and manage RabbitMQ clusters , including multi-site deployments Experience managing RabbitMQ via command line across Linux and Windows environments Solid understanding of Kubernetes (pods, containers, deployments, Helm charts) Experience with Docker , including building container images Strong Scripting capability in Python (from basic Scripting to building full solutions using modules and classes) Good working knowledge of PowerShell , including Scripting and module usage Desirable Skills Experience with Windows Server environments Knowledge of PKI and certificate management (PowerShell, OpenSSL) Exposure to Ansible for automation Understanding of container image management and tagging strategies What We're Looking For A true problem solver who can work independently and navigate complex technical challenges Someone comfortable working with new and evolving technologies Strong ability to translate business and non-technical requirements into technical solutions Excellent communication skills, able to engage both technical and non-technical stakeholders A focus on clear, concise documentation and high engineering standards Why This Role? Work on a strategic, security-led transformation programme Be part of a cutting-edge PAM and IAM ecosystem Influence architecture and design at enterprise scale Collaborate with highly skilled teams across security, engineering, and platform domains Summary This is an opportunity for a RabbitMQ specialist to play a pivotal role in a mission-critical security programme , combining deep technical engineering with architectural influence in a complex, regulated environment.
May 08, 2026
Contractor
Overview We are supporting a major, enterprise-scale Identity & Access Management (IAM) transformation programme, redefining how authentication, privileged access, secrets management, and API security are delivered across a complex, highly regulated environment. At the heart of this programme sits a strategic Privileged Access Management (PAM) capability - and RabbitMQ plays a critical role in enabling secure, scalable communication across distributed systems and regions. We are looking for a RabbitMQ SME to join an established engineering function, driving the design, build, and deployment of RabbitMQ across both non-production and production environments. This is a hands-on, high-impact role where you will shape architecture, engineer solutions end-to-end, and work alongside some of the most experienced security and platform teams in the market. The Role Design and implement RabbitMQ solutions as part of a large-scale PAM ecosystem Contribute to architecture and low-level design (LLD) in collaboration with internal design teams and SMEs Build and deploy RabbitMQ across multi-site, highly regulated environments Engineer clustered RabbitMQ environments , ensuring resilience, scalability, and performance Work across Kubernetes-based platforms , leveraging containers and modern deployment practices Develop and utilise automation scripts (Python/PowerShell) to support deployment and operations Document designs, configurations, and processes to a high standard Collaborate with engineering, security, and vendor teams to validate and test solutions Essential Skills & Experience Strong commercial experience with RabbitMQ (queues, exchanges, shovels) Proven ability to configure and manage RabbitMQ clusters , including multi-site deployments Experience managing RabbitMQ via command line across Linux and Windows environments Solid understanding of Kubernetes (pods, containers, deployments, Helm charts) Experience with Docker , including building container images Strong Scripting capability in Python (from basic Scripting to building full solutions using modules and classes) Good working knowledge of PowerShell , including Scripting and module usage Desirable Skills Experience with Windows Server environments Knowledge of PKI and certificate management (PowerShell, OpenSSL) Exposure to Ansible for automation Understanding of container image management and tagging strategies What We're Looking For A true problem solver who can work independently and navigate complex technical challenges Someone comfortable working with new and evolving technologies Strong ability to translate business and non-technical requirements into technical solutions Excellent communication skills, able to engage both technical and non-technical stakeholders A focus on clear, concise documentation and high engineering standards Why This Role? Work on a strategic, security-led transformation programme Be part of a cutting-edge PAM and IAM ecosystem Influence architecture and design at enterprise scale Collaborate with highly skilled teams across security, engineering, and platform domains Summary This is an opportunity for a RabbitMQ specialist to play a pivotal role in a mission-critical security programme , combining deep technical engineering with architectural influence in a complex, regulated environment.
RabbitMQ SME Location: Sheffield (occasional on-site required) Client: Leading Financial Services Organisation We're working with a leading financial services client seeking an experienced RabbitMQ SME to join their engineering team on a 7-month contract. This role will play a key part in driving and supporting RabbitMQ implementations across both non-production and production environments, forming a critical component of a wider Privileged Access Management (PAM) solution deployed globally, including in highly regulated regions. You'll contribute to architecture design, lead end-to-end engineering of RabbitMQ deployments using in-house tooling, and collaborate closely with internal design teams and technical SMEs. Documentation and input into low-level design will also be a core part of the role. Key Responsibilities: Support and enhance RabbitMQ implementations across multiple environments Contribute to architecture design and low-level technical designs Engineer and deploy end-to-end solutions using internal tooling Collaborate with internal teams, vendors, and technical specialists Produce clear and concise technical documentation Essential Skills: Strong commercial experience with RabbitMQ (queues, exchanges, shovels) Experience configuring/managing RabbitMQ clusters (including multi-site) via command line Experience across Linux and Windows environments Solid understanding of Kubernetes (pods, deployments, manifests, Helm charts) Docker experience, including building images Python Scripting (including use of classes and external modules) PowerShell Scripting and module usage Desirable Skills: Windows Server administration (intermediate level) PKI knowledge (certificate creation/management using PowerShell/OpenSSL) Advanced Docker knowledge (tagging, image manipulation) Experience with Ansible Profile: Strong problem-solving skills and ability to work ently Comfortable working with new and evolving technologies Able to translate business requirements into technical solutions Confident communicating with both technical and non-technical stakeholders More details available on successful application.
May 07, 2026
Contractor
RabbitMQ SME Location: Sheffield (occasional on-site required) Client: Leading Financial Services Organisation We're working with a leading financial services client seeking an experienced RabbitMQ SME to join their engineering team on a 7-month contract. This role will play a key part in driving and supporting RabbitMQ implementations across both non-production and production environments, forming a critical component of a wider Privileged Access Management (PAM) solution deployed globally, including in highly regulated regions. You'll contribute to architecture design, lead end-to-end engineering of RabbitMQ deployments using in-house tooling, and collaborate closely with internal design teams and technical SMEs. Documentation and input into low-level design will also be a core part of the role. Key Responsibilities: Support and enhance RabbitMQ implementations across multiple environments Contribute to architecture design and low-level technical designs Engineer and deploy end-to-end solutions using internal tooling Collaborate with internal teams, vendors, and technical specialists Produce clear and concise technical documentation Essential Skills: Strong commercial experience with RabbitMQ (queues, exchanges, shovels) Experience configuring/managing RabbitMQ clusters (including multi-site) via command line Experience across Linux and Windows environments Solid understanding of Kubernetes (pods, deployments, manifests, Helm charts) Docker experience, including building images Python Scripting (including use of classes and external modules) PowerShell Scripting and module usage Desirable Skills: Windows Server administration (intermediate level) PKI knowledge (certificate creation/management using PowerShell/OpenSSL) Advanced Docker knowledge (tagging, image manipulation) Experience with Ansible Profile: Strong problem-solving skills and ability to work ently Comfortable working with new and evolving technologies Able to translate business requirements into technical solutions Confident communicating with both technical and non-technical stakeholders More details available on successful application.
Cryptography Infrastructure Engineer We are looking for a Cryptography Infrastructure Engineer to join a financial services client based in Sheffield. There will be a requirement to be in the office once every two-weeks. The contract is also inside IR35. The Role The objective will be to support the Cryptography team who are responsible for protecting the identity, confidentiality and authenticity of trillions of dollars of transactions globally. We are looking for an SME in cyber security and cryptography who can help improve their HSM observability for their entire encryption estate. The existing HSM observability is ready to be taken to the next level, improving its resilience, increased monitoring capabilities and faster alerting. We specifically require someone with expertise in either Thales Luna, nShield or payShield HSMs. Key Responsibilities: Be part of a team that implements a new monitoring and alerting solution based upon Splunk Have specific knowledge about Entrust nShield HSMs, payShield HSMs or Luna HSMs, and pulling relevant data from the device (via SNMP) Closely collaborate with team members - as SME for HSMs, but also other HSMs. Work closely with stakeholders to understand requirement details. Write a design and test specification for your responsibility in the observability project Contribute to documentation of the project Help define the roadmap for continual improvements in the management of cryptographic services Flag potential issues timely, think outside the box and be creative in finding solutions. Experienced required: Good knowledge about HSMs, specifically Entrust nShield, payShield and/or Luna. Understand how monitoring for HSMs work with expertise in the technologies such as SNMP Stakeholder management skills, with experience of understanding and meeting the needs of multiple stakeholders Knowing what it means to be part of a team, not only being a team player. Contribute to discussions, allow others to speak. Innovative mindset, we are doing something completely new, inhouse. This requires to speak up when it comes to innovations/new ideas. Understanding of cybersecurity principles, global financial services business models, as well as regional compliance standards, relevant local regulations, and applicable laws Knowledge of cryptographic modules and solutions, eg TPMs, Good understanding on IT Infrastructure technical platforms/technologies Understanding of SSH/SSL functionality and usage Experience interfacing with technology teams to bring lab concepts to market within an organization and building effective operational models to ensure capabilities are able to be fully utilized and grow to meet the needs of the team Understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, PCI DSS, GLBA, GDPR, Global data security and privacy acts, FFIEC guidelines, CIS and NIST standards. Windows and Linux Servers administration Strong Documentation skills More details available on successful application.
Oct 02, 2025
Contractor
Cryptography Infrastructure Engineer We are looking for a Cryptography Infrastructure Engineer to join a financial services client based in Sheffield. There will be a requirement to be in the office once every two-weeks. The contract is also inside IR35. The Role The objective will be to support the Cryptography team who are responsible for protecting the identity, confidentiality and authenticity of trillions of dollars of transactions globally. We are looking for an SME in cyber security and cryptography who can help improve their HSM observability for their entire encryption estate. The existing HSM observability is ready to be taken to the next level, improving its resilience, increased monitoring capabilities and faster alerting. We specifically require someone with expertise in either Thales Luna, nShield or payShield HSMs. Key Responsibilities: Be part of a team that implements a new monitoring and alerting solution based upon Splunk Have specific knowledge about Entrust nShield HSMs, payShield HSMs or Luna HSMs, and pulling relevant data from the device (via SNMP) Closely collaborate with team members - as SME for HSMs, but also other HSMs. Work closely with stakeholders to understand requirement details. Write a design and test specification for your responsibility in the observability project Contribute to documentation of the project Help define the roadmap for continual improvements in the management of cryptographic services Flag potential issues timely, think outside the box and be creative in finding solutions. Experienced required: Good knowledge about HSMs, specifically Entrust nShield, payShield and/or Luna. Understand how monitoring for HSMs work with expertise in the technologies such as SNMP Stakeholder management skills, with experience of understanding and meeting the needs of multiple stakeholders Knowing what it means to be part of a team, not only being a team player. Contribute to discussions, allow others to speak. Innovative mindset, we are doing something completely new, inhouse. This requires to speak up when it comes to innovations/new ideas. Understanding of cybersecurity principles, global financial services business models, as well as regional compliance standards, relevant local regulations, and applicable laws Knowledge of cryptographic modules and solutions, eg TPMs, Good understanding on IT Infrastructure technical platforms/technologies Understanding of SSH/SSL functionality and usage Experience interfacing with technology teams to bring lab concepts to market within an organization and building effective operational models to ensure capabilities are able to be fully utilized and grow to meet the needs of the team Understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, PCI DSS, GLBA, GDPR, Global data security and privacy acts, FFIEC guidelines, CIS and NIST standards. Windows and Linux Servers administration Strong Documentation skills More details available on successful application.
About the Role We are seeking a highly skilled WAF Engineer to join our security engineering team and take responsibility for the configuration, tuning, monitoring, and optimisation of our Web Application Firewall (WAF). The successful candidate will work closely with developers, security analysts, and infrastructure teams to ensure applications remain protected against advanced web threats while minimising false positives and supporting business operations. This role requires deep hands-on expertise in WAF technologies, advanced knowledge of application security threats (OWASP Top 10, XSS, SQLi, XXE, etc.), and the ability to fine-tune WAF rules without compromising overall security posture. Key Responsibilities Configure, manage, and tune WAF rules to balance strong security controls with minimal false positives. Collaborate with development teams to create precise parameter-level exceptions and avoid unnecessary rule suppression. Monitor WAF logs, identify potential threats, and respond to security incidents in Real Time. Analyse traffic patterns and investigate anomalies, such as spikes in error codes or unusual request behaviour. Develop and implement strategies to mitigate attacks, including automated threats, scraping, path traversal, XXE, and SQL injection. Document WAF policies, exceptions, and processes, ensuring knowledge is shared across the team. Partner with security operations, SOC analysts, and developers to ensure WAF is aligned with application updates and new releases. Support threat modelling, security testing, and vulnerability assessments with a WAF focus. Required Skills & Experience Strong expertise with Web Application Firewalls (eg, F5 ASM/Advanced WAF, Imperva, Akamai Kona, Cloudflare, AWS WAF, Azure WAF). Deep understanding of OWASP Top 10 and web attack techniques, including XSS, SQLi, XXE, SSRF, and path traversal. Hands-on experience tuning WAFs to allow business functionality while preventing exploitation. Solid knowledge of HTTP, HTTPS, XML, JSON, REST APIs, and web application behaviours. Experience in analysing logs and traffic anomalies to detect attacks or misconfigurations. Familiarity with secure SDLC processes and working with DevOps teams. Strong communication and stakeholder management skills. Certifications such as GIAC GWAPT, CEH, OSWE, or vendor-specific WAF certifications are desirable
Sep 25, 2025
Contractor
About the Role We are seeking a highly skilled WAF Engineer to join our security engineering team and take responsibility for the configuration, tuning, monitoring, and optimisation of our Web Application Firewall (WAF). The successful candidate will work closely with developers, security analysts, and infrastructure teams to ensure applications remain protected against advanced web threats while minimising false positives and supporting business operations. This role requires deep hands-on expertise in WAF technologies, advanced knowledge of application security threats (OWASP Top 10, XSS, SQLi, XXE, etc.), and the ability to fine-tune WAF rules without compromising overall security posture. Key Responsibilities Configure, manage, and tune WAF rules to balance strong security controls with minimal false positives. Collaborate with development teams to create precise parameter-level exceptions and avoid unnecessary rule suppression. Monitor WAF logs, identify potential threats, and respond to security incidents in Real Time. Analyse traffic patterns and investigate anomalies, such as spikes in error codes or unusual request behaviour. Develop and implement strategies to mitigate attacks, including automated threats, scraping, path traversal, XXE, and SQL injection. Document WAF policies, exceptions, and processes, ensuring knowledge is shared across the team. Partner with security operations, SOC analysts, and developers to ensure WAF is aligned with application updates and new releases. Support threat modelling, security testing, and vulnerability assessments with a WAF focus. Required Skills & Experience Strong expertise with Web Application Firewalls (eg, F5 ASM/Advanced WAF, Imperva, Akamai Kona, Cloudflare, AWS WAF, Azure WAF). Deep understanding of OWASP Top 10 and web attack techniques, including XSS, SQLi, XXE, SSRF, and path traversal. Hands-on experience tuning WAFs to allow business functionality while preventing exploitation. Solid knowledge of HTTP, HTTPS, XML, JSON, REST APIs, and web application behaviours. Experience in analysing logs and traffic anomalies to detect attacks or misconfigurations. Familiarity with secure SDLC processes and working with DevOps teams. Strong communication and stakeholder management skills. Certifications such as GIAC GWAPT, CEH, OSWE, or vendor-specific WAF certifications are desirable
IT Service Manager - Luxury Cruise Liner (3-Month Rotational Overseas Work) TAX-FREE | Living Expenses Covered When Working Away Join a world-class luxury cruise liner as an IT Service Manager , overseeing IT service delivery, stakeholder engagement, and technical operations to ensure a seamless digital experience for guests and crew. This dynamic role involves a three-month rotational overseas assignment , where you will lead IT service management, drive operational excellence, and collaborate with key stakeholders to enhance IT performance onboard. Why Join? All living expenses covered while working overseas Opportunity to travel the world while advancing your IT leadership career Work in a prestigious, multicultural environment, delivering exceptional IT services aboard a luxury cruise liner Key Responsibilities: Service Management & Delivery: Oversee IT service operations, ensuring high availability, performance, and seamless user experiences for guests and crew. Stakeholder Engagement: Act as the primary IT point of contact for senior leadership, department heads, and external vendors, ensuring alignment with business needs. IT Strategy & Continuous Improvement: Develop and implement IT service strategies to enhance operational efficiency, minimize downtime, and drive innovation. Leadership & Team Management: Mentor and manage onboard IT support staff, fostering a culture of excellence, continuous learning, and proactive problem-solving. Incident & Problem Management: Ensure swift resolution of IT issues through structured processes, clear escalation paths, and robust service management frameworks. Compliance & Security: Ensure IT operations comply with maritime regulations, cybersecurity policies, and data protection standards. Performance Monitoring & Reporting: Track IT service metrics, analyse trends, and provide data-driven recommendations for improving system reliability and user satisfaction. Qualifications & Requirements: 5+ years of experience in IT service management, IT operations, or technology leadership roles ITIL Certification required (experience implementing ITIL best practices preferred) Strong leadership and stakeholder management skills, with the ability to communicate technical concepts to non-technical audiences Proven experience managing IT support teams, vendors, and service contracts Expertise in enterprise IT infrastructure, including Servers, networks, and end-user computing (EUC) Hospitality, cruise, or travel industry experience preferred Marine Training (STCW) or willingness to complete it before starting work Ability to travel and work overseas on a three-month rotational basis Work Environment: Lead IT service management onboard a luxury cruise liner, ensuring seamless technology operations across multiple locations. Work in a fast-paced, customer-facing environment, collaborating with diverse international teams. Adapt to varying time zones and operational needs while maintaining high service standards. If you are a strategic IT leader with a passion for service excellence , stakeholder management, and global operations, this is your opportunity to take your career to the next level while exploring the world!
Sep 25, 2025
Full time
IT Service Manager - Luxury Cruise Liner (3-Month Rotational Overseas Work) TAX-FREE | Living Expenses Covered When Working Away Join a world-class luxury cruise liner as an IT Service Manager , overseeing IT service delivery, stakeholder engagement, and technical operations to ensure a seamless digital experience for guests and crew. This dynamic role involves a three-month rotational overseas assignment , where you will lead IT service management, drive operational excellence, and collaborate with key stakeholders to enhance IT performance onboard. Why Join? All living expenses covered while working overseas Opportunity to travel the world while advancing your IT leadership career Work in a prestigious, multicultural environment, delivering exceptional IT services aboard a luxury cruise liner Key Responsibilities: Service Management & Delivery: Oversee IT service operations, ensuring high availability, performance, and seamless user experiences for guests and crew. Stakeholder Engagement: Act as the primary IT point of contact for senior leadership, department heads, and external vendors, ensuring alignment with business needs. IT Strategy & Continuous Improvement: Develop and implement IT service strategies to enhance operational efficiency, minimize downtime, and drive innovation. Leadership & Team Management: Mentor and manage onboard IT support staff, fostering a culture of excellence, continuous learning, and proactive problem-solving. Incident & Problem Management: Ensure swift resolution of IT issues through structured processes, clear escalation paths, and robust service management frameworks. Compliance & Security: Ensure IT operations comply with maritime regulations, cybersecurity policies, and data protection standards. Performance Monitoring & Reporting: Track IT service metrics, analyse trends, and provide data-driven recommendations for improving system reliability and user satisfaction. Qualifications & Requirements: 5+ years of experience in IT service management, IT operations, or technology leadership roles ITIL Certification required (experience implementing ITIL best practices preferred) Strong leadership and stakeholder management skills, with the ability to communicate technical concepts to non-technical audiences Proven experience managing IT support teams, vendors, and service contracts Expertise in enterprise IT infrastructure, including Servers, networks, and end-user computing (EUC) Hospitality, cruise, or travel industry experience preferred Marine Training (STCW) or willingness to complete it before starting work Ability to travel and work overseas on a three-month rotational basis Work Environment: Lead IT service management onboard a luxury cruise liner, ensuring seamless technology operations across multiple locations. Work in a fast-paced, customer-facing environment, collaborating with diverse international teams. Adapt to varying time zones and operational needs while maintaining high service standards. If you are a strategic IT leader with a passion for service excellence , stakeholder management, and global operations, this is your opportunity to take your career to the next level while exploring the world!
Cryptography Infrastructure Engineer We are looking for a Cryptography Infrastructure Engineer to join a financial services client based in Sheffield. There will be a requirement to be in the office once every two-weeks. The contract is also inside IR35. The Role The objective will be to support the Cryptography team who are responsible for protecting the identity, confidentiality and authenticity of trillions of dollars of transactions globally. We are looking for an SME in cyber security and cryptography who can help improve their HSM observability for their entire encryption estate. The existing HSM observability is ready to be taken to the next level, improving its resilience, increased monitoring capabilities and faster alerting. We specifically require someone with expertise in either Thales Luna, nShield or payShield HSMs. Key Responsibilities: Be part of a team that implements a new monitoring and alerting solution based upon Splunk Have specific knowledge about Entrust nShield HSMs, payShield HSMs or Luna HSMs, and pulling relevant data from the device (via SNMP) Closely collaborate with team members - as SME for HSMs, but also other HSMs. Work closely with stakeholders to understand requirement details. Write a design and test specification for your responsibility in the observability project Contribute to documentation of the project Help define the roadmap for continual improvements in the management of cryptographic services Flag potential issues timely, think outside the box and be creative in finding solutions. Experienced required: Good knowledge about HSMs, specifically Entrust nShield, payShield and/or Luna. Understand how monitoring for HSMs work with expertise in the technologies such as SNMP Stakeholder management skills, with experience of understanding and meeting the needs of multiple stakeholders Knowing what it means to be part of a team, not only being a team player. Contribute to discussions, allow others to speak. Innovative mindset, we are doing something completely new, inhouse. This requires to speak up when it comes to innovations/new ideas. Understanding of cybersecurity principles, global financial services business models, as well as regional compliance standards, relevant local regulations, and applicable laws Knowledge of cryptographic modules and solutions, eg TPMs, Good understanding on IT Infrastructure technical platforms/technologies Understanding of SSH/SSL functionality and usage Experience interfacing with technology teams to bring lab concepts to market within an organization and building effective operational models to ensure capabilities are able to be fully utilized and grow to meet the needs of the team Understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, PCI DSS, GLBA, GDPR, Global data security and privacy acts, FFIEC guidelines, CIS and NIST standards. Windows and Linux Servers administration Strong Documentation skills More details available on successful application.
Sep 25, 2025
Contractor
Cryptography Infrastructure Engineer We are looking for a Cryptography Infrastructure Engineer to join a financial services client based in Sheffield. There will be a requirement to be in the office once every two-weeks. The contract is also inside IR35. The Role The objective will be to support the Cryptography team who are responsible for protecting the identity, confidentiality and authenticity of trillions of dollars of transactions globally. We are looking for an SME in cyber security and cryptography who can help improve their HSM observability for their entire encryption estate. The existing HSM observability is ready to be taken to the next level, improving its resilience, increased monitoring capabilities and faster alerting. We specifically require someone with expertise in either Thales Luna, nShield or payShield HSMs. Key Responsibilities: Be part of a team that implements a new monitoring and alerting solution based upon Splunk Have specific knowledge about Entrust nShield HSMs, payShield HSMs or Luna HSMs, and pulling relevant data from the device (via SNMP) Closely collaborate with team members - as SME for HSMs, but also other HSMs. Work closely with stakeholders to understand requirement details. Write a design and test specification for your responsibility in the observability project Contribute to documentation of the project Help define the roadmap for continual improvements in the management of cryptographic services Flag potential issues timely, think outside the box and be creative in finding solutions. Experienced required: Good knowledge about HSMs, specifically Entrust nShield, payShield and/or Luna. Understand how monitoring for HSMs work with expertise in the technologies such as SNMP Stakeholder management skills, with experience of understanding and meeting the needs of multiple stakeholders Knowing what it means to be part of a team, not only being a team player. Contribute to discussions, allow others to speak. Innovative mindset, we are doing something completely new, inhouse. This requires to speak up when it comes to innovations/new ideas. Understanding of cybersecurity principles, global financial services business models, as well as regional compliance standards, relevant local regulations, and applicable laws Knowledge of cryptographic modules and solutions, eg TPMs, Good understanding on IT Infrastructure technical platforms/technologies Understanding of SSH/SSL functionality and usage Experience interfacing with technology teams to bring lab concepts to market within an organization and building effective operational models to ensure capabilities are able to be fully utilized and grow to meet the needs of the team Understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, PCI DSS, GLBA, GDPR, Global data security and privacy acts, FFIEC guidelines, CIS and NIST standards. Windows and Linux Servers administration Strong Documentation skills More details available on successful application.