×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer

Head of Infrastructure Security

Job in Sheffield, South Yorkshire, S5, England, UK
Listing for: HSBC
Full Time position
Listed on 2026-01-03
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer
Job Description & How to Apply Below

Big Bank Funding. Fin Tech Thinking.

Our Technology teams work closely with HSBC’s Global Businesses and Infrastructure Functions to design, build and run digital services that allow millions of our customers around the world to bank quickly, simply and securely. We run and manage technology infrastructure, data centres and banking systems that power the world’s leading international bank, with one of the largest technology estates in the industry.

We are looking for a Head of Infrastructure Security to join us to shape our long‑term strategy, and turbo‑charge delivery as the accountable owner for Infrastructure Security across the bank. This role ensures the secure configuration and protection of operating systems (e.g. Unix/Linux, IBMz/i), databases (e.g. Oracle, SQL Server, Mongo

DB), cloud assets (e.g. containers), middleware (e.g. Web Sphere, MQ), virtualisation technology (e.g. ESX), network fabric (e.g. F5s, switches) and end‑user devices (e.g. ATMs, VDI, mobile etc). The role oversees our Endpoint Security capability, ensuring we secure our infrastructure assets against malicious activity and unauthorised change, including defining and operating/overseeing the management of security agents providing protective, limiting and detective capabilities.

This senior leadership role reports directly into the Global Head of Cyber Technology & Engineering and you will be required to:

  • Strategy:
    Define and maintain our global strategy for Infrastructure and Endpoint Security, supported by engineers, platform owners, architects and multiple control owners, enabling business success, meeting regulatory expectation and industry‑benchmarked best practice, whilst responding to current and likely threat actor evolution. Includes: security standards as code; continuous platform security assessments, security agent optimisation, and risk‑based capability expansion and maturity uplift.
  • Delivery:
    Own the investment roadmap for Infrastructure and Endpoint Security and its successful delivery across multiple partners. Enable multiple cyber mandates to be enforced by default. Ensure the transparent prioritisation of a common backlog to drive risk reduction, simplification and address wider strategic needs. Influence, challenge and steer delivery within partner teams across Technology (e.g. Distributed Compute).
  • Innovation:
    Empower HSBC to successfully navigate cyber risk with innovative, responsive and frictionless technologies and services, both those delivered in‑house and from external partners. Foster and empower a culture of innovation, experimentation, and continuous improvement. Near‑term focus on platformification.
  • Partnership:
    Form close partnerships with engineering teams: as design partners – for how capabilities will be implemented and operated, at times in novel ways; as customers – understanding their needs as they consume secure baselines or ope rationalise new platforms, and as delivery partners – prioritising change within Cybersecurity Engineering teams, and to drive bank‑wide adoption of uplifts.
  • Services: define, operate and mature secure baseline maintenance and security consulting to platform and infrastructure owners across the bank. Support / implement security changes on certain core platforms. Analysis of signal and event data from endpoint security capabilities, driving continual optimisation and end‑to‑end efficacy against threat activity. Provide security consulting, especially early‑on in the design journey.
  • Oversight:
    Ensure Infrastructure and Endpoint Security is robustly managed, end‑to‑end, throughout the organisation: from platform acquisition, service deployment through to federated operation. Drive a data‑centric approach to observability and assessment, supported by automation, measurement and analytics.
  • Accountability:
    Ensure regulatory and risk management outcomes are being maintained or robustly managed. Ownership of High‑Risk Audit, Regulator and self‑identified issues. Ownership of the capability budget, balancing run and change investment. As a senior leader, contribute to and champion change across both Cybersecurity and Technology, occasionally outside of your primary…
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search