Cloud Security Engineer

Cloud Security Engineer

Our client is a leading organisation in the digital asset space, supporting institutional partners with secure, innovative technology solutions. They are seeking a Cloud Security Engineer to own the security of their multi‑cloud environments, designing and enforcing security architecture, driving compliance, and embedding security‑first thinking across cloud infrastructure and engineering teams.

• Lead the design, implementation, and governance of secure AWS and Azure environments, including IAM, network security, segmentation, and encryption.
• Own cloud‑native security services including AWS Security Hub, Guard Duty, Azure Defender, Key Vault, and Azure Policy.
• Define and enforce cloud security baselines to meet internal policies and regulatory standards.
• Build security automation and IaC frameworks using Terraform or Cloud Formation, with security controls embedded by default.
• Integrate SAST, DAST, and IaC scanning into CI/CD pipelines to shift security left across the development lifecycle.
• Configure cloud‑native logging, monitoring, and alerting to support threat detection and incident response.
• Develop and maintain incident response playbooks, runbooks, and security SOPs.
• Partner with Dev Ops and IT teams to provide security guidance on architecture and deployment practices.
• Manage cloud asset inventory, vulnerability posture, and BCP/DR security readiness.

• 3+ years in a Cloud Security or Security Engineering role.
• Deep expertise in AWS and/or Azure security models, native services, and shared responsibility frameworks.
• Hands‑on experience with IAM, VPC/VNet design, firewalls, WAFs, and encryption at rest and in transit.
• Proficiency with Terraform or Cloud Formation and security‑first cloud provisioning practices.
• Scripting and automation skills in Python, Bash, or Power Shell.
• Solid understanding of Dev Sec Ops  principles and CI/CD tooling (e.g., Git Hub Actions, Bitbucket Pipelines).
• Strong documentation skills and ability to communicate clearly across technical and non‑technical stakeholders.
• Bonus: Experience in regulated industries, relevant certifications (AWS Security Specialty, AZ‑500, CCSP), or exposure to AI‑assisted security tooling.

A high‑autonomy environment where your security expertise will directly shape cloud strategy and resilience. Flexible working, a supportive culture, and strong opportunities for long‑term development.