At a Glance
- Tasks: Design and secure multi-cloud infrastructure while driving automation and enhancing cloud security.
- Company: Join a leading tech firm focused on innovative cloud solutions.
- Benefits: Hybrid working, competitive salary, and opportunities for professional growth.
- Other info: Dynamic team environment with excellent career advancement opportunities.
- Why this job: Make a real impact in cloud security and digital transformation initiatives.
- Qualifications: Experience in cloud security and strong scripting skills required.
The predicted salary is between 60000 - 80000 £ per year.
- Smartedge’s Client is looking for an individual to help with their
- Cloud Security Engineer @ Knutsford, Uk/ Hybrid Working
Job Description
We are seeking an experienced and highly motivated Security Cloud Engineer to play a critical role in the design, implementation, automation, and security of our multi-cloud infrastructure.
This position is ideal for a cloud professional with a strong security mindset who is passionate about protecting cloud-native environments, driving automation, and supporting secure digital transformation initiatives.
As a Security Cloud Engineer, you will help shape the future of our cloud security capability by developing and enhancing secure cloud platforms across AWS, Microsoft Azure, and Google Cloud Platform (GCP).
Working closely with engineering, security, Dev Ops, and operational teams, you will contribute to cloud architecture designs, automate security remediation processes, and provide proactive insights into cloud risks, vulnerabilities, and threat mitigation strategies.
You will leverage your expertise in cloud security, infrastructure as code, CI/CD pipelines, containerisation, and governance frameworks to ensure that cloud services are secure, resilient, scalable, and aligned with organisational standards.
This role requires a hands‑on approach and the ability to translate high‑level and low‑level designs into practical, secure, and operationally effective solutions.
Key Responsibilities
- Drive continuous improvements and enhancements to cloud infrastructure in alignment with business strategy, budget, and security objectives.
- Design, build, and maintain secure cloud‑native solutions across AWS, Azure, and GCP environments.
- Collaborate with engineering and Dev Ops teams to deliver secure, scalable, and highly available cloud services.
- Support business stakeholders in adopting modern cloud‑native architectures and security best practices.
- Develop and implement automation for security monitoring, incident response, remediation, and operational processes.
- Ensure cloud platforms comply with organisational security standards, governance requirements, and software development lifecycle practices.
- Identify, assess, and mitigate cloud security risks, vulnerabilities, and compliance gaps.
- Contribute to cloud architecture reviews, security assessments, and threat modelling activities.
- Work with security tooling and SIEM platforms to improve visibility, detection, and response capabilities.
- Support incident, problem, and change management processes while maintaining operational excellence.
- Develop Infrastructure as Code (Ia C) solutions to standardise and automate cloud deployments.
- Partner with development teams to embed security into CI/CD pipelines and Dev Sec Ops processes.
- Monitor cloud environments and provide recommendations for optimisation, security posture improvement, and operational efficiency.
- Proven experience as a Cloud Engineer, Cloud Security Engineer, Dev Sec Ops Engineer, or similar role.
- Professional cloud certifications in AWS, Microsoft Azure, or Google Cloud Platform.
- Experience translating High‑Level Designs (HLDs) and Low‑Level Designs (LLDs) into secure technical solutions.
- Strong scripting and automation skills using Power Shell, Bash, Python, and/or Java.
- Experience working within Agile and Scrum delivery environments.
- Expert knowledge of CI/CD pipelines and Dev Sec Ops practices.
- Strong understanding of cloud security controls, security frameworks, and compliance requirements.
- Hands‑on experience with SIEM platforms and cloud security tooling.
- Experience with incident, problem, and change management processes.
- Working knowledge of Wiz Cloud and Wiz Defend security platforms.
- Strong containerisation experience, including Docker and Kubernetes.
- Experience administering and securing both Windows and Red Hat Linux environments.
- Experience implementing operational automation using Chef or similar configuration management tools.
- AWS Security Expertise
- Experience creating and managing Cloud Formation templates for infrastructure deployment.
- Strong understanding of AWS Identity and Access Management (IAM), security policies, security groups, and Key Management Service (KMS).
- Hands‑on experience with AWS networking technologies including VPCs, subnets, routing, and load balancing.
- Experience securing and supporting ECS, EKS, and AWS Lambda workloads.
- Knowledge of Cloud Watch and Cloud Trail for monitoring, logging, and auditing activities.
- Azure Security Expertise
- Experience developing ARM templates and Bicep scripts for infrastructure automation.
- Strong understanding of Azure Resource Manager, Azure Policy, and Azure Blueprints governance frameworks.
- Experience implementing and managing Azure Active Directory, Managed Identities, and Role‑Based Access Control (RBAC).
- Hands‑on experience with Azure Dev Ops pipelines and release management.
- Knowledge of Azure Monitor, Log Analytics, Microsoft Defender for Cloud, and compliance monitoring tools.
- Understanding of Azure networking services, including Virtual Networks (VNETs), Network Security Groups (NSGs), Application Gateway, and Azure Firewall.
- GCP Security Expertise
- Experience creating infrastructure automation through Deployment Manager and/or Terraform.
- Knowledge of GCP IAM, Service Accounts, and Organisation Policies.
- Experience with Cloud Build, Artifact Registry, and Cloud Deploy services.
- Understanding of GCP networking, including VPCs, firewall rules, and cloud load balancing.
- Experience with Cloud Logging, Cloud Monitoring, and Security Command Center.
- Familiarity with Google Kubernetes Engine (GKE) and cloud‑native container orchestration.
Desirable Qualifications & Experience
- Previous experience working within a financial services or other highly regulated environment.
- Bachelor’s degree or higher qualification in Computer Science, Cyber Security, Information Technology, or a related discipline.
- CISSP (Certified Information Systems Security Professional) certification.
- Additional cloud security certifications such as AWS Security Specialty, Microsoft Certified Cybersecurity Architect, or Google Professional Cloud Security Engineer.
- #J-18808-Ljbffr