Key skills
AWSAzureCloudJavaJavaScriptPythonCI/CDCloud Security
About this role
Role Overview
- Design, build, and operate cloud ‑ native security controls as software products across cloud infrastructure, data platforms, and application services
- Engineer and maintain cloud security posture management (CSPM) and data loss prevention (DLP) capabilities to continuously detect, assess, and reduce risk in cloud environments
- Build preventative, detective, and responsive security controls that integrate directly into cloud platforms, CI/CD pipelines, and shared enterprise services
- Integrate cloud security controls with SIEM and security tooling to generate high ‑ quality signals for detection, investigation, and incident response
- Support incident handling and response by engineering detection logic, automation, and response mechanisms that improve containment and recovery
- Apply modern cloud and software engineering practices (e.g., infrastructure as code, automated testing, CI/CD) to ensure security controls are reliable, scalable, and maintainable
- Collaborate with platform engineers, application teams, and Digital Product Managers to align cloud security controls with architectures and developer workflows
Requirements
- A minimum of 3 years of professional software or security engineering experience, with hands on ownership of production systems deployed in cloud environments.
- Strong proficiency in one or more modern programming languages (such as Python, Java, or JavaScript), and a proven ability to design, write, review, and maintain robust production grade code.
- Hands ‑ on experience engineering security controls within public cloud platforms (e.g., AWS and/or Azure), spanning infrastructure, platform services, or application ‑ level integrations
- Background building or integrating cloud security posture management (CSPM), data protection, or data loss prevention (DLP) capabilities as engineered solutions
- Understanding of cloud ‑ native architectures and services (e.g., identity, networking, storage, compute) and how security controls integrate into them
- Experience engineering preventative, detective, and responsive security capabilities, including detection logic, automation, or response workflows in cloud environments
- Familiarity integrating security controls and signals with SIEM or security monitoring platforms to support detection and incident response
- Practical application of modern engineering practices such as infrastructure as code, automated testing, CI/CD, and operational feedback loops
Tech Stack
- AWS
- Azure
- Cloud
- Java
- JavaScript
- Python
Benefits
- A generous, flexible benefits package including annual leave, healthcare and dental cover, pension, and lifestyle discounts
- Access to world-class learning platforms and award-winning L&D
- Clear career paths, internal mobility, and a strong focus on growth
- A people-first culture with flexible working options