Lead Cloud Security Engineer in London

We are seeking a highly skilled Lead Cloud Security Systems Engineer to design, implement and enhance our cloud security frameworks focusing on protecting, monitoring and governing data across Microsoft Purview and Microsoft 365 collaboration environments. In this key role, you will support and evolve data governance strategies to ensure regulatory compliance, reduce risks associated with data leakage and enable secure collaboration across our organization. If you're ready to take ownership of our cloud security initiatives and make a lasting impact, we want to hear from you.

Responsibilities

• Develop, implement and maintain data governance and security strategies to protect sensitive data across Microsoft Purview and Microsoft 365 platforms.
• Lead the design and management of tools and frameworks for secure data collaboration in line with organizational standards and regulatory requirements.
• Monitor and enforce compliance with data protection regulations (e.g. GDPR, SOX) and internal policies to minimize governance risks.
• Deploy and configure data loss prevention (DLP) tools to reduce data leakage risks and enable secure data sharing.
• Proactively identify vulnerabilities, gaps and risks in cloud environments and recommend practical solutions to mitigate them.
• Collaborate with cross-functional teams including IT, data governance and compliance to align security goals with business objectives.
• Conduct risk assessments, audits and continuous monitoring of cloud platforms to ensure adherence to best practices.
• Provide technical leadership and mentoring to junior team members and other stakeholders to elevate cloud security capabilities.
• Stay up to date with emerging cloud security trends, technologies and industry developments applying insights to continuously strengthen EPAM's security posture.

Requirements

• Proven experience as a Cloud Security Engineer, Information Security Specialist or similar role with a focus on data governance and cloud security.
• Strong expertise in Microsoft Purview, Microsoft 365 Security & Compliance tools and related governance frameworks.
• Comprehensive understanding of cloud security principles including data protection, access control and compliance with regulatory requirements (e.g. GDPR, CCPA, etc.).
• Prior experience designing and implementing data loss prevention (DLP) strategies and technologies.
• Familiarity with Microsoft Azure Security services such as Azure AD, Azure Information Protection and Azure Security Center.
• Solid knowledge of security standards and frameworks including NIST, ISO 27001 and CIS benchmarks.
• Strong analytical skills with an ability to identify risks, prioritize solutions and operationalize governance controls.
• Experience with identity and access management (IAM), incident response and security monitoring in cloud-native environments.
• Excellent leadership, communication and stakeholder management skills.
• Relevant certifications such as Microsoft Certified: Security Operations Analyst, CISSP, CCSP or Azure Security Engineer Associate are preferred.

Nice to have

• Experience with AI security frameworks.

We offer

• EPAM Employee Stock Purchase Plan (ESPP).
• Protection benefits including life assurance, income protection and critical illness cover.
• Private medical insurance and dental care.
• Employee Assistance Program.
• Cyclescheme, Techscheme and season ticket loans.
• Various perks such as free Wednesday lunch in-office, on-site massages and regular social events.
• Learning and development opportunities including in-house training and coaching, professional certifications, over 22,000 courses on LinkedIn Learning Solutions and much more.
• If otherwise eligible, participation in the discretionary annual bonus program.
• If otherwise eligible and hired into a qualifying level, participation in the discretionary Long-Term Incentive (LTI) Program.

*All benefits and perks are subject to certain eligibility requirements.

Seniority level: Mid-Senior level

Employment type: Full-time

Job function: Business Development, Information Technology, and Engineering

Industries: Software Development and IT Services and IT Consulting