Senior Security Engineer - CIAM

Join us as a Senior Security Engineer for CIAM at Barclays, where you will bring to life a new digital platform capability, transforming and modernising our digital estate to build a market-leading digital offering with customer experience at its heart.

This is an exciting and key role, partnering with business aligned engineering and product teams, to ensure a collaborative team culture is at the heart of what we do.

To be successful in this role you should have:

• Experience with configuration and integration of Hardware Security Modules (HSM) and AWS Secrets Manager (ASM), certificate lifecycle management (rotation, revocation), and automation of security workflows.
• Experience using GitLab CI/CD pipelines, AWS CLI, or Chef.
• Strong cloud security expertise in areas such as AWS security controls, policies, automation, CLI tools, role and attribute-based access controls, cryptographic protocols, secure key lifecycle management, threat modelling, SOC operations, securing microservices and APIs, DevSecOps best practices, vulnerability scanning, patching, and vendor management.
• Hands-on experience in penetration testing and coding in JavaScript, Java, or Python.

Highly desirable skills include:

• Experience configuring, deploying, and operating ForgeRock IAM solutions (PingGateway, PingIDM, etc.) with embedded security features like header signing, token encryption, PKI-based identity, or open source solutions.

This role will be based in our London office.

Purpose of the role

To develop, implement, and maintain solutions that safeguard the bank's systems and sensitive information.

Accountabilities

• Provide subject matter expertise on security systems and engineering patterns.
• Develop and implement protocols, algorithms, and software to protect data and systems.
• Manage and secure secrets throughout their lifecycle.
• Conduct audits to identify vulnerabilities and support breach response.
• Research and adopt new cryptographic technologies.
• Collaborate with teams to ensure cryptographic solutions align with policies and regulations.
• Develop and maintain Identity and Access Management solutions.

Vice President Expectations

• Contribute to strategy, requirements, and policy development; manage resources and budgets; implement improvements.
• Lead or guide teams, define responsibilities, and influence operations.
• Demonstrate leadership behaviours: Listen, Energise, Align, Develop.
• Guide technical teams, lead multi-year projects, and mentor less experienced staff.
• Advise stakeholders on technical and strategic matters.
• Manage risks and strengthen controls.
• Understand organisational functions and collaborate across business areas.
• Develop innovative solutions through analytical thinking and research.
• Build relationships with stakeholders to achieve business objectives.

All colleagues are expected to embody Barclays Values—Respect, Integrity, Service, Excellence, and Stewardship—and the Barclays Mindset—Empower, Challenge, Drive.