Lead Infrastructure Engineer - Modern Workplace Security

The Chief Security Office (CSO) is a vital part of delivering the Group's vision of putting customers at the heart of everything we do, helping Britain prosper and protecting the Group and our customers from security threats. We're responsible for defining and communicating Lloyds Banking Group's security strategy and providing critical Enterprise Security Services that not only operate the controls keeping the Group safe whilst also enabling the digital transformation agenda of the wider organisation., We're seeking a Lead Infrastructure Engineer to lead a team of Engineers within our Modern Workplace Security team. You'll shape the infrastructure and security strategy for one or more critical technical products, leading the development of infrastructure roadmaps, driving automation, and ensuring alignment with organisational standards and goals., This role is ideal for a senior engineering leader with recent, hands-on technical experience, comfortable working directly with code, automation, and modern delivery pipelines. As we move from ClickOps to DevOps, the role requires hands-on code development to automate, improve, and scale how we manage and deliver our services - and you'll play a key role in embedding these practices across the team.

You'll balance strategic oversight with direct involvement in technical delivery, fostering engineering excellence and developing the team's capability to adopt modern engineering patterns. You'll lead a talented group of engineers and product professionals in delivering security capabilities that are scalable, resilient, and built for automation. We're looking for someone who combines deep technical expertise, a strong engineering mindset, and a collaborative leadership style, with the coding capability needed to work directly with modern engineering approaches and coach others in best practice implementation.

Key Responsibilities

Technical Leadership

• Providing hands-on DevOps engineering expertise, embedding modern practices such as Infrastructure as Code, Policy as Code, CI/CD, API-driven automation, automated testing, and observability into all solutions.

• Lead the integration of security controls into infrastructure deployments (e.g., Microsoft Defender, Microsoft Purview).

• Own and drive the technical product roadmap for infrastructure and tooling across the Lab, in conjunction with the Product Owner.

• Collaborate with product owners to shape the roadmap, with a focus on scalability, automation, and operational resilience.

Team Management

• Line manage and coach a team of Engineers, promoting a high-performance culture and developing their capability to adopt modern engineering practices - including moving from ClickOps to DevOps through automation, code-driven delivery, and continuous improvement.

• Foster a collaborative, high-performing team culture with a growth mindset.

• Plan and lead team capacity, budgeting, and resource allocation to align with strategic goals.

• Encourage experimentation, innovation, and adoption of modern engineering practices.

Operational Excellence

• Drive the transition away from managing services through third-party portals, introducing policy-as-code and configuration-as-code to support automated, consistent, and scalable delivery.

• Coordinate and contribute to the development, delivery, and support of modern workplace security products and services.

• Lead the delivery of high-quality, secure solutions that improve the frictionless endpoint user experience.

• Promote the sharing of information, documentation, and the implementation of service management tools (e.g., JIRA, ServiceNow).

• Maintain strong relationships with internal product teams and external vendors to ensure service quality.

Risk, Security & Compliance

• Develop and implement security and compliance policies across the team's responsibilities.

• Support risk management and prioritisation across infrastructure services.

• Balance usability and security to ensure effective end-user experiences while maintaining compliance., What You'll Need, Our ambition is to be the leading UK business for diversity, equity and inclusion supporting our customers, colleagues and communities and we're committed to creating an environment in which everyone can thrive, learn and develop.

• Proven, hands-on modern engineering experience across infrastructure, policy and config as code, with recent delivery using CI/CD pipelines and tooling such as GitHub, Terraform, Powershell and Python.

• Demonstrated success in system automation, API integrations, and continuous improvement.

• Leadership experience in infrastructure engineering with line management responsibilities.

• Strong technical expertise in endpoint security on Windows and macOS.

• Experience with Microsoft Defender, Purview, Endpoint DLP, and email/exchange security.

• Emphasizing a user-first approach, finding the right balance between security and performance while ensuring usability.

• Ability to influence product and platform direction with strategic technical insights.

Desirable Experience (Nice to Have)

• Familiarity with additional endpoint security tools/platforms.

• Previous experience with ticketing systems (JIRA, ServiceNow).

• Participation in an out-of-hours or on-call rota.

• Relevant certifications such as Microsoft Certified: Security, Compliance, and Identity Fundamentals, CISSP, CCSP, or cloud security credentials.

We provide reasonable adjustments throughout the recruitment process to reduce or remove barriers. Just let us know what you need.

We also offer a wide-ranging benefits package, which includes:

• A generous pension contribution of up to 15%
• An annual performance-related bonus
• Share schemes including free shares
• Benefits you can adapt to your lifestyle, such as discounted shopping
• 30 days' holiday, with bank holidays on top
• A range of wellbeing initiatives and generous parental leave policies