At a Glance
- Tasks: Secure cloud platforms and software delivery pipelines while collaborating with top security teams.
- Company: Major energy institution focused on innovative cloud security solutions.
- Benefits: Competitive salary, private healthcare, bonuses, and hybrid work model.
- Other info: Exciting opportunity for career growth in a vital industry.
- Why this job: Join a dynamic team to make a real impact in cloud security.
- Qualifications: Hands-on experience in cloud security and application security assessments.
The predicted salary is between 89500 - 97500 £ per year.
A hands-on technical role with a strong focus on cloud security, application security and securing software delivery pipelines. The role is responsible for embedding security controls across our clients' cloud platforms, development toolchains and application estate, ensuring that security is a first-class concern from code commit through to production. The majority of time is spent engineering and operating security controls, with a supporting contribution to security design and architecture.
Working alongside the UK CISO, local cyber teams and global security colleagues, the role drives security outcomes across cloud environments (Azure/AWS), CI/CD pipelines and application platforms. The position also contributes to architecture reviews and secure design activities, ensuring engineering decisions are grounded in sound architectural principles aligned with NIS2, ISO27001 and Group cyber frameworks.
Key Accountabilities
- Security Engineering (70%)
- Own and operate cloud security controls across Azure and AWS environments, including CSPM (e.g. Defender for Cloud, AWS Security Hub), cloud-native WAF, network security groups and identity controls.
- Implement and manage security guardrails and policies across cloud tenants using Infrastructure-as-Code (Terraform, Bicep or equivalent), ensuring consistent, auditable security baselines.
- Embed security into CI/CD pipelines across GitHub Actions, Azure DevOps or equivalent platforms — integrating SAST, DAST, SCA, secrets scanning and container image scanning into delivery workflows.
- Champion Shift Left security practices, working directly with development and platform engineering teams to ensure vulnerabilities are identified and resolved before reaching production.
- Perform hands-on application security assessments including threat modelling, code review, OWASP-aligned testing and API security validation across internal and third-party applications.
- Manage and operate software composition analysis (SCA) and dependency vulnerability tracking, driving remediation of vulnerable libraries and open-source components across the application estate.
- Configure and maintain container and Kubernetes security controls, including image signing, admission policies, runtime protection and network policies.
- Build and maintain security automation and tooling to streamline detection, policy enforcement and compliance reporting across cloud and DevOps platforms.
- Operate and tune SIEM (e.g. Microsoft Sentinel) detections relevant to cloud and application attack vectors, developing use cases and response playbooks in collaboration with GSOC.
- Support incident response activities involving cloud environments or application-layer attacks, with hands-on investigation and containment capability.
- Maintain IAM and privileged access controls across cloud platforms, including Entra ID / Azure AD, role-based access control and just-in-time access policies.
- Security Architecture & Design (30%)
- Contribute to cloud and application security architecture patterns, defining reusable reference designs for secure cloud landing zones, API security and containerised workloads.
- Provide engineering-led input into architecture and design reviews, with particular focus on cloud-native solutions, microservices and third-party SaaS integrations.
- Participate in the Architecture Review Board (ARB), advising on the security implications of proposed cloud, application and platform designs.
- Define secure software development standards and CI/CD security requirements, collaborating with platform engineering to embed these into delivery frameworks.
- Produce and maintain technical security documentation including secure coding standards, cloud security baselines, pipeline security guidelines and architecture decision records.
- Support cyber security risk analysis for cloud and application solutions, contributing engineering depth to risk assessments and mitigation planning.
- Evaluate emerging cloud security technologies, DevSecOps tooling and threat intelligence relevant to their technology landscape.
Experience
- Significant hands-on experience in cloud security, application security or DevSecOps engineering roles.
- Proven track record of embedding security into software delivery pipelines and cloud platform programmes.
- Experience performing or managing application security assessments including threat modelling and OWASP-aligned testing.
- Experience working directly alongside software engineering or platform teams in an agile delivery environment.
- Exposure to energy, utilities or critical national infrastructure environments (desirable).
- Familiarity with security architecture principles and participation in cloud or solution design review processes.
Cloud Security Engineer in London employer: Vallum Associates
As a Cloud Security Engineer at our major energy institution in London, you will be part of a dynamic and innovative team dedicated to embedding security into cloud platforms and software delivery pipelines. We offer a comprehensive benefits package, including private healthcare and performance bonuses, alongside a hybrid work model that promotes work-life balance. Our collaborative culture encourages professional growth and development, making it an excellent place for those looking to make a meaningful impact in the field of cloud security.
StudySmarter Expert Advice🤫
We think this is how you could land Cloud Security Engineer in London
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend meetups, and connect with people on LinkedIn. You never know who might have the inside scoop on job openings or can refer you directly.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your cloud security projects. This gives potential employers a taste of what you can do and sets you apart from the crowd.
✨Tip Number 3
Prepare for interviews by brushing up on common cloud security scenarios and challenges. Practice articulating how you've tackled similar issues in the past, and be ready to discuss your hands-on experience with tools like Terraform and Azure DevOps.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are proactive about their job search!
We think you need these skills to ace Cloud Security Engineer in London
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Cloud Security Engineer role. Highlight your hands-on experience with cloud security, application security, and any relevant tools you've used. We want to see how your skills align with what we're looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about cloud security and how your experience makes you a perfect fit for our team. Don't forget to mention any specific projects or achievements that showcase your skills.
Showcase Relevant Experience:When filling out your application, be sure to showcase your experience with security controls, CI/CD pipelines, and any cloud platforms like Azure or AWS. We love seeing concrete examples of how you've embedded security into software delivery!
Apply Through Our Website:We encourage you to apply through our website for the best chance of getting noticed. It’s super easy, and you'll be able to keep track of your application status. Plus, we love seeing candidates who take the initiative to connect with us directly!
How to prepare for a job interview at Vallum Associates
✨Know Your Cloud Security Basics
Make sure you brush up on your cloud security fundamentals, especially around Azure and AWS. Be ready to discuss specific security controls like CSPM and WAF, and how you've implemented them in past roles.
✨Showcase Your Hands-On Experience
Prepare to share concrete examples of your hands-on experience with security engineering. Talk about how you've embedded security into CI/CD pipelines or managed application security assessments, and be specific about the tools and methodologies you used.
✨Understand the Role's Key Accountabilities
Familiarise yourself with the key accountabilities listed in the job description. Be prepared to discuss how you would approach tasks like managing IAM controls or contributing to architecture reviews, demonstrating your understanding of the role's responsibilities.
✨Emphasise Collaboration Skills
This role involves working closely with development and platform teams, so highlight your collaboration skills. Share examples of how you've worked in agile environments and how you’ve championed security practices within cross-functional teams.
