Cloud Platform Security Engineer in London

The role involves evolving the company's security posture across multi-cloud environments and the SIEM platform. This position is at the intersection of cloud security engineering and detection capability, responsible for hardening the infrastructure and ensuring visibility across it. You will lead security integration projects, guide cloud engineering teams, and drive continuous improvement in monitoring and detection, including applying AI to enhance security operations.

You will be responsible for:

• Cloud Security: Secure and continuously improve our multi-cloud estate (AWS, Azure, GCP) using cloud native tooling to keep our cloud infrastructure hardened and compliant. Partner with Engineering and Security Operations to automate compliance checks, making security a natural part of design and delivery. Define and enforce cloud security architecture standards, guardrails, and policy-as-code in line with industry best practices including NIST, CIS, and PCI DSS. Use Wiz or equivalent CNAPP/CSPM to assess, prioritise, and remediate misconfigurations and vulnerabilities against benchmarks.
• Security Monitoring: Fine-tune and maintain the modern SIEM platform (e.g. Sentinel), including KQL detection rules, workbooks, logging pipelines, and AI-assisted alert triage. Map detection coverage against MITRE ATT&CK tactics and techniques, identify visibility gaps, and maintain alignment to PCI DSS, SOC2, ISO27001, NIST, and CIS frameworks. Produce documentation and evidence to support audit and assurance activities.
• AI Security: Design and implement guardrails for AI/LLM systems, covering data exposure, prompt injection, and model misuse risks. Leverage AI and automation to enhance alert investigation, enrichment, and response workflows. Maintain technical policies and standards for the secure use of AI tools across the organisation.

What we’re looking for:

• 6+ years of hands-on experience securing AWS, Azure, and GCP environments, including Azure Policy, IAM, Infrastructure-as-code (IAC) security, or other cloud native tooling.
• Experience with security tools: Microsoft Sentinel, SentinelOne, NetSkope, Flashpoint, Wiz or similar tooling.
• Strong Microsoft Sentinel expertise: KQL, detection rules, workbooks, and logging pipelines.
• Working knowledge of DLP and threat intelligence monitoring.
• Experience applying AI/ML to security workflows – automated triage, behavioural analytics, or LLM-assisted investigation.
• Understanding of AI security risks and frameworks: OWASP LLM Top 10, NIST AI RMF.
• Scripting proficiency in Python, PowerShell, or Bash for security automation.
• Strong grasp of PCI DSS, NIST CSF, SOC 2, ISO27001, CIS Benchmarks, and MITRE ATT&CK for Cloud.

Nice to have:

• AZ-500, AWS Certified Security – Specialty, or equivalent cloud security certification.
• Experience integrating ATT&CK Navigator into SOC workflows.

We create conditions for high performers to thrive, through real ownership, fewer blockers, and impactful work from day one. Here, you’ll move fast, take on meaningful challenges, and be recognised for your impact. It’s a place where ambition meets opportunity, and your growth is in your hands. We work as one team, supporting each other to succeed. If you’re ready to grow and make a difference, you’ll be right at home here.

Life at the company includes a hybrid working model offering flexibility, with three days per week in the office to support collaboration and connection.