Senior Cloud Security Engineer // £70,000 per annum
Location:
Cardiff
Department:
Technology / Information Security
Reports to:
Director of Technology
About the Role
Intapeople are partnered with a purpose-driven third sector organization seeking a hands-on and strategic
Senior Cloud Security Engineer
to take full ownership of the cloud security posture. This is a
standalone role
, ideal for someone who thrives in an autonomous environment and is passionate about building secure, scalable systems that support meaningful social impact.
Key Responsibilities
* Lead the design, implementation, and continuous improvement of cloud security controls across Microsoft Azure and Microsoft 365.
* Own the security lifecycle — from risk assessment and architecture to monitoring, incident response, and compliance.
* Act as the internal subject matter expert for all cloud security matters, advising leadership and technical teams.
* Develop and maintain security policies, standards, and documentation tailored to our organizational context.
* Manage and optimize Microsoft security tools including Defender for Cloud, Sentinel, Intune, and Purview.
* Oversee identity and access management (IAM) using Azure AD, Conditional Access, and MFA.
* Conduct regular threat modelling, vulnerability assessments, and penetration testing coordination.
* Ensure compliance with relevant standards (e.g., Cyber Essentials Plus, ISO 27001, GDPR).
* Lead on security awareness initiatives and provide guidance to non-technical stakeholders.
Essential Skills & Experience
* Extensive experience in cloud security engineering, ideally in a standalone or lead capacity.
* Deep knowledge of Microsoft Azure, Microsoft 365, and associated security services.
* Strong understanding of IAM, network security, encryption, and secure cloud architecture.
* Experience with Microsoft Defender suite, Sentinel SIEM, and Azure Policy.
* Familiarity with compliance and governance frameworks relevant to the UK third sector.
* Ability to communicate complex security concepts to both technical and non-technical audiences.
* Self-starter with strong initiative and the ability to work independently.
Desirable Qualifications
* Microsoft Certified: Azure Security Engineer Associate or equivalent.
* Experience working in or with non-profits, NGOs, or public sector organizations.
* Exposure to DevSecOps practices and Infrastructure as Code (e.g., Bicep, Terraform).
What We Offer
* £70,000 salary with generous pension contribution
* Flexible hybrid working model
* 30+ days annual leave including bank holidays
* Professional development budget
* A collaborative, values-driven culture