Cloud Security Engineer (UK) in London

Atreides are seeking a motivated and proactive Cloud Security Engineer with a strong focus on Microsoft Azure security to join our growing team. This role is ideal for a security engineer or SecOps professional who understands the critical importance of maintaining a highly secure environment and is eager to work across cloud, endpoint, and infrastructure domains.

While the primary focus will be Azure security engineering, experience with hardware and traditional infrastructure security will be considered a strong plus.

• Design, build, and maintain security automation and tooling to enforce controls and simplify compliance.
• Build and manage identity & access management controls across cloud platforms and applications.
• Write and review Infrastructure-as-Code (Bicep/Terraform) for secure cloud configuration.
• Implement preventative and detective controls in Azure; automate remediation of alerts.
• Secure CI/CD pipelines, integrating results from SAST/DAST/SCA tools and ensuring supply chain integrity.
• Engineer solutions for Kubernetes security, focusing on RBAC, network policies, and runtime protection.

• Perform triage, containment, eradication, and recovery activities as part of incident response, ensuring threats are effectively mitigated.
• Develop and optimise security detections (Sentinel, KQL, YARA).
• Manage log sources, ingestion pipelines, and monitoring infrastructure.
• Conduct threat hunting and analysis to identify emerging risks.
• Lead and contribute to incident investigations, including post-mortem analysis and remediation actions.

• Identify, track, and remediate vulnerabilities across cloud, endpoint, and infrastructure.
• Implement controls from security assessments, audits, and architecture reviews.
• Support third‐party risk assessments and vendor due diligence.

• Maintain documentation of security standards, runbooks, and procedures.
• Participate in security-related projects and lead implementation of new security solutions.

• 3+ years in security engineering or security operations, ideally in cloud‐first environments.
• Strong understanding of cloud security architecture with hands‐on experience securing cloud infrastructure and services.
• Hands‐on experience with the Azure security stack, including Microsoft Defender for Cloud (recommendations, alerts, Secure Score), Azure Policy, and related security tooling.
• Proficiency with SIEM platforms (Azure Sentinel preferred), developing detections and alerts, tuning rules, and investigating incidents.
• Proven incident response capability including triage, investigation, containment, eradication, and recovery.
• Practical experience integrating security into software and system development lifecycles.
• Experience with endpoint security solutions and MDM/EMM tools.
• Experience securing containerised environments (Kubernetes) and CI/CD pipelines.
• Proficiency in scripting and automation (PowerShell, Python, KQL, Bicep).
• Strong understanding of network security — protocols, firewalls, IDS/IPS, WAFs, and infrastructure hardening.
• Familiarity with incident response frameworks (NIST, SANS).
• Experience configuring and using cloud‐native security logging, monitoring, and detection services.
• In‐depth knowledge of security principles, attack vectors (OWASP Top 10, MITRE ATT&CK), and the threat landscape.

• Azure Security Engineer AZ-500
• Security Operations Analyst SC-200
• Identity and Access administrator SC-300
• GIAC Certified Forensic Analyst

• Comprehensive health, dental, and vision insurance plans.
• Flexible hybrid work environment.
• Additional benefits like flexible hours, work travel opportunities, competitive vacation time and parental leave.

You must have the right to work in the United Kingdom. Please note that we do not provide visa sponsorship.