Summary: The Cloud Security Engineer role involves designing, implementing, and securing multi-cloud infrastructures while driving automation and supporting digital transformation initiatives. The position requires collaboration with various teams to enhance cloud security capabilities across AWS, Azure, and GCP. The ideal candidate will have a strong security mindset and experience in cloud engineering. This role is hybrid, allowing for both office and remote work.
Key Responsibilities:
- Drive continuous improvements and enhancements to cloud infrastructure in alignment with business strategy, budget, and security objectives.
- Design, build, and maintain secure cloud-native solutions across AWS, Azure, and GCP environments.
- Collaborate with engineering and DevOps teams to deliver secure, scalable, and highly available cloud services.
- Support business stakeholders in adopting modern cloud-native architectures and security best practices.
- Develop and implement automation for security monitoring, incident response, remediation, and operational processes.
- Ensure cloud platforms comply with organisational security standards, governance requirements, and software development life cycle practices.
- Identify, assess, and mitigate cloud security risks, vulnerabilities, and compliance gaps.
- Contribute to cloud architecture reviews, security assessments, and threat modelling activities.
- Work with security tooling and SIEM platforms to improve visibility, detection, and response capabilities.
- Support incident, problem, and change management processes while maintaining operational excellence.
- Develop Infrastructure as Code (IaC) solutions to standardise and automate cloud deployments.
- Partner with development teams to embed security into CI/CD pipelines and DevSecOps processes.
- Monitor cloud environments and provide recommendations for optimisation, security posture improvement, and operational efficiency.
Key Skills:
- Proven experience as a Cloud Engineer, Cloud Security Engineer, DevSecOps Engineer, or similar role.
- Professional cloud certifications in AWS, Microsoft Azure, or Google Cloud Platform.
- Experience translating High-Level Designs (HLDs) and Low-Level Designs (LLDs) into secure technical solutions.
- Strong Scripting and automation skills using PowerShell, Bash, Python, and/or Java.
- Experience working within Agile and Scrum delivery environments.
- Expert knowledge of CI/CD pipelines and DevSecOps practices.
- Strong understanding of cloud security controls, security frameworks, and compliance requirements.
- Hands-on experience with SIEM platforms and cloud security tooling.
- Experience with incident, problem, and change management processes.
- Working knowledge of Wiz Cloud and Wiz Defend security platforms.
- Strong containerisation experience, including Docker and Kubernetes.
- Experience administering and securing both Windows and Red Hat Linux environments.
- Experience implementing operational automation using Chef or similar configuration management tools.
- Experience creating and managing CloudFormation templates for infrastructure deployment.
- Strong understanding of AWS Identity and Access Management (IAM), security policies, security groups, and Key Management Service (KMS).
- Hands-on experience with AWS networking technologies including VPCs, subnets, routing, and load balancing.
- Experience securing and supporting ECS, EKS, and AWS Lambda workloads.
- Knowledge of CloudWatch and CloudTrail for monitoring, logging, and auditing activities.
- Experience developing ARM templates and Bicep scripts for infrastructure automation.
- Strong understanding of Azure Resource Manager, Azure Policy, and Azure Blueprints governance frameworks.
- Experience implementing and managing Azure Active Directory, Managed Identities, and Role-Based Access Control (RBAC).
- Hands-on experience with Azure DevOps pipelines and release management.
- Knowledge of Azure Monitor, Log Analytics, Microsoft Defender for Cloud, and compliance monitoring tools.
- Understanding of Azure networking services, including Virtual Networks (VNETs), Network Security Groups (NSGs), Application Gateway, and Azure Firewall.
- Experience creating infrastructure automation through Deployment Manager and/or Terraform.
- Knowledge of GCP IAM, Service Accounts, and Organisation Policies.
- Experience with Cloud Build, Artifact Registry, and Cloud Deploy services.
- Understanding of GCP networking, including VPCs, Firewall rules, and cloud load balancing.
- Experience with Cloud Logging, Cloud Monitoring, and Security Command Center.
- Familiarity with Google Kubernetes Engine (GKE) and cloud-native container orchestration.
Salary (Rate): £613 per day
City: Knutsford
Country: UK
Working Arrangements: hybrid
IR35 Status: inside IR35
Seniority Level: undetermined
Industry: IT
We are a Global Recruitment specialist that provides support to the clients across EMEA, APAC, US and Canada. We have an excellent job opportunity for you.
Role Title: Cloud Security Engineer
Location: Knutsford WA16 9EU | Hybrid - 60% office, 40% remote
Duration: 30/11/2026
Pay Rate: £613 per day all inc. (PAYE through Umbrella)
Role Description:
We are seeking an experienced and highly motivated Security Cloud Engineer to play a critical role in the design, implementation, automation, and security of our multi-cloud infrastructure. This position is ideal for a cloud professional with a strong security mindset who is passionate about protecting cloud-native environments, driving automation, and supporting secure digital transformation initiatives.
As a Security Cloud Engineer, you will help shape the future of our cloud security capability by developing and enhancing secure cloud platforms across AWS, Microsoft Azure, and Google Cloud Platform (GCP). Working closely with engineering, security, DevOps, and operational teams, you will contribute to cloud architecture designs, automate security remediation processes, and provide proactive insights into cloud risks, vulnerabilities, and threat mitigation strategies.
Key Responsibilities
Drive continuous improvements and enhancements to cloud infrastructure in alignment with business strategy, budget, and security objectives.
Design, build, and maintain secure cloud-native solutions across AWS, Azure, and GCP environments.
Collaborate with engineering and DevOps teams to deliver secure, scalable, and highly available cloud services.
Support business stakeholders in adopting modern cloud-native architectures and security best practices.
Develop and implement automation for security monitoring, incident response, remediation, and operational processes.
Ensure cloud platforms comply with organisational security standards, governance requirements, and software development life cycle practices.
Identify, assess, and mitigate cloud security risks, vulnerabilities, and compliance gaps.
Contribute to cloud architecture reviews, security assessments, and threat modelling activities.
Work with security tooling and SIEM platforms to improve visibility, detection, and response capabilities.
Support incident, problem, and change management processes while maintaining operational excellence.
Develop Infrastructure as Code (IaC) solutions to standardise and automate cloud deployments.
Partner with development teams to embed security into CI/CD pipelines and DevSecOps processes.
Monitor cloud environments and provide recommendations for optimisation, security posture improvement, and operational efficiency.
Technical Skills & Experience
Essential Requirements
Proven experience as a Cloud Engineer, Cloud Security Engineer, DevSecOps Engineer, or similar role.
Professional cloud certifications in AWS, Microsoft Azure, or Google Cloud Platform.
Experience translating High-Level Designs (HLDs) and Low-Level Designs (LLDs) into secure technical solutions.
Strong Scripting and automation skills using PowerShell, Bash, Python, and/or Java.
Experience working within Agile and Scrum delivery environments.
Expert knowledge of CI/CD pipelines and DevSecOps practices.
Strong understanding of cloud security controls, security frameworks, and compliance requirements.
Hands-on experience with SIEM platforms and cloud security tooling.
Experience with incident, problem, and change management processes.
Working knowledge of Wiz Cloud and Wiz Defend security platforms.
Strong containerisation experience, including Docker and Kubernetes.
Experience administering and securing both Windows and Red Hat Linux environments.
Experience implementing operational automation using Chef or similar configuration management tools.
AWS Security Expertise
Experience creating and managing CloudFormation templates for infrastructure deployment.
Strong understanding of AWS Identity and Access Management (IAM), security policies, security groups, and Key Management Service (KMS).
Hands-on experience with AWS networking technologies including VPCs, subnets, routing, and load balancing.
Experience securing and supporting ECS, EKS, and AWS Lambda workloads.
Knowledge of CloudWatch and CloudTrail for monitoring, logging, and auditing activities.
Azure Security Expertise
Experience developing ARM templates and Bicep scripts for infrastructure automation.
Strong understanding of Azure Resource Manager, Azure Policy, and Azure Blueprints governance frameworks.
Experience implementing and managing Azure Active Directory, Managed Identities, and Role-Based Access Control (RBAC).
Hands-on experience with Azure DevOps pipelines and release management.
Knowledge of Azure Monitor, Log Analytics, Microsoft Defender for Cloud, and compliance monitoring tools.
Understanding of Azure networking services, including Virtual Networks (VNETs), Network Security Groups (NSGs), Application Gateway, and Azure Firewall.
GCP Security Expertise
Experience creating infrastructure automation through Deployment Manager and/or Terraform.
Knowledge of GCP IAM, Service Accounts, and Organisation Policies.
Experience with Cloud Build, Artifact Registry, and Cloud Deploy services.
Understanding of GCP networking, including VPCs, Firewall rules, and cloud load balancing.
Experience with Cloud Logging, Cloud Monitoring, and Security Command Center.
Familiarity with Google Kubernetes Engine (GKE) and cloud-native container orchestration.
If you are interested in this position and would like to learn more, please send through your CV and we will get in touch with you as soon as possible. Please note, candidates are often Shortlisted within 48 hours.