Salary: £63,000 - 63,000 per year Requirements: Extensive AWS Cloud Security Engineering expertise Active SC Security Clearance preferred Experience with IAM, RBAC, SCP, AWS Organizations Knowledge of MFA, Conditional Access, Entra AD federation Familiarity with CIS compliance and encryption Proficiency in KMS, RPO/RTO Experience enabling GuardDuty, Security Hub, CloudTrail, Config Ability to validate security during pilot and bulk migrations Skills in tuning monitoring dashboards, alerting, and incident triage Responsibilities: Take ownership of AWS Cloud Security across discovery, design, implementation, and large-scale workload migration Shape identity, compliance, guardrails, monitoring, and ongoing hardening for production Validate MFA, Conditional Access, encryption, and logging during the discovery phase Design and embed IAM, RBAC, federation, and authentication patterns into architectures Define AWS security guardrails, SCPs, monitoring, and compliance baselines Configure IAM roles, key management, encryption, logging, CloudTrail, Config, GuardDuty, and Security Hub Support Landing Zone build-out including identity federation, tagging, audit, and multi-account governance Implement VDI, WorkSpaces, Citrix security hardening, MFA, and admin console security Validate security during pilot migration and bulk migration of 200 workloads Tune monitoring dashboards, alerting, and incident triage during hypercare Technologies: AWS Citrix Cloud IAM Support RBAC Security More: We are a leading global IT and Digital transformation business specializing in delivering large-scale Government projects. This role offers a 6-month contract based in Essex with hybrid working options, allowing you to work remotely for 3-4 days a week and collaborate on-site for 1-2 days. We provide an exciting opportunity to be at the center of a major AWS transformation program, enhancing your skills while working on critical projects. last updated 4 week of 2026