Location: Sheffield (Hybrid Working)
Contract: Initial contract until end of 2026, with potential extension
We are seeking an experienced Senior Cloud Security Engineer to join a leading financial services organisation on a contract basis. This role will play a key part in enhancing cloud security capabilities across a large-scale Google Cloud Platform (GCP) environment, supporting the deployment and operationalisation of a market-leading Cloud-Native Application Protection Platform (CNAPP).
Working within an Agile engineering team, you will collaborate closely with cloud platform engineers, DevOps teams, and cybersecurity stakeholders to improve cloud security posture, drive remediation activities, and ensure adherence to enterprise cloud security standards.
Key Responsibilities
- Support the adoption, onboarding, configuration, and operational readiness of CNAPP tooling across GCP environments.
- Implement and maintain cloud security guardrails aligned with established cloud security standards and policies.
- Review, validate, prioritise, and tune security findings, including misconfigurations, IAM risks, vulnerabilities, and exposure management issues.
- Work closely with engineering and application teams to translate security findings into practical remediation actions and long-term control improvements.
- Integrate cloud security outputs into DevSecOps processes, workflows, reporting, and governance frameworks.
- Provide regular security posture reporting, metrics, and insights covering risk trends, control coverage, and remediation progress.
- Support security investigations and incident response activities relating to cloud security events when required.
- Ensure effective change management practices are followed and provide impact assessments for proposed platform changes.
Required Experience
- Strong hands‑on experience with CNAPP/CSPM platforms, ideally Wiz, or equivalent technologies such as Prisma Cloud, Orca, or CrowdStrike.
- Proven experience securing Google Cloud Platform (GCP) environments.
- Deep understanding of GCP security principles, including IAM, logging and monitoring, networking controls, and container/Kubernetes security.
- Experience assessing cloud security findings, determining risk, and driving remediation activities.
- Experience working with DevSecOps and CI/CD teams to embed security controls into development and operational processes.
- Strong stakeholder engagement skills with the ability to work across engineering, operations, and security functions.
- Experience operating within regulated environments where auditability, governance, and control evidence are essential.
- Experience working within Agile delivery teams.
- Demonstrable success improving cloud security posture using CNAPP/CSPM technologies and governance frameworks.
- Ability to triage, tune, and prioritise security findings while driving measurable remediation outcomes.
- Strong understanding of cloud security standards, risk management, access controls, logging, monitoring, and resilience principles.
- Excellent communication skills with the ability to explain complex technical security concepts to both technical and non‑technical audiences.
- Google Cloud certifications, particularly Professional Cloud Security Engineer.
- Experience supporting security tooling across multi‑cloud environments, including AWS and Azure.
- Experience integrating cloud security data into enterprise reporting, governance, and risk management processes.
What's on Offer
- Opportunity to work within a large‑scale, complex cloud environment.
- Exposure to enterprise cloud security transformation initiatives.
- Hybrid working arrangement based in Sheffield.
If you are a Cloud Security Engineer with strong GCP and CNAPP experience looking for your next contract opportunity within financial services, we'd like to hear from you.
