OverviewBarclays is reinventing the merchant acquiring landscape. We are building a greenfield, cloud-native, fintech-style platform from the ground up—completely independent of legacy constraints.As a Senior Security Consultant, you will be the technical security lead for a high-velocity engineering mission. Reporting directly to the CISO leadership, you will act as both a guardian and an enabler, ensuring that our "secure-by-design" philosophy is baked into every line of code and every AWS instance before we go live.You will operate at the intersection of Fast-Paced Engineering and Robust Banking Governance. Your role is to bridge the gap between a modern "move-fast" DevOps mindset and the rigorous security standards of a Global Bank.Key AccountabilitiesSecurity Architecture & "Shift-Left" ConsultancyDrive end-to-end security solutions across platform and product engineering.Perform deep-dive architectural reviews and threat modeling to catch risks in the design phase.Deliver pragmatic, cost-effective guidance that accelerates delivery rather than blocking it.Architect secure AWS workloads using cloud-native services, IAM, and zero-trust networking.Secure our GitHub-based CI/CD pipelines and containerized environments (Docker/Kubernetes).Champion "Controls-as-Code"—moving away from manual audits toward automated, immutable evidence and policy-as-code.Act as the key conduit to CISO leadership, identifying "blockers" and high-risk items early.Translate complex technical threats into business risk for both engineers and executive stakeholders.Influence the Security Steering Group to ensure the platform meets the CISO risk appetite.Lead the security hardening of our modern collaborative stack, including Google Workspace and a MacBook-based EUC estate managed via JAMF.Key SkillsYou are a seasoned Cyber Security professional who thrives in high-pressure, agile environments. You know how to navigate the governance of a major bank while speaking the language of a cloud-native developer.Technical EssentialsExtensive experience in Security Architecture or Consulting, ideally within Financial Services or Fintech.Cloud Mastery: Deep expertise in AWS security, architecture patterns, and operational guardrails.Modern Tooling: Hands-on experience securing CI/CD pipelines, Infrastructure-as-Code (IaC), and Kubernetes.Domain Depth: Strong knowledge of Cryptography, AppSec, IAM, and Network Segmentation.Frameworks: Practical application of NIST, ISO 27001, and PCI DSS.Experience in Merchant Acquiring or Payment flows.Specific experience securing MacBook estates (JAMF) and Google Workspace.Proven ability to lead "Red Team" readiness and pre-go-live assurance. #J-18808-Ljbffr