Cloud Security Engineer – Contract (Inside IR35) / Hybrid
We are seeking an experienced Cloud Security Engineer with a strong emphasis on AWS. The successful candidate will be responsible for designing, implementing, and maintaining secure cloud infrastructure, ensuring a robust security posture and supporting continuous delivery of our applications.
Key Responsibilities:
* Design and implement secure AWS cloud infrastructure, focusing on system architecture, Identity and Access Management (IAM), encryption, data protection, and network security.
* Collaborate with the Information Security and application teams to drive cloud security initiatives and align with the broader security strategy.
* Enhance and secure CI/CD pipelines across multiple applications by embedding secure coding and DevSecOps best practices.
* Develop automation tools and scripts to streamline security processes, monitor key security metrics, and support operational demands.
* Stay up to date with emerging threats, industry trends, and mitigation techniques to continually improve cloud security controls.
Required Skills and Experience:
* Minimum 3 years in a DevSecOps capacity and 5+ years in cloud security or engineering roles.
* Strong expertise in AWS cloud services and associated security features; familiarity with Azure is advantageous.
* Solid understanding of networking, systems engineering, and cybersecurity within cloud environments.
* Hands-on experience with Infrastructure as Code (IaC) tools such as Terraform and Ansible for secure provisioning and management.
* Excellent problem-solving capabilities and strong verbal and written communication skills.
* Practical experience using Wiz or similar cloud security posture management tools.