Design Engineer (Cybersecurity)

Job Title: Design Engineer (Cybersecurity)

Location: Hybrid-Sheffield, UK (3 Days/Week Onsite)

Duration: 6months+

Rate: 500GBP/Day Inside IR35

We\'re looking for a Design Engineer to manage end-to-end solution design and be responsible for delivering architecture design documents in line with functional and non-functional business requirements, strategies, principles, standards, and patterns. Alongside the creation of high-level designs, the Design Engineer will publish new architecture patterns, key decisions, design deviations, and technical risks and issues where appropriate. The Design Engineer should be comfortable presenting and sharing solutions at design authorities and to senior leadership & stakeholders. The role will provide technical thought leadership and direction to aligned projects and may act as a subject matter expert and consultant for related programmes.

Cybersecurity Expertise:

• Significant experience and proven technical depth within one of the following cybersecurity domains: security operations & incident response, threat & vulnerability management, access management, cryptography, infrastructure, network, application, data, cloud.
• Broad IT background with the ability to communicate clearly with non-security technical SMEs.
• Excellent command of cybersecurity organisation practices, operations risk management processes, architectural requirements, engineering threats and vulnerabilities, including incident response methodologies.
• Keen understanding of national and international laws, regulations, policies and ethics related to financial industry cybersecurity.
• Experience and understanding of both enterprise & solution architecture roles and their interlock.
• Experience in operational and transformation cybersecurity roles or a clear working understanding of both perspectives.
• Experience working in large-scale IT transformation programmes.

• Secrets Management: Experience designing solutions using secret management tools such as HashiCorp Vault.
• Developing secrets management patterns and championing designs through architecture governance forums.
• Designing or implementing Workload Frameworks within large-scale enterprises.
• Defining secrets management strategy and influencing future direction within the bank.
• Federated Management: Enabling sharing and single sign-on across different organisations or domains.
• Privileged Access Management (PAM): Securing, controlling, and monitoring access to critical systems by privileged users.
• Authentication Protocols: Implementing secure authentication mechanisms such as Kerberos, OAuth, and SAML.

• BizzDesign, Archi, or generic UML visualisation experience for high-level designs.
• High proficiency in Jira for project and tasks management.
• Working proficiency in Confluence for documentation and Jira for task management.

Architecture & Design:

• Produce, manage, and update end-to-end solution designs in line with reference architecture & business requirements.
• Articulate and publish key design decision records and options to ensure all solutions follow a logical, transparent decision-making process.
• Articulate, publish, and ensure approval of any design deviations resulting in technical debt.
• Ensure any technical risks or issues arising from a solution design are recorded and mitigated.
• Translate requirements into architecture for the solution, ensuring technology and services meet customer needs and expected business outcomes.
• Ensure designs are efficient, timely, and cost-effective throughout the project lifecycle.
• Maintain a clear understanding of both business and technical security motivations.
• Promote strong documentation and governance.

Governance:

• Ensure all high-level designs, architecture patterns, decision records, deviation requests, and risk/issue records undergo governance processes.
• Ensure architecture artefacts undergo appropriate peer review prior to design authority presentation.
• Present publications at technical design authorities for input, feedback, and approval.

Risk and Dependency Management:

• Effectively manage and escalate technical and project risks or issues.
• Articulate solutions and remediation steps for technical risks & issues.
• Map design decisions to technical risks & issues to explain causes and rationale for changes.

Leadership & Teamwork:

• Provide technical thought leadership in their domain of expertise.
• Work across IT as a cybersecurity SME.
• Manage a project team of technical architects, engineers, and/or analysts.
• Take a deputised role in programme management-related tasks where necessary.

• Masters or Doctorate in cybersecurity, computer science, software engineering, or related field.
• CISSP, CISM, or other broad cybersecurity industry-recognised certification.
• SABSA or TOGAF certification.

Apply now!