Join Kainos and shape the future as a Cloud Security Engineer.
Role Overview
We are seeking a mid‑level Cloud Security Engineer to join our Security Engineering team. This role is the first dedicated hire for cloud security within the organisation and will be critical in defining, implementing, and managing security controls across our Azure, AWS and SaaS environments. You will work independently, reporting to the Head of Security Engineering, while collaborating with SOC, GRC, IT, Modern Workplace and Systems Engineering teams to build and mature our cloud security posture.
Key Responsibilities
* Cloud Security Framework
o Define and implement the cloud security framework in collaboration with IT Systems, SOC leadership, and GRC.
* Implementation
o Recommend security best practices and implement controls for cloud security and governance.
o Implement automated security tooling to validate security requirements and identify potential issues.
* Threat Detection & Incident Response
o Define threat detection and incident response processes and playbooks for cloud environments.
o Collaborate with the SOC to operationalise detection rules and incident handling.
* Compliance & Audit
o Support GRC in meeting evidence and compliance requirements for ISO27001, NCSC Cloud Security Principles, and SOC2.
o Review outputs from security tools and practices, filtering and prioritising findings into actionable stories for delivery teams.
* Collaboration & Enablement
o Influence and guide junior engineers and developers to adopt secure practices.
o Up‑skill and train the wider security team in cloud security topics and tooling.
* Identity & Access Management
o Provide input into IAM strategy and policy (RBAC, Conditional Access, MFA, least privilege), working closely with IT and Systems teams.
* Optional / Beneficial Areas
o Support automation of cloud security (IaC scanning, CI/CD integration).
o Document standards, runbooks, and training material where appropriate.
Required Skills & Experience
* Previous experience in cloud security engineering or related roles.
* Working knowledge of industry cloud security frameworks and best practice (CSA STAR, NCSC Cloud Security Principles).
* Experience with automation and scripting (Python, PowerShell, Bash).
* Proficiency with:
o Azure security services: Defender for Cloud, Entra ID, Sentinel etc.
o AWS security services: Security Hub, GuardDuty, IAM, Config, CloudTrail, CloudWatch.
* Working knowledge of cloud incident response processes and procedures.
* Strong understanding of security best practices in multi‑cloud environments.
Desirable Skills & Experience
* Familiarity with Infrastructure as Code (Terraform).
* Knowledge of cloud network security concepts (firewalls, NSGs, VPCs, private endpoints).
* Exposure to compliance frameworks (ISO27001, SOC2, NCSC Cloud Security Principles).
* Security certifications such as AZ‑500, SC‑100, AWS Security Specialty, CISSP, or CCSK.
Diversity & Inclusion Statement
At Kainos, we believe in the power of diversity, equity and inclusion. We are committed to building a team that is as diverse as the world we live in, where everyone is valued, respected, and given an equal chance to thrive. We actively seek out talented people from all backgrounds, regardless of age, race, ethnicity, gender, sexual orientation, religion, disability, or any other characteristic that makes them who they are.
#J-18808-Ljbffr