Senior Cloud Security Engineer in Sheffield

The ideal candidate for this role will have the below experience and qualifications:

• Hands-on experience with CNAPP/CSPM platforms, ideally Wiz or equivalent such as Prisma Cloud, Orca, CrowdStrike.
• Strong understanding of GCP security and associated best practices including IAM, logging, monitoring, network security controls, and container/Kubernetes security concepts.
• Experience assessing cloud security findings in context, determining material risk impact and appropriate remediation options.
• Experience working with DevSecOps/CICD teams and embedding security controls into delivery and operational workflows.
• Strong stakeholder management and collaboration skills across engineering, operations, and cybersecurity teams.
• Experience working in a regulated environment with an understanding of auditability and control evidence.
• Demonstrable experience improving cloud security posture on GCP using CNAPP/CSPM tooling and governance processes.
• Ability to triage and tune security findings, drive remediation, and report progress using meaningful metrics.
• Working knowledge of cloud security standards, control frameworks, and operational risk considerations (e.g., logging, monitoring, access control, resilience).
• Strong written and verbal communication skills with the ability to communicate complex security topics clearly to technical and non-technical stakeholders.
• Experience working within an Agile environment.
• GCP certifications, ideally security-focused (e.g., Professional Cloud Security Engineer).
• Experience supporting CNAPP across multi-cloud environments (AWS/Azure in addition to GCP).
• Experience integrating CNAPP outputs into enterprise reporting and governance processes.

Mandatory Skills: Agile (Value-Driven Delivery), Application Security (application security framework/threat modelling/Secure SDLC/DevSecOps/Application Security Architecture Review), Network Security Architecture.