Join Kainos and Shape the Future At Kainos, we’re problem solvers, innovators, and collaborators - driven by a shared mission to create real impact. Whether we’re transforming digital services for millions, delivering cutting-edge Workday solutions, or pushing the boundaries of technology, we do it together. We believe in a people-first culture, where your ideas are valued, your growth is supported, and your contributions truly make a difference. Here, you’ll be part of a diverse, ambitious team that celebrates creativity and collaboration. Ready to make your mark? Join us and be part of something bigger. Role Overview We are seeking a mid-level Cloud Security Engineer to join our Security Engineering team. This role is the first dedicated hire for cloud security within the organisation and will be critical in defining, implementing, and managing security controls across our Azure, AWS and SaaS environments. The successful candidate will work independently, reporting to the Head of Security Engineering, while collaborating with SOC, GRC, IT, Modern Workplace and Systems Engineering teams to build and mature our cloud security posture. Key Responsibilities Cloud Security Framework Define and implement the cloud security Framework in collaboration with IT Systems, SOC leadership, and GRC. Implementation Recommending security best practices and implementing controls for Cloud Security and governance. Implementation of automated security tooling to validate security requirements and identify potential issues. Threat Detection & Incident Response Define threat detection and incident response processes and playbooks for cloud environments. Collaborate with the SOC to operationalise detection rules and incident handling. Compliance & Audit Support GRC in meeting evidence and compliance requirements for ISO27001, NCSC Cloud Security Principles, and SOC2. Reviewing the outputs from security tools and security practices. You will filter and prioritise these into security stories that can be understood and actioned by the delivery teams. Collaboration & Enablement Influence and guide junior engineers and developers to adopt secure practices. Upskill and train the wider security team in cloud security topics and tooling. Identity & Access Management Provide input into IAM strategy and policy (RBAC, Conditional Access, MFA, least privilege), working closely with the IT and Systems teams. Optional / Beneficial Areas Support automation of cloud security (IaC scanning, CI/CD integration). Document standards, runbooks, and training material where appropriate. Required Skills & Experience Previous experience in cloud security engineering or related roles. Working knowledge of industry cloud security frameworks and best practice (CSA STAR, NCSC Cloud Security Principles). Experience with automation and scripting (Python, PowerShell, Bash). Proficiency with: Azure security services : Defender for Cloud, Entra ID, Sentinel etc. AWS security services : Security Hub, GuardDuty, IAM, Config, CloudTrail, CloudWatch. Working knowledge of cloud incident response processes and procedures Strong understanding of security best practices in multi-cloud environments. Desirable Skills & Experience Familiarity with Infrastructure as Code (Terraform) Knowledge of cloud network security concepts (firewalls, NSGs, VPCs, private endpoints). Exposure to compliance frameworks (ISO27001, SOC2, NCSC Cloud Security Principles). Security certifications such as AZ-500, SC-100, AWS Security Specialty, CISSP, or CCSK. Embracing our differences At Kainos, we believe in the power of diversity, equity and inclusion. We are committed to building a team that is as diverse as the world we live in, where everyone is valued, respected, and given an equal chance to thrive. We actively seek out talented people from all backgrounds, regardless of age, race, ethnicity, gender, sexual orientation, religion, disability, or any other characteristic that makes them who they are. We also believe every candidate deserves a level playing field. Our friendly talent acquisition team is here to support you every step of the way, so if you require any accommodations or adjustments, we encourage you to reach out. We understand that everyone's journey is different, and by having a private conversation we can ensure that our recruitment process is tailored to your needs.