Salary: £40,000 - 46,000 per year Requirements: Strong understanding of AWS, Azure, and GCP security controls and architecture Hands-on experience with cloud IAM, network security, logging/monitoring, and workload security Familiarity with Kubernetes security and container image scanning Experience operating cloud security platforms (Wiz preferred; alternatives: Prisma, Lacework, Defender for Cloud) Working knowledge of Infrastructure-as-Code (Terraform strongly preferred) Understanding of identity and entitlements management (CIEM) Ability to analyze cloud attack paths and map misconfigurations to real exploitable risk Nice-to-Have Skills: Experience integrating security tools into CI/CD pipelines (Azure DevOps, GitHub, GitLab) Knowledge of SAST/DAST/Secret scanning tools Exposure to SRE or Cloud Platform engineering Soft Skills: Strong communication skills—able to simplify complex findings for engineering teams Problem-solving mindset with a bias for automation and scalability Ability to work cross-functionally with Security, Cloud Platform, DevOps, Risk, and Audit Comfortable with influencing teams without formal authority Responsibilities: Own day-to-day administration of the Wiz platform across all cloud environments Maintain Wiz connectors, least-privilege roles, integration points, and scanning configurations Ensure onboarding/offboarding of cloud accounts, subscriptions, and K8s clusters Monitor platform health, ingestion coverage, API integrations, and license utilization Review, tune, and maintain security policies, controls, and baselines (e.g., CIS, NIST, ISO) Validate and enhance attack path analysis, identity risk detection, and data exposure mapping Prioritize findings using impact-based and exploit-path-based logic Partner with Cloud Platform teams to ensure guardrails remain aligned with Wiz detections Work with DevOps/SRE teams to embed Wiz in CI/CD pipelines for IaC scanning Run onboarding sessions for teams on using Wiz Issues, Projects, and Policy-as-Code Validate false positives/negatives and fine-tune policy gates for Terraform, ARM/Bicep, and CloudFormation Support Cloud Security, SOC, and IR teams during investigations involving publicly exposed, exploitable, or high-risk cloud assets Provide expert analysis on Wiz findings and attack paths; propose remediation and compensating controls Contribute to post-incident reviews, root-cause analysis, and long-term posture improvements Maintain integrations with Jira/ADO, SIEM/SOAR, Slack/Teams, and CMDB/GRC Automate workflows for enrichment, prioritization, ticketing, and reporting Partner with Engineering to build auto-remediation playbooks for safe-to-fix classes (e.g., public S3, permissive IAM) Produce monthly security posture reports for leadership and Risk/Compliance teams Track KPIs (coverage, MTTR, SLA adherence, risk trends) Support external and internal audit requests using Wizs evidence and compliance modules Manage exceptions/waivers and ensure they are reviewed and retired on schedule Technologies: API ARM AWS Azure CI/CD Cloud CMDB DevOps Exposed GCP GitHub GitLab IAM Support JIRA Kubernetes Network Prisma Security Slack Terraform More: We are seeking a Cyber Security Analyst L4 for a 6-month contract, based in Norwich or London with a hybrid work model (2/3 days a week from the office). This role focuses on managing our Wiz Cloud Security Posture Management platform, ensuring risk reduction and governance across our multi-cloud environments (AWS, Azure, GCP). We offer a collaborative environment, competitive compensation, and the opportunity to be part of a dedicated team that values continuous improvement and operational excellence. last updated 11 week of 2026