Cloud Security Engineer
3 days a week onsite in Hull
NO SPONSORSHIP AVAILABLE NOW OR IN THE FUTURE
About the Role
Our client is seeking a proactive Cloud Security Engineer to join their growing security and infrastructure team. You will be responsible for designing, implementing, and maintaining secure cloud environments across our SaaS platforms and internal systems.
You will play a key role in shaping our cloud security strategy and safeguarding our customers’ trust as we scale our cloud-based services globally.
This role will cover both cloud and cyber security.
Key Responsibilities
Cloud Security Design & Implementation
Develop and enforce cloud security standards, policies, and best practices across multi-cloud environments covering Microsoft Azure and AWS.
Design and deploy secure network architectures, including firewalls, load balancers and network security groups via (IaC).
Automation & Continuous Improvement
Develop, deploy and maintain Infrastructure-as-Code (IaC) (e.g., Bicep/Terraform).
Automate security configuration checks and remediation workflows.
Continuously improve cloud security posture through proactive recommendations and tool integrations.
Monitoring & Incident Response
Configure and monitor cloud-native security tools (e.g., Defender for Cloud and Endpoint, AWS GuardDuty, WAF, SIEM solutions).
Detect, investigate, and respond to security incidents, ensuring timely escalation and resolution.
Conduct regular threat modelling, vulnerability scanning, and penetration testing on cloud assets.
Governance, Risk & Compliance
Support compliance initiatives such as ISO 27001, SOC 2, and Cyber Essentials Plus by maintaining relevant controls and documentation.
Assist with audit readiness and evidence gathering.
Ensure data protection and encryption mechanisms meet GDPR and other data privacy regulations.
Skills & Experience
Essential:
Proven experience (3+ years) in cloud security or related infrastructure security role.
Strong understanding of Microsoft Azure, Defender for Cloud and Endpoint, WAF, SIEM solutions.
Strong understanding on Infrastructure-as-Code (IaC) (inc, Bicep/Terraform).
Understanding of modern DevOps and CI/CD pipelines, and how to integrate security (DevSecOps).
Knowledge of compliance frameworks (ISO 27001, NIST, CIS Benchmarks) desirable
Key Attributes
Analytical mindset with strong problem-solving skills.
Excellent communication skills like able to explain technical concepts clearly to non-technical stakeholders.
Proactive, curious, and continuously learning about emerging security threats and technologies.
Collaborative team player who can also work independently on security projects.
What they’ll offer you:
Competitive salary.
Company pension
Opportunities for career development and internal training.
Collaborative and inclusive work environment.
Health and wellness benefits, including medical insurance and enhanced annual leave package.
Cycle to Work and Electric Car schemes
Our client is an equal-opportunity employer and values diversity in its workforce. We encourage applicants from all backgrounds to apply.
SmartSourcing are a Disability Confident Employer and we promote, celebrate and value diversity, we are committed to promoting equality and inclusion for all