Security Engineer (Web Application Firewalls), Open to flexible working

Pudsey, London
£39,717 - £44,130 per annum
03 Jun 2021
17 Jun 2021
048207
Lloyds Banking Group
IT
Permanent

Agile Working Options

Flexible / Variable Hours, Other Agile Working Arrangements / Open to Discussion

Job Description Summary

The Web Application Gateway Firewall (WAGF) team is responsible for protecting and securing the edge points of ingress and egress from the group’s core infrastructure. Whether that’s protecting the group from malware, preventing our most visible banking applications from being attacked or protecting colleagues from rogue or malicious websites. We don’t just look after the policies that we enforce, but also the underlying infrastructure and as experts in our field we are consulted on widely within the organisation to help drive strategy and diagnose & remediate complex incidents. We focus equally on premise and in the cloud covering all major cloud vendors, with a multitude of technologies at our disposal.

This technical role will provide a focal point for the expansion / support of our on-prem WAF capability as well as our constantly evolving CLOUD based WAF strategy. The role will provide technical support in line with the organisation’s compliance and standards, including liaison with 3rd parties, production and maintenance of technical documentation, coaching and guidance on the technology and process / best practices in line with the team’s ethos and organisational governance, as well as managing technical risk assessment / remediation. We are very focussed on where our technology is going so of particular interest are the skills that will aid in the scripting, automation and provisioning of services through pipelining tools.

Job Description

Lloyds Banking Group is the UK's biggest Retail, Digital and Mobile bank with over 30 million customers and a big responsibility to help Britain Prosper.

We're in the middle of a £3bn investment into our People, Platforms and Data - with a Software Engineering led approach, all as part of our strategy to become the best bank for customers. It's the role of our Chief Information Office (CIO) to provide the backbone and infrastructure upon which this bank of the future will reside.

Want to hear more?

You'll be able to drive and support our on-prem WAF platform and our CLOUD based WAF Strategy as well as the processes by which they operate. This role builds the balance of combining hands on support and maintenance of the security infrastructure and managing a sustainable BAU platform. Your time will may be split between delivering the projects requirement solution and providing a robust BAU support platform, including processes and documentation.

This is an operational focussed team so an element of "out of hours" working / support and On call may be required, in order to comply with the banks Change Control and support model.

Accountabilities:

This technical role will provide a focal point for the expansion / support of our on-prem WAF capability as well as our constantly evolving CLOUD based WAF strategy. The role will provide technical support in line with the organisation's compliance and standards, including liaison with 3rd parties, production and maintenance of technical documentation, coaching and guidance on the technology and process / best practices in line with the team's ethos and organisational governance, as well as managing technical risk assessment / remediation. We are very focussed on where our technology is going so of particular interest are the skills that will aid in the scripting, automation and provisioning of services through pipelining tools.

So what about you?

You'll be able to demonstrate most of the following technical capabilities with some to an advanced level.

Technical:

  • Recognise, understand OWASP Vulnerabilities.
  • Create Application Layer specific policies to manage traffic.
  • Familiar with the different security considerations of API driven traffic over Legacy Web Traffic
  • Experience with WAF tuning, what the objective is and how this could be accomplished.
  • Construction of HTTP requests, HTTP Response codes, SSL communication (i.e. PKI, certs etc.).

What will you get in return?

In addition to the salary quoted the position also offers:

  • Discretionary Performance Share Award
  • Generous pension contribution
  • A flex benefits cash pot you can adjust to suit your lifestyle (4% on top of your basic salary)
  • Private health cover
  • Access to share schemes
  • 30 days holiday plus bank holidays

We're dedicated to giving you opportunities and support to develop you both expertly and personally to optimise your potential. As a new colleague, you'll join us on our journey to build a 21st century bank that reflects modern Britain and craft an inclusive culture where all colleagues feel encouraged and valued.

We're committed to building a workforce which reflects the diversity of the customers and communities we serve, and to building an inclusive environment where all our colleagues can be themselves and succeed on merit. We support the principles of agile working and are happy to consider flexible working arrangements. We're an equal opportunity employer and deeply value diversity within our organisation.

So, if you have the experience we're seeking then get in touch, we'd love to hear from you.

Together we make it possible......