🔐 Cloud Security Engineer (Azure / DevSecOps) — SC Clearance Required
Location: Hybrid — Remote with 2 days/week onsite (Gloucestershire area)
Clearance: Must hold active UK SC clearance
Type: Permanent | Full-time
Were partnering with a fast-growing, mission-driven technology company working at the cutting edge of large-scale data and geospatial intelligence. Their work helps governments, enterprises and nonprofits protect themselves against real-world threats. Theyre looking for a hands-on Cloud Security Engineer to help keep their environment secure by design.
This is an engineering-first role. Youll spend your time building security into cloud platforms, pipelines and infrastructure — not just monitoring it.
What youll be doing
* Designing, building and maintaining security automation and tooling across Azure
* Embedding security into CI/CD pipelines — integrating SAST/DAST/SCA and ensuring supply chain integrity
* Writing and reviewing Infrastructure-as-Code (Bicep / Terraform) for secure, repeatable cloud configuration
* Implementing preventative and detective controls in Azure and automating remediation
* Securing containerised workloads (Kubernetes) — RBAC, network policies and runtime protection
* Building and managing identity & access controls across cloud platforms
* Contributing to detection engineering, threat hunting and incident response when needed
What were looking for
* Solid hands-on experience in cloud security engineering or DevSecOps (cloud-first environments)
* Strong working knowledge of the Azure security stack — Microsoft Defender for Cloud, Azure Policy, Secure Score
* Practical experience securing CI/CD pipelines and embedding security into the development lifecycle
* Experience securing Kubernetes and containerised environments
* Confident with Infrastructure-as-Code (Bicep / Terraform) and policy-as-code approaches
* Proficiency in scripting and automation (PowerShell, Python, KQL)
* Good grounding in identity & access management, network security and modern attack vectors (OWASP Top 10, MITRE ATT&CK)
Nice to have
* Certifications such as AZ-500, SC-200, SC-300 or CKS (Certified Kubernetes Security Specialist)
* Experience with SIEM tooling (Microsoft Sentinel) and detection-as-code
* Background in regulated, secure or high-trust environments
Whats on offer
* Competitive salary
* Comprehensive health, dental and vision cover
* Flexible hybrid working
* Flexible hours, travel opportunities and parental leave
Please note: Applicants must hold current SC or DV clearance.
Interested, or know someone whod be a great fit? Drop me a message or apply below. 👇