Cloud Security Engineer

Cloud Security Engineer

Posted Today by Whitehall Resources

Negotiable
Inside
Hybrid
Cheshire
Active Directory Agile Methodology Amazon Elastic Container Service Amazon Elastic Kubernetes Service Amazon Web Services (AWS) Auditing Automation AWS Identity And Access Management (IAM) AWS Key Management Service (KMS) AWS Lambda Azure Active Directory Azure Blueprints Azure DevOps Azure Kubernetes Service Azure Monitor Azure Policy Balancing (Ledger/Billing) Bash (Scripting Language) Budgeting Business Strategies Change Management Chef (Configuration Management Tool) Cloud Computing Cloud Engineering Cloud Infrastructure Cloud Security Infrastructure Cloud Services Cloud Technology Configuration Management Containerisation Continuous Integration and Continuous Delivery Cyber Incident Response DevOps DevSecOps Docker (Software) External Auditing Firewall Google Cloud Google Cloud Build Google Cloud Platform (GCP) Google Kubernetes Engine (GKE) Identity And Access Management Infrastructure as Code (IaC) Infrastructure Automation Java (Programming Language) Key Management Kubernetes Linux Load Balancing Management Management Process Microsoft 365 Microsoft Azure Microsoft Windows Network Security Operational Efficiency Operational Excellence Oracle Linux Python (Programming Language) Red Hat Enterprise Linux Red Hat Linux Release Management Resource Management Role-Based Access Control (RBAC) Scripting Scrum (Software Development) Security Information And Event Management (SIEM) Service Accounts Software Development Stakeholder Management Templates Terraform Threat Modeling Windows PowerShell

Summary: The Cloud Security Engineer role involves enhancing cloud infrastructure security in alignment with business strategies and compliance requirements. This position requires designing and maintaining secure cloud-native solutions across multiple platforms, including AWS, Azure, and GCP. The role also emphasizes collaboration with engineering teams to implement security best practices and automation for operational processes. This is a hybrid contract position based in Cheshire for an initial duration of 4 months.

Key Responsibilities:

  • Drive continuous improvements and enhancements to cloud infrastructure in alignment with business strategy, budget, and security objectives.
  • Design, build, and maintain secure cloud-native solutions across AWS, Azure, and GCP environments.
  • Collaborate with engineering and DevOps teams to deliver secure, scalable, and highly available cloud services.
  • Support business stakeholders in adopting modern cloud-native architectures and security best practices.
  • Develop and implement automation for security monitoring, incident response, remediation, and operational processes.
  • Ensure cloud platforms comply with organisational security standards, governance requirements, and software development lifecycle practices.
  • Identify, assess, and mitigate cloud security risks, vulnerabilities, and compliance gaps.
  • Contribute to cloud architecture reviews, security assessments, and threat modelling activities.
  • Work with security tooling and SIEM platforms to improve visibility, detection, and response capabilities.
  • Support incident, problem, and change management processes while maintaining operational excellence.
  • Develop Infrastructure as Code (IaC) solutions to standardise and automate cloud deployments.
  • Partner with development teams to embed security into CI/CD pipelines and DevSecOps processes.
  • Monitor cloud environments and provide recommendations for optimisation, security posture improvement, and operational efficiency.

Key Skills:

  • Proven experience as a Cloud Engineer, Cloud Security Engineer, DevSecOps Engineer, or similar role.
  • Professional cloud certifications in AWS, Microsoft Azure, or Google Cloud Platform.
  • Experience translating High-Level Designs (HLDs) and Low-Level Designs (LLDs) into secure technical solutions.
  • Strong scripting and automation skills using PowerShell, Bash, Python, and/or Java.
  • Experience working within Agile and Scrum delivery environments.
  • Expert knowledge of CI/CD pipelines and DevSecOps practices.
  • Strong understanding of cloud security controls, security frameworks, and compliance requirements.
  • Hands-on experience with SIEM platforms and cloud security tooling.
  • Experience with incident, problem, and change management processes.
  • Working knowledge of Wiz Cloud and Wiz Defend security platforms.
  • Strong containerisation experience, including Docker and Kubernetes.
  • Experience administering and securing both Windows and Red Hat Linux environments.
  • Experience implementing operational automation using Chef or similar configuration management tools.

Salary (Rate): undetermined

City: Cheshire

Country: United Kingdom

Working Arrangements: hybrid

IR35 Status: inside IR35

Seniority Level: undetermined

Industry: IT

Detailed Description From Employer:

Cloud Security Engineer

Whitehall Resources are currently looking for a Cloud Security Engineer on a hybrid basis in Cheshire for an initial 4-month contract.

***INSIDE IR35***

Key Responsibilities

  • Drive continuous improvements and enhancements to cloud infrastructure in alignment with business strategy, budget, and security objectives.
  • Design, build, and maintain secure cloud-native solutions across AWS, Azure, and GCP environments.
  • Collaborate with engineering and DevOps teams to deliver secure, scalable, and highly available cloud services.
  • Support business stakeholders in adopting modern cloud-native architectures and security best practices.
  • Develop and implement automation for security monitoring, incident response, remediation, and operational processes.
  • Ensure cloud platforms comply with organisational security standards, governance requirements, and software development lifecycle practices.
  • Identify, assess, and mitigate cloud security risks, vulnerabilities, and compliance gaps.
  • Contribute to cloud architecture reviews, security assessments, and threat modelling activities.
  • Work with security tooling and SIEM platforms to improve visibility, detection, and response capabilities.
  • Support incident, problem, and change management processes while maintaining operational excellence.
  • Develop Infrastructure as Code (IaC) solutions to standardise and automate cloud deployments.
  • Partner with development teams to embed security into CI/CD pipelines and DevSecOps processes.
  • Monitor cloud environments and provide recommendations for optimisation, security posture improvement, and operational efficiency.

Essential Requirements

  • Proven experience as a Cloud Engineer, Cloud Security Engineer, DevSecOps Engineer, or similar role.
  • Professional cloud certifications in AWS, Microsoft Azure, or Google Cloud Platform.
  • Experience translating High-Level Designs (HLDs) and Low-Level Designs (LLDs) into secure technical solutions.
  • Strong scripting and automation skills using PowerShell, Bash, Python, and/or Java.
  • Experience working within Agile and Scrum delivery environments.
  • Expert knowledge of CI/CD pipelines and DevSecOps practices.
  • Strong understanding of cloud security controls, security frameworks, and compliance requirements.
  • Hands-on experience with SIEM platforms and cloud security tooling.
  • Experience with incident, problem, and change management processes.
  • Working knowledge of Wiz Cloud and Wiz Defend security platforms.
  • Strong containerisation experience, including Docker and Kubernetes.
  • Experience administering and securing both Windows and Red Hat Linux environments.
  • Experience implementing operational automation using Chef or similar configuration management tools.

AWS Security Expertise

  • Experience creating and managing CloudFormation templates for infrastructure deployment.
  • Strong understanding of AWS Identity and Access Management (IAM), security policies, security groups, and Key Management Service (KMS).
  • Hands-on experience with AWS networking technologies including VPCs, subnets, routing, and load balancing.
  • Experience securing and supporting ECS, EKS, and AWS Lambda workloads.
  • Knowledge of CloudWatch and CloudTrail for monitoring, logging, and auditing activities.

Azure Security Expertise

  • Experience developing ARM templates and Bicep scripts for infrastructure automation.
  • Strong understanding of Azure Resource Manager, Azure Policy, and Azure Blueprints governance frameworks.
  • Experience implementing and managing Azure Active Directory, Managed Identities, and Role-Based Access Control (RBAC).
  • Hands-on experience with Azure DevOps pipelines and release management.
  • Knowledge of Azure Monitor, Log Analytics, Microsoft Defender for Cloud, and compliance monitoring tools.
  • Understanding of Azure networking services, including Virtual Networks (VNETs), Network Security Groups (NSGs), Application Gateway, and Azure Firewall.

GCP Security Expertise

  • Experience creating infrastructure automation through Deployment Manager and/or Terraform.
  • Knowledge of GCP IAM, Service Accounts, and Organisation Policies.
  • Experience with Cloud Build, Artifact Registry, and Cloud Deploy services.
  • Understanding of GCP networking, including VPCs, firewall rules, and cloud load balancing.
  • Experience with Cloud Logging, Cloud Monitoring, and Security Command Center.
  • Familiarity with Google Kubernetes Engine (GKE) and cloud-native container orchestration.

All of our opportunities require that applicants are eligible to work in the specified country/location, unless otherwise stated in the job description.

Whitehall Resources are an equal opportunities employer who value a diverse and inclusive working environment. All qualified applicants will receive consideration for employment without regard to race, religion, gender identity or expression, sexual orientation, national origin, pregnancy, disability, age, veteran status, or other characteristics.