Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Secure cloud environments and enhance security configurations across Azure and GCP.
- Company: Join a leading firm committed to innovation and security in the cloud.
- Benefits: Competitive salary, flexible working options, and opportunities for professional growth.
- Why this job: Make a real impact on cloud security while working with cutting-edge technologies.
- Qualifications: 5+ years in cloud security, strong Azure experience, and Terraform proficiency.
- Other info: Inclusive workplace with a focus on continuous improvement and collaboration.
The predicted salary is between 36000 - 60000 £ per year.
We are seeking a Cloud Security Specialist with hands-on experience across Azure, M365 and preferably Google Cloud Platform (GCP). The role focuses on assessing and improving cloud security configurations and advising on best practices across Azure IaaS and GCP environments. You will bring a strong engineering background in managing compute, network and storage resources in cloud and hybrid environments, along with extensive experience of Terraform, Azure Defender, Conditional Access and DevSecOps.
Key responsibilities and deliverables
- Assess the security configuration of Azure IaaS and GCP environments (infrastructure, containers and DevOps pipelines) and provide recommendations based on industry best practice and emerging threats.
- Design, implement and manage secure Azure cloud infrastructure (e.g. virtual networks, VMs, storage, identity services) and provide cloud-security SME support to Cyber Incident Response when required.
- Administer and enhance Azure security across IaaS, containers (e.g. AKS) and DevOps pipelines; implement and review security controls for cloud-native applications and services.
- Review Terraform-based infrastructure-as-code to identify and mitigate security risks; advise on securing automated provisioning processes.
- Evaluate and optimise Azure Defender and other monitoring tools (including in GCP), assess and refine Conditional Access/IAM strategies, embed security into DevSecOps/CI-CD pipelines, and ensure cloud environments meet compliance and governance requirements.
- Collaborate with cloud, DevOps, Networks and development teams to align security with operational goals, and promote continuous improvement and innovation in cloud security.
Key requirements
- 5+ years’ experience in cloud security, with strong focus on Azure IaaS and exposure to (preferably) Google Cloud.
- Hands-on experience administering Azure security environments, including IaaS, containers (e.g. AKS) and DevOps pipelines.
- Strong background in administering compute, network and storage resources in cloud and hybrid environments.
- Proficiency with Terraform and infrastructure-as-code best practices, including the ability to review scripts for security issues.
- Extensive experience with Azure security services and tooling (e.g. Defender, Conditional Access), strong problem-solving skills, and the ability to communicate security issues clearly to technical and non-technical stakeholders.
- Relevant cloud/security certifications (e.g. Azure Security Engineer, Google Professional Cloud Security Engineer).
- Experience contributing cloud security expertise to incident response and investigations.
- Experience in complex or regulated enterprise environments with formal governance frameworks.
- Demonstrated ability to manage through change and drive improvements in security processes and tooling.
- Experience working in a consulting or advisory capacity, building strong relationships across cross-functional teams.
Information Security Cloud Specialist employer: Freshfields
Contact Detail:
Freshfields Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Cloud Specialist
✨Network Like a Pro
Get out there and connect with folks in the cloud security space! Attend meetups, webinars, or even online forums. The more people you know, the better your chances of landing that dream job.
✨Show Off Your Skills
Don’t just talk about your experience; demonstrate it! Create a portfolio showcasing your projects, especially those involving Azure, GCP, and Terraform. This will give potential employers a clear view of what you can bring to the table.
✨Tailor Your Approach
When reaching out to companies, make sure to tailor your message to highlight how your skills align with their needs. Mention specific tools like Azure Defender or DevSecOps practices to show you’re the right fit for their team.
✨Apply Through Our Website
We encourage you to apply directly through our website! It’s the best way to ensure your application gets seen by the right people. Plus, you’ll be one step closer to joining a fantastic team focused on cloud security.
We think you need these skills to ace Information Security Cloud Specialist
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your hands-on experience with Azure, M365, and GCP. We want to see how your skills align with the role, so don’t be shy about showcasing your cloud security expertise!
Showcase Your Projects: Include specific examples of projects where you've assessed and improved cloud security configurations. We love seeing real-world applications of your skills, especially in Terraform and DevSecOps.
Be Clear and Concise: When writing your cover letter, keep it straightforward. We appreciate clarity, so explain how your background in managing compute, network, and storage resources makes you a great fit for this role.
Apply Through Our Website: Don’t forget to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. We can’t wait to hear from you!
How to prepare for a job interview at Freshfields
✨Know Your Cloud Security Stuff
Make sure you brush up on your knowledge of Azure IaaS and GCP. Be ready to discuss specific security configurations and best practices. They’ll likely ask you about your hands-on experience, so have some examples ready that showcase your skills with Terraform, Azure Defender, and DevSecOps.
✨Showcase Your Problem-Solving Skills
Prepare to demonstrate how you've tackled security issues in the past. Think of scenarios where you identified risks in cloud environments and how you mitigated them. This will show your ability to communicate complex security matters clearly to both technical and non-technical folks.
✨Familiarise Yourself with Compliance and Governance
Since the role involves ensuring compliance and governance, be prepared to discuss your experience in regulated environments. Brush up on relevant frameworks and be ready to explain how you’ve contributed to maintaining security standards in previous roles.
✨Collaborate and Communicate
This position requires working closely with various teams, so think about how you’ve built relationships in the past. Be ready to share examples of how you’ve collaborated with DevOps, Networks, and development teams to align security with operational goals. Communication is key!
