Cloud Security Engineer - AWS/IaC/DevSecOps - 6 months - Hybrid
Posted 7 days ago by Hamilton Barnes
£550 Per day
Inside
Hybrid
London, UK
Summary: We are looking for a skilled Cloud Security Engineer to join a financial services enterprise program, focusing on securing cloud-native environments and integrating security into CI/CD pipelines. The role requires collaboration with various teams to design secure solutions and validate security risks. This hands-on position emphasizes the protection of AWS platforms and workloads. The contract is for 6 months with a hybrid working arrangement.
Key Responsibilities:
- Design and implement cloud security controls across AWS environments
- Secure Infrastructure as Code (Terraform/CloudFormation) and enforce standards
- Integrate security into CI/CD pipelines (DevSecOps practices)
- Identify, triage, and validate cloud security vulnerabilities and misconfigurations
- Work with cloud-native security tools (CSPM/CWPP) to monitor and improve posture
- Support IAM design and access control models (least privilege, role-based access)
- Collaborate with engineering teams to embed security into build and deployment workflows
- Participate in threat modelling and security design reviews
- Support container, secrets management, and runtime security practices
- Contribute to Agile delivery, including sprint planning and backlog refinement
- Ensure adherence to security standards, controls, and regulatory requirements
Key Skills:
- Strong hands-on experience as a Cloud Security Engineer (AWS)
- Proven experience securing Infrastructure as Code (Terraform/CloudFormation)
- Experience integrating security into CI/CD pipelines (DevSecOps)
- Strong understanding of IAM, identity, and access control models
- Experience with cloud security tools (eg WIZ, Defender, Aqua, Prisma, CSPM/CWPP)
- Experience triaging and validating vulnerabilities, not just reporting
- Solid understanding of cloud-native architectures (microservices, serverless, containers)
- Experience working in production cloud environments and resolving security issues
- Strong understanding of cloud security best practices and principles
Salary (Rate): £550 per day
City: London
Country: UK
Working Arrangements: hybrid
IR35 Status: inside IR35
Seniority Level: undetermined
Industry: IT
Cloud Security Engineer - AWS/IaC/DevSecOps
Location: London or Norwich - Hybrid (3 days onsite)
Rate: £550 per day (Inside IR35)
Contract: 6 months
Start: ASAP
The Role
We are seeking an experienced Cloud Security Engineer to join a large-scale enterprise programme within the financial services sector. This is a hands-on, delivery-focused role centred on securing cloud-native environments, embedding security into infrastructure and CI/CD pipelines, and ensuring robust protection of AWS-based platforms and workloads.
You will work closely with cloud engineers, developers, and architects to design and implement secure solutions, validate security risks, and support the safe deployment of modern cloud and AI-driven applications.
Key Responsibilities
- Design and implement cloud security controls across AWS environments
- Secure Infrastructure as Code (Terraform/CloudFormation) and enforce standards
- Integrate security into CI/CD pipelines (DevSecOps practices)
- Identify, triage, and validate cloud security vulnerabilities and misconfigurations
- Work with cloud-native security tools (CSPM/CWPP) to monitor and improve posture
- Support IAM design and access control models (least privilege, role-based access)
- Collaborate with engineering teams to embed security into build and deployment workflows
- Participate in threat modelling and security design reviews
- Support container, secrets management, and runtime security practices
- Contribute to Agile delivery, including sprint planning and backlog refinement
- Ensure adherence to security standards, controls, and regulatory requirements
Must-Have Experience
- Strong hands-on experience as a Cloud Security Engineer (AWS)
- Proven experience securing Infrastructure as Code (Terraform/CloudFormation)
- Experience integrating security into CI/CD pipelines (DevSecOps)
- Strong understanding of IAM, identity, and access control models
- Experience with cloud security tools (eg WIZ, Defender, Aqua, Prisma, CSPM/CWPP)
- Experience triaging and validating vulnerabilities, not just reporting
- Solid understanding of cloud-native architectures (microservices, serverless, containers)
- Experience working in production cloud environments and resolving security issues
- Strong understanding of cloud security best practices and principles