Contract | 6 Months | Outside IR35 | Hybrid (2 days a week)
Cloud Security Engineer - Financial Services
We're seeking a skilled Cloud Security Engineer to support a financial services client with the secure design, implementation, and monitoring of cloud environments, ensuring alignment with regulatory and industry standards.
Responsibilities:
* Design and implement cloud security controls across AWS, Azure, and/or GCP environments.
* Conduct cloud security assessments, risk reviews, and remediation planning.
* Support compliance with financial regulations (FCA, PRA, DORA) and frameworks (ISO 27001, NIST, CIS).
* Implement infrastructure-as-code (IaC) security, workload protection, and CI/CD pipeline hardening.
* Develop and enforce policies for identity and access management, encryption, logging, and monitoring.
* Collaborate with DevOps, architecture, and security teams to embed secure-by-design practices.
* Support incident response, threat detection, and cloud-specific vulnerability management.
Requirements:
* 5+ years in cybersecurity, with 2+ years focused on cloud security engineering.
* Strong experience with AWS, Azure, and/or GCP security services and best practices.
* Solid understanding of cloud-native security tooling (e.g., GuardDuty, Azure Defender, GCP SCC).
* Experience supporting regulated environments, ideally within financial services.
* Familiar with compliance and cloud governance frameworks (e.g., CSA CCM, NIST 800-53, ISO 27017).
* Proficiency with IaC tools (e.g., Terraform, CloudFormation) and CI/CD security.
* Certifications such as CCSP, AWS Security Specialty, AZ-500, or GCP Professional Cloud Security Engineer are a plus.