Lead Infrastructure Engineer - Web Access Protection
other jobs Lloyds Banking Group
Added before 1 Days
- England,Yorkshire and The Humber,West Yorkshire,Leeds
- Full Time, Permanent
- £92,701 - £109,060 per annum
Job Description:
Lead Infrastructure Engineer - Web Access Protection
Edinburgh Sighthill North
Full time
Posted Today
140224
End Date
Thursday 26 March 2026
Salary Range
£92,701 - £109,060
We support flexible working - click here for more information on flexible working options
Flexible Working Options
Hybrid Working, Job Share
Job Description Summary
.
Job Description
JOB TITLE: Lead Infrastructure Engineer - Web Access Protection
SALARY : £92,701 - £109,060
LOCATION(S): Leeds, Edinburgh, Manchester
HOURS: Full Time
WORKING PATTERN : Our work style is hybrid, which involves spending at least two days per week, or 40% of our time, at one of our office sites.
About this opportunity
The Chief Security Office (CSO) is a vital part of delivering the Group’s vision of putting customers at the heart of everything we do, helping Britain prosper and protecting the Group and our customers from security threats. We’re responsible for defining and communicating Lloyds Banking Group’s security strategy and providing critical Enterprise Security Services that not only operate the controls keeping the Group safe whilst also enabling the digital transformation agenda of the wider organisation.
Lloyds Banking Group seeks an innovative Lead Infrastructure Engineer to craft the future approach to securing our colleague and machine web-access journey within our Edge Security Lab, while driving the deployment and ongoing development of our SASE solution.
This role is ideal for senior engineering leaders with recent, hands-on technical experience, comfortable working directly with code, automation, and modern delivery pipelines. You’ll balance fostering engineering excellence across the team with providing strategic oversight and contributing directly to technical delivery!
This is a unique opportunity to lead a skilled team of engineers and product professionals, delivering security solutions that are scalable, resilient, and built for automation. We’re looking for someone who combines deep technical expertise, a strong engineering mindset, and a collaborative leadership style, with the coding capability needed to work directly with modern engineering patterns and guide others through best practice implementation!
What you’ll be doing:
Technical Leadership
*Providing hands-on DevOps engineering expertise, embedding modern practices such as Infrastructure as Code, Policy as Code, CI/CD, API-driven automation, automated testing, and observability into all solutions.
*Lead the development, build, and ongoing improvement of web access protection infrastructure. It supports every component of a new SASE solution, such as proxy services (forward/reverse), protected corporate browsers, and API traffic controls.
*Define and evolve the infrastructure and security strategy related to internet connectivity, including B2B integrations and policy controls ("proxy" / browser).
*Collaborate with product owners to shape the roadmap, with a focus on scalability, automation, and operational resilience.
*Lead root cause investigations and remediation for major incidents, working with multi-functional security and platform teams.
Team Management
*Line manage and coach a team of Engineers, promoting a high-performance culture and developing their capability to adopt modern engineering practices - including moving from ClickOps to DevOps through automation, code-driven delivery, and continuous improvement.
*Set objectives, provide mentoring, and support continuous professional development.
*Plan and lead team capacity, budgeting, and resource allocation to align with strategic goals.
*Encourage experimentation, innovation, and adoption of modern engineering practices.
*Open to challenges and to challenging the status quo.
Operational Excellence
*Drive the transition away from managing services through third-party portals, introducing policy-as-code and configuration-as-code to support automated, consistent, and scalable delivery.
*Coordinate the delivery, monitoring, and continuous improvement of the SASE solution, secure enterprise browser, and machine-traffic infrastructure.
*Lead the incident and change management lifecycle for web access infrastructure services.
*Ensure services are highly resilient, well-documented, and aligned with compliance and audit requirements.
*Maintain strong relationships with internal product teams and external vendors to ensure service quality.
Risk, Security & Compliance
*Develop and implement security and access policies for web traffic, aligned to enterprise risk management frameworks.
*Support detection and response efforts by integrating with SIEM and analytics platforms.
*Maintain a strong balance between security and usability, particularly in the context of browser controls and user experience.
*Participate in security reviews, risk assessments, and policy updates related to platforms providing web access.
Why join us?
We’re transforming at pace. Investing billions in our people, data and tech to change the way we meet the needs of our 28 million customers. We’re growing, and we’d love you to be part of the journey.
What we’re looking for:
*Proven, hands-on modern engineering experience across infrastructure, policy and config as code, with recent delivery using CI/CD pipelines and tooling such as GitHub, Terraform and Python.
*Leadership experience in infrastructure engineering with line management responsibilities.
*Experience with secure web platforms (e.g., Zscaler, Palo Alto, Blue Coat, McAfee Web Gateways / SkyHigh etc.) and secure enterprise browsers (e.g., Chrome Enterprise, Island, Talon, Edge for Business).
*Familiarity with security controls, data loss prevention, and browser isolation techniques.
*Experience coordinating incident resolution and change processes within infrastructure or security services.
*Strong stakeholder management and ability to influence product and platform strategy.
And any of these would be great:
*Experience in regulated environments and responding to audits.
*Participation in an on-call rota and supporting 24/7 services.
*Security certifications (e.g., CISSP, CCSP)
This is a place for you
Our ambition is to be the leading UK business for diversity, equity and inclusion supporting our customers, colleagues and communities, and we’re committed to creating an environment in which everyone can thrive, learn...
Edinburgh Sighthill North
Full time
Posted Today
140224
End Date
Thursday 26 March 2026
Salary Range
£92,701 - £109,060
We support flexible working - click here for more information on flexible working options
Flexible Working Options
Hybrid Working, Job Share
Job Description Summary
.
Job Description
JOB TITLE: Lead Infrastructure Engineer - Web Access Protection
SALARY : £92,701 - £109,060
LOCATION(S): Leeds, Edinburgh, Manchester
HOURS: Full Time
WORKING PATTERN : Our work style is hybrid, which involves spending at least two days per week, or 40% of our time, at one of our office sites.
About this opportunity
The Chief Security Office (CSO) is a vital part of delivering the Group’s vision of putting customers at the heart of everything we do, helping Britain prosper and protecting the Group and our customers from security threats. We’re responsible for defining and communicating Lloyds Banking Group’s security strategy and providing critical Enterprise Security Services that not only operate the controls keeping the Group safe whilst also enabling the digital transformation agenda of the wider organisation.
Lloyds Banking Group seeks an innovative Lead Infrastructure Engineer to craft the future approach to securing our colleague and machine web-access journey within our Edge Security Lab, while driving the deployment and ongoing development of our SASE solution.
This role is ideal for senior engineering leaders with recent, hands-on technical experience, comfortable working directly with code, automation, and modern delivery pipelines. You’ll balance fostering engineering excellence across the team with providing strategic oversight and contributing directly to technical delivery!
This is a unique opportunity to lead a skilled team of engineers and product professionals, delivering security solutions that are scalable, resilient, and built for automation. We’re looking for someone who combines deep technical expertise, a strong engineering mindset, and a collaborative leadership style, with the coding capability needed to work directly with modern engineering patterns and guide others through best practice implementation!
What you’ll be doing:
Technical Leadership
*Providing hands-on DevOps engineering expertise, embedding modern practices such as Infrastructure as Code, Policy as Code, CI/CD, API-driven automation, automated testing, and observability into all solutions.
*Lead the development, build, and ongoing improvement of web access protection infrastructure. It supports every component of a new SASE solution, such as proxy services (forward/reverse), protected corporate browsers, and API traffic controls.
*Define and evolve the infrastructure and security strategy related to internet connectivity, including B2B integrations and policy controls ("proxy" / browser).
*Collaborate with product owners to shape the roadmap, with a focus on scalability, automation, and operational resilience.
*Lead root cause investigations and remediation for major incidents, working with multi-functional security and platform teams.
Team Management
*Line manage and coach a team of Engineers, promoting a high-performance culture and developing their capability to adopt modern engineering practices - including moving from ClickOps to DevOps through automation, code-driven delivery, and continuous improvement.
*Set objectives, provide mentoring, and support continuous professional development.
*Plan and lead team capacity, budgeting, and resource allocation to align with strategic goals.
*Encourage experimentation, innovation, and adoption of modern engineering practices.
*Open to challenges and to challenging the status quo.
Operational Excellence
*Drive the transition away from managing services through third-party portals, introducing policy-as-code and configuration-as-code to support automated, consistent, and scalable delivery.
*Coordinate the delivery, monitoring, and continuous improvement of the SASE solution, secure enterprise browser, and machine-traffic infrastructure.
*Lead the incident and change management lifecycle for web access infrastructure services.
*Ensure services are highly resilient, well-documented, and aligned with compliance and audit requirements.
*Maintain strong relationships with internal product teams and external vendors to ensure service quality.
Risk, Security & Compliance
*Develop and implement security and access policies for web traffic, aligned to enterprise risk management frameworks.
*Support detection and response efforts by integrating with SIEM and analytics platforms.
*Maintain a strong balance between security and usability, particularly in the context of browser controls and user experience.
*Participate in security reviews, risk assessments, and policy updates related to platforms providing web access.
Why join us?
We’re transforming at pace. Investing billions in our people, data and tech to change the way we meet the needs of our 28 million customers. We’re growing, and we’d love you to be part of the journey.
What we’re looking for:
*Proven, hands-on modern engineering experience across infrastructure, policy and config as code, with recent delivery using CI/CD pipelines and tooling such as GitHub, Terraform and Python.
*Leadership experience in infrastructure engineering with line management responsibilities.
*Experience with secure web platforms (e.g., Zscaler, Palo Alto, Blue Coat, McAfee Web Gateways / SkyHigh etc.) and secure enterprise browsers (e.g., Chrome Enterprise, Island, Talon, Edge for Business).
*Familiarity with security controls, data loss prevention, and browser isolation techniques.
*Experience coordinating incident resolution and change processes within infrastructure or security services.
*Strong stakeholder management and ability to influence product and platform strategy.
And any of these would be great:
*Experience in regulated environments and responding to audits.
*Participation in an on-call rota and supporting 24/7 services.
*Security certifications (e.g., CISSP, CCSP)
This is a place for you
Our ambition is to be the leading UK business for diversity, equity and inclusion supporting our customers, colleagues and communities, and we’re committed to creating an environment in which everyone can thrive, learn...
Job number 3536045
Increase your exposure to recruiters with ProJobs
Thousands of recruiters are looking for you in the Job Master profile database, increase your exposure 4 times with a ProJob subscription
You can cancel your subscription at any time.