AI Security Engineer Location: CheshireHybrid: 40% office requirement Duration: 6 months Rate: 620 per dayInside IR35 MUST BE PAYE THROUGH UMBRELLA Role Description:As an experienced security professional your expertise will be utilised to drive the future security of our cloud platforms. You will play a key role in working as part of a global team reviewing and evaluating cloud services from major cloud providers, identifying potential threats, and developing mitigations. Primary Responsibilities Review and identify security challenges with cloud platform services Design, develop and deliver security controls for cloud platforms Work alongside infrastructure engineers to contribute to the design and delivery of cloud services. Act as security SME for cloud services Standard Technical Skills & Competencies Experience working in enterprise cloud environments (Azure, AWS, GCP). Experience building cloud infrastructure and using cloud IaC tooling (Terraform, Cloudformation, BICEP) Experience in threat modelling, security reviews and testing. Proficiency in scripting languages: PowerShell, Bash, Python and behaviour-driven design Strong familiarity with security standards, security controls, and cloud security tooling. Experience with incident, problem, and change management processes. Experience with CSPM/SSPM tooling and use Container knowledge, particularly in Kubernetes. Experience with Linux operating systems. Experience with IaC policy-as-code security tools - Terraform Sentinel, Wiz, etc. Strong understanding of cryptography, modern authentication and authorisation mechanisms, networking, and enterprise security architectures. Desirable: Previous experience in financial/regulated sector Bachelor's degree, or higher, in a related discipline (or equivalent experience) Experience with Scrum/Agile development methodologies. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
Jun 11, 2026
Contractor
AI Security Engineer Location: CheshireHybrid: 40% office requirement Duration: 6 months Rate: 620 per dayInside IR35 MUST BE PAYE THROUGH UMBRELLA Role Description:As an experienced security professional your expertise will be utilised to drive the future security of our cloud platforms. You will play a key role in working as part of a global team reviewing and evaluating cloud services from major cloud providers, identifying potential threats, and developing mitigations. Primary Responsibilities Review and identify security challenges with cloud platform services Design, develop and deliver security controls for cloud platforms Work alongside infrastructure engineers to contribute to the design and delivery of cloud services. Act as security SME for cloud services Standard Technical Skills & Competencies Experience working in enterprise cloud environments (Azure, AWS, GCP). Experience building cloud infrastructure and using cloud IaC tooling (Terraform, Cloudformation, BICEP) Experience in threat modelling, security reviews and testing. Proficiency in scripting languages: PowerShell, Bash, Python and behaviour-driven design Strong familiarity with security standards, security controls, and cloud security tooling. Experience with incident, problem, and change management processes. Experience with CSPM/SSPM tooling and use Container knowledge, particularly in Kubernetes. Experience with Linux operating systems. Experience with IaC policy-as-code security tools - Terraform Sentinel, Wiz, etc. Strong understanding of cryptography, modern authentication and authorisation mechanisms, networking, and enterprise security architectures. Desirable: Previous experience in financial/regulated sector Bachelor's degree, or higher, in a related discipline (or equivalent experience) Experience with Scrum/Agile development methodologies. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
Job Title: Lead Security Solution Architect- PAM Location: Hybrid-London, UK (Days/Week Onsite) Duration: 6months+ 550GBP/Day Inside IR35 Project Overview CLIENT is working on a strategic Identity and Access Management programme and is re-shaping the way Authentication, Federation, Privileged Access Management, Access Governance, Secrets Management and API Security is done across the bank. One of the pillars of that programe is Privileged Access Management (PAM). CLIENT is working on uplifting controls and capabilities in privileged access for the Group and introducing the strategic password vaulting solution that will enable to meet strategic requirements. We are seeking an experienced Lead Security Solution Architect that can complement an existing team of Solution Architects to progress with designs of different components of the PAM solution and other supporting systems it will need to integrate with as part of the end-to-end journey. Security Solution Architects manage end-to-end solution design and are responsible for delivering architecture design documents in line with functional and non-functional business requirements, strategies, principles, standards, and patterns. Alongside the creation of high-level designs, Security Solution Architects will be required to record key decisions, design deviations, and technical risks and issues where appropriate. Security Solution Architects should be comfortable presenting and sharing solutions at design authorities and senior leadership & stakeholders. The Lead Security Solution Architect will provide technical thought leadership and direction to their project team and may represent the project/programme as subject matter expert. This role will require someone experienced in managing a team of on-shore and off-shore resources to deliver High- and Low-level designs to the required quality and standard. Principal Preferred Requirements Cybersecurity Expertise: Significant experience and proven technical depth within one of the following domains of cybersecurity; security operations & incident response, threat & vulnerability management, identity & access management, cryptography, infrastructure, network, application, data, cloud Broad background across information technology with the ability to communicate clearly with non-security technical SMEs at a comfortable level Experience in both operational and transformation cybersecurity roles or a clear working understanding of both perspectives Experience working in large-scale IT transformation programmes Experience working with PAM solutions such as CyberArk, Centrify, Delinea and OneIdentity Preparing end-to-end configuration of the strategic PAM capability - including on-prem deployments as well as Cloud native toolings Assisting in preparation of demonstrable journeys on the configured PAM tooling Platform & Technology: BizzDesign, Archi, or generic UML visualisation experience for high-level designs High proficiency and expertise in Jira for project & tasks management Working proficiency in Confluence for documentation Principal Accountabilities and Responsibilities Architecture & Design: Produce, manage, and update end-to-end solution designs in line with reference architecture & business requirements (including High and Low Level Designs Articulate and publish key design decision records and options to ensure all solutions follow a logical, transparent decision-making process Articulate, publish, and ensure approval of any design deviations resulting in technical debt Ensure any technical risks or issues arising from a solution design are recorded and mitigated. Produces, manages and translates the requirements into the architecture for that solution, ensuring technology and services meet the customer needs and expected business outcomes Ensures the design of the solutions are efficient, timely and cost effective throughout the project life cycle Clear understanding of both the motivations of the business and technical security Promote strong documentation and clerkship Governance: Ensures all high-level designs, architecture patterns, decision records, deviation requests, and technical risks or issue records undergo architectural and project governance processes Ensure all architecture artefacts undergo appropriate peer review prior to design authority presentation Present publications at technical design authorities for input, feedback, and approval Risk and Dependency Management: Effectively manages and escalates both technical and project risks or issues Articulates solutions and remediation steps to technical risks & issues Ability to map design decisions to resultant technical risks & issues to articulate the cause and rationale which leads to any negatively impacting change Leadership & Teamwork Provides technical thought leadership to the Design Team and the Project Ability to manage a project team of technical architects, engineers, and/or analysts Ability to take a deputised role in programme management-related tasks where necessary Qualifications & Certifications: Masters or doctorate degree in cybersecurity, computer science, software engineering, or related field CISSP/CISM certification or other broad cybersecurity industry-recognised certificate SABSA or TOGAF certified preferred Priyanka Sharma Senior Delivery Consultant
Oct 02, 2025
Contractor
Job Title: Lead Security Solution Architect- PAM Location: Hybrid-London, UK (Days/Week Onsite) Duration: 6months+ 550GBP/Day Inside IR35 Project Overview CLIENT is working on a strategic Identity and Access Management programme and is re-shaping the way Authentication, Federation, Privileged Access Management, Access Governance, Secrets Management and API Security is done across the bank. One of the pillars of that programe is Privileged Access Management (PAM). CLIENT is working on uplifting controls and capabilities in privileged access for the Group and introducing the strategic password vaulting solution that will enable to meet strategic requirements. We are seeking an experienced Lead Security Solution Architect that can complement an existing team of Solution Architects to progress with designs of different components of the PAM solution and other supporting systems it will need to integrate with as part of the end-to-end journey. Security Solution Architects manage end-to-end solution design and are responsible for delivering architecture design documents in line with functional and non-functional business requirements, strategies, principles, standards, and patterns. Alongside the creation of high-level designs, Security Solution Architects will be required to record key decisions, design deviations, and technical risks and issues where appropriate. Security Solution Architects should be comfortable presenting and sharing solutions at design authorities and senior leadership & stakeholders. The Lead Security Solution Architect will provide technical thought leadership and direction to their project team and may represent the project/programme as subject matter expert. This role will require someone experienced in managing a team of on-shore and off-shore resources to deliver High- and Low-level designs to the required quality and standard. Principal Preferred Requirements Cybersecurity Expertise: Significant experience and proven technical depth within one of the following domains of cybersecurity; security operations & incident response, threat & vulnerability management, identity & access management, cryptography, infrastructure, network, application, data, cloud Broad background across information technology with the ability to communicate clearly with non-security technical SMEs at a comfortable level Experience in both operational and transformation cybersecurity roles or a clear working understanding of both perspectives Experience working in large-scale IT transformation programmes Experience working with PAM solutions such as CyberArk, Centrify, Delinea and OneIdentity Preparing end-to-end configuration of the strategic PAM capability - including on-prem deployments as well as Cloud native toolings Assisting in preparation of demonstrable journeys on the configured PAM tooling Platform & Technology: BizzDesign, Archi, or generic UML visualisation experience for high-level designs High proficiency and expertise in Jira for project & tasks management Working proficiency in Confluence for documentation Principal Accountabilities and Responsibilities Architecture & Design: Produce, manage, and update end-to-end solution designs in line with reference architecture & business requirements (including High and Low Level Designs Articulate and publish key design decision records and options to ensure all solutions follow a logical, transparent decision-making process Articulate, publish, and ensure approval of any design deviations resulting in technical debt Ensure any technical risks or issues arising from a solution design are recorded and mitigated. Produces, manages and translates the requirements into the architecture for that solution, ensuring technology and services meet the customer needs and expected business outcomes Ensures the design of the solutions are efficient, timely and cost effective throughout the project life cycle Clear understanding of both the motivations of the business and technical security Promote strong documentation and clerkship Governance: Ensures all high-level designs, architecture patterns, decision records, deviation requests, and technical risks or issue records undergo architectural and project governance processes Ensure all architecture artefacts undergo appropriate peer review prior to design authority presentation Present publications at technical design authorities for input, feedback, and approval Risk and Dependency Management: Effectively manages and escalates both technical and project risks or issues Articulates solutions and remediation steps to technical risks & issues Ability to map design decisions to resultant technical risks & issues to articulate the cause and rationale which leads to any negatively impacting change Leadership & Teamwork Provides technical thought leadership to the Design Team and the Project Ability to manage a project team of technical architects, engineers, and/or analysts Ability to take a deputised role in programme management-related tasks where necessary Qualifications & Certifications: Masters or doctorate degree in cybersecurity, computer science, software engineering, or related field CISSP/CISM certification or other broad cybersecurity industry-recognised certificate SABSA or TOGAF certified preferred Priyanka Sharma Senior Delivery Consultant
Cryptography Infrastructure Engineer We are looking for a Cryptography Infrastructure Engineer to join a financial services client based in Sheffield. There will be a requirement to be in the office once every two-weeks. The contract is also inside IR35. The Role The objective will be to support the Cryptography team who are responsible for protecting the identity, confidentiality and authenticity of trillions of dollars of transactions globally. We are looking for an SME in cyber security and cryptography who can help improve their HSM observability for their entire encryption estate. The existing HSM observability is ready to be taken to the next level, improving its resilience, increased monitoring capabilities and faster alerting. We specifically require someone with expertise in either Thales Luna, nShield or payShield HSMs. Key Responsibilities: Be part of a team that implements a new monitoring and alerting solution based upon Splunk Have specific knowledge about Entrust nShield HSMs, payShield HSMs or Luna HSMs, and pulling relevant data from the device (via SNMP) Closely collaborate with team members - as SME for HSMs, but also other HSMs. Work closely with stakeholders to understand requirement details. Write a design and test specification for your responsibility in the observability project Contribute to documentation of the project Help define the roadmap for continual improvements in the management of cryptographic services Flag potential issues timely, think outside the box and be creative in finding solutions. Experienced required: Good knowledge about HSMs, specifically Entrust nShield, payShield and/or Luna. Understand how monitoring for HSMs work with expertise in the technologies such as SNMP Stakeholder management skills, with experience of understanding and meeting the needs of multiple stakeholders Knowing what it means to be part of a team, not only being a team player. Contribute to discussions, allow others to speak. Innovative mindset, we are doing something completely new, inhouse. This requires to speak up when it comes to innovations/new ideas. Understanding of cybersecurity principles, global financial services business models, as well as regional compliance standards, relevant local regulations, and applicable laws Knowledge of cryptographic modules and solutions, eg TPMs, Good understanding on IT Infrastructure technical platforms/technologies Understanding of SSH/SSL functionality and usage Experience interfacing with technology teams to bring lab concepts to market within an organization and building effective operational models to ensure capabilities are able to be fully utilized and grow to meet the needs of the team Understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, PCI DSS, GLBA, GDPR, Global data security and privacy acts, FFIEC guidelines, CIS and NIST standards. Windows and Linux Servers administration Strong Documentation skills More details available on successful application.
Oct 02, 2025
Contractor
Cryptography Infrastructure Engineer We are looking for a Cryptography Infrastructure Engineer to join a financial services client based in Sheffield. There will be a requirement to be in the office once every two-weeks. The contract is also inside IR35. The Role The objective will be to support the Cryptography team who are responsible for protecting the identity, confidentiality and authenticity of trillions of dollars of transactions globally. We are looking for an SME in cyber security and cryptography who can help improve their HSM observability for their entire encryption estate. The existing HSM observability is ready to be taken to the next level, improving its resilience, increased monitoring capabilities and faster alerting. We specifically require someone with expertise in either Thales Luna, nShield or payShield HSMs. Key Responsibilities: Be part of a team that implements a new monitoring and alerting solution based upon Splunk Have specific knowledge about Entrust nShield HSMs, payShield HSMs or Luna HSMs, and pulling relevant data from the device (via SNMP) Closely collaborate with team members - as SME for HSMs, but also other HSMs. Work closely with stakeholders to understand requirement details. Write a design and test specification for your responsibility in the observability project Contribute to documentation of the project Help define the roadmap for continual improvements in the management of cryptographic services Flag potential issues timely, think outside the box and be creative in finding solutions. Experienced required: Good knowledge about HSMs, specifically Entrust nShield, payShield and/or Luna. Understand how monitoring for HSMs work with expertise in the technologies such as SNMP Stakeholder management skills, with experience of understanding and meeting the needs of multiple stakeholders Knowing what it means to be part of a team, not only being a team player. Contribute to discussions, allow others to speak. Innovative mindset, we are doing something completely new, inhouse. This requires to speak up when it comes to innovations/new ideas. Understanding of cybersecurity principles, global financial services business models, as well as regional compliance standards, relevant local regulations, and applicable laws Knowledge of cryptographic modules and solutions, eg TPMs, Good understanding on IT Infrastructure technical platforms/technologies Understanding of SSH/SSL functionality and usage Experience interfacing with technology teams to bring lab concepts to market within an organization and building effective operational models to ensure capabilities are able to be fully utilized and grow to meet the needs of the team Understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, PCI DSS, GLBA, GDPR, Global data security and privacy acts, FFIEC guidelines, CIS and NIST standards. Windows and Linux Servers administration Strong Documentation skills More details available on successful application.
Principal Cybersecurity Machine Learning Engineer The position is a senior technical role, requiring knowledge of data engineering, data science, advanced analytics techniques, research and development, and innovation within one or more of the Cybersecurity sciences (e.g. network, endpoint and cloud security, cryptography, malware analysis, vulnerability assessment, privileged access management, anomaly/intrusion detection, incident response, or offensive security). The Principal Cybersecurity Analytics Engineer role is a key leadership, hands on technical role, contributing to, coordinating, and leading delivery of advanced analytics solutions to cybersecurity problems through rapid development of prototypes, engineering of production solutions, and exploration of longer term, potentially ground-breaking technologies. Cybersecurity-specific knowledge is required for the role, but exceptional candidates from other disciplines will also be considered. The ideal candidate will possess strong technical skills, an eagerness to learn, a keen interest in Cybersecurity, the ability to work collaboratively in a fast-paced environment, and an aptitude for picking up new tools and techniques on the job, building on existing skillsets as a foundation. You will have access to tailored professional development opportunities and a competitive pay and benefits package. This includes private healthcare for all UK-based employees, enhanced maternity and adoption pay and support when you return to work, and a contributory pension scheme with a generous employer contribution. In this role you will: Data Engineering Ingestion and provisioning of datasets, delta tables, and/or curated, re-usable data assets to enable Cybersecurity use cases. Support and enhancement of data ingestion infrastructure and pipelines. Platform Operations and Production Support Provide maintenance and run support for landing zones/cloud workspaces operated on behalf of Cybersecurity teams. Cybersecurity Sciences Research & Development (R&D) and Innovation Drive innovative research & development to test and evolve new technologies and advanced analytic techniques. Explore and develo innovative capabilities, exploiting emerging technologies and data science to help stay ahead of advancing cyber threats. Rapid Response Respond to urgent requests to address vulnerabilities or emerging threats. Advanced Analytics & Security Software Development Support Cybersecurity teams in using data and advanced analytic technologies effectively to enhance operations and inform decisions. Deliver critical analytics engineering requirements across Cybersecurity. Develop new data products, analysis platforms, and custom AI solutions to enable Cybersecurity teams to monitor controls more effectively, automatically detect and triage malicious activity, optimise manual tasks, better protect HSBC, and meet the needs of customers. Develop new models, detections, and automations to protect against advanced and emerging threats and help Cybersecurity operate efficiently and effectively at scale. Develop custom security applications, APIs, and data-driven services in support of the Cybersecurity mission. To be successful in this role you should meet the following requirements: Strong Data Technology skills, with the ability to build, operate, maintain and support loud infrastructure & data services at scale Extensive experience of Big Data Technologies (Databricks, Spark etc) Cloud Infrastructure & Platform Engineering experience (Azure preferred) The ability to conduct cybersecurity industry research and rapidly develop data-driven prototypes for live business problems faced by Cybersecurity teams Experience developing custom security applications, APIs, AI/ML models, detections, automations, and advanced analytic technologies to mitigate against current and emerging threats The ability to act as a Cybersecurity data domain expert and advise stakeholders how to use data and analytics to drive business change and improvement Proficiency in applying data science and advanced analytics techniques to the Cybersecurity domain and its associated datasets Full Stack Engineering and custom security software development experience with proficiency in programming languages such as Python, Java, C#, or similar preferred. This role can be based in Sheffield or Birmingham or London
Oct 01, 2025
Full time
Principal Cybersecurity Machine Learning Engineer The position is a senior technical role, requiring knowledge of data engineering, data science, advanced analytics techniques, research and development, and innovation within one or more of the Cybersecurity sciences (e.g. network, endpoint and cloud security, cryptography, malware analysis, vulnerability assessment, privileged access management, anomaly/intrusion detection, incident response, or offensive security). The Principal Cybersecurity Analytics Engineer role is a key leadership, hands on technical role, contributing to, coordinating, and leading delivery of advanced analytics solutions to cybersecurity problems through rapid development of prototypes, engineering of production solutions, and exploration of longer term, potentially ground-breaking technologies. Cybersecurity-specific knowledge is required for the role, but exceptional candidates from other disciplines will also be considered. The ideal candidate will possess strong technical skills, an eagerness to learn, a keen interest in Cybersecurity, the ability to work collaboratively in a fast-paced environment, and an aptitude for picking up new tools and techniques on the job, building on existing skillsets as a foundation. You will have access to tailored professional development opportunities and a competitive pay and benefits package. This includes private healthcare for all UK-based employees, enhanced maternity and adoption pay and support when you return to work, and a contributory pension scheme with a generous employer contribution. In this role you will: Data Engineering Ingestion and provisioning of datasets, delta tables, and/or curated, re-usable data assets to enable Cybersecurity use cases. Support and enhancement of data ingestion infrastructure and pipelines. Platform Operations and Production Support Provide maintenance and run support for landing zones/cloud workspaces operated on behalf of Cybersecurity teams. Cybersecurity Sciences Research & Development (R&D) and Innovation Drive innovative research & development to test and evolve new technologies and advanced analytic techniques. Explore and develo innovative capabilities, exploiting emerging technologies and data science to help stay ahead of advancing cyber threats. Rapid Response Respond to urgent requests to address vulnerabilities or emerging threats. Advanced Analytics & Security Software Development Support Cybersecurity teams in using data and advanced analytic technologies effectively to enhance operations and inform decisions. Deliver critical analytics engineering requirements across Cybersecurity. Develop new data products, analysis platforms, and custom AI solutions to enable Cybersecurity teams to monitor controls more effectively, automatically detect and triage malicious activity, optimise manual tasks, better protect HSBC, and meet the needs of customers. Develop new models, detections, and automations to protect against advanced and emerging threats and help Cybersecurity operate efficiently and effectively at scale. Develop custom security applications, APIs, and data-driven services in support of the Cybersecurity mission. To be successful in this role you should meet the following requirements: Strong Data Technology skills, with the ability to build, operate, maintain and support loud infrastructure & data services at scale Extensive experience of Big Data Technologies (Databricks, Spark etc) Cloud Infrastructure & Platform Engineering experience (Azure preferred) The ability to conduct cybersecurity industry research and rapidly develop data-driven prototypes for live business problems faced by Cybersecurity teams Experience developing custom security applications, APIs, AI/ML models, detections, automations, and advanced analytic technologies to mitigate against current and emerging threats The ability to act as a Cybersecurity data domain expert and advise stakeholders how to use data and analytics to drive business change and improvement Proficiency in applying data science and advanced analytics techniques to the Cybersecurity domain and its associated datasets Full Stack Engineering and custom security software development experience with proficiency in programming languages such as Python, Java, C#, or similar preferred. This role can be based in Sheffield or Birmingham or London
Cryptography Infrastructure Engineer We are looking for a Cryptography Infrastructure Engineer to join a financial services client based in Sheffield. There will be a requirement to be in the office once every two-weeks. The contract is also inside IR35. The Role The objective will be to support the Cryptography team who are responsible for protecting the identity, confidentiality and authenticity of trillions of dollars of transactions globally. We are looking for an SME in cyber security and cryptography who can help improve their HSM observability for their entire encryption estate. The existing HSM observability is ready to be taken to the next level, improving its resilience, increased monitoring capabilities and faster alerting. We specifically require someone with expertise in either Thales Luna, nShield or payShield HSMs. Key Responsibilities: Be part of a team that implements a new monitoring and alerting solution based upon Splunk Have specific knowledge about Entrust nShield HSMs, payShield HSMs or Luna HSMs, and pulling relevant data from the device (via SNMP) Closely collaborate with team members - as SME for HSMs, but also other HSMs. Work closely with stakeholders to understand requirement details. Write a design and test specification for your responsibility in the observability project Contribute to documentation of the project Help define the roadmap for continual improvements in the management of cryptographic services Flag potential issues timely, think outside the box and be creative in finding solutions. Experienced required: Good knowledge about HSMs, specifically Entrust nShield, payShield and/or Luna. Understand how monitoring for HSMs work with expertise in the technologies such as SNMP Stakeholder management skills, with experience of understanding and meeting the needs of multiple stakeholders Knowing what it means to be part of a team, not only being a team player. Contribute to discussions, allow others to speak. Innovative mindset, we are doing something completely new, inhouse. This requires to speak up when it comes to innovations/new ideas. Understanding of cybersecurity principles, global financial services business models, as well as regional compliance standards, relevant local regulations, and applicable laws Knowledge of cryptographic modules and solutions, eg TPMs, Good understanding on IT Infrastructure technical platforms/technologies Understanding of SSH/SSL functionality and usage Experience interfacing with technology teams to bring lab concepts to market within an organization and building effective operational models to ensure capabilities are able to be fully utilized and grow to meet the needs of the team Understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, PCI DSS, GLBA, GDPR, Global data security and privacy acts, FFIEC guidelines, CIS and NIST standards. Windows and Linux Servers administration Strong Documentation skills More details available on successful application.
Sep 25, 2025
Contractor
Cryptography Infrastructure Engineer We are looking for a Cryptography Infrastructure Engineer to join a financial services client based in Sheffield. There will be a requirement to be in the office once every two-weeks. The contract is also inside IR35. The Role The objective will be to support the Cryptography team who are responsible for protecting the identity, confidentiality and authenticity of trillions of dollars of transactions globally. We are looking for an SME in cyber security and cryptography who can help improve their HSM observability for their entire encryption estate. The existing HSM observability is ready to be taken to the next level, improving its resilience, increased monitoring capabilities and faster alerting. We specifically require someone with expertise in either Thales Luna, nShield or payShield HSMs. Key Responsibilities: Be part of a team that implements a new monitoring and alerting solution based upon Splunk Have specific knowledge about Entrust nShield HSMs, payShield HSMs or Luna HSMs, and pulling relevant data from the device (via SNMP) Closely collaborate with team members - as SME for HSMs, but also other HSMs. Work closely with stakeholders to understand requirement details. Write a design and test specification for your responsibility in the observability project Contribute to documentation of the project Help define the roadmap for continual improvements in the management of cryptographic services Flag potential issues timely, think outside the box and be creative in finding solutions. Experienced required: Good knowledge about HSMs, specifically Entrust nShield, payShield and/or Luna. Understand how monitoring for HSMs work with expertise in the technologies such as SNMP Stakeholder management skills, with experience of understanding and meeting the needs of multiple stakeholders Knowing what it means to be part of a team, not only being a team player. Contribute to discussions, allow others to speak. Innovative mindset, we are doing something completely new, inhouse. This requires to speak up when it comes to innovations/new ideas. Understanding of cybersecurity principles, global financial services business models, as well as regional compliance standards, relevant local regulations, and applicable laws Knowledge of cryptographic modules and solutions, eg TPMs, Good understanding on IT Infrastructure technical platforms/technologies Understanding of SSH/SSL functionality and usage Experience interfacing with technology teams to bring lab concepts to market within an organization and building effective operational models to ensure capabilities are able to be fully utilized and grow to meet the needs of the team Understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, PCI DSS, GLBA, GDPR, Global data security and privacy acts, FFIEC guidelines, CIS and NIST standards. Windows and Linux Servers administration Strong Documentation skills More details available on successful application.
