Lead Windows Engineer in Sheffield

Lead Windows Engineer -

Big Bank Funding. FinTech Thinking.

Our technology teams in the UK work closely with HSBC’s global businesses to help design and build digital services that allow our millions of customers around the world, to bank quickly, simply and securely. We also run and manage our IT infrastructure, data centres and core banking systems that power the world’s leading international bank.

Our multi-disciplined teams include: DevOps engineers, IT architects, front and back-end developers, infrastructure specialists, cyber experts, as well as project and programme managers. 

Business area overview

Global Cybersecurity Operations (GCO) provides a coordinated suite of “Network Defence” services responsible for detecting and responding to information and cybersecurity threats to HSBC assets across the globe.

The organization includes dedicated functions for systems engineering, content management and automation, monitoring and detection, as well as cybersecurity incident management and response activities.

What you will be doing:

As a Lead Windows Engineer you will join the Cybersecurity Product Sustained Engineering team, responsible for the Splunk SIEM platform and other technology supporting Global Cybersecurity Operations.  The team manages all aspects of the AWS IaaS-hosted Cybersecurity platforms, as well as a large infrastructure footprint for on-premises log collection.

The Lead Windows Engineer will manage Splunk log ingestion for all Windows technologies, including Active Directory, members servers, desktops and ATMs.  Vital to this role is experience in Windows system administration, AD / AD LDS, event forwarding, Group Policy, PowerShell, SCCM and Spunk agent configuratio

What you will be doing;

This role will carry out some or all of the following activities:

Key Responsibilities

•  Engineering leadership for Windows log management
•  Leading the continued technical enhancement of Windows event management and threat detection
• Designing and implementing a scripted agent lifecycle management capability for Windows platforms
• Managing the Windows-hosted Cyber Forensics platform
• Training and developing other members of the Technology Operations team
• Supporting a culture of individual self-improvement, whereby staff are expected to maintain subject matter expertise within their area of focus and within the realm of cybersecurity more broadly, for example remaining up to date on the latest forensic techniques and tooling for strategically important platforms and technologies in use (and proposed for use) at HSBC.
• Taking a leading role in the engagement of Global Businesses and Functions everywhere HSBC does business, driving a global up-lift in cybersecurity awareness
•  Collaborating with various layers of management across Cybersecurity and other IT teams to develop solutions that protect the organisation
•  Designing and driving the implementation of new service offerings, capability uplifts and process improvements to protect the bank for a continuously changing threat landscape  Major Challenges:

Supporting mission-critical cyber SIEM and automation platforms for a global user base operating on a 24/7 basis

What you will bring to the role; 

To be successful in this role you should have proven experience within the Technology sector with knowledge of the following skills:

• Extensive experience with deep technical expertise in Windows technology
• SCCM Experience
• PowerShell automation experience
• Good experience with Splunk
• Experience with agent and package management in a distributed Windows environment
• Scripting/programming experience with PowerShell
•  An ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily-understood, authoritative and actionable manner
• Self-motivated and possessing of a high sense of urgency and personal integrity
• A team-focused mentality with the proven ability to work effectively with diverse stakeholders
• Ability to orchestrate, manage and successfully implement major procedural and technological change within a complex, global organization

Bonus points for:

·     Experience with Splunk Enterprise and SOAR

This role will primarily be based in Sheffield  UK; some travel may be required.

Come Power a Business that Defines How to Power the World

As a business operating in markets all around the world, we believe diversity brings benefits for our customers, our business and our people. This is why HSBC is committed to being an inclusive employer and encourages applications from all suitably qualified applicants irrespective of ethnicity, religion, age, physical or mental disability/long term health condition, marital status, sexual orientation, gender identity, gender expression, genetic information (including characteristics and testing), military and veteran status, and any other characteristic protected by local law in the jurisdictions in which we operate. Within the work place you will have access to various employee resource groups which aim to promote and achieve a healthy work / life balance and support our diversity ambitions.  HSBC has in place processes in order to avoid nepotism, which means to avoid creating circumstances in which the appearance or possibility of conflicts of interest may exist within the hiring process.

We want everyone to be able to fulfil their potential which is why we provide a range of flexible working arrangements and family friendly policies.

As an HSBC employee in the UK, you will have access to tailored professional development opportunities and a competitive pay and benefits package. This includes private healthcare for all UK-based employees, enhanced maternity and adoption pay and support when you return to work, and a contributory pension scheme with a generous employer contribution.

Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website.

You can find out more about the recruitment journey and what to expect by viewing our Recruitment Process FAQs in HR Direct and by clicking (only available via internal access).

Recruitment Helpdesk:

Email:  

Tel: +44 (0) 207 832 8500