Cloud Security Engineer
3 days a week onsite in Hull
About the Role
Our client is seeking a proactive Cloud Security Engineer to join their growing security and infrastructure team. You will be responsible for designing, implementing, and maintaining secure cloud environments across our SaaS platforms and internal systems.
You will play a key role in shaping our cloud security strategy and safeguarding our customers’ trust as we scale our cloud-based services globally.
This role is crucial in protecting customer data, maintaining compliance with industry standards (e.g., ISO 27001, Cyber Essentials Plus, GDPR), and ensuring our cloud infrastructure remains resilient against evolving cyber threats.
Key Responsibilities
Cloud Security Design & Implementation
Develop and enforce cloud security standards, policies, and best practices across multi-cloud environments covering Microsoft Azure and AWS.
Design and deploy secure network architectures, including firewalls, load balancers and network security groups via (IaC).
Design and Implement identity and access management (IAM), role-based access control (RBAC) and Privileged Identity Management (PIM) whilst adhering to the least privileged model.
Monitoring & Incident Response
Configure and monitor cloud-native security tools (e.g., Defender for Cloud and Endpoint, AWS GuardDuty, WAF, SIEM solutions).
Detect, investigate, and respond to security incidents, ensuring timely escalation and resolution.
Conduct regular threat modelling, vulnerability scanning, and penetration testing on cloud assets.
Governance, Risk & Compliance
Support compliance initiatives such as ISO 27001, SOC 2, and Cyber Essentials Plus by maintaining relevant controls and documentation.
Assist with audit readiness and evidence gathering.
Ensure data protection and encryption mechanisms meet GDPR and other data privacy regulations.
Automation & Continuous Improvement
Develop, deploy and maintain Infrastructure-as-Code (IaC) (e.g., Bicep and Terraform).
Automate security configuration checks and remediation workflows.
Continuously improve cloud security posture through proactive recommendations and tool integrations.
Skills & Experience
Essential:
Proven experience (3+ years) in cloud security or related infrastructure security role.
Strong understanding of Microsoft Azure (preferred), Defender for Cloud, Sentinel, Key Vault, and Azure Policy.
Deep knowledge of Microsoft Entra ID, including Conditional Access Policies, Identity Protection, Privileged Identity Management (PIM), Role-Based Access Control (RBAC), Authentication Methods, Access Reviews, and Entitlement Management.
Familiarity with cloud networking services such as Azure App Services, Azure SQL Server, Azure Front Door and Azure Firewall.
Proficiency with scripting and automation (PowerShell, Python, or Bash).
Understanding of modern DevOps and CI/CD pipelines, and how to integrate security (DevSecOps).
Knowledge of compliance frameworks (ISO 27001, NIST, CIS Benchmarks).
Desirable:
Certifications such as AZ-500, AZ-104, AZ-305, CCSP, CISSP, or CompTIA Security+.
Hands-on experience with SIEM tools (Microsoft Sentinel, Splunk, etc.).
Familiarity with endpoint and application security hardening.
Key Attributes
Analytical mindset with strong problem-solving skills.
Excellent communication skills like able to explain technical concepts clearly to non-technical stakeholders.
Proactive, curious, and continuously learning about emerging security threats and technologies.
Collaborative team player who can also work independently on security projects.
What they’ll offer you:
Competitive salary.
Company pension
Opportunities for career development and internal training.
Collaborative and inclusive work environment.
Health and wellness benefits, including medical insurance and enhanced annual leave package.
Cycle to Work and Electric Car schemes
Our client is an equal-opportunity employer and values diversity in its workforce. We encourage applicants from all backgrounds to apply.
SmartSourcing are a Disability Confident Employer and we promote, celebrate and value diversity, we are committed to promoting equality and inclusion for all