SME Web Application and API Protection

If you're looking for a career that will help you stand out, join HSBC, and fulfil your potential – whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further. We are currently seeking an experienced professional to join our team in the role of SME – Web Application Security Protection. This role will work within an agile team of Engineers and Operations personnel building highly resilient, scalable and performant AWS infrastructure in an automated and efficient manner. The engineers will work alongside the Application DevOps teams and cross‑functional IT teams. The engineers will be required to use their initiative to innovate to achieve maximum performance and be prepared to investigate and use new products/services offered by AWS. The role will require a willingness to upskill in CSP native technologies as necessary, particularly to enable rapid analysis of attack signatures and implementation of mitigation actions during incidents. As an HSBC employee in the UK, you will have access to tailored professional development opportunities and a competitive pay and benefits package. This includes private healthcare for all UK‑based employees, enhanced maternity and adoption pay and support when you return to work, and a contributory pension scheme with a generous employer contribution.

• Provide support to coordinating migration of teams to WAF Central Rules in block mode, e.g.,
• Development and realisation of new processes for new Operating Models.
• Oversee development and integration of central capabilities (Central SOC/SIEM) alerting and incident response etc.
• Work with CSP Architecture and Core engineering DevOps Leads on enabling of WAF Rules on internal‑facing services.
• Work with central ESP team to capture and define central security baseline rules / signatures.
• Work with application teams / support to migration of their services to new Central CSP Managed Rules in block mode.
• Provide KCI reporting on compliance to new Operating Model / Central Rules and signatures by application teams.

• Experience in working in at least one Cloud Provider and have experience working with CSP native WAF solutions or equivalent – Akamai in use of WAF Rules and DDoS protection.
• Hands on experience in writing and deployment of WAF rules and some hands‑on experience using at least one CSP native logging, alerting, alarms and metrics.
• A strong understanding of web applications, HTML, and JavaScript is essential, enabling the successful applicant to review security signatures and accurately identify false positives.
• Familiarity with key industry and open‑source standards for WAF is expected.
• Demonstrable experience in responding to and effectively managing cyber‑attacks, including Layer 7 and DDoS attacks, is required.
• Proven track record in a centralised function, showcasing effectiveness in collaborating across the organisation to apply common security baseline configurations for service protection.
• Experience working with Logging solutions such as Splunk in the filtering and alerting of issues.

This role is based in Birmingham, Sheffield can also be considered, opening up a world of opportunity.

Being open to different points of view is important for our business and the communities we serve. At HSBC, we're dedicated to creating diverse and inclusive workplaces – no matter their gender, ethnicity, disability, religion, sexual orientation, or age. We are committed to removing barriers and ensuring careers at HSBC are inclusive and accessible for everyone to be at their best. We take pride in being a Disability Confident Leader and will offer an interview to people with disabilities, long term conditions or neurodivergent candidates who meet the minimum criteria.