Tesco Bank prides itself on their range of simple and convenient retail banking and insurance products designed specifically to meet the needs of Tesco customers. They believe that every little help makes a big difference, and by putting the customer first and rewarding their loyalty, they are offering something they believe every bank should.
AMS is a global workforce solutions partner committed to creating inclusive, dynamic, and future-ready workplaces. We help organisations adapt, grow, and thrive in an ever-evolving world by building, shaping, and optimising diverse talent strategies.
We partner with Tesco Bank to support their contingent recruitment processes. Acting as an extension of their recruitment teams, we connect them with skilled interim and temporary professionals, fostering workplaces where everyone can contribute and succeed.
On behalf of Tesco Bank, AMS are now looking for a Lead Information Security Manager - Cryptography based in Edinburgh - Hybrid for an initial contract length of 6 Month.
Purpose of the role:
We're looking for a Lead Information Security Manager - Cryptography to join our Cyber team at Tesco Bank.
This is a pivotal role in shaping the future of cryptographic security across the organisation. You'll lead the development and governance of our cryptography operating model, own the certificate management lifecycle, and drive our transition to quantum-safe cryptography and automated certificate renewal.
You'll be at the forefront of modernising our cryptographic practices, aligning with NIST, NCSC, and ENISA standards, and enabling secure digital innovation. This role will influence the future direction of our cyber strategy and help us build a resilient, agile cryptographic capability.
What you'll do:
* Own and evolve the enterprise cryptography strategy, operating model, and governance framework.
* Lead the transition to post-quantum cryptography (PQC), including pilot evaluations and migration planning.
* Define and implement automated certificate lifecycle management across platforms.
* Chair the Cryptography Governance Board and report on cryptographic posture to senior stakeholders.
* Assess current cryptographic capabilities, identify gaps, and develop plans to close them.
* Oversee integration of tools such as CyberArk, Azure Key Vault, Sentinel, and Qualys.
* Ensure alignment with regulatory standards (e.g., NIST SP 800-57, SP 800-208, FIPS 140-3).
* Collaborate with engineering, risk, and compliance teams to embed cryptographic controls into CI/CD pipelines.
* Monitor cryptographic KPIs and drive continuous improvement.
The skills you'll need:
* Proven experience in cryptographic governance, certificate lifecycle management, and key management systems. (essential)
* Strong understanding of Public Key Infrastructure (PKI) and other encryption methods.(essential)
* Experience governing the management and integration of Hardware Security Modules and cloud equivalents i.e. Thales LUNA, AWS CloudHSM etc.
* Strong understanding of quantum-safe cryptography and cryptographic agility principles.
* Ability to define and document key ceremonies to build trust in key processes in compliance with bank's security policies.
* Experience leading cross-functional teams and influencing senior stakeholders.
* Understanding of secure access controls, role separation, multi-factor authentication for sensitive operations.
About the client
Why Tesco Bank?
At Tesco Bank everyone is welcome, we value our people and diverse teams and believe the variety of backgrounds and experiences make us stronger in achieving our goals. It's important to us that we make sure you're supported by your team and colleague networks every day, celebrating when it matters and helping you to be the best version of yourself. The people make Tesco Bank, and we take pride in what we achieve together.
Next steps
If you are interested in applying for this position and meet the criteria outlined above, please click the link to apply and we will contact you with an update in due course.
Our client will only accept workers operating via an Umbrella or PAYE engagement model.
Please note that for the duration of this assignment you will be working as an external resource engaged by AMS.
JBRP1_UKTJ