Salary: £60,000 - 64,500 per year Requirements: Significant expert knowledge of cloud security in either AWS or Azure, with proven experience leading cross-organization security initiatives. Demonstrable experience in architecture governance (guardrails, patterns, exceptions) and standardizing threat modeling. Strong hands-on engineering skills: IaC, CI/CD security, IAM hardening, CSPM tuning, incident response. Ability to drive cost efficiencies and make evidence-based recommendations. Technical expertise in technologies such as AWS, Azure, Microsoft 365, GitHub, Kubernetes, Terraform, Linux, JAMF, Sentinel, and Defender for Endpoint. Excellent communication skills with the ability to influence up to senior leadership and deliver complex technical concepts. Responsibilities: Define and enforce technical standards, roadmaps, and guardrails for secure cloud delivery across various platforms. Implement and maintain policy as code and Infrastructure as Code (IaC) controls, integrating security into CI/CD pipelines. Lead IAM hardening, tune CSPM policies, develop Sentinel and Wiz queries, and manage incident response. Oversee software supply chain security aspects, including SBOMs and dependency risk management. Chair the virtual Technical Design Authority (TDA) to approve guardrails and standardize threat modeling processes. Collaborate with senior stakeholders on architectural decisions and advise them on risk and technical trade-offs. Drive cost efficiencies across the security tooling portfolio and recommend investment options based on performance benchmarks. Provide technical leadership and mentor cross-functional teams, fostering a culture of proactive defense. Technologies: AWS Azure CI/CD Cloud GitHub IAM Kubernetes Linux Microsoft 365 Security Terraform Office 365 AI Architect DevOps Embedded Support LESS More: At The National Archives, we are proud to be nearly 200 years old and to house a collection that spans 1,000 years of history. Our strategic vision, Archives for Everyone, reveals our commitment to becoming a 21st Century national archive that is inclusive, entrepreneurial, and disruptive. We are seeking a Lead Cloud Security Engineer to join our mission of protecting and preserving digital assets that underpin national memory. We offer a generous benefits package including pension, training opportunities, and a flexible working environment, with a requirement to travel to our Kew site for a portion of your work. last updated 5 week of 2026