Job Description

Role: Design Engineer
Location: UK - Sheffield
Rate: 525 GBP PD
Design Engineer to manage end-to-end solution design and are responsible for delivering architecture design documents in line with functional and non-functional business requirements, strategies, principles, standards, and patterns. Alongside the creation of high-level designs, Design Engineer will be required to publish new architecture patterns, key decisions, design deviations, and technical risks and issues where appropriate.
Design Engineer should be comfortable presenting and sharing solutions at design authorities and senior leadership & stakeholders. 
Principal Preferred Requirements
Cybersecurity Expertise:
Significant experience and proven technical depth within one of the following domains of cybersecurity; security operations & incident response, threat & vulnerability management, identity & access management, cryptography, infrastructure, network, application, data, cloud
Broad background across information technology with the ability to communicate clearly with non-security technical SMEs at a comfortable level
Excellent command of cybersecurity organisation practices, operations risk management processes, principles, architectural requirements, engineering threats and vulnerabilities, including incident response methodologies
Keen understanding of national and international laws, regulations, policies and ethics related to financial industry cybersecurity
Experience and understanding of both the roles and interlock between enterprise & solution architecture
Experience in both operational and transformation cybersecurity roles or a clear working understanding of both perspectives
Identity & Access Management
Secrets Management: Experience of designing solutions using SM tools such as HashiCorp Vault
Experience of developing secrets management patterns and championing designs through architecture governance forums
Experience of designing or implementing Workload Identity Frameworks within large scale enterprises
Capable of defining secrets management strategy and influencing the future direction of secrets management within the bank
Federated Identity Management: Enabling identity sharing and single sign-on across different organisations or domains.
Privileged Access Management (PAM): Securing, controlling, and monitoring access to critical systems by privileged users.
Authentication Protocols: Implementing secure authentication mechanisms like Kerberos, OAuth, and SAML.
Privileged Access Management (PAM): Securing, controlling, and monitoring access to critical systems by privileged users.
Authentication Protocols: Implementing secure authentication mechanisms like Kerberos, OAuth, and SAML.
Qualifications & Certifications:
CISSP/CISM certification or other broad cybersecurity industry-recognised certificate
SABSA or TOGAF certified preferred
Working proficiency in Confluence for documentation and JIRA for task management
Principal Accountabilities and Responsibilities
Architecture & Design:
Produce, manage, and update end-to-end solution designs in line with reference architecture & business requirements
Articulate and publish key design decision records and options to ensure all solutions follow a logical, transparent decision-making process
Articulate, publish, and ensure approval of any design deviations resulting in technical debt
Ensure any technical risks or issues arising from a solution design are recorded and mitigated.
Produces, manages and translates the requirements into the architecture for that solution, ensuring technology and services meet the customer needs and expected business outcomes