US Jobs US Jobs     UK Jobs UK Jobs     EU Jobs EU Jobs

This job has been posted for more than 30 working days and has expired.

Lead Cloud Security Engineer

Lead Cloud Security Engineer

Location: UK Remote

Salary: £90k - £100k + Excellent Benefits

The Client:

Our client, a prominent organisation, collaborates with the NHS to empower researchers in discovering disease causes and developing innovative treatments, with a focus on prioritising patients and participants.

The Role:

This opportunity would suit someone who is looking to do something that is impactful, where you can clearly see the results of the work that you're doing and help shape a Security Engineering function.

You will lead on new and interesting projects that are the first of their kind and have a hugely positive social impact.


? Working with the cloud engineering team and providing expert advice on securing their use of Azure cloud services, Kubernetes and containers.

? In particular, providing guidance and a level of oversight for Azure network security and Key Vault.
? Encouraging and leading on a 'shift-left' approach to security.
? Overseeing and supporting the operation of Microsoft Defender for Cloud.
? Developing and getting wider buy-in for security policy as code (using OPA or similar).
? Assisting with maturing their use of and supporting the operation of Entra ID (previously AAD) for IAM, Identity Governance and Privileged Identity Management.
? Driving the work to secure their Data Platform, including their use of Databricks, Dagster and Snowflake along with in-house developed applications and CI/CD pipeline.
? Collaborate with wider tech and security teams on the implementation and operation of a robust Customer Identity and Access Management (CIAM) service.
? Supporting, coaching and mentoring members of the wider security team.


? Proficient in writing Terraform, KQL and ideally Python and PowerShell.
? Significant experience of securing Azure and Azure security services (e.g.

Key Vault, NSGs, WAF, etc.)
? Significant experience of securing Kubernetes (ideally AKS) and co