UK Research and Innovation
Salary: £45,272 to £56,844 per annum dependent on skills and experience (this may include allowances)
Hours: Full time (Compressed hours & flexible working patterns available)
Contract Type: Open ended (Permanent)
Location: Keyworth, Nottingham or Polaris House, Swindon. We operate a hybrid working model with a strong emphasis on flexibility. While office facilities are available there is no regular requirement to attend in person. This position is primarily remote, with in-office presence only requested for key meetings or specific operational needs.
Closing Date: Sunday 22nd June 2025
Interviews: Week commencing 14th July 2025
Security
As a minimum, due to the nature of this role, candidates must be eligible for clearance in line with UK National vetting guidelines and willing to undertake the process. Please indicate eligibility in the written submission. Candidates not meeting this level of clearance will not be considered
The level of clearance required is security check
Benefits
We recognise and value our employees as individuals and aim to provide a favourable pay and rewards package! We are committed to supporting employees development and promote a culture of continuous learning! Below are a few of our key benefits, click on the link to explore lots more.
* An outstanding defined benefit pension scheme (Alpha Civil Service Pension)
* 30 days annual leave in addition to 10.5 public and privilege days (full time equivalent)
Job Overview
Join us for this rare opportunity to apply your expertise in information security in a dynamic, fast-paced security operations role in an organisation at the heart of research and innovation in the UK! Working as part of a team of technical specialists, and to the Cloud Security Risk Manager, your broad remit is to ensure the security and integrity of the organisation's IT infrastructure. You will work closely with development, operations, architecture, and security teams to implement and maintain secure systems and protocols, monitor for security threats, respond to incidents, and continuously improve the security posture.
Responsibilities
* Implement security controls for cloud infrastructures (AWS and Azure).
* Develop and engineer cloud security policies, ensuring proactive threat prevention, detection, and forensic analysis.
* Implement security solutions for containerised environments and microservices (eg, Kubernetes, Docker).
* Build and maintain security at every point in the CI/CD pipeline.
* Build and integrate security solutions into DevSecOps pipelines, collaborating with UKRI teams.
* Perform cloud threat modelling and implement countermeasures.
* Assess third-party cloud and on-premises solutions for security risks and recommend mitigations.
* Design and enforce cloud security policies, standards, and best practices.
* Monitor security compliance and ensure adherence throughout the project life cycle and in business as usual cloud services.
* Monitor and respond to security incidents and alerts.
About you
* A professional certification (eg, CISM, CISSP, CompTIA Security+, CCSP or AWS certification) (S)
* Degree in a related subject or relevant comparable education. (S)
* Experience in major multi-cloud platforms, including AWS, and cloud security. (S&I)
* Integrating and maintaining security into CI/CD pipelines. (I)
* Hands on experience with container security (Kubernetes, ECS, Docker). (S&I)
* Working with Linux and/or Windows operating systems. (S)
* Experience working in a blue-team type environment or role. (S)
* Experience of cloud security posture management tools. (S)
* Performing comprehensive security audits and risk assessments (S&I)
How to Apply
Candidates will need to submit a written application which consists of 2 parts:
* A CV this should contain your work experience and any skills, qualifications and accomplishments relevant to the jobs you have completed based on the shortlisting criteria.
* A personal statement (max. 1000 words) - this statement should be used to provide examples of how you meet the essential criteria listed in the shortlisting criteria.
Applications will be reviewed for suitability and shortlisted against the criteria detailed in the shortlisting criteria section of the job description.
Further information on the selection process is listed on our careers page