Senior Cloud Security Engineer in London

Location: London (5 days onsite)

Some security roles focus on policy. This one is about securing the platform from the ground up. A highly sophisticated, engineering-led organization is seeking a Senior Cloud Platform Security Engineer to design, implement, and scale secure-by-default infrastructure across Kubernetes, cloud, and software delivery environments. This is not a traditional governance or operations security role. It requires a deeply hands-on engineer who can embed security directly into clusters, pipelines, cloud architecture, and platform design—building guardrails that enable engineering rather than block it.

You’ll play a critical role in securing modern infrastructure across Kubernetes, CI/CD, Azure cloud, Infrastructure-as-Code, and software supply chain, with significant ownership over how secure engineering is delivered at scale.

The Role

• Design and implement Kubernetes security controls across enterprise platform environments
• Secure CI/CD pipelines through signing, provenance, credential hardening, and policy enforcement
• Build secure cloud infrastructure patterns across Azure environments
• Harden Infrastructure-as-Code modules across Terraform and Bicep
• Strengthen software supply chain security, container security, and image governance
• Develop automation, tooling, and scripting to operationalize security at scale
• Partner directly with platform and DevOps teams on secure architecture
• Help shape long-term cloud and platform security strategy

What You’ll Be Doing Early

• First 6 months focused heavily on Kubernetes security
• Securing clusters, deployment pipelines, and runtime environments
• Following projects expand into broader cloud security ownership
• Longer term progression into secure software and cloud platform engineering

Non-Negotiables (DO NOT APPLY IF YOU DON’T HAVE...)

• Strong hands-on Kubernetes experience in production environments
• Deep cloud or platform security engineering capability
• Experience with Terraform, Bicep, or similar Infrastructure-as-Code
• Strong scripting ability (Python, Go, Bash, or similar)
• Experience securing CI/CD pipelines and modern software delivery
• Strong understanding of IAM, RBAC, secrets management, and secure architecture
• Excellent academic background (high standards expected)
• Ability to operate in a highly technical, performance-driven environment

Highly Valuable

• Azure security experience
• Financial services, hedge fund, or high-performance enterprise background
• Supply chain security
• Container hardening
• Security tooling such as OPA/Gatekeeper, Kyverno, Falco, or equivalent
• Certifications such as CKS, AZ-500, or OSCP

Why This Role

This is a rare opportunity to join an elite engineering environment where security is treated as a core engineering discipline—not a support function. For the right person, this role offers the chance to:

• Build secure cloud-native infrastructure
• Own meaningful platform security initiatives
• Progress from Kubernetes security into broader cloud and software security leadership
• Work in a technically demanding, high-caliber organization where implementation quality matters

If you’re a deeply technical security engineer who wants to build, harden, and shape secure infrastructure at scale, this is the kind of opportunity that rarely reaches the market.